ZDNet Definition for: US-CERT

Additional Resources

Firefox + NoScript vs Clickjacking

Firefox + NoScript vs Clickjacking"near impossible to fix properly"That sounds very promising to those who want to build online apps on top of HTML. NOT.RE: Firefox NoScript vs ClickjackingIf the "noscript" plugin might help prevent some exploits, what about the script-defeating mechanism in WebWasher Classic (a free program...

Tags: Web browsers, Chrome, US-CERT, domain, NoScript, Clickjacking, Mozilla Firefox

Discussion threads 2008-09-25

Are certifications worth the money?

Are certifications worth the money?agreedI've been working in IT for over 10 years, professionally, which spawned from my early love of computers. I have to agree that in many cases you'll find hands on experience will trump a degree or cert. I've been hired over degree and cert holders a...

Tags: Quality, training and certification, Project Management certification, certification

Discussion threads 2008-09-22

Google downplays Chrome's carpet-bombing flaw

Google downplays Chrome's carpet-bombing flawGreatAnother company that doesn't understand blended threats when it's pointed out to them. Even worse with them responsible for Web 2.0 stuff that's a great set of vectors for attacks.RE: Google downplays Chrome's carpet-bombing flawOh the ignorance at Google never fails to amaze me. They...

Tags: Web browsers, SECURITY, ActiveX/COM/COM+/DCOM, Google Inc., Chrome, Microsoft Internet Explorer 5.01, carpet-bombing flaw, Microsoft Internet, Microsoft Internet Explorer, Microsoft Corp.

Discussion threads 2008-09-16

Google closes hole in Single Sign-On service

Google has fixed an implementation flaw in the single sign-on service that powers Google Apps follow a warning from researchers that remote attackers can exploit a hole to access Google accounts. The vulnerability, described in this white paper (.pdf), affects the SAML Single Sign-On Service for Google...

Tags: Google Inc., Single Sign-on, Authentication/Encryption, Security, Ryan Naraine

Blog posts 2008-09-10

Demo Facebook app creates DoS botnet

Demo Facebook app creates DoS botnetLike Facebook, MySpace Cares?Cost to much to do it the right way.They might have to hire real systems management and security staff.RE: Demo Facebook app creates DoS botnetSod the DoS - look at the cute little picture of the chick!! So cute! I WANT ONE!I...

Tags: Web site development, Web technology, SECURITY, Facebook, botnet, DoS botnet, DOS

Discussion threads 2008-09-05

Linux under attack: Compromised SSH keys lead to rootkit

The U.S. Computer Emergency Readiness Team CERT has issued a warning for what it calls "active attacks" against Linux-based computing infrastructures using compromised SSH keys. The attack appears to initially use stolen SSH keys to gain access to a system, and then uses local kernel exploits to...

Tags: Linux, SSH, Attack, U.S. Computer Emergency Readiness Team, Rootkits, Security, Spyware, Adware & Malware, Ryan Naraine

Blog posts 2008-08-26

Exploit code published for Apache Tomcat flaw

The United States Computer Emergency Response Team (US-CERT) has raised an alarm for a serious vulnerability in Apache Tomcat, warning that a proof-of-concept exploit is publicly available. The code, posted to Milw0rm.com, exploits a directory traversal vulnerability vulnerability in the way Apache Tomcat handles malformed requests. ...

Tags: HTTP, XSS, Apache Software Foundation, Exploit Code, Apache Tomcat, Flaw, Open Source, Application Servers, Middleware, Enterprise Software, Software, Ryan Naraine

Blog posts 2008-08-21

Marc Canter: The master of multimedia speaks

Marc Canter: The master of multimedia speaksmaster of multimedia speaksReally a massive power of this, i really appreciate that their way of working as i see them like in a real exams of performing.

Tags: multimedia, Marc Canter, Marc

Discussion threads 2008-08-20

Measuring (not so) recent BIND nameserver patching

Guest editorial by Derek Callaway This post is meant to provide an approximation of BIND nameserver updates that occurred during the past month, most likely in response to Dan Kaminsky's DNS cache poisoning vulnerability. I conducted this research because I was curious as to how widely BIND...

Tags: Vulnerability, BIND, Domain, Dinosaur, Domain Names, Internet, Ryan Naraine

Blog posts 2008-08-14

Georgia cyberattacks just 'enthusiasts'?

Gadi Evron, former head of Israel's CERT, says the evidence in the attacks on Georgia's government websites points to "enthusiasts" not the Russian government. "Not all fighting is warfare," he says. While Georgia is obviously under a DDoS attacks and it is political in nature,...

Tags: Cyberattack, Georgia, Government, Hacking, Security, Internet, Richard Koman

Blog posts 2008-08-13

Code execution hole in Webex meeting manager

The U.S. Computer Emergency Response Team CERT has raised an alert for a critical ActiveX control vulnerability affecting the Webex Meeting Manager software. The flaw, discovered by researcher Elazar Broad and rated "highly critical" by Secunia, is confirmed in version 20.2008.2601.4928. Other versions may also be affected....

Tags: WebEx Communications Inc., Vulnerability, US-CERT, Ryan Naraine

Blog posts 2008-08-11

Evolution is punctuated equilibria

Guest editorial by Dino Dai Zovi In evolutionary biology, the theory of punctuated equilibiria states that evolution is not a gradual process but instead consists of long periods of stasis interrupted by rapid, catastrophic change.  This is supported by fossil evidence that shows...

Tags: Vulnerability, Exploit, Internet Security, Internet Security Community, Internet, Security, Ryan Naraine

Blog posts 2008-07-30

IT as whiners: The great debate

Over at TechRepublic, Patrick Gray has managed to rouse a hornet's nest of IT managers. What did Mr. Gray say wrong? He called IT folks a bunch of whiners. In his first post, Gray told folks to stop whining and noted that technology types have an image...

Tags: Certification, Information Technology, Patrick Gray, Business Alignment, Strategy, Quality, Management, Business Operations, Larry Dignan

Blog posts 2008-07-29

DNS cache poisoning attacks exploited in the wild

DNS cache poisoning attacks exploited in the wildMy W2k server and SuSE 10.2...server were easily patched through their respective automatic updates. The patching was so easy that anyone running a DNS server that hasn't patched already is an idiot.Is https still safe?I'm imagining that https connections are still safe. In...

Tags: Domain names, NETWORKING, Referral URL, Server-name, Whois, DNS, Whois Server, IP address, DNS cache poisoning attack, IP

Discussion threads 2008-07-29

How OpenDNS, PowerDNS and MaraDNS remained unaffected by the DNS cache poisoning vulnerability

The short answer is being paranoid about tackling a known vulnerability. It's 2001, and Daniel J. Bernstein DJB, author of the then popular djbdns security-aware DNS implementation, is applying basic math principles to raise awareness on what's to turn into the "sky is falling" critical Internet vulnerability in 2008, in...

Tags: DNS, Vulnerability, Anomaly, Attack, OpenDNS, MaraDNS, NSS, Domain Names, Networking, Internet, Dancho Danchev

Blog posts 2008-07-25

Kaminsky suggests long-term fix will still have to be determined, but patch now, or pay soon

I listened to the Black Hat webcast today to grab as much info as I could on this subject. The biggest thing that I heard from the whole talk is that the patch fixes things to a reasonable point, but that long-term, there will have to be more work...

Tags: CERT, DNS Server, Server, Kaminsky, Dan, Patches, Domain Names, Security, Internet, Nathan McFeters

Blog posts 2008-07-24

|)ruid and HD Moore release part 2 of DNS exploit

|)ruid and HD Moore release part 2 of DNS exploitSo, Linux's BIND the first to be exploited...So, Linux's BIND the first to be exploited...Nice work!CoolNate, nice post and analysis!Wasn't the replacing the ns.victim.com cache entry part of the Halvar Flake speculation? I thought first part of the exploit was to...

Tags: Domain names, NETWORKING, Operating systems, Alecco, DNS, ruid, exploit, HD Moore, Linux

Discussion threads 2008-07-24

75ò0of online banking sites found vulnerable to security design flaws

75ò0of online banking sites found vulnerable to security design flawsJust 75%?I would think it is much more likely to be 100% is vulnerable to SOME issue, 90% is vulnerable to a High-risk issue.-NateRE: 75�0of online banking sites found vulnerable to security design flawsThey fail to say which banks are at...

Tags: Banking, E-business/E-commerce, online banking site, online banking, security, flaw, bank

Discussion threads 2008-07-23

Dan Kaminsky breaks DNS, massive multi-vendor patch coming, details at Black Hat Vegas '08

It would seem there's a bigger story to that MS08-037 flaw that came out for Patch Tuesday today. From Dave Lewis over at the Liquid Matrix security blog: Today Dan Kaminsky released a first, as far as I can recall. A coordinated patch was released today...

Tags: Black Hat, DNS, CERT, Flaw, Mogull, Updates, Domain Names, Networking, Security, Internet, Nathan McFeters

Blog posts 2008-07-08

Microsoft warns of "active, targeted" ActiveX control attacks

Microsoft has issued a pre-patch security advisory to warn about "active, targeted attacks" against an ActiveX control for the  Snapshot Viewer for Microsoft Access. The skinny: An attacker could exploit the vulnerability by constructing a specially crafted Web page. When a user views the Web page,...

Tags: Vulnerability, ActiveX Control, Microsoft Corp., Attack, ActiveX/COM/COM+/DCOM, Microsoft Office, Security, Software Development, Software/Web Development, Office Suites, Software, Ryan Naraine

Blog posts 2008-07-07