Yes, Virginia, There is Cyberwar
DEAR EDITOR: I have been in security for 8 years. Some of my friends say there is no such thing as cyberwar. My manager says, "If you see it on the VRT Blog then it's so" Please tell me the truth; is there cyberwar? Virginia O'Hanlon. 115 West Ninety-Fifth
National Cyber-Security Emergency and Phenomenal Cosmic Power or Lieberman -- EARN IT
So…you’re at the bar and across the room you see this incredible [insert whatever floats your boat here].You spend an inappropriate amount of your time watching this person and your mind starts to fill in the details that the dark environment masks. Then they turn around walk to
A New Detection Framework
We just completed a talk here in Dubai on some detection capability research the VRT has been doing. The subtitle of the presentation, "What would you do with a pointer and a size?" pretty much sums up the potential of the project. It all started last December at the
Matt's Primer for PDF Analysis
For obvious reasons, the VRT has been spending a lot of time on the PDF format lately. While the attack researchers have been concentrating on fuzzing, reverse engineering and data flow analysis, the defense researchers have been automating the backend analysis of PDF submissions
New Mac OSX Module for Snort
Today, the VRT is excited to announce a revolutionary new module for the Snort Intrusion Detection System. The extraordinary capability of Snort to be molded through rules, so_rules, preprocessors and the fact that the entire code base is open gives us unprecedented capability t
The New Disclosure Debate and the Evil Mr. Moore
So, let's pretend you are Rob, Mr. Head of IT, and that you are sitting in your office on March 9th, working on your fantasy baseball (I hear Albert Pujols is the way to go...) when one of your staff walks in and says that Microsoft has another 0-day running around. Internet
APT: Should your panties be in a bunch, and how do you un-bunch them?
There is no more predictable group of people than marketers. Once a term reaches a certain tipping point, they grab onto it for dear life and choke it until it means nothing. Apparently, the Advanced Persistent Threat (APT) hit that point somewhere around December. Despite the te
CyberShockWave
There has been a lot of talk about CNN’s special presentation called “Cyber Shockwave” in the past couple of days. The program was an edited presentation of the 4-hour war games exercise that took place at the Mandarin Oriental Hotel in Washington D.C. Designed by Michael Hayden,
Adobe Responds to Vendor Response Blog Post
Hey folks, Brad Arkin, Director, Product Security & Privacy for Adobe Systems left a note in the comments section of my blog entry on Vendor response (http://vrt-sourcefire.blogspot.com/2009/12/matts-guide-to-vendor-response.html). In that post, I expressed my concern on a nu