September 8, 2010 - Google just released its brand new search technology labeled "Google Instant," which works by dynamically accelerating search results as you type into the Google search box. Google Instant essentially predicts what users will type and rapidly makes suggestions on which Read more
September 8, 2010 - A new critical 0-day vulnerability has been discovered in the wild for the latest version of Adobe Reader 9.3.4. Adobe has published an advisory and notes that all Operating Systems Read more
September 8, 2010 - The last two days have been pretty busy. I have been analyzing the latest Adobe vulnerability. It all began when HD alerted me to a post on Mila Parkour's "contagio malware dump" blog. After giving the blog post Read more
September 8, 2010 - Just after Adobe released their Out of Band patch for CVE-2010-2862, We discovered a malware exploiting a new 0-day vulnerability in the wild. Similar to the iOS PDF jailbreak vulnerability and CVE-2010-2862, this 0day vulnerability also occurs while Adobe Reader Read more
September 8, 2010 - What is “social engineering?” A simple working definition that I like is, “to induce an individual to take an action in which they otherwise would not engage.” This begs a second question, “What does this have to do with business?” Read more
September 8, 2010 - I just came across a must read for everyone. (Cyber Son #1 came across this great article, BTW) It is called The Usability of Passwords. What I like is that it very thoroughly breaks down what people generally Read more
September 8, 2010 - As noted in our July blog post “Adjust Your Defense to the Changing Threat Vector,” third party applications now pose the greatest risk to network security. Simply turning on WSUS and patching the underlying OS and Microsoft applications leaves Read more
September 8, 2010 - In the malware mitigation market, there are divisions among the vendors. The perspective of the vendor, detection philosophy and technology approaches are examples of the vendors’ different views. Most legacy network security devices have developed some semblance of controls to Read more
September 8, 2010 - A website advertising a “webcam hacking program” has been doing the rounds on a number of adverts lately so I thought it might be worth taking a look. Anyone foolish enough to try this out can look forward to a Read more
September 8, 2010 - Welcome to the Tenable Network Security Podcast - Episode 49AnnouncementsRon, Marcus, and Renaud present the San Francisco Security Showcase on September 15, 2010! This is a free event that will feature topics such as a Nessus Read more
September 7, 2010 - A heat wave has hit Russia hard. It has gotten worse and has led to forest fires. Extremely high temperatures across western Russia have reached 35 degrees Celsius (95 degrees Fahrenheit), causing death and creating the worst drought since 1972. Read more
September 7, 2010 - There have been many articles written about scammers who pose as representatives of government agencies. But perhaps the most inventive are the scams that appear to originate from the IRS. It makes perfect sense for the IRS to reach out Read more
September 7, 2010 - Alert blog reader Marco F. sent us this one: Gmail account phishing. The email has all the clean look of Google’s communication style. Read more
September 7, 2010 - As a CIO or CISO, you’re constantly reminded that your job is to reduce costs, improve security and achieve compliance. And, if you’re like the many IT leaders I’ve worked with, I wouldn’t be surprised if you said you felt Read more
September 7, 2010 - Based on customer demand, Tenable Network Security is introducing two new license types for the Passive Vulnerability Scanner. These are: Unlimited PVS sensor deployments within a Class B Unlimited PVS sensor deployments within a Class CTenable will continue to offer an unlimited network monitoring license for a Read more
September 7, 2010 - The survey spam worm that spread across Facebook yesterday was posted to profile Walls "via Mobile Web".In here the lab, we're always interested in all things mobile, so we took another look at All Facebook's Read more
September 7, 2010 - A clever spammer has discovered a Facebook vulnerability that allows for auto-replicating links. Until now, typical Facebook spam has required the use of some social engineering to spread.But clicking on any of these application spam links Read more
September 7, 2010 - In today's episode of What Can You Find On the Web, we give you an online store for purchasing fake passports that we ran into.Prices of these range from $650 to $1000. They don't seem to Read more
September 7, 2010 - Twitter discontinued support for basic user authentication in third-party applications yesterday morning.Good. It's always best to never share your password with a third-party. Even if you trust them, their database could be compromised, and your Read more
