If you’re not already following some of our excellent NovaInfosec Twits and are wondering where to get the best NoVA-, DC-, and MD-related security tweets, look no further than this post. Published every Friday, our “Infosec Ramblings” post takes many of my security tweets/RTs from the past week and puts them into one easy to digest post. And if you don’t want to wait an entire week, just stop on by my @grecs Twitter account.
There was one meetup so far this week and a conference going on now. Did you get to attend any of them? Although there is still the tour of the National Crypto Museum tour tomorrow.
- #MEETUP After no tweet for 5mo., jammin’ w/ @DinisCruz on O2 for 2 days. (via @m1splacedsoul @OWASPNoVA) #
- Reminder: OWASP VA Meetup @ Mon Aug 16 6pm – 7:30pm (NovaInfosecPortal.com Calendar) (via @novainfosec) #
- #MEETUP Great preso by @DinisCruz @ OWASP NoVA chapter. Wasn’t aware until tonight that O2 is independent of Ounce now. (@cktricky) #
- #CON It’s official! The hashtag for SANS Virtualization & Cloud Computing Summit is #sansvccs (via @Shpantzer) in reply to Shpantzer #
There’s also some upcoming meetups for those of you who are interested.
- #MEETUP Eat your security wheaties folks: Charmsec 28 will be 8/26, 7:00PM at our usual spot – @Slaintepub (via @charmsec) #
- #MEETUP Hey folks! #CapSecDC is a week from today! Keep your Wednesday evening free on the 25th! (via @capsecdc) in reply to capsecdc #
- #MEETUP Aug #CapSecDC will b pub crawl 2 celebrate end of summer. B adventurous & find us on H St NE on 25th! (via @capsecdc) in reply to capsecdc #
If you don’t have time to make it to any of the weekly security meetups, why not try attending one of these upcoming conferences?
- #CON Real champions of security will b at NIST’s 6th Annual IT Security Automation Con http://j.mp/cnuEsX (via @bobgourley) in reply to bobgourley #
- #CON Met w/ @pmhesse of @geminisecurity. Planning #BSidesDC at @ReverseSpace around #blackhat. (via @TiffanyRad @mschafer) in reply to mschafer #
- #CON Just noticed Techno Forensics 25-26 Oct in MD http://bit.ly/b2Dej8 (via @taosecurity) #
- Our CFP closes Aug 31st! If U didn’t make it in time 4 AppSecUS, there’s still time for DC. http://bit.ly/c3RzxJ (via @AppSecDC) #
- #CON NoVAHackers possibly running metasploit workshop in Sep. Any1 interested in TEACHING portion? http://bit.ly/9rzDR1 (via @carnal0wnage) #
- NIST will host an Industrial Control Systems (ICS) Security Workshop 4 SP updates 9/24, no link yet (via @danphilpott) in reply to danphilpott #
For those of you that don’t know, we have some pretty awesome infosec bloggers in the local area. You can check out some of their articles below.
- #NOVABLOGGER: Metasploit turns 10,000 http://bit.ly/9o1BQf http://j.mp/nispblog (via @novainfosec) [Congrats!] #
- #NOVABLOGGER: Facebook Places Brings Simple Loc Sharing 2 Masses http://bit.ly/cRE71o http://j.mp/nispblog (via @novainfosec) in reply to novainfosec #
In case you missed them, here were some of our blog posts from this week.
- BLOGGED: Grecs’ Weekly Infosec Ramblings for 2010-08-12 http://bit.ly/cxFd8H #
- BLOGGED: Where You Want to Be This Week for 2010-08-16 http://bit.ly/9Jgkog #
- BLOGGED: Upcoming Conferences for August, September, and October http://bit.ly/d09UTM #
We noticed a few career and job postings this week.
- #JOB Why U Might Not Want That Cybersec Job http://bit.ly/cQfXiL (via @IBMFedCyber) [Nice post discussing pros/cons of gov work.] #
- #JOB Enterprise Infrastructure Security Analyst in Hanover, MD http://j.mp/cHTh5P (via @TheCustos @CSOonline) in reply to CSOonline #
Also we tried to put a Twitter news summary out from the prior week on Saturday. Hope you enjoyed it.
