October 2007 - Posts

Microsoft and double standards
Well said Joe: http://www.microsoft-watch.com/content/operating_systems/the_great_double_standard.html To be fair the stock has risen to its highest point in like 7 years . . . I'm almost afraid to talk about it for fear of scaring it away . . . Read More...
Posted 31 October 07 12:03 by Robert_Hensing | 1 Comments   
Wherever you go - there you are! (If you own a Mac with Leopard)
Also a classic line from The Adventures of Buckaroo Bonzai Across the 8th Dimension and also very applicable to that fruit company's new OS. http://www.isfym.com/Site/Blog/Entries/2007/10/27_Don%E2%80%99t_go_Back_to_My_Mac.html What could *possibly* go Read More...
Posted 29 October 07 09:02 by Robert_Hensing | 1 Comments   
DD-WRT kicks ass!
Over the weekend I decided to try something cool at home. I have a Buffalo WHR-HP-G54 wifi g-router that I got a few weeks back via Slickdeals. It's a great router - very strong wifi signal / range and it was cheap - like $50 or something . . . but the Read More...
Posted 28 October 07 11:56 by Robert_Hensing | 1 Comments   
LOLCODE.NET
I give you - the newest CLR language: http://blog.notdot.net/archives/32-LOLCode.net-Now-your-LOLCats-can-use-the-CLR!.html :) Read More...
Posted 27 October 07 09:38 by Robert_Hensing | 1 Comments   
It begins . . . (PDF spam run)
F-Secure is reporting that a PDF spam run has started that exploits the Adobe URI handler vulnerability ( that is really sort of our vulnerability - where Acrobat is simply the current attack vector). Couple things: The Adobe Acrobat update has been released Read More...
Posted 26 October 07 01:51 by Robert_Hensing | 3 Comments   
Microsoft Security Intelligence Report v3
Available now: http://www.microsoft.com/security/portal/sir.aspx Read More...
Posted 24 October 07 11:33 by Robert_Hensing | 1 Comments   
Elcomsoft password cracking - now 25x faster?
Thanks to the parallel processing ower of modern GPUs: http://technology.newscientist.com/article.ns?id=dn12825&feedId=online-news_rss20 I'm surprised they didn't jump on the Sony PS3 / Cell processor bandwagon . . . On an related note - remember Read More...
Posted 24 October 07 11:24 by Robert_Hensing | 0 Comments   
Getting Microsoft Updates offline . . .
So I just got done reading Larry's article on XP SP3 over here: http://www.eweek.com/article2/0,1759,2204198,00.asp Near the beginning of the article he mentions something about needing an offline / disk based version of the update process for people Read More...
Posted 24 October 07 10:29 by Robert_Hensing | 5 Comments   
This kid's a speed freak!
Unbelievable talent . . . http://www.cnn.com/video/#/video/living/2007/10/16/intv.one.handed.rubiks.champ.cnn And all he wants to buy with his $700 prize is . . . . Read More...
Posted 23 October 07 09:11 by Robert_Hensing | 1 Comments   
Redhat fixes their 1,000th CVE
We now have several years worth of solid CVE / vuln data that has accrued (both for us and our competitors) and some folks like us are improving (by needing to fix fewer security vulns year over year) and others . . . not so much. :) http://blogs.technet.com/security/archive/2007/10/16/red-hat-enterprise-linux-4-passes-1000-vulnerabilities.asp Read More...
Posted 18 October 07 10:56 by Robert_Hensing | 1 Comments   
Microsoft now has two open source licenses!
"I felt a great disturbance in the Force...as if millions of voices suddenly cried out in terror and were suddenly silenced. I fear something terrible has happened." - Ben That's right - Microsoft now has not one but two (count 'em - TWO) open source Read More...
Posted 17 October 07 10:36 by Robert_Hensing | 1 Comments   
Apple to release Vista soon
http://www.apple.com/macosx/features/300.html#security Looking through the feature set . . . lets see: We've had tagging of applications downloaded from the Internet since like XPSP2 (attachment manager api). We've had the ability to sign applications Read More...
Posted 16 October 07 12:28 by Robert_Hensing | 2 Comments   
Unbreakable - good Lord . . .
