Some time since I posted here (work, travel. holiday and other excuses) but I hope to have a little more spare time in the future.
I woud like to use this post to raise some awareness on basic incident handling procedures. I learned some time ago at SANS that Incident Handling is a process which consists [...]

While I was looking into writing my own gadget for Vista’s Sidebar to display my Google Reader news, it hit me that Gadgets are really simple web browser applications.
They consist of only 1 XML and 1 HTML file in general and can contain JavaScript, vbscript, wmi scripts,… (everything basically). This should make you think because [...]

With the application vulnerability threat landscape evolving more and more towards 3rd party application exploits (Flash, Adobe, Winamp,….) instead of the classic network worms based on Microsoft Windows exploits, it becomes more and more needed to keep this 3rd party software up to date as well.
In large managed environments this is done by a central [...]

Microsoft just released their monthly patches.
It contains:

one important patch (LSAS, local exploit)
In my opinion, especially important for systems like terminal servers or shared multi-user systems.
one highly critical patch (vulnerability in TCP/IP stack)

The reason why I am writing about this and put the TCP/IP vulnerability in bold is that this is one [...]

MD5 hashes are no longer safe as a hash for signing applications or fingerprinting documents
Short summary of the paper:
It is possible (in a ‘chosen prefix attack scenario) to generate identical MD5 hash values for two functional different binaries.
This has been done before (in 2004) but the main difference here is that the altered binary is [...]

It seems that it is possible to listen to the signal of a fiber cable with a piece of hardware which costs less than $1000.
Organizations where eavesdropping of cables is not an acceptable risk and who have invested in fiber everywhere (instead of EM radiating copper cable) have to make sure that their cabling is [...]

This weekend, I put a Linksys WRT54G at my sister’s apartment to enable her(and her boyfriend) to share the internet connection. No big deal off course but I also thought it would be nice if the router could act as an OpenVPN client so my network and her network would be securely connected through the [...]

When my bank started with online banking a few years ago, the authentication they used was a client certificate protected by a password. From time to time one had to renew the certificate and change the password. Off course, this type of authentication is vulnerable to various phishing attacks.
Last year, [...]

I read an article today about major US ISPs which are signing up for GoodMail.
Goodmail offers CertifiedEmail which according to their website does the following:
The Certified Email™ Solution
What is CertifiedEmail?
CertifiedEmail is a premium delivery option for qualifying senders that positively affects email marketing metrics. Once you have been accepted into the program, your marketing and [...]

For the ones who did not read Max Moser’s paper about converting a cheap USB bluetooth dongle into a full blown bluetooth sniffer, the code 0xa12:0×0001is the devide ID for the cheap CSR based bluetooth device which Max used to do the conversion.
The reason why I am so happy with this code is that [...]