SecurityThreats

Due to the bad password practices of the general population, the latest example is the Sony Pictures hack uncovering the passwords of Sony Pictures employees(as well as SSN and more):     As in our previous post where  we discussed the hack. Now various forums are picking apart the very bad password practices of Sony Pictures … Read more

How can you tell if malware is in your network? As the PCRE post at Internet Storm Center says: You can check your logfiles for certain signatures using “Perl Compatible Regular Expressions” (PCRE) Perl is a scripting programming language perl.com gets into some of it’s details. Of course that assumes you have a proxy server and … Read more

Mitre has a nice article on how thin client technology with Secure Remote Peripheral Encryption Tunnels (SeRPEnT). Their image shows how a thin client can have a trusted connection to the server and thus have a trusted connection to the server.     The article pushes thin clients and as we all know thin clients can … Read more

Windows administrators were sitting back and watching the Shellshock CVE (Common Vulnerabilities Exposures) fireworks CVE-2014-6277 and CVE-2014-6278 Now that we(Security IT community) are thinking Shellshock …  Does windows have a problem as well? First of all let’s define “Shellcode” – as in Projectshellcode.com   Shellcode is when one can create a “shell” from the attacked machine and … Read more

it looks like www.oversitesentry got probed yesterday over 46506 hits. (normal is in the thousands or hundreds, not tens of thousands.  and it all originated from ‘tryal.ru’ I suspect it is a malware intrusion attempt, or a serious probe for passwords or something. I check my logs regularly, so I noticed this was very unusual not … Read more