SecuObs.com

SecuObs.com http://www.secuobs.com Observatoire de la securite Internet fr webmaster@secuobs.com #OWASP Blind SQL Injection Tutorial and Primer - Blind SQL injection is a technique used to attack a vulnerable web http://tco/AbPFrAqZ2012-10-10 14:25:30 - Netw0rkSecurity : #OWASP Blind SQL Injection Tutorial and Primer - Blind SQL injection is a technique used to attack a vulnerable web http://tco/AbPFrAqZhttp://www.secuobs.com/twitter/news/349547.shtmlhttp://www.secuobs.com/twitter/news/349547.shtml #OWASP SQL Injection and Other Flaws in VOlk-Botnet 4 0 Allow Victims to - Apparently, a remote attacker could http://tco/JXPsTdlO2012-10-10 14:25:30 - Netw0rkSecurity : #OWASP SQL Injection and Other Flaws in VOlk-Botnet 4 0 Allow Victims to - Apparently, a remote attacker could http://tco/JXPsTdlOhttp://www.secuobs.com/twitter/news/349545.shtmlhttp://www.secuobs.com/twitter/news/349545.shtml #OWASP CodeIgniter Security tips - An XSS or Cross Site scripting attack is unarguably the common reason for the de http://tco/HVreoN0I2012-10-10 14:25:30 - Netw0rkSecurity : #OWASP CodeIgniter Security tips - An XSS or Cross Site scripting attack is unarguably the common reason for the de http://tco/HVreoN0Ihttp://www.secuobs.com/twitter/news/349544.shtmlhttp://www.secuobs.com/twitter/news/349544.shtml Skype IM ramsomware worm spreading quickly: Skype users are being subjected to a social engineering-based attack http://tco/PJCXx3tJ2012-10-10 13:36:59 - obsequens : Skype IM ramsomware worm spreading quickly: Skype users are being subjected to a social engineering-based attack http://tco/PJCXx3tJhttp://www.secuobs.com/twitter/news/349540.shtmlhttp://www.secuobs.com/twitter/news/349540.shtml Phishing attacks evolve into traps waiting for victims - SC Magazine UK http://tco/WpmAwui92012-10-10 12:30:29 - SCmagazineUK : Phishing attacks evolve into traps waiting for victims - SC Magazine UK http://tco/WpmAwui9http://www.secuobs.com/twitter/news/349514.shtmlhttp://www.secuobs.com/twitter/news/349514.shtml Phishing attacks evolve into traps waiting for victims http://tco/g0bjSsQL via @SCmagazineUK #phishing #infosec2012-10-10 12:04:43 - websense : Phishing attacks evolve into traps waiting for victims http://tco/g0bjSsQL via @SCmagazineUK #phishing #infosechttp://www.secuobs.com/twitter/news/349512.shtmlhttp://www.secuobs.com/twitter/news/349512.shtml Japanese CRIME to attack SSL / SPDY is a legitimate successor of BEAST http://tco/1393jC7w2012-10-10 10:42:27 - julianor : Japanese CRIME to attack SSL / SPDY is a legitimate successor of BEAST http://tco/1393jC7whttp://www.secuobs.com/twitter/news/349486.shtmlhttp://www.secuobs.com/twitter/news/349486.shtml Details on Microsoft's SQL Server Report Manager XSS vulnerability: http://tco/agpF9V4w XTM's IPS detects the attack2012-10-10 04:20:34 - SecAdept : Details on Microsoft's SQL Server Report Manager XSS vulnerability: http://tco/agpF9V4w XTM's IPS detects the attackhttp://www.secuobs.com/twitter/news/349435.shtmlhttp://www.secuobs.com/twitter/news/349435.shtml Since I had my blog DDoS protection divert incoming attacks to @asherahresearch site, the attacks on me stop Try it with F5 #CmonPeopleWTF2012-10-10 01:07:51 - th3j35t3r : Since I had my blog DDoS protection divert incoming attacks to @asherahresearch site, the attacks on me stop Try it with F5 #CmonPeopleWTFhttp://www.secuobs.com/twitter/news/349396.shtmlhttp://www.secuobs.com/twitter/news/349396.shtml Details on Microsoft's SQL Server Report Manager XSS vulnerability: http://tco/NrzMfDRf XTM's IPS detects the attack2012-10-10 00:57:58 - watchguardtech : Details on Microsoft's