April 2007 - Posts

China - Malware - Kaspersky - Targetted Attacks

http://www.computerweekly.com/Articles/2007/04/26/223456/kaspersky-china-accounts-for-more-than-half-of-malware.htm Found this to be an interesting and thought provoking quote: ""China and India are both huge countries, each with a lot of internet users… Read More...

Posted 27 April 07 09:39 by Robert_Hensing | 0 Comments   

Mac / QuickTime / Java

Okay - I wasn't going to blog on this but I just can't take it anymore. First off - read the Matasano blog here: http://www.matasano.com/log/841/this-just-in-blogs-a-crappy-way-to-handle-disclosure/ Sounds pretty bad . . . "Java - write once, exploit Read More...

Posted 27 April 07 09:04 by Robert_Hensing | 0 Comments   

2007 FIRST conference

Updated 4/21/2007 to clarify attendance stuff. I wanted to take a second to clarify some things about a conference I'll be speaking at soon. First, The 19th annual FIRST conferrence is open to attendance by everyone - not just members of the FIRST organization. Read More...

Posted 20 April 07 02:31 by Robert_Hensing | 1 Comments   

I am trying to believe . . .

Soooo . . . I'm a huge NiN fan and have been for a while . . . so I was extremely pleased to learn that Year Zero RTW'd today especially after the kind of month I'm having and will likely to continue to have. :) There are only a handful of bands that Read More...

Posted 17 April 07 09:51 by Robert_Hensing | 0 Comments   

PCDecrapifier

It's about damned time someone came up with an idea like this: http://www.pcdecrapifier.com/ I see that Apple is now even mocking Windows for coming pre-loaded with all sorts of crap from the OEM's: http://www.youtube.com/watch?v=1EbCyibkNB0 I understand Read More...

Posted 16 April 07 11:10 by Robert_Hensing | 0 Comments   

VBootkit vs. Bitlocker in TPM mode

So at HITB in Dubai this week - some researchers announced a proof of concept 'bootkit' for Vista. A bootkit is a rootkit that is able to load from a master boot record and persist in memory all the way through the transition to protected mode and the Read More...

Posted 05 April 07 02:48 by Robert_Hensing | 4 Comments   

DEP on Vista exposed!

This is going to be a looooong blog - but its one that I've been meaning to post for a loooong time now. My hope is that you will learn something you didn't peviously know about DEP and Vista or both and that you will, after reading this blog, re-configure Read More...

Posted 04 April 07 10:22 by Robert_Hensing | 6 Comments   

ANI vuln - Please enable DEP on IE7 on Vista yesterday.

Just a quick blog post this morning regarding the ANI vuln and some thoughts on mitigations built-in to Vista. First - as mentioned by the MSRC - we are going to release the security update out of band on Tuesday (tomorrow). I recommend installing this Read More...

Posted 02 April 07 11:30 by Robert_Hensing | 2 Comments   

Search

This Blog

• Home
• Email

Tags

Archives

• September 2008 (3)
• August 2008 (6)
• July 2008 (11)
• June 2008 (24)
• May 2008 (11)
• April 2008 (15)
• March 2008 (15)
• February 2008 (11)
• January 2008 (7)
• December 2007 (9)
• November 2007 (15)
• October 2007 (23)
• September 2007 (18)
• August 2007 (8)
• July 2007 (13)
• June 2007 (10)
• May 2007 (12)
• April 2007 (8)
• March 2007 (5)
• February 2007 (4)
• January 2007 (7)
• December 2006 (5)
• November 2006 (6)
• September 2005 (1)
• July 2005 (1)
• March 2005 (4)
• February 2005 (6)
• January 2005 (8)
• November 2004 (1)
• October 2004 (2)
• August 2004 (2)
• July 2004 (1)

Syndication

• RSS 2.0
• Atom 1.0