- This past week was pretty interesting. Started out with some patent software controversy. http://bit.ly/a2J8tm #
- Then @billbrenner70 blogged about what it’s like being grilled by the Secret Service. http://bit.ly/bTOwDn #
- We put out a recap of our 1st day at BSidesLasVegas. http://bit.ly/bcIjyw Hopefully I’ll get to the 2nd day this week. #
- There was a fairly popular article about how employees try to access restricted sites. http://bit.ly/9CFcnX #
- Then there was a hugely popular review of the whole Verizon/Google net neutrality thing. http://bit.ly/a4y5Lh #
- That was followed closely by another Facebook bug that spilled details on all of its 500 million users http://bit.ly/cwgt9F #
- And if U needed some motivation 2 get over hump day, U can always try 2 break piece of wood over your head. http://bit.ly/axvheY #
- Then there is this whole Verizon incident response cover challenge going on. http://bit.ly/aOn2Eo #
- And be sure to prevent your own personal incident by disabling GPS when taking pictures. http://bit.ly/bk8FVZ #
- Finally, the latest version of iOS was jailbroken in record time. http://bit.ly/cn7tvO #
You can also keep yourself busy with these interesting newsbites:
- RIM Tries 2 Placate Everyone http://bit.ly/cN0pmG [Wonder how this will effect their security. Going down..] #
- Jailbreak iOS 4.0.2 w/ Redsn0w http://bit.ly/cn7tvO //that was fast… (via @0×38 @mubix) #
- Company That Had Largest Ever Credit Card Data Breach .. Apparently Breached Again http://bit.ly/aipOEK (via @quine) #
- Writing Down Passwords – Yes I Am OK with That http://bit.ly/dk1wis (via @marcusjcarey) [Something 2 consider.] #
- Google Calls Oracle Lawsuit ‘Baseless’ http://bit.ly/cft91I <Best piece I’ve read on this (via @cybfor @danphilpott) [+1] #
- Sticky Keys Trick 2 Get Password Resets in Windows http://bit.ly/aRItIS (via @ibmfedcyber) [Another interesting way to reset pwds.] #
- US Faces Security Concerns Over Potential Malware in Power System http://bit.ly/bsQv3U (via @nigroeneveld @mschafer) [Nice read.] #
- Firefox on Fire http://bit.ly/aJwhwd (via @taosecurity) [Cool, the more pop a piece of software gets, the more vulns they find.] #
- Short Passwords ‘Hopelessly Inadequate’, Say Boffins http://bit.ly/aysXaD [Passphrases anyone?] #
- Survey Scammers Exploit Facebook Dislike Lure http://bit.ly/brA2LI [Seemed 2 b big news today.] #
- RT @mikkohypponen: Online Internet Kiosk Auditing Tool iKAT http://ikat.ha.cked.net updated 2 v3. Breaks out 2 OS fr Internet Terminals. #
- Gary McGraw publishes “Software Security” industry revenue numbers 4 2009. http://bit.ly/dwP9vx Fascinating (via @jeremiahg @taosecurity) #
- HP to Buy Fortify http://bit.ly/b6Zlum [Whoa .. more consolidation.] #
- Sharpen Your Twitchforks, it’s Twifficiency http://bit.ly/ciQiJK (via @gdead) [Seemed to make the rounds today.] #
- Android Game Isn’t Actually a Game http://bit.ly/a9N9cf [Be careful what U install.] #
- Microsoft Windows Kernel Threads Creation Local Privilege Escalation Vuln http://bit.ly/dxRf1x (via @Dinosn @mubix) [Sigh..] #
- 4 ways to get Google out of your life http://j.mp/d84s0G (via @mikkohypponen @dallendoug) [Some good suggestions.] in reply to dallendoug #
- Adapting Digital Rights Management to Secure Sensitive Data http://j.mp/bVKcIb [But hasn't DRM essentially failed?] #
- Smudge attack, identify Android passcodes 68% of time http://j.mp/aoXppg [leave no smudge behind?] (via @DrInfoSec) in reply to DrInfoSec #
- “Thoughts on the Future of Web Application Security” http://j.mp/9a9PYY (via @Wh1t3Rabbit @falconsview) in reply to falconsview #
- PBS responds to the attack from RFID Journal about my research: http://j.mp/9yo65K (via @ChrisPaget @StrongwaterSec) in reply to StrongwaterSec #
- Researcher Cracks reCAPTCHA http://bit.ly/aM1ROc [Mmm? Missed this talk.
Looks interesting.] # - Intel buying McAfee? http://j.mp/cbvjgi (via @stiennon @pmhesse) [WTF! Didn't c this 1 coming.] in reply to pmhesse #
- Intel Buys McAfee http://j.mp/b0bqBO [Of course @schneierblog predicted this 2 years ago.
] in reply to schneierblog #
And in closing, who could forget the tweets of the week?
- Oracle is evil Google wants 2 b when it grows up. <-I declare this tweet of the week! (via @ShanleyKane @Shpantzer) #totw #
- Twitter Movie Trailer from Rated Awesome mocking the FB movie! http://bit.ly/dw5iOx (via @falconsview) [Nice!] #
Well, that’s all for this week. Be sure to follow me on Twitter at @grecs for more great tweets during the week! See ya…
No related posts.
