Security | Eat It Or Wear It

May 2024
S	M	T	W	T	F	S
	1	2	3	4
5	6	7	8	9	10	11
12	13	14	15	16	17	18
19	20	21	22	23	24	25
26	27	28	29	30	31

That Didn’t Take Long

Posted on December 19, 2011 by Killian Bundy

U.S. troops have been out of Iraq for what, less than a day now?

Iraq issues arrest warrant for vice president Hashemi

Iraq has issued an arrest warrant for Sunni Vice President Tareq al-Hashemi, a senior security official said on Monday, after the government obtained confessions linking him to what the official described as terrorist activities.

Interior Ministry spokesman, Major General Adel Daham, told a news conference that confessions by suspects identified as Hashemi’s bodyguards linked the vice president to suspected killings and attacks.

It’s painfully clear what’s going on here. With the U.S. military now out of the way, the Shia led Iraqi government, backed by Iran, is wasting no time flexing its muscle and settling old scores against the Iraqi Sunni minority. Can you say looming civil war?

/and now we’ve pretty much given up our ability to effectively intervene militarily in Iraq, leaving Iran as the only regional military power capable of “riding to the rescue” of the Iraqi government, who just happen to be Iranian puppets anyway

Filed under: Blog Entry | Tagged: Activities, Adel Daham, Arrest, Arrest Warrant, Assassination, Attacks, Bodyguards, Civil War, Conference, Confessions, Described, Government, Hit Squad, Identified, Interior, Interior Ministry, Interior Ministry Spokesman, Iran, Iraq, Issues, Killings, Linked, Linking, Major General, Majority, Ministry, Minority, News, News Conference, Nouri Al-Maliki, Obtained, Official, Security, Security Official, Senior, Senior Security Official, Shia, Shiite, Spokesman, Sunni, Suspected, Suspects, Tareq al-Hashemi, Terrorist, Terrorist Activities, U.S., U.S. Military, Vice President, Warrant | Leave a comment »

Tuesday Fun With Microsoft

Posted on December 13, 2011 by Killian Bundy

The new patches are here, the new patches are here!

Microsoft Patches 17 Bugs in December Patch Tuesday

Microsoft fixed 17 bugs in the Windows operating system, Microsoft Office, Windows Media Player and Internet Explorer. The fixes also cover a zero-day flaw exploited by the Duqu Trojan.

Microsoft released 13 security bulletins to fix 17 different vulnerabilities as part of its December Patch Tuesday update, according to the advisory released Dec. 8. Three bulletins were marked critical and the remaining 10 were rated important.

Well, it’s a good thing that Microsoft finally patched against the Duqu virus, better late than never, as they say. What are you waiting for? Start installing your gifts!

/at least you can’t say Microsoft didn’t get you anything for the Holidays

Filed under: Blog Entry | Tagged: According, Advisory, BEAST, Browser Exploit Against SSL/TLS, Bugs, Bulletins, Critical, Different, Duqu, Duqu Trojan, Duqu Virus, Exploited, Fixed, Flaw, IE, Important, Internet Explorer, Marked, Media Player, Microsoft, Microsoft Office, Microsoft Patch Tuesday, Office, Operating, Operating System, Patch, Patch Tuesday, Patches, Rated, Released, Security, Security Bulletins, System, Trojan, Tuesday, Update, Virus, Vulnerabilities, Windows, Windows Media Player, Windows Operating System, Zero-Day, Zero-Day Flaw | Leave a comment »

Don’t Get Caught In The Crossfire

Posted on November 3, 2011 by Killian Bundy

The Duqu virus is squarely aimed at Iran’s nuclear program. Unless you’re connected with Iran’s nuclear program, your chances of being directly targeted are extremely low. However, Microsoft was freaked out enough to issue a security bulletin for Windows users. So, better safe than sorry, protect yourself against the possibility of becoming collateral damage in an epic, upcoming attack.

Microsoft issues Duqu virus workaround for Windows

Microsoft has issued a temporary fix to the pernicious Duqu virus — also known as “Son of Stuxnet” — which could affect users of Windows XP, Vista, Windows 7 as well as Windows Server 2008.

The company promised the security update earlier this week as it races to deal with the virus, which targets victims via email with a Microsoft Word attachment. The virus is not in the email, but in the attachment itself. A Symantec researcher said if a user opens the Word document, the attacker could take control of the PC, and nose around in an organization’s network to look for data, and the virus could propagate itself.

