If you’re not already following some of our excellent NovaInfosec Twits and are wondering where to get the best NoVA-, DC-, and MD-related security tweets, look no further than this post. Published every Friday, our “Infosec Ramblings” post takes many of my security tweets/RTs from the past week and puts them into one easy to digest post. And if you don’t want to wait an entire week, just stop on by my @grecs Twitter account.
- BLOGGED: Grecs’ Weekly Infosec Ramblings for 2010-12-09 http://bit.ly/f51euo #
- #EDU Annual Xmas Contest by @edskoudis & @yorikv Nightmare Before Charlie Brown’s Christmas http://bit.ly/h8yF8z (via @ethicalhacker) #
- Karen Evans & Franklin Reeder blog on debate over IT security certification. http://bit.ly/fh8Wbl #
- Warrior Battles Military’s Misuse of PII. ‘Why do I deed my SSN to get a flu shot?’ http://bit.ly/fejeGy [Interview w/ Conti.] #
- Having a look at the DDOS tool used in the attacks today http://bit.ly/fRsP13 (via @sans_isc) [Interesting.] #
- #JOB Biz of IT Security http://bit.ly/feLAOC ["It is non-IT skills that will distinguish most sought-after IT security people.."] #
- #NOVABLOGGER WikiLeaks: Coming to an Agency Near You http://bit.ly/fYEJjJ (via @novainfosec) [He's at it again.] #
- #TOTW Pls do not hack my acct this time; I had to change my dogs name cause of you. (via @MJCdotMe @brennantom @jasonmoliver) #
- BLOGGED: Top 3 NoVA Infosec Blog Posts of the Week http://bit.ly/fR0I54 #
- IN CASE U MISSED IT: Top 3 NoVA Infosec Blog Posts of the Week http://bit.ly/eXttwg #
- IN CASE U MISSED IT: Grecs’ Weekly Infosec Ramblings for 2010-12-09 http://bit.ly/hKVxlJ #
- Ok what’s been going on in Twitterville today? #
- Wow, 2 WP vulns in 1 week. http://bit.ly/emf3bw (via @uscert_gov) #
- #NOVABLOGGER Wikileaks, CyberSec Regs, & Prediction Markets http://bit.ly/fdOIEz (via @alexhutton) [Awesome idea.] #
- Great cybersec article “It’s Time for e-Sputnik” http://bit.ly/fZ9QNs (via @Ryan_Kamauff @bobgourley) #
- Gr8 .. more inaction in cybersec reform. WTH is DADT doing in a cybersec bill? http://bit.ly/fzMXlY #
- #CON #Dojocon schedule is here http://bit.ly/egH7R5 (via @Shpantzer) #
- #DojoCon will turn in2 “Fill room w/ DoD contractors & seal door so I can show Wikileak cables 2 ruin ur clearance!” (via @bbaskin ..) #
- NIST has announced SHA-3 finalists: BLAKE, Grøstl, JH, Keccak, & Skein (HT @marshray) (via @zooko @jasonmoliver) #
- #TOTW Words to live by… Make sure you drink downhill from the campfire. (via @mckt_ @Shpantzer) [Nice 1!] #
- oh dear, dear, dear.. Mrs Clinton is upset over enhanced pat-downs of diplomats.. http://bbc.in/fzUnF8 (via @falconsview) #
- #JOB No Need 4 New Infosec Cert Process. Comparing Infosec Pros w/ Neurosurgeons Is Flawed. http://bit.ly/dWS9i1 [Interesting.] #
- 2011 trends for social engineering, social networking & cloud: http://bit.ly/dTMAU7 (via @sans_isc) [They're starting.] #
- DHS’ Continuous Asset Eval, Sit Awareness & Risk Scoring (CAESARS) ref arch report: http://bit.ly/h7YOjE (PDF) (via @danphilpott) #
- Freakin work .. deadline 4 tonight at midnight. Gonna try 2 work thu it as fast as possible. Maybe mk it late afternoon 2 #dojocon
# - OS Cmd injection in VMware Tools (ESX(i),Server,Fusion, Player, and Workstation affected) http://bit.ly/hAnqGM (via @mubix) #
- DojoCon.org updated with embedded uStream #dojocon #livestream http://bit.ly/frOSXN (via @DojoCon) #
- Finally heading out to #dojocon after a Sat work day. Anyone want to grab dinner? #
- Posted #DojoCon slides: “Rules of Engagement: Mitigating Risk in InfoSec Work” http://j.mp/e3qB7q (via @GoldbergLawDC) #
- #CON Debated posting it, but here’s a summary of 1st day #Dojocon talks http://j.mp/ggnvK4 (via @FallingMelesse) #
- #Dojocon party rolling.