SQL Server Report Manager XSS vulnerability: http://tco/NrzMfDRf XTM's IPS detects the attackhttp://www.secuobs.com/twitter/news/349393.shtmlhttp://www.secuobs.com/twitter/news/349393.shtml @gsuberland Build your own ssh honeypot and using that info to learn from ssh attacks2012-10-10 00:28:48 - lvdeijk : @gsuberland Build your own ssh honeypot and using that info to learn from ssh attackshttp://www.secuobs.com/twitter/news/349379.shtmlhttp://www.secuobs.com/twitter/news/349379.shtml RSA Europe 2012: DDoS Attacks Used as Diversion Technique: DDoS attacks are being used as a component in the new http://tco/mptgdz562012-10-09 22:46:35 - obsequens : RSA Europe 2012: DDoS Attacks Used as Diversion Technique: DDoS attacks are being used as a component in the new http://tco/mptgdz56http://www.secuobs.com/twitter/news/349342.shtmlhttp://www.secuobs.com/twitter/news/349342.shtml RT @csoandy: Now Rick is talking about “normal” DDoS attacks in the 20 Gbps range, with bigger ones north of 100 Gbps #AkamaiEdge2012-10-09 20:50:38 - ivanristic : RT @csoandy: Now Rick is talking about “normal” DDoS attacks in the 20 Gbps range, with bigger ones north of 100 Gbps #AkamaiEdgehttp://www.secuobs.com/twitter/news/349319.shtmlhttp://www.secuobs.com/twitter/news/349319.shtml Phishing attacks evolve into traps waiting for victims http://tco/0Hza5hwK SC Mag2012-10-09 14:45:11 - ITDataSecurity : Phishing attacks evolve into traps waiting for victims http://tco/0Hza5hwK SC Maghttp://www.secuobs.com/twitter/news/349264.shtmlhttp://www.secuobs.com/twitter/news/349264.shtml In security, history always repeats itself: chromeless windows attack from 2004 and now HTML 5 fullscreen API : http://tco/LC3ZOxxD2012-10-09 13:59:37 - fmavituna : In security, history always repeats itself: chromeless windows attack from 2004 and now HTML 5 fullscreen API : http://tco/LC3ZOxxDhttp://www.secuobs.com/twitter/news/349257.shtmlhttp://www.secuobs.com/twitter/news/349257.shtml USBGuru simulated attack service https://tco/Ae7Af3e22012-10-09 12:55:38 - HaDeSss : USBGuru simulated attack service https://tco/Ae7Af3e2http://www.secuobs.com/twitter/news/349248.shtmlhttp://www.secuobs.com/twitter/news/349248.shtml RT @InfosecEditor: DDoS attacks are being used to cause a diversion and cover-up the real attack that is happening at the same time - de 2012-10-09 12:31:36 - xme : RT @InfosecEditor: DDoS attacks are being used to cause a diversion and cover-up the real attack that is happening at the same time - de http://www.secuobs.com/twitter/news/349243.shtmlhttp://www.secuobs.com/twitter/news/349243.shtml USBGuru simulated attack service http://tco/uKkZtu9f2012-10-09 02:05:04 - ITVulnerability : USBGuru simulated attack service http://tco/uKkZtu9fhttp://www.secuobs.com/twitter/news/349127.shtmlhttp://www.secuobs.com/twitter/news/349127.shtml Nice, practical illustration of the WPAD man-in-the-middle attack using Metasploit: http://tco/kfi9IarD by @netresec2012-10-08 22:53:33 - lennyzeltser : Nice, practical illustration of the WPAD man-in-the-middle attack using Metasploit: http://tco/kfi9IarD by @netresechttp://www.secuobs.com/twitter/news/349083.shtmlhttp://www.secuobs.com/twitter/news/349083.shtml RT @ironfog: which is easier a chinese are hiding attack code in every router they ship or b chinese gov have 0days for ZTE/Huawei 2012-10-08 22:17:08 - myrcurial : RT @ironfog: which is easier a chinese are hiding attack code in every router they ship or b chinese gov have 0days for ZTE/Huawei http://www.secuobs.com/twitter/news/349078.shtmlhttp://www.secuobs.com/twitter/news/349078.shtml RT @lennyzeltser: Nice, practical illustration of the WPAD man-in-the-middle attack using Metasploit: http://tco/kfi9IarD by @netresec2012-10-08 22:09:08 - hal_pomeranz : RT @lennyzeltser: Nice, practical illustration of the WPAD man-in-the-middle attack using Metasploit: http://tco/kfi9IarD by @netresechttp://www.secuobs.com/twitter/news/349072.shtmlhttp://www.secuobs.com/twitter/news/349072.shtml Phishing attacks threaten organizations, individuals http://tco/m1cY0dNx via @ProofpointNews2012-10-08 11:46:18 - Proofpoint_Inc : Phishing attacks threaten organizations, individuals http://tco/m1cY0dNx via @ProofpointNewshttp://www.secuobs.com/twitter/news/348998.shtmlhttp://www.secuobs.com/twitter/news/348998.shtml Decline in phishing attacks could lead to false sense of security http://tco/aHl6ZuSv via @ProofpointNews2012-10-08 11:46:18 - Proofpoint_Inc : Decline in phishing attacks could lead to false sense of security http://tco/aHl6ZuSv via @ProofpointNewshttp://www.secuobs.com/twitter/news/348997.shtmlhttp://www.secuobs.com/twitter/news/348997.shtml RT @SCMagazine: With DDoS attacks garnering more attention, crooks are taking advantage of the craze by providing attacks for cash | ht 2012-10-07 12:44:45 - hackerfantastic : RT @SCMagazine: With DDoS attacks garnering more attention, crooks are taking advantage of the craze by providing attacks for cash | ht http://www.secuobs.com/twitter/news/348875.shtmlhttp://www.secuobs.com/twitter/news/348875.shtml Just seen some advice that pinging an ip for 23 hours will ddos it Gotta love some attackers2012-10-07 11:33:46 - digininja : Just seen some advice that pinging an ip for 23 hours will ddos it Gotta love some attackershttp://www.secuobs.com/twitter/news/348869.shtmlhttp://www.secuobs.com/twitter/news/348869.shtml Seen any strange Gmail or Chrome messages lately Google warns thousands of users about state-sponsored attacks: http://tco/DIgeEeK52012-10-07 00:54:40 - Webroot : Seen any strange Gmail or Chrome messages lately Google warns thousands of users about state-sponsored attacks: http://tco/DIgeEeK5http://www.secuobs.com/twitter/news/348830.shtmlhttp://www.secuobs.com/twitter/news/348830.shtml RT @mikko: Note: DDoS attacks against the websites of the police, army, government, parliament etc are NOT attacks against 'critical inf 2012-10-06 23:47:27 - cudeso : RT @mikko: Note: DDoS attacks against the websites of the police, army, government, parliament etc are NOT attacks against 'critical inf http://www.secuobs.com/twitter/news/348824.shtmlhttp://www.secuobs.com/twitter/news/348824.shtml #OWASP SQL INJECTION THROUGH SQLMAP BURP PLUGIN - SQL Injection is a web based attack used by hackers to steal sens http://tco/XTbSbeMK2012-10-06 08:10:22 - Netw0rkSecurity : #OWASP SQL INJECTION THROUGH SQLMAP BURP PLUGIN - SQL Injection is a web based attack used by hackers to steal sens http://tco/XTbSbeMKhttp://www.secuobs.com/twitter/news/348693.shtmlhttp://www.secuobs.com/twitter/news/348693.shtml Our own @horana weighs in on DDoS bank attacks in this @BnkInfoSecurity article http://tco/iYQT1kzo2012-10-06 06:05:04 - CoreSecurity : Our own @horana weighs in on DDoS bank attacks in this @BnkInfoSecurity article http://tco/iYQT1kzohttp://www.secuobs.com/twitter/news/348672.shtmlhttp://www.secuobs.com/twitter/news/348672.shtml @myrcurial dude, have you listened to @Tactical_Intel's trolling of one of those phone based phishing attacks its GLORIOUS2012-10-06 03:06:15 - Viss : @myrcurial dude, have you listened to @Tactical_Intel's trolling of one of those phone based phishing attacks its GLORIOUShttp://www.secuobs.com/twitter/news/348634.shtmlhttp://www.secuobs.com/twitter/news/348634.shtml RT @pastebin: http://tco/M9nU8wk2 is under heavy DDOS attack again We are working on it2012-10-06 02:35:44 - innismir : RT @pastebin: http://tco/M9nU8wk2 is under heavy DDOS attack again We are working on ithttp://www.secuobs.com/twitter/news/348628.shtmlhttp://www.secuobs.com/twitter/news/348628.shtml @DanRaywood reports: ENISA organises European stress test against DDoS attacks - SC Magazine UK http://tco/5lYilzR82012-10-05 23:56:14 - RandomStorm : @DanRaywood reports: ENISA organises European stress test against DDoS attacks - SC Magazine UK http://tco/5lYilzR8http://www.secuobs.com/twitter/news/348588.shtmlhttp://www.secuobs.com/twitter/news/348588.shtml ENISA organises European stress test against DDoS attacks - SC Magazine UK http://tco/SYUKquYR2012-10-05 21:49:07 - SCmagazineUK : ENISA organises European stress test against DDoS attacks - SC Magazine UK http://tco/SYUKquYRhttp://www.secuobs.com/twitter/news/348533.shtmlhttp://www.secuobs.com/twitter/news/348533.shtml Top Words employed during phishing attacks in order to hack successfully Enterprise Networks and hack data http://tco/NOmYSzJf2012-10-05 16:46:10 - teamcymru : Top Words employed during phishing attacks in order to hack successfully Enterprise Networks and hack data http://tco/NOmYSzJfhttp://www.secuobs.com/twitter/news/348464.shtmlhttp://www.secuobs.com/twitter/news/348464.shtml European WarGames cybersecurity exercise simulates DDoS attacks http://tco/D10AzPx12012-10-05 16:46:10 - teamcymru : European WarGames cybersecurity exercise simulates DDoS attacks http://tco/D10AzPx1http://www.secuobs.com/twitter/news/348463.shtmlhttp://www.secuobs.com/twitter/news/348463.shtml ENISA organises European stress test against DDoS attacks http://tco/XfsJ7bXu SC Mag2012-10-05 14:45:29 - ITDataSecurity : ENISA organises European stress test against DDoS attacks http://tco/XfsJ7bXu SC Maghttp://www.secuobs.com/twitter/news/348453.shtmlhttp://www.secuobs.com/twitter/news/348453.shtml EU and banks stage DDoS cyber-attack exercise http://tco/JXyTIpWk #cyberwarfare2012-10-05 00:52:18 - SecurityExpert : EU and banks stage DDoS cyber-attack exercise http://tco/JXyTIpWk #cyberwarfarehttp://www.secuobs.com/twitter/news/348333.shtmlhttp://www.secuobs.com/twitter/news/348333.shtml DDoS attacks on major US banks are no Stuxnet - attack tool known as itsoknoproblembro #security #infosec http://tco/IcHkBmTZ2012-10-05 00:06:00 - idexperts : DDoS attacks on major US banks are no Stuxnet - attack tool known as itsoknoproblembro #security #infosec http://tco/IcHkBmTZhttp://www.secuobs.com/twitter/news/348320.shtmlhttp://www.secuobs.com/twitter/news/348320.shtml DDoS attacks on major US banks are no Stuxnet—here’s why | Ars Technica http://tco/6jJRvXqd2012-10-04 21:51:38 - jaysonstreet : DDoS attacks on major US banks are no Stuxnet—here’s why | Ars Technica http://tco/6jJRvXqdhttp://www.secuobs.com/twitter/news/348287.shtmlhttp://www.secuobs.com/twitter/news/348287.shtml Easy Cross-Site Request Forgery Exploitation with Websecurify Suite: Creating CSRF attack payloads from complex http://tco/7U9FGQxB2012-10-04 19:05:51 - GNUCITIZEN : Easy Cross-Site Request Forgery Exploitation with Websecurify Suite: Creating CSRF attack payloads from complex http://tco/7U9FGQxBhttp://www.secuobs.com/twitter/news/348251.shtmlhttp://www.secuobs.com/twitter/news/348251.shtml RT @enisa_eu: #ENISA's Resilience CIIP Unit Head Dr Ouzounis on BBC News:EU and banks stage DDoS cyber-attack exercise http://tco 2012-10-04 18:43:47 - CERTXMCO : RT @enisa_eu: #ENISA's Resilience CIIP Unit Head Dr Ouzounis on BBC News:EU and banks stage DDoS cyber-attack exercise http://tco http://www.secuobs.com/twitter/news/348241.shtmlhttp://www.secuobs.com/twitter/news/348241.shtml #OWASP Week 5 - XSS | Network Penetration Testing - Overview Cross site scripting XSS is an attack vector that t http://tco/VkMdY1J62012-10-04 16:44:44 - Netw0rkSecurity : #OWASP Week 5 - XSS | Network Penetration Testing - Overview Cross site scripting XSS is an attack vector that t http://tco/VkMdY1J6http://www.secuobs.com/twitter/news/348213.shtmlhttp://www.secuobs.com/twitter/news/348213.shtml Protection against DDoS and targeted attacks http://tco/WVjW9BMz2012-10-04 11:36:07 - CanDeger : Protection against DDoS and targeted attacks http://tco/WVjW9BMzhttp://www.secuobs.com/twitter/news/348185.shtmlhttp://www.secuobs.com/twitter/news/348185.shtml RT @6: Wikileaks: “Sorry, VISA MasterCard for the DDOS attacks maligning of your name Cash is king1” not exact words ht 2012-10-04 11:27:49 - innismir : RT @6: Wikileaks: “Sorry, VISA MasterCard for the DDOS attacks maligning of your name Cash is king1” not exact words ht http://www.secuobs.com/twitter/news/348182.shtmlhttp://www.secuobs.com/twitter/news/348182.shtml A number of Wordpress themes distributed by Parallelus are vulnerable to XSS attacks - http://tco/QiWL72KO2012-10-04 11:09:00 - threatpost : A number of Wordpress themes distributed by Parallelus are vulnerable to XSS attacks - http://tco/QiWL72KOhttp://www.secuobs.com/twitter/news/348180.shtmlhttp://www.secuobs.com/twitter/news/348180.shtml Protection against DDoS and targeted attacks - http://tco/yu6pnB752012-10-04 11:00:01 - helpnetsecurity : Protection against DDoS and targeted attacks - http://tco/yu6pnB75http://www.secuobs.com/twitter/news/348177.shtmlhttp://www.secuobs.com/twitter/news/348177.shtml More on the bank DDoS attacks via @threatpost http://tco/D3NCneYb See an overview on @ixiacom's blog http://tco/U0ok33iD2012-10-04 10:53:12 - BreakingPoint : More on the bank DDoS attacks via @threatpost http://tco/D3NCneYb See an overview on @ixiacom's blog http://tco/U0ok33iDhttp://www.secuobs.com/twitter/news/348176.shtmlhttp://www.secuobs.com/twitter/news/348176.shtml DDoS attacks on major US banks are no Stuxnet—here’s why http://tco/WBCn19KS2012-10-04 10:35:47 - DarkOperator : DDoS attacks on major US banks are no Stuxnet—here’s why http://tco/WBCn19KShttp://www.secuobs.com/twitter/news/348171.shtmlhttp://www.secuobs.com/twitter/news/348171.shtml Protection against DDoS and targeted attacks http://tco/YZlVXxhl2012-10-04 10:35:47 - DarkOperator : Protection against DDoS and targeted attacks http://tco/YZlVXxhlhttp://www.secuobs.com/twitter/news/348170.shtmlhttp://www.secuobs.com/twitter/news/348170.shtml RT @dangoodin001: DDoS attacks on major US banks are no Stuxnet—here's why: http://tco/1DCE7KMm2012-10-04 09:27:02 - cesarcer : RT @dangoodin001: DDoS attacks on major US banks are no Stuxnet—here's why: http://tco/1DCE7KMmhttp://www.secuobs.com/twitter/news/348163.shtmlhttp://www.secuobs.com/twitter/news/348163.shtml InfoSecNews: DDoS attacks on major US banks are no Stuxnet -- here's why http://tco/F9PKJgBm2012-10-04 09:26:31 - SecMailLists : InfoSecNews: DDoS attacks on major US banks are no Stuxnet -- here's why http://tco/F9PKJgBmhttp://www.secuobs.com/twitter/news/348159.shtmlhttp://www.secuobs.com/twitter/news/348159.shtml @marcwickenden @ethicalhack3r I believe in 2009 there were multiple XSS attacks on Twitter resulting in some worms, etc2012-10-04 02:59:31 - pdp : @marcwickenden @ethicalhack3r I believe in 2009 there were multiple XSS attacks on Twitter resulting in some worms, etchttp://www.secuobs.com/twitