Feed aggregator

Feed aggregator

Active attacks using stolen SSH keys, (Tue, Aug 26th)

SANS ISC - 51 min 11 sec ago
The US-CERT is reporting that there is active attacks against Linux environments using stolen SSH ke ...(more)...

Infocus: WiMax: Just Another Security Challenge?

SecurityFocus - 51 min 11 sec ago
WiMax: Just Another Security Challenge?

Podcast Episode X Record Notice, (Tue, Aug 26th)

SANS ISC - 51 min 11 sec ago
Tuesday night at 7:30 EDT (Eastern Daylight Savings Time) Johannes, John, and I will be recording Ep ...(more)...

The Latest in Crimeware, (Mon, Aug 25th)

SANS ISC - 51 min 11 sec ago
Brian Krebs over at the Washington Post has a series of stories up (dubbed Web Fraud 2.0) at the Sec ...(more)...

Thoughts on the Best Western Compromise, (Mon, Aug 25th)

SANS ISC - 51 min 11 sec ago
The Sunday Herald reported on Sunday that Best Western was struck by a trojan attack that lead to th ...(more)...

Warning, it's not from us., (Sun, Aug 24th)

SANS ISC - 51 min 11 sec ago
I received an email today from a reader (thank you) who reported that they received a piece of spam ...(more)...

SQL injections - an update, (Sat, Aug 23rd)

SANS ISC - 51 min 11 sec ago
In an earlier story we looked at an SQL injection that has infected close to 1.5 million sites ...(more)...

RedHat compromise sparks a Critical openssh security update, (Fri, Aug 22nd)

SANS ISC - 51 min 11 sec ago
Critical: openssh security update Last week Red Hat detected an intrusion on certain of its c ...(more)...

Mark Rasch: Get Off My Cloud

SecurityFocus - 51 min 11 sec ago
Get Off My Cloud

>> Advertisement <<
Can you answer the ERP quiz?
These 10 questions determine if your Enterprise RP rollout gets an A+.
http://www.findtechinfo.com/as/acs?pl=781&ca=909

Infocus: Blocking Traffic by Country on Production Networks

SecurityFocus - 51 min 11 sec ago
Blocking Traffic by Country on Production Networks

>> Advertisement <<
Can you answer the ERP quiz?
These 10 questions determine if your Enterprise RP rollout gets an A+.
http://www.findtechinfo.com/as/acs?pl=781&ca=909

Dan Kaminsky: An Astonishing Collaboration

SecurityFocus - 51 min 11 sec ago
An Astonishing Collaboration

Don Parker: Bad-Code Blues

SecurityFocus - 51 min 11 sec ago
Bad-Code Blues

Federico Biancuzzi: Firing Up Browser Security

SecurityFocus - 51 min 11 sec ago
Firing Up Browser Security

>> Advertisement <<
Can you answer the ERP quiz?
These 10 questions determine if your Enterprise RP rollout gets an A+.
http://www.findtechinfo.com/as/acs?pl=781&ca=909

Infocus: Integrating More Intelligence into Your IDS, Part 2

SecurityFocus - 51 min 11 sec ago
Integrating More Intelligence into Your IDS, Part 2

Infocus: Integrating More Intelligence into Your IDS, Part 1

SecurityFocus - 51 min 11 sec ago
Integrating More Intelligence into Your IDS, Part 1

Infocon: green

SANS ISC - 51 min 11 sec ago
Active attacks using stolen SSH keys

More rss feeds from SecurityFocus

SecurityFocus - 51 min 11 sec ago
News, Infocus, Columns, Vulnerabilities, Bugtraq ...

SSH Key-based Attacks

Linux Security - 2 hours 3 min ago
LinuxSecurity.com: US-CERT is aware of active attacks against linux-based computing infrastructures using compromised SSH keys. The attack appears to initially use stolen SSH keys to gain access to a system, and then uses local kernel exploits to gain root access. Once root access has been obtained, a rootkit known as "phalanx2" is installed.

Brief: U.S. to deploy DNS Security in two years

SecurityFocus - 9 hours 36 min ago
U.S. to deploy DNS Security in two years

By Popular Demand: It&#39;s the End of the BGP World &amp; We Know It...In Poetic Review

What I'm Reading - Wed, 2008-08-27 17:02

What the hell's goin' on here?
something's surely a mess,
our BGP is announcing
the wrong damned AS

See, I announce with this prefix,
it's a slash 24,
here to there should take 3 hops,
not 18 or more

I'm pinging the next hop and
that works just fine,
ping a host, subnet over,
slows like a POTS line

That Defcon session,
when we IM'd all night,
that shit's all encrypted
you told me that, right?

My telnet shell's cleartext!
DONE! Stabbed it with a FIN fork
So why do these Pcap's
show SYN's to New York!?

Somethin' sure does look fishy,
TTLs all askew
are the ISPs tapping traffic
'tween me and you?

I'm just paranoid, man,
I'm sure it's all fine.
These ping-pong effects?
BGP's grand design

I mean really, why worry?
Even though, I confess,
it's not like we're vulnerable
like with DNS

BGP must be foolproof
auth'd and encrypted
there's no way they've gamed it,
redirected or sniffed it

It would be quite stupid
if AS routes, you could twiddle,
intercept all my traffic
with a man-in-the-middle

Nah, I'll sit here, use torrents,
my bits are secure,
close my eyes and imagine
that the Internet's pure

What's next though, I wonder,
what protocol hack
will cause Internet chaos
and make the tubes crack?

Syndicate content