Total sausage fest though.
# - #NOVABLOGGER NEWSCHOOL Blog Post: Lazy Sunday, Lazy Linking: http://j.mp/fcvpPX (via @alexhutton) #
- #CON DojoCon 2010 Stream live at DojoCon.org (via @DojoCon) #
- #CON For all my #DojoCon GPS padwans.. here are my slides http://mcaf.ee/f3b2c (via @DaveMarcus @Shpantzer) #
- Hangin out at #dojocon listening to @mr_cwitter talk on enterprise packet capture. #
- Preso by Ben Smith on printer exploitation starting up at #dojocon Also Lockpick Village closing up at 13:37.
# - Woot! @rybolov is in the house. Be easy on him; he had a red eye last night. #dojocon #
- Woot! AppSecDC guru @dallendoug is on the house at #dojocon Don’t see him out in NoVA that much. #
- The man, Adrian Crenshaw, talking on USB security at #dojocon Wish I could remember the full title of his talk. Hilarious. Anyone? #
- Tx @urkewlernme 4 full title of Adrian’s talk “Is that an attack vector in your pocket or are you just happy to see me?” at #dojocon #
- iPhone 4 case 4 1st person @ #dojocon 2 find me & give name of person said “If U c asp in addr bar, it’s NOT pentest anymore…. it’s IR!” #
- The State of (in)Security by @indi303 up now at #dojocon #
- Wow, @indy303 at #dojocon .. I’m speechless. A bit controversial at times but a gr8 & entertaining speaker w/ many awesome points. #
- FYI re iPhone 4 case at #dojocon No winner yet. Forget the question.. 1st one to find me and ask for it. #
- Is the IDS Dead? Find out from @DaKahuna2007 and @EvilFingers at #dojocon #
- RT @bigbluetick: @grecs Answer is Joe McCray but I don’t have an iPhone 4 <- Yep & have feeling most people here have same prob. #dojocon #
- RT @dallendoug: Eagerly awaiting @Shpantzer & @rybolov ‘s talks. #dojocon #savingthebestforlast <- +1 #
- At #dojocon .. @shpantzer starting up his Security Outliers talk. #
- RT @dallendoug: Poor @rybolov has been dubbed “DDoS” at #dojocon <- Better than @shpantzer ‘s Space Cowboy #
- Thanks to @MJCdotMe, @tiffanyrad, all the peeps that helped out, and all the awesome speakers for a gr8 #dojocon #
- Gawker, Gizmodo, Lifehacker Comment Databases Compromised .. change your passwords now http://bit.ly/gd9sPx #
- Reminder: NoVA Hackers Association Meetup @ Mon Dec 13 5:30pm – 8:30pm (NovaInfosecPortal.com Calendar) (via @novainfosec) #
- #CON Enjoy DojoCon 2010? Please support. PayPal button added to the top of http://bit.ly/frOSXN (via @DojoCon) #
- #MEETUP December Meeting 13 December 2010 http://bit.ly/dOCeBn (via @novahackers) #
- Twitter diet spam splurge blamed on Gawker compromise http://j.mp/g64NZD (via @regsecurity) #
- BLOGGED: Where You Want to Be This Week for 2010-12-13 http://bit.ly/fsDXMU #
- IN CASE U MISSED IT: Where You Want to Be This Week for 2010-12-13 http://bit.ly/fiTYV0 #
- #MEETUP Charmsec 31 is this Thursday at @Slaintepub. You are invited. #
- #MEETUP State of Software Security by Jeff Ennis, Veracode, Inc. on 12/21/10 6:30 PM, more info at issa-dc.org (via @issa_dc) #
- Wikileaks causes ‘need to know’ pendulum to swing again http://bit.ly/gWCVza [Darn. ] #
- #JOB Wanted: More Computer Security & Cyber Attack Students http://bit.ly/gbUjKx (via @selil @angelinaward) #
- NIST announced SP 800-39 Integrated Enterprise-Wide Risk Mgmt: Org, Mission, & Info System View 2 b released 12/14 (via @danphilpott) #
- Got there late but another awesome night at #NoVAHackers Each month U think it can’t get any better .. but then it does. #
- Nice article on secure flash drives. Go IronKey! http://bit.ly/eu4QZY #
- Capturing Windows Logons with Smartlocker http://bit.ly/fwmTOX (via @carnal0wnage) #
