Dark, Dank & Dangerous

< IT News < IT Info < To the Cloud! <
TwitterFacebook
Get flash to fully experience Pearltrees
http://www.gartner.com/technology/reprints.do?id=1-18ZH7OG&ct=120126&st=sg

Magic Quadrant for Endpoint Protection Platforms

Market Definition/Description (This document was revised on 18 January 2012. The document you are viewing is the corrected version. For more information, see the Corrections page on gartner.com.) Despite the introduction of new players, the displacement of incumbents is still a significant challenge in the large-enterprise market. The biggest impact of the Magic Quadrant Challengers and Visionaries is to push the dominant market players into investing in new features and functionality (sometimes via acquisitions), and to keep pricing rational.

Poisoning The Data Well - Dark Reading

This week Forrester Research released a new report written by analyst John Kindervag called "Killing Data," which claims that security professionals don't do enough to make data stores undesirable to thieves looking to fence that information on the black market. "Control placement is often flawed and security pros frequently leave toxic data, data associated with legal or compliance mandates, and certain types of intellectual property unprotected and vulnerable. Traditionally, security pros have not stored email addresses in an encrypted format — because they don’t view them as toxic or sensitive data," the report read. "In order to properly protect data, security professionals must put a value on it based on how much the data is worth on the open market." Dark Reading spoke to Kindervag to expand on the ideas that drove him to write the report and to discuss the importance of encryption in today's threat environment. http://www.darkreading.com/database-security/167901020/security/news/232600104/poisoning-the-data-well.html

Sucuri - Protect Your Interwebs

http://blog.sucuri.net/ We have been tracking an interesting malware that is affecting thousands of compromised sites.
F-35B test aircraft BF-3 flies with weapons bay doors open in March 2012. Photo: Lockheed http://www.wired.com/dangerroom/

Danger Room

http://www.darkreading.com/advanced-threats/167901091/security/vulnerabilities/231300240/wardriving-evolves-into-warflying.html BLACK HAT USA 2011 -- Las Vegas -- Yesterday at Black Hat, two security researchers demonstrated how a radio-controlled model airplane outfitted with a computer and 4G connectivity could be used to create a nearly undetectable aerial hacking device that could perpetrate aerial attacks on targets otherwise unreachable by land. Created completely with off-the-shelf equipment and open-source software -- and with a budget of only about $6,100 -- the demo plane they brought on stage with them was capable of wireless network sniffing and cracking, cell tower spoofing, cell phone tracking and call interception, data exfiltration, and video surveillance. "There is some really evil stuff you can do from the sky," said Mike Tassey, who together with Richard Perkins spent more than 1,300 hours building, testing, and refining the device they call the Wireless Aerial Surveillance Platform (WASP).

Wardriving Evolves Into Warflying - Dark Reading

http://nakedsecurity.sophos.com/ Bishop claims the Bible can help with password security Scarlett Johansson hacker pleads guilty - faces up to 60 years in jail LulzSec Reborn claims responsibility for military dating site hack, accounts exposed

Naked Security | News. Opinion. Advice. Research

Over a million web sites affected in mass SQL injection attack | ZDNet

http://www.zdnet.com/blog/security/over-a-million-web-sites-affected-in-mass-sql-injection-attack/9662 For future reference, it's NotScripts, or some equivalent, on Chrome (and its variants). I stopped using Firefox a long time ago. I have been using a variant and most extensions hit a brick wall. Even if I did use a stock version, I wouldn't trust it.