Your email just isn’t safe, is it? And your inbox just isn’t spam free enough for some people, especially as far as Bai Ming or Bai Ming are concerned. Tonight’s Stration uses the domain vaserjungenfujinas.com, and presently the web server they download the malware from resolves to 64.28.179.66. Whois information lines up with previous Stration [...]
Back in May of this year, Symantec released an avisory entitled SYM06-010: Symantec Client Security and Symantec AntiVirus Elevation of Privilege. Those that took the time to read it beyond the title noticed that this isn’t just a local privilege elevation exploit. It’s an out and out remote stack overflow using a specific service (TCP [...]
Last week I came across an eWeek article describing a new laptop locator that promises to help companies avoid costly disclosures in the event a laptop is lost. And, let’s face it, a lot of laptops are lost or stolen, including government and military. This new laptop locator offers an obvious twist on an [...]
Kevin Borders, who worked with the ASERT this past summer, is today’s guest blogger. Kevin’s working on some interesting technology being developed at the University of Michigan that we thought you’d enjoy learning more about. As always, we welcome any questions, comments or concerns:
We cannot always rely on signatures to detect spyware and other bad [...]
RSS has been a boon to me for tracking the hundreds of sources I monitor for security information. These include blogs, news sites, vendor sites and security information clearing houses, all of which publish information via RSS. Using an RSS aggregator, I can consume this and build up a local database of information.
If you do [...]