- Ad networks pwned again.. http://bit.ly/fTA71u #
- #CON Summary of Day 2 at #DojoCon . http://bit.ly/hmVt7r #
- Posted my NoVAHA talk tonight on Report Hacking http://bit.ly/fWY3dx (via @jasonmoliver) [Missed it. Can't wait 4 vids.] #
- #NOVABLOGGER Passwords, redux. http://bit.ly/hQXv83 http://j.mp/nispblog (via @novainfosec) [@pmhesse's Gawker woes.] #
- Want a secure iPhone? Well than you need to Jailbreak it. http://j.mp/gX0gwk (via @thealuc @jaysonstreet) #
- Mubix & Carnal0wnage Join Rapid7 Family http://bit.ly/hMPxAO (via @rapid7 @jasonmoliver) [Congrats guys!] #
- Ron Ross interview on the risk management framework. http://bit.ly/eTnFV6 #
- NIST released Final Public Draft of SP 800-39 Integrated Enterprise-Wide Risk Mgmt http://j.mp/hQZxha (via @danphilpott) #
- Gawker Database Goof: http://j.mp/hupvH5 [WTF, storing plaintext pwds in their dbs.] #
- December 2010 Microsoft Black Tuesday Summary http://j.mp/evu9kA (via @sans_isc) #
- ReverseSpace openning announcement at December NovaHackers http://bit.ly/hEcVJP (via @novahackers) #
- Armitage the Metasploit GUI at December NoVA Hackers http://bit.ly/fs5K6v (via @novahackers) #
- OSSTMM 3 Now Available http://bit.ly/hqF5C3 (via @drinfosec) #
- Blended Threats at December NoVA Hackers http://bit.ly/hYbhOI (via @novahackers) #
- Is it legal 4 agencies 2 tell Fed employees they can’t view #WikiLeaks fr personal PCs? http://bit.ly/fglBY5 (via @werntzp) #
- Why reading, discussing, linking #wikileaks was a bad idea http://bit.ly/h2LRQv (via @ksignal9) #
- NoVa Hackers Dec Vids: http://bit.ly/hgltNw Armitage, Nessus, Reverse Space, Blended Threats (via @grmn00bs @vincentkadmon) #
- “Compliance, for lack of a better word, is good. Compliance is right.” (via @danphilpott) [Lolz. Nice reference. ] #
- Critical IE update in biggest ever Patch Tuesday http://bit.ly/h0v3VM [Wow, another record.] #
- FBI ‘planted backdoor’ in OpenBSD http://bit.ly/eIK4LF [Not confirmed but interesting.] #
- DOD Wants More Secure Supply Chain http://bit.ly/eYk2pu [Worried about malicious back doors. How ironic w/ recent FBI allegations.] #
- Hehe…This’d be cool: http://bit.ly/gvP4VQ (via @schuetzdj) [Can't go wrong with this XKCD.] #
- BLOGGED: DojoCon Follow-Up http://bit.ly/fz9f3p #
- A breakdown of Gawker media password data http://on.wsj.com/gkMyLO (via @IBMFedCyber) [Nice analysis.] #
- IN CASE U MISSED IT: DojoCon Follow-Up http://bit.ly/gf0iJ2 #
- Appeals Court Holds that Email Privacy Protected by 4th Amendment http://bit.ly/hBv0AW (via @IntegreonEDD @drinfosec) #
- You can haz #dojocon videos http://bit.ly/hhvHYe (via @irongeek_adc) [Man this guy is fast!] #
- Re #DojoCon vids, I updated our follow-up post as well. http://bit.ly/gf0iJ2 #
- Re our follow-up #DojoCon post at http://bit.ly/gf0iJ2, let me know if there are any other posts or resources we should link out to. Tx #
- WikiLeaks Docs Place Firms in Classified Jeopardy http://bit.ly/fOkQAm [Most of us have probably recevied The Memo.] #
- Greek Police Cuff Anonymous spokesman suspect http://j.mp/gFwQPp (via @regsecurity) #
- #MEETUP charmsec is tonight. you’re still invited. 1st floor; booths just past bar. No rsvp required, just show up. 7PM. (via @charmsec) #
- Cybersec Reforms Excised fr Revised Defense Authoriz Act, Falling Victim 2 Don’t Ask, Don’t Tell Battle. http://j.mp/fbsc62 #
Well, that’s all for this week. Be sure to follow me on Twitter at @grecs for more great tweets during the week! See ya…
No related posts.
Loading ...