Is it just me or doesn’t it seem a bit more than odd that Microsoft, a company with close ties to and a past history of working with U.S. intelligence agencies, would publicly issue a workaround to defend against a specific piece of malware that, by many accounts, is being actively and currently used by U.S. intelligence agencies to set up and facilitate an upcoming attack, in cyberspace or otherwise, against Iran’s nuclear program? I mean, it’s not like the Iranians can’t read English, why help them defend against Duqu? Hmmm, something’s not quite right here.

/whatever’s going on, and something is going on, it’s way above my pay grade, but when the endgame comes, don’t forget to duck

Filed under: Blog Entry | Tagged: 2639658, Advisory, Aimed, Attachment, Attack, Attacker, Bulletin, Collateral Damage, Company, Control, Crossfire, Cyberattack, Data, Document, Duqu, Duqu Virus, Email, Extremely Low, Fix, Freaked Out, Iran, Iranian Nuclear Program, Issued, Issues, Look For, Microsoft, Microsoft Security Advisory, Microsoft Word, Microsoft Word Attachment, Network, Nose Around, Nuclear, Nuclear Program, Opens, Organization, PC, Possibility, Program, Promised, Propagate, Protect, Protect Yourself, Researcher, Security, Security Advisory, Security Bulletin, Security Update, Son Of Stuxnet, Stuxnet, Symantec, Symantec Researcher, Take, Take Control, Targeted, Targets, Temporary, Temporary Fix, Update, Victims, Virus, Vista, Windows, Windows 7, Windows Server 2008, Windows Users, Windows XP, Word Document, Workaround, Yourself | 2 Comments »

Caught Stealing . . . Again

Posted on October 28, 2011 by Killian Bundy

I thought cyberattacks were supposed to considered acts of war, how long are we going to just keep bending over for this threat to national security behavior?

Chinese Hackers Target Chemical Companies

Chinese hackers tried to penetrate the computer systems of 48 chemical and military-related companies in a late summer cyber attack to steal design documents, formulas and manufacturing processes, a security firm reported Tuesday.

The attack ran from late July to mid-September and appeared to be aimed at collecting intellectual property for competitive advantage, reported Symantec, which code-named the attack Nitro, because of the chemical industry targets. Hackers went after 29 chemical companies and 19 other businesses that made advanced materials primarily used in military vehicles.

You know, if we’re not going to treat these attacks as military in nature, which we should, the least we should do is take action against China for violation of international trade agreements, not to mention international law. For all the ‘fraidy cat, nervous Nellies who are so scared of engaging China in a trade war, what do you call these constant corporate espionage cyberattacks?

/China is not our friend

Filed under: Blog Entry | Tagged: Advanced, Advanced Materials, Advantage, Aimed, Attack, Businesses, Chemical, Chemical Companies, Chemical Industry, Chemical Industry Targets, Chinese, Chinese Hackers, Code-Named, Collecting, Companies, Competitive, Competitive Advantage, Computer, Computer Systems, Cyber-Attack, Design, Design Documents, Documents, Firm, Formulas, Hackers, Industry, Intellectual Property, Manufacturing, Manufacturing Processes, Materials, Military, Military Vehicles, Military-Related, Military-Related Companies, Nitro, Penetrate, Penetratet, Primarily, Primarily Used, Processes, Reported, Security, Security Firm, Steal, Summer, Summer Cyber Attack, Symantec, Systems, Target, Targets, Used, Vehicles | Leave a comment »

Tuesday Fun With Microsoft

Posted on October 11, 2011 by Killian Bundy

Windows, the software of perpetual patching. This installment is fairly large.

Microsoft Fixes Internet Explorer, Windows Flaws in October Patch Tuesday

Microsoft fixed 23 vulnerabilities across eight security bulletins as part of its October Patch Tuesday release.

October’s Patch Tuesday release resolved issues in Internet Explorer versions 6 through 9, all versions of Microsoft Windows from XP through 7, .NET and Silverlight, Microsoft Forefront Unified Access Gateway and Host Integration Server, Microsoft said Oct. 11. Two of the patches are rated “critical,” and six are rated “important,” Microsoft said.

So, get busy and happy patching!

/until the next time Microsoft releases patches to make its software suck less . . .

