http://blogs.securiteam.com Thoughts about the world of security Sat, 13 Mar 2010 09:41:44 +0000 http://backend.userland.com/rss092 en This post is a followup on my previous post on KISS shellcoding and exploitation. Like before this is part of the job I do for SecuriTeam’s SSD. Those that are not aware of the project its aim is to give researchers compensation for their researcher efforts, compensation of course being ... http://blogs.securiteam.com/index.php/archives/1348 Lets start with the proper disclosure; we provide a Web Site Security Seal service which competes with ControlScan's. That said, I'm not about to bash ControlScan but rather the poor practices of security seal companies giving out seals to whoever pays them without the proper security checks. Some background: The FTC ... http://blogs.securiteam.com/index.php/archives/1349 The buzz was on about google buzz sharing your list of contacts (which they then quickly fixed in their casual we-did-nothing-wrong-these-are-not-the-droids-you're-looking-for mind trick). Readers of this blog remember when google calendar let you see the full name behind every gmail address. At that time, google ignored, then decided there's nothing wrong ... http://blogs.securiteam.com/index.php/archives/1347 Absent those who have gone gaga over the iPad, the top news for the past two weeks has been the earthquake and disaster in Haiti.  The concern, the outpourings of support (and, yes, the malware and phishing sites that have been attempting to capitalize on the crisis) are all reminiscent ... http://blogs.securiteam.com/index.php/archives/1346 I know, there ain't no such thing! Well, we could have a lively debate on that topic, but not right now. On this occasion, I'm just letting anyone who wonders what happened to the Mac Virus web site (http://www.macvirus.com), which I inherited from Susan Lesch some years ago, what's happening ... http://blogs.securiteam.com/index.php/archives/1345 So, let me get this straight, MS was informed about this vulnerability by a security researcher (Meron Sellen) last August, and it's sat in the Microsoft Security Response Center's queue to be fixed until Google got hacked, and then they checked their queue to see if they knew about it? Even ... http://blogs.securiteam.com/index.php/archives/1344 Okay, so a few days ago I found a ton of XSS vulnerabilities on various high profile web sites, and on the whole, after eventually managing to contact the relevant teams for the sites, everyone was very grateful. When will web sites owners learn that it's a good idea to have ... http://blogs.securiteam.com/index.php/archives/1343 My wish for 2010: I want this guide to be taught in CS classes to developers everywhere: http://vrt-sourcefire.blogspot.com/2009/12/matts-guide-to-vendor-response.html Happy new year everybody. http://blogs.securiteam.com/index.php/archives/1342 Rev. 6:6, OCD [1] "Then it was as if I heard a voice saying: And they shalt go into the storehouses, and look there for the snack foods made from corn [2] which the hands of men have made into hollow cones or cornets [3].  And they shall go unto the ... http://blogs.securiteam.com/index.php/archives/1341 Well, what more can I say really, good old Adobe have decided that it's better to hold off on this patch, then to have people working around the clock to try and get this out asap. I suppose they also need to have some time off, after all it is ... http://blogs.securiteam.com/index.php/archives/1340 SecuriTeam Blogs contains several FAQ documents about MS Office vulnerabilities used in targeted attacks since 2006. This time I'm not writing a FAQ. This document has answers to What this means type questions. What an organization can make to protect? ... http://blogs.securiteam.com/index.php/archives/1339 Just reading through Twitter and I saw this from HDM, and thought I'd share "Adobe PDF 0.9-day added to Metasploit: [msf> use exploit/windows/fileformat/adobe_media_newplayer.rb] (via jduck/pusscat/myself) SVN r7881" Night All... http://blogs.securiteam.com/index.php/archives/1338 In this blog i will talk about anything and everything to do with vulnerability exploitation. This is part of the job I do for SecuriTeam's SSD. Those that are not aware of the project its aim is to give researchers compensation for their researcher efforts, compensation of course being money ... http://blogs.securiteam.com/index.php/archives/1329 Well, we all use the common hacking tools of the trade like Nmap. Some of us use it on Windows and some on Linux. This post is for the people using it on Windows. I was connected to a network remotely through the company's F5 VPN appliance and I wanted to ... http://blogs.securiteam.com/index.php/archives/1337 I was in another day of jumping from a client to a client, securing another bank in Israel when my girlfriend called and said "Honey, I am at the office, I have absolutely nothing to do and I can't connect from here to our computer at home to continue my ... http://blogs.securiteam.com/index.php/archives/1336 As for any large product, Microsoft Windows operating system is built on its previous versions code. Some of this code even goes back until Microsoft Windows 98. In Windows 98 a new look was introduced called "WebView" which included the way folders are displayed and the way the desktop is displayed ... http://blogs.securiteam.com/index.php/archives/1335