….let’s try this again…Blognostication and saving things as drafts seems to have gotten the best of me and munged some previous versions of this post, my apologies - please reread for a slighly less confusing version.
—
In compiling results from the current revision of Arbor’s recent Infrastructure Security Survey, I’m still not exactly sure what to […]
This morning, on one of the malicious activity tracking lists that we subscribe to, someone asked about phishing stats for Q1 2006. I got curious, too, so I ran stats on the feed going into our Active Threat Feed (ATF) phishing policy, and came up with some surprising stats. From 1/26-4/26, we saw about 2700 […]
Every now and then, malicious or obfuscated JavaScript will appear on the radar, and this is how I’ve developed ways to determine what’s going on. The goals of malicious JavaScript are obvious: exploit a web browser vulnerability. The goals of obfuscated JavaScript are a bit more complicated: get the JavaScript past the filters to direct […]
I recently wandered into Ann Arbor’s (and the first ever) Borders Books & Music store where I came upon a magazine titled “Skeptical Inquirer - The Magazine for Science and Reason.” At the bottom of the magazine cover, I read the text “Published by the Committee for the Scientific Investigation of Claims of the Paranormal.” […]
Dave Goldsmith had a great post earlier today which I would like to point out to anyone who hasn’t read it yet. With comments like, “I’m quite positive that when this vulnerability reached Sun Microsystems, someone’s head exploded”, I found his commentary very amusing. Even though this vulnerability is now eight years old, it’s a […]