Filed under: Blog Entry | Tagged: .NET, Bulletins, Fixes, Flaws, Host Integration Server, IE6, IE7, IE8, IE9, Important, Internet Explorer, Issues, Microsoft, Microsoft Forefront Unified Access Gateway, Microsoft Patch Tuesday, Microsoft Update, MS11-075, MS11-076, MS11-077, MS11-078, MS11-079, MS11-080, MS11-081, MS11-082, Patch, Patch Tuesday, Patches, Patching, Rated, Release, Security, Security Bulletins, Silverlight, Software, Vulnerabilities, Windows, Windows 7, Windows Vista, Windows XP | Leave a comment »

Open Season On Christians In Egypt

Posted on October 10, 2011 by Killian Bundy

With Mubarak no longer in power to keep the social lid on, Egypt’s Muslim majority is doing what it does best, practicing their religion of peace and tolerance by attacking and killing Christians and burning down their churches.

Christians: Egypt allows attacks

Egypt’s Coptic church blasted authorities Monday for allowing repeated attacks on Christians with impunity as the death toll from a night of rioting rose to 26, most of them Christians staging a peaceful protest in Cairo over an attack on a church.

The spiritual leader of the Coptic Christian minority, Pope Shenouda III, declared three days of mourning, praying and fasting for the victims, starting today. He also presided over funerals for some of the Christians who were killed. Sunday’s sectarian violence was the worst in Egypt since the uprising that ousted President Hosni Mubarak in February.

The clashes Sunday night raged over a large section of downtown Cairo and drew in Christians, Muslims and security forces. The violence began when about 1,000 Christian protesters tried to stage a peaceful sit-in outside the government-run television building along the Nile in downtown Cairo. The protesters said they were attacked with sticks, and the violence then spiraled out of control after a speeding military vehicle jumped onto a sidewalk and hit some of the Christians.

There was no breakdown available of how many Christians and Muslims were among the victims, but the 26 are believed to be mostly Christian. Officials said at least three soldiers were among the dead. Nearly 500 people were injured. Egypt’s official news agency said dozens have been arrested.

Remember, Obama and Hillary Clinton publicly called for Mubarak’s ouster and hailed the Egyptian “revolution” as an exercise in free democracy. Well, how’s that working out?

/also notice that, now that Christians are being killed in the streets and their churches burned down, Obama and Clinton are silent and nowhere to be found regarding the ongoing persecution by Muslims

Filed under: Blog Entry | Tagged: Agency, Allowing, Allows, Attacked, Attacks, Authorities, Available, Barack Obama, Believed, Blasted, Breakdown, Building, Cairo, Christian, Christian Protesters, Christians, Church, Clashes, Coptic, Coptic Christian Minority, Coptic Church, Dead, Death Toll, Downtown, Downtown Cairo, Drew In, Egypt, Fasting, Forces, Funerals, Government, Government-Run, Government-Run Television Building, Hillary Clinton, Hit, Hosni Mubarak, Impunity, Injured, Islam, Jumped, Killed, Large, Large Section, Leader, Majority, Military, Military Vehicle, Minority, Mostly, Mourning, Muslim, Muslim Majority, Muslims, News, News Agency, Nile, Official News Agency, Officials, Ousted, Out Of Control, Outside, Peace, Peaceful, Peaceful Protest, Peaceful Sit-In, People, Pope Shenouda III, Praying, Presided, President, Protest, Protesters, Raged, Religion, Repeated, Repeated Attacks, Rioting, Rose, Sectarian, Sectarian Violence, Section, Security, Security Forces, Sidewalk, Sit-In, Soldiers, Speeding, Speeding Military Vehicle, Spiraled, Spiritual, Spiritual Leader, Stage, Staging, Sticks, Television, Television Building, Tolerance, Tried, Uprising, Vehicle, Victims, Violence, Worst | Leave a comment »

Watching The Drone Watchers

Posted on October 7, 2011 by Killian Bundy

I smell China, or maybe Russia. The fact that the virus keeps resisting efforts to remove it shows that there’s some sophistication involved.

U.S. Military Drones Infected With Mysterious Computer Virus

A fleet of U.S. military drones on a Nevada Air Force base has been infected by a keylogger virus that tracks every key and button their pilots press, Wired.com reported Friday — and top Air Force sources strongly contested.

