Guarding the guardians: A story of PGP key ring theft

Thursday, March 27th, 2008

A couple of weeks ago, we received a CHM, or Windows Help file, embedded in e-mail as part of a targeted attack campaign against an NGO. Virus detection was near zero. On Virustotal.com, two solutions actually flagged it as malicious. After decompiling the CHM file, which you can easily do using tools ...

Firefox update fixes critical security vulnerabilities

Wednesday, March 26th, 2008

The Mozilla project is distributing version 2.0.0.13 of its popular open source Firefox browser. This release fixes several critical vulnerabilities which could be exploited by attackers to inject malicious code or fake page content. The browser's JavaScript engine contains several of the security vulnerabilities. Due to incorrect processing, attackers can execute ...

Wi-Fu! Attacking the 802.11 Client

Monday, March 17th, 2008

Wi-Fu! More than just a statement, it reflects you wireless security skill set from knowledge and practical experience. This covers everything from using the tools out there to profile and attack your wireless network, to checking the security of your client devices yourself. If you feel your Wi-Foo is slipping, ...

Is this website down for everyone or is it just you?

Saturday, March 15th, 2008

Have you ever tried to visit a web page only to get the dreaded 404 error or another message, even though the site was working just fine an hour ago? You might be trying to determine if your favorite software and technology blog has crashed due to billions of page ...

OpenDNS

Saturday, March 8th, 2008

I've been meaning to play with OpenDNS for months now but never got around to it until today. And so far, I really like it. You can check OpenDNS out here: http://www.opendns.com/ Completely free. This is a fantastic service. You can use the simple method by just pointing your DNS entries to ...