In this Episode Aaron and Tim interview Michael Santarcangelo The Security Catalyst Securitycatalyst.com, author http://www.intothebreach.com/. We have a few copies of the book to give away. I will be announcing how to win one of my copies shortly.
Interview MP3
– Tim Krabec
Posted under Podcasts
This post was written by tkrabec on October 27, 2008
Here is a collection of information in a nice write up for technical and non-technical people. This was a group effort from many people in the security community.
http://docs.google.com/Presentation?id=dghttrwg_26c47c5xcx
– Admin
Posted under Information/Advisories
This post was written by admin on October 24, 2008
Today 8-23-08 Microsoft released an out of cycle patch to fix a problem in their implementation of RPC(Remote Procedure Call). This flaw is reported to be very exploitable, and there is talk of “weaponizing” this to produce a worm. This flaw has the potential to rival the Blaster worm which exploited a similar problem back in 2003. Whether or not a worm is developed, this flaw will be exploited, and used for Penetration testing, and smaller scale directed attacks on individual companies and unpatched machines.
What does this mean to you as a Business owner or employee? It means that you should take steps to get your systems patched, quickly. You should probably aim to have this done with in a week, possibly push it to November 1st or 2nd to check that patch does not negatively affect your systems.
Here is a link to the microsoft advisory http://www.microsoft.com/technet/security/Bulletin/MS08-067.mspx
Update
This affects Most versions of windows, and is available on windows update.
– Admin
![Reblog this post [with Zemanta]](http://img.zemanta.com/reblog_a.png?x-id=172953ca-bcee-45ed-b64b-e9c10cecdf3d)
Posted under Information/Advisories
This post was written by admin on October 23, 2008