The virus was first noticed by officials at Creech Air Force Base nearly two weeks ago using the base’s security system. It logged every keystroke of the pilots in the control room on the base as they remotely flew Predator and Reaper drones on missions over Afghanistan and other battle zones.

There has been no confirmation of information being lost or sent to an outside source, but the virus has been resistant to military efforts to clear it from the system.

“We keep wiping it off, and it keeps coming back,” a source told Wired.

Theses computers didn’t just infect themselves, they were almost surely infected by someone, either deliberately or unwittingly, connecting a malware infected memory stick or other portable media storage device to the network. This has been a known attack vector for a long time now and it’s easily preventable, simply don’t allow portable media storage devices anywhere near classified computer networks!

/search all personnel coming and going if that’s what it takes, it’s a small price to pay for avoiding potentially catastrophic security breaches like this

Filed under: Blog Entry | Tagged: Afghanistan, Air Force, Air Force Base, Base, Battle Zones, Button, China, Clear, Coming Back, Computer, Computer Virus, Confirmation, Contested, Control Room, Creech Air Force Base, Drones, Efforts, Fleet, Infected, Information, Key, Keylogger, Keylogger Virus, Keystroke, Logged, Lost, Military, Military Efforts, Missions, Mysterious, Nevada, Nevada Air Force Base, Noticed, Officials, Outside, Outside Source, Pilots, Predator, Predator Drones, Press, Reaper, Reaper Drones, Reported, Resistant, Russia, Security, Security System, Sent, Source, Sources, Strongly, System, Tracks, U.S., U.S. Air Force, U.S. Military, U.S. Military Drones, Virus, Wiping, Wired, Wired.com | Leave a comment »

Do The Microsoft Patch Dance

Posted on August 9, 2011 by Killian Bundy

The dance that never ends.

Microsoft Patch

Microsoft released 13 security bulletins, patching 22 vulnerabilities across its product line, including two critical updates affecting Internet Explorer and the Windows DNS Server.

While Microsoft issued fewer updates this month, August was still marked as a busy month for system administrators. Adobe Systems Inc., which issues fixes on a quarterly cycle, issued a critical security update late Tuesday, repairing seven flaws in its Shockwave Player, more than a dozen holes in its Flash Player and an error in its Flash Media Server.

Microsoft addressed seven vulnerabilities in Internet Explorer including two zero-day flaws. According to MS11-057, Microsoft said an attacker who successfully exploited any of the vulnerabilities could gain the same user rights as the local user. Microsoft said the most severe vulnerabilities could allow remote code execution if a user views a specially crafted Web page using Internet Explorer

. . .

Another noteworthy bulletin is MS11-065, which resolves a vulnerability in the Remote Desktop Protocol. Although the security bulletin is rated important for users of Windows Server 2003, Miller said Microsoft has seen attacks targeting the flaw in the wild. The flaw can be targeted if an attacker sends a malicious remote desktop protocol connection request to the victim’s computer which could cause the system to crash.

Get busy downloading.

/so, until the next Patch Tuesday . . .

Filed under: Blog Entry | Tagged: Addressed, Adobe Systems, Attacker, Attacks, Bulletin, Cause, Computer, Crash, Critical, Critical Security Update, Critical Updates, Exploited, Fixes, Flash Media Server, Flash Player, Flaw, Holes, Important, Internet Explorer, Local User, Malicious Remote Desktop Protocol Connection Request, Microsoft, Microsoft Patch Tuesday, MS11-057, MS11-065, Patch, Product Line, Quarterly Cycle, Rated, Remote Code Execution, Remote Desktop Protocol, Resolves, Security, Security Bulletin, Security Update, Shockwave Player, Specially Crafted, Specially Crafted Web Page, Successfully Exploited, System, System Administrators, Targeting, Update, User Rights, Users, Victim, Views, Vulnerabilities, Vulnerability, Web Page, Windows, Windows DNS Server, Windows Server 2003, Zero-Day Flaws | Leave a comment »

When Chinese RATs Attack

Posted on August 2, 2011 by Killian Bundy

Oh, hey, look what China did, again. Isn’t this supposed to be an act of war now?

Massive Global Cyberattack Targeting U.S., U.N. Discovered; Experts Blame China

The world’s most extensive case of cyber-espionage, including attacks on U.S. government and U.N. computers, was revealed Wednesday by online security firm McAfee, and analysts are speculating that China is behind the attacks.

