jameso@elwood.net
January 30, 2010
DOGHOUSE | Why I Don’t Check Voicemail Anymore

DOGHOUSE | Why I Don’t Check Voicemail Anymore

Comments (View)
January 26, 2010
The most significant discovery is that the attackers had selected employees at the companies with access to proprietary data, then learnt who their friends were. The hackers compromised the social network accounts of those friends, hoping to enhance the probability that their final targets would click on the links they sent.
FT.com print article
Comments (View)
January 25, 2010

Numb3rs’ description of IRC: This is EXACTLY how it is to do an Cyber Investigation. I can’t believe they got this so right. Amazing research they do for TV shows now.

Comments (View)
January 24, 2010
How many of these large security product vendors employ even one full-time person to play the role of a dedicated attacker attempting to bypass or defeat their defensive systems? Or have even hired one attack-oriented consultant on a contract for an independent assessment of the efficacy of their product or solution? Don’t let the same product vendors who failed to protect the victims of Operation Aurora turn right around and sell you those same products as a solution to “the APT threat.
One Exploit Should Not Ruin Your Day
Comments (View)
January 21, 2010

Gil Scott Heron - Home Is Where The Hatred Is

Comments (View)
January 16, 2010
Wepawet is a service for detecting and analyzing web-based malware. It currently handles Flash, JavaScript, and PDF files.
Wepawet » Home
Comments (View)
January 15, 2010
Yesterday, a copy of the unpatched Internet Explorer exploit used in the Aurora attacks was uploaded to Wepawet. Since the code is now public, we ported this to a Metasploit module in order to provide a safe way to test your workarounds and mitigation efforts.
Metasploit: Reproducing the “Aurora” IE Exploit
Comments (View)
January 14, 2010
Google Hack Attack Was Ultra Sophisticated, New Details Show

This is how Nation States Pwn

Comments (View)
It’s always struck me as faintly ludicrous anyway for a part of the industry that depends on people sitting there looking at the internet all day long to have a chance of finding something new. See that thing over there I wrote about that got a ton of press for my company? While I was finding / writing about it, your guy that *would* have found it was in his car driving to work, or walking up three sets of stairs or talking to some guy by the vending machine while waiting for free donut day.
Information Security D-List Interview: Chris Boyd
Comments (View)
January 12, 2010
Like many other well-known organizations, we face cyber attacks of varying degrees on a regular basis. In mid-December, we detected a highly sophisticated and targeted attack on our corporate infrastructure originating from China that resulted in the theft of intellectual property from Google. However, it soon became clear that what at first appeared to be solely a security incident—albeit a significant one—was something quite different.
Official Google Blog: A new approach to China
Comments (View)
Super Bad, Super Cool
Comments (View)
January 11, 2010
Fighting Terror with Uncertainty
Comments (View)
January 7, 2010
xkcd - A webcomic of romance, sarcasm, math, and language - By Randall Munroe

xkcd - A webcomic of romance, sarcasm, math, and language - By Randall Munroe

Comments (View)
January 5, 2010
WinDbg shortcuts: lmu and lmk
Comments (View)
January 2, 2010
http://juliasegal.tumblr.com/post/310011761

http://juliasegal.tumblr.com/post/310011761

Comments (View)
1 of 85
This theme was created by Peter Vidani. It's called Secret Lab.
Standing on Tumblr