Browsing Category: Web Security

Categories: Malware, Podcasts, Web Security

Welcome to the Show – Mon, October 20 2008

In this show, we introduce ourselves and recap the Virus Bulletin 2008 conference. We talk about the MBR Trojan (bootkit), the controversy surrounding anti-virus testing standards, information on the blackmarket for online gaming passwords and some data from Microsoft’s malicious software removal tool (MSRT).
(Download)

Read more...

Categories: Web Security

In an ironic twist, Kevin Mitnick, a social engineering master who went to jail for impersonating others to get information to access computer networks without authorization, couldn’t access his own Facebook account for weeks because administrators at the social networking site didn’t believe he was who he said he was.

Read more...

Categories: Web Security

In this Network World interview at SOURCE Boston, well-known hardware hacker Joe ‘Kingpin’ Grand talks about lessons rom the “Prototype This” show, the changing face of security research and his upcoming vulnerability assessment work.  The video also includes an interview with Dan Kaminsky about his DNS vulnerability.

Read more...

Categories: Web Security

Few people in the world know more about the internal workings of botnets, DDoS attacks and defense than Jose Nazario, a senior security researcher at Arbor Networks. Don’t miss his thoughts on why DDoS attacks are more prevalent in some regions than others and how to react if you’re attacked. Interviewed by Chris Hoff.

Read more...

Categories: Web Security

The SANS Internet Storm Center has a fascinating look [isc.sans.org] today at a recent incident in which a Web server was compromised through the use of a remote Web application flaw. The attack might have stopped there, but a series of cascading failures led to further problems and damage. It’s a classic boy-meets-server, boy-0wns-server tale.

Read more...

Categories: Web Security

By Christian Heinrich

The second Open Web Application Security Project (OWASP) Conference held on the Gold Coast is regarded as the leading Web Application Security conference within the Asia Pacific region attracting both Australian and overseas speakers and attendees.

The conference continued its community atmosphere with open discussions and sharing of ideas on Web Application Security during the various social events each night including a gala dinner.

Read more...

Categories: Web Security

Microsoft’s research unit is investing resources in a new Web browser that could eventually signal a shift away from the ubiquitous Internet Explorer.

According to a research paper released this week, the project is called Gazelle and is positioned as a secure web browser constructed as a multi-principal operating system.

Read more...