Yes, Virginia, There is Cyberwar
DEAR EDITOR: I have been in security for 8 years. Some of my friends say there is no such thing as cyberwar. My manager says, "If you see it on the VRT Blog then it's so" Please tell me the truth; is there cyberwar? Virginia O'Hanlon. 115 West Ninety-Fifth
Rule Release for Today, Thursday July 1st, 2010
Remote code execution in Adobe Acrobat and Reader. Some folks are claiming it's a denial of service, heh, right. RCE is possible, get your rules here: http://www.snort.org/vrt/advisories/2010/07/01/vrt-rules-2010-07-01.html/
Rule Release for Today, Tuesday June 29th, 2010
We added and modified multiple rules in the backdoor, dos, exploit, misc, multimedia, netbios, oracle, pop3, rpc, specific-threats, web-activex, web-client and web-misc rule sets . Information is here: http://www.snort.org/vrt/advisories/2010/06/29/vrt-rules-2010-06-29.html/
IMPORTANT Rule Download Change
Today the Snort Web Team made a change to the way that Snort rules are downloaded from snort.org. Hopefully this will result in faster downloads for most people. The changes are highlighted below: We are changing the way we publish rules. In June 2010 we stopped offering rules i
Smart Grids and the Importance of Smart Security Choices
I got a flyer in my mail a couple of days ago, telling me that my local utility company would be coming out soon to install a smart meter on my house. Like most customers, I didn't think too much about it, until the new meter was installed today. That's when my curiosity
ClamAV for Windows
Recently, we released the only official Windows-specific version of ClamAV, appropriately called ClamAV for Windows (http://www.clamav.net/lang/en/about/win32/). It is designed to use little memory and processing speed because it uses an advanced cloud-based protection mechanism,
Defenders of the Faith
Quite recently, Tavis Ormandy released a 0-day vulnerability in a prominent piece of software. For this transgression, both he and his employer received a good deal of bad press. Sadly, very few in the professional security researcher crowd made enough noise about this, and to th
Rule Release for Today - June 17th, 2010
As a result of ongoing research, the Sourcefire VRT has added multiple rules in the dos, exploit, ftp, mysql, policy, rpc, specific-threats, spyware-put, web-activex, web-client, web-misc and web-php rule sets to provide coverage for emerging threats from these technologies. For
National Cyber-Security Emergency and Phenomenal Cosmic Power or Lieberman -- EARN IT
So…you’re at the bar and across the room you see this incredible [insert whatever floats your boat here].You spend an inappropriate amount of your time watching this person and your mind starts to fill in the details that the dark environment masks. Then they turn around walk to