The spying was dubbed “Operation Shady RAT,” or “remote access tool” by McAfee — and it led to a massive loss of information that poses a huge economic threat, wrote vice president of threat research Dmitri Alperovitch.

. . .

Analysts told The Washington Post that the finger of blame for the infiltration of the 72 networks — 49 of them in the U.S. — points firmly in the direction of China.

Why did it take a private security company to uncover the largest case of cyberspying in world history and why aren’t we doing something about it?

/does China have to steal every last piece of sensitive and secret computer data we possess before we start taking this threat seriously?

Filed under: Blog Entry | Tagged: Analysts, Attack, Attacks, Blame, Case, China, Chinese, Computers, Cyber Espionage, Cyberattack, Direction, Discovered, Dmitri Alperovitch, Dubbed, Economic, Economic Threat, Experts, Finger Of Blame, Firmly, Global, Government, Huge, Huge Economic Threat, Infiltration, Information, Loss, Massive, Massive Global Cyberattack, Massive Loss, McAfee, Most Extensive, Networks, Online, Online Security Firm, Operation, Operation Shady RAT, Points, Points Firmly, Poses, Rat, Remote Access, Remote Access Tool, Research, Revealed, Security, Security Firm, Shady RAT, Speculating, Spying, Targeting, Threat, Threat Research, Tool, U.N., U.N. Computers, U.S., U.S. Government, United Nations, United States, Vice President, Vice President Of Threat Research, Washington Post, World's Most Extensive Case | Leave a comment »

Can You Hack It?

Posted on August 1, 2011 by Killian Bundy

Calling all hackers, do you pack what it takes?

NSA is looking for a few good hackers

The National Security Agency has a challenge for hackers who think they’re hot stuff: Prove it by working on the “hardest problems on Earth.”

Computer hacker skills are in great demand in the U.S. government to fight the cyberwars that pose a growing national security threat — and they are in short supply.

For that reason an alphabet soup of federal agencies — DOD, DHS, NASA, NSA — are descending on Las Vegas this week for Defcon, an annual hacker convention where the $150 entrance fee is cash only — no registration, no credit cards, no names taken. Attendance is expected to top 10,000.

The NSA is among the keen suitors. The spy agency plays offense and defense in the cyberwars. It conducts electronic eavesdropping on adversaries, and it protects U.S. computer networks that hold super-secret material — a prime target for America’s enemies.

Would you rather work for them or be hunted down by them? If you’re good enough, it probably pays pretty well and beats sitting in a prison cell.

/don’t forget to bring your white hat

Filed under: Blog Entry | Tagged: Adversaries, Agencies, Agency, Alphabet Soup, America, Annual, Annual Hacker Convention, Attendance, Cash Only, Challenge, Computer, Computer Hacker, Computer Hacker Skills, Computer Networks, Convention, Credit Cards, Cyberwars, Defcon, Defense, Demand, Department Of Defense, Department Of Homeland Security, Descending, DHS, DOD, Earth, Eavesdropping, Electronic, Electronic Eavesdropping, Enemies, Entrance Fee, Federal, Federal Agencies, Fight, Government, Great Demand, Growing National Security Threat, Hack, Hacker, Hacker Convention, Hackers, Hardest, Hardest Problems On Earth, Hot Stuff, Keen Suitors, Las Vegas, Material, Names, NASA, National Aeronautics And Space Administration, National Security, National Security Agency, National Security Threat, Networks, Nevada, No Credit Cards, No Names Taken, No Registration, NSA, Offense, Plays, Pose, Prime Target, Problems, Protects, Prove It, Reason, Registration, Secret, Security, Short Supply, Skills, Spy, Spy Agency, Suitors, Super-Secret, Super-Secret Material, Supply, Threat, U.S. Computer Networks, U.S. Government, Working, Working On | Leave a comment »

Eat It Or Wear It

Archives

That Didn’t Take Long

Tuesday Fun With Microsoft

Don’t Get Caught In The Crossfire

Tuesday Fun With Microsoft

Open Season On Christians In Egypt

Watching The Drone Watchers

Do The Microsoft Patch Dance

When Chinese RATs Attack

Can You Hack It?

Recent Posts

Blogroll

Donate

Fantasy Football

Finance

News

Weather

Blog Stats