domenica 25 novembre 2012

Best of the Week - 25 novembre 2012

Hello everybody, this week the themes for my post are: privacy and cybercrime. In the following lines you will find the best resources of the week on these subjects.

Hope you enojoy it!

Tails 0.7: The Amnesic Incognito Live System http://lwn.net/Articles/439371/

DCITA ‏@DCITA PGP Zimmermann teams with Navy SEALs, SAS techies in London http://is.gd/Zhor8O

scmagazineUK ‏@SCmagazineUK At #Irisscon @neirajones looks at preparations for a proper response to a crisis - http://www.scmagazineuk.com/irisscon-preparations-can-be-made-for-a-proper-response-to-a-crisis/article/269533/

Hacking Update ‏@HackingUpdate Ukraine: Hacker Haven http://sns.mx/zMkoy4

RSA Security ‏@rsasecurity Don't get hooked to a scam this #cybermonday | more tips: http://rsa.im/TcmZCF  pic.twitter.com/hHjafeOW

Websense, Inc. ‏@websense Phish or no phish? That is the question. Test your skills by taking the #OperationSpearPhish challenge http://wb-sn.com/TKTTJc

Limor S Kessem ‏@iCyberFighter Is #Bitcoin really the new paradise for money laundering? http://lnkd.in/UbZWWm

domenica 18 novembre 2012

Best of the Week - 18 novembre 2012

Last Sunday I was at the Global Forum 2012 in Stockholm to present the importance of cyber-security for the economic growth (here is my presentation), so I haven't been able to publish my usual selection of the best security resources of the week. Since last week I had found some interesting materials, this week you will find items also from the previous list.

Hope you enjoy it!

Joseph Menn ‏@josephmenn Good points by Gary McGraw on why nifty cyber-offense can't sub for a strong (if elusive) defense. http://j.mp/Q9Fv2a

Lee ‏@Security_FAQs DUMPING A COMPLETE DATABASE USING SQL INJECTION http://bit.ly/YIr468

Damballa ‏@DamballaInc Persistent Threat Detection on a Budget - 8 ways to find #APT activity in your network http://bit.ly/RWq1cQ  #malware #infosec

DarkReading ‏@DarkReading Hunting botnets in the cloud: http://ow.ly/f7yo6

Andre M. DiMino ‏@sempersecurus Internet Fraud Alert(IFA) - A trusted mechanism for participating researchers to report stolen account credentials - https://www.ifraudalert.org/

Microsoft Security ‏@msftsecurity Check out these in-depth botnet intelligence reports on Rustock, Zbot & Qakbot from MSFT here: http://bit.ly/SIJA9D  #InfoSecg/

ENISA ‏@enisa_eu New report on Supply Chain Integrity is published today by #ENISA http://bit.ly/T6paL4

Dancho Danchev ‏@danchodanchev In retrospective - 2 yrs ago I exposed the DNS infrast. of the money mule recruit. ecosystem http://is.gd/YJOHen  it's still a mul-nat. prob

domenica 4 novembre 2012

Best of the Week - 4 Novembre 2012

To me, Sunday is not Sunday without my "Best of the Week" post in which I publish the most valuable security resources I found during the week.

This week I selected for you: papers, articles and security news.

Hope you enjoy it!

Digital Fortitude ‏@securitybeacon Security Report details emerging cyber threats http://bit.ly/dGavOU

TrendMicro ‏@TrendMicro Cybercrime tools and trade in the Russian underground: http://trendmic.ro/WfNsWj

CcureIT ‏@CcureIT Hacker forums used to induct new criminals, report finds http://dlvr.it/2Q6nXJ

Gianluca Stringhini ‏@gianlucaSB Report claims ZeroAccess is the largest active botnet http://ow.ly/eTgWe

Dale Pearson ‏@subliminalhack Social Engineering: An Expanding Frontier in Online Attacks - http://www.accuvant.com/blog/2012/11/01/social-engineering-expanding-frontier-online-attacks

ericdknapp ‏@ericdknapp @BBCWorld the darker side of social media from @Raj_Samani http://www.bbc.co.uk/news/business-20155192

BrianHonan ‏@BrianHonan Video from @enisa_eu http://www.youtube.com/watch?v=b2Bi1yDKZsk&feature=share&list=PLDTjYuBlUzsgHilsFx0lr2GC1svK7zVZO … about their CERT exercises available for free from their site. @mthorbruegge looking good :)
http://www.wikio.it