Browse by Tags
All Tags »
Security (RSS)
Hi… wenn man diesen Bericht so liest http://arstechnica.com/security/news/2009/10/av-comparatives-picks-six-malware-removal-winners.ars?utm_source=rss&utm_medium=rss&utm_campaign=rss wird einem doch etwas warm ums Herz ;-) Der Bericht klassifiziert
Read More...
Hi… ich habe vor Jahren in einem Projekt mitgearbeitet bei dem es um eine Überprüfung der Funktion von Software ging. In meinem Falle ging es um die Genehmigung Kernkraftwerke steuern zu dürfen. Klingt erstmal dramatisch, ist aber technisch nicht so kompliziert
Read More...
Hi... you all are still aware of the bug that had been introduced into Debian random key generation two years before it has been discovered. The whole IT world was victim since not only the code was used in different systems all over the place, the week
Read More...
Hi… you can find the content of the 360° Security Roadshow here http://www.microsoft.com/germany/msdn/events/archiv/securitydays2008/default.mspx (German only!!) It was an interesting experience. I did the keynote and really tried to deliver some insights
Read More...
Hi… yes, we will try… our first mini-micro-nano-Barcamp. The real story behind it is interesting enough: We are in the process of doing a security roadshow. Since we had problems getting the locations filled (Developers and security is always the same…)
Read More...
Hi… I found this nice blog entry http://blogs.msdn.com/sdl/archive/2008/02/28/sdl-and-web-2-0.aspx Every single word is true. My impression is that most people in this vibrant web 2.0 space still think they live in happy land where no bad people exist.
Read More...
Hi... we have an interesting discussion internally on this article: http://www.informationweek.com/windows/showArticle.jhtml?articleID=205918671&cid=RSSfeed_TechWeb In short: The guy who cost the french bank you all know about 7 billion US$ just used
Read More...
Hi... to be very open, honest, and respectful: it is too much of a game but in the end it contains good security content... so bare with the game ;-) I really enjoyed the videos. One started with Yet another SQL injection... uha... how boring. But it
Read More...
HI... ok this is actually misleading: We (e.g. Microsoft or any other group I belong to) do not have a tool. But there are some people out there who claim to have one... I found this blog article by Michael Howard (see http://blogs.msdn.com/michael_howard/archive/2008/01/10/open-source-projects-certified-as-secure-huh.aspx
Read More...
Hi... this is really the way I like it: We have always been asked if we could provide more insight in the what and the why behind security faults. The official answer ;-) was this is not necessary to cure the fault nor to understand its importance. This
Read More...
Hi... well, get informed: http://download.microsoft.com/download/a/a/1/aa1ac20e-514e-4ec1-a12e-022c35aa54cf/KeyFindings_MS_Security_Report_Jan-Jun07.xps This report is only a summarization of the broader study underneath. But it shows the hardest problem
Read More...
Hi... yes, finally we made it: We collected a lot of content and published our own security book. Thanks to all the authors and thanks to Sebastian Weber for doing all the work behind the scenes... If you speak German check it out: CU 0xff
Read More...
HI... to make it short: Yes, you absolutely can... for a few days at least. Maybe you saw this "APPLE-SA-2007-09-27 iPhone v1.1.1 Update" announcement by Apple. It fixes (or at least tries to... who knows in the end) to fix 6 bugs in Safari, two in the
Read More...
Hi... I found an interesting article on a series of blog entries done by some guys from the Ukraine. I think it is common sense now that search engines itself are nice hacking tools. On the other hand most entries (as far as I have seen it) are about
Read More...
Hi... the German Spiegel Magazin quoted in a ticker news (see http://www.spiegel.de/netzwelt/web/0,1518,491259,00.html ) the US magazine Popular Science (see http://www.popsci.com/popsci/science/0203101256a23110vgnvcm1000004eecbccdrcrd/5.html ) about
Read More...