http://news.yahoo.com/s/pcworld/20071015/tc_pcworld/138431 27 database vulns - 5 of which are remote anonymous (i.e. Critical). When was the last time SQL had a remote anonymous / critical? Is *anyone* keeping a running list of CVEs for Oracle so we can Read More...
Posted 16 October 07 10:39 by Robert_Hensing | 0 Comments   
Cracking the iPhone (or - those who do not learn from the past, are doomed to repeat it)
H.D. is just totally pwning the iPhone. He's got a two part series that covers using a LibTiff vuln to get shellcode running in say Safari which runs as root. http://blog.metasploit.com/2007/10/cracking-iphone-part-1.html http://blog.metasploit.com/2007/10/cracking-iphone-part-2.html Read More...
Posted 16 October 07 10:17 by Robert_Hensing | 3 Comments   
Russian Business Network
I've attended a number of briefings on the RBN in recent months and there is actually quite a lot of information in the hands of cluefull researchers about who is behind this shadowy organization. Much of that information has been kept private and then Read More...
Posted 14 October 07 09:37 by Robert_Hensing | 0 Comments   
Yes Virginia, they really are out to get you . . . (Spear phishing for fun and profit)
Not content to let the Chinese dominate the attachment based espionage game . . . it looks like the Russians are finally getting in on the act: http://www.first.org/newsroom/globalsecurity/157668.html I think it's pretty awesome that MessageLabs has the Read More...
Posted 07 October 07 10:09 by Robert_Hensing | 1 Comments   
Vista updates
Install these updates: http://www.infoworld.com/article/07/10/03/Microsoft-updates-Vista-speed-and-stability-again_1.html Don't ask questions. :) The article above doesn't have the downloads URLs but here's a tip: You can sort the download web site by Read More...
Posted 04 October 07 10:24 by Robert_Hensing | 1 Comments   
Bluehat - favorite quote && H.D., Metasploit and the iPhone
http://www.infoworld.com/article/07/10/02/Security-researchers-look-beyond-Vista_1.html Halvar : One well-known researcher who goes by the name Halvar Flake called Vista "arguably the most secure closed-source OS available on the market," in a blog post Read More...
Posted 03 October 07 10:23 by Robert_Hensing | 0 Comments   
Zune 2 and the battle for your digital entertainment lifestyle
UPDATED (New links, more things I like) UPDATED (Again, now with a video of the Zunes and Zune software in action) So the Zune2 IMHO is hugely important for us. Apple seemed to have opened a big ole can of whoop-ass on us a few weeks ago with their new Read More...
Posted 02 October 07 11:06 by Robert_Hensing | 0 Comments   
Another one bites the dust . . .
Bot-herder - indicted: http://www.usdoj.gov/usao/cae/press_releases/docs/2007/10-01-07KingIndictment.pdf This may be a very small dent . . . but it's a start. :) Read More...
Posted 02 October 07 01:43 by Robert_Hensing | 0 Comments   
A.D.D.
I think I have A.D.D. . . . I haven't like . . . been to a doctor about it - but from doing some research - I can tell I have it based on what I saw here: http://www.movieweb.com/video/V07F29lmopCJUY Oh CRAP! I should be working . . . Read More...
Posted 02 October 07 01:28 by Robert_Hensing | 0 Comments   
Darth Apple and the iPhone?
Interesting blog from my friend Adam Shostack here: http://www.emergentchaos.com/archives/2007/10/apples_update_strategy_is_1.html He takes a look at the Apple iPhone Security Update <--> Bricked Device issue. Basically if you want 10 security updates Read More...
Posted 02 October 07 09:48 by Robert_Hensing | 1 Comments   
Halo - the future of gaming?
Okay - this is hilarious in an EPIC 2014 sort of way: http://www.loadingreadyrun.com/videos/view/228 The keyboard I type with even makes a cameo appearance at the end of the video - although I have nothing to do with its masterful creation (no really!) Read More...
Posted 01 October 07 03:04 by Robert_Hensing | 2 Comments   

Search

This Blog

Tags

No tags have been created or used yet.

Syndication

Page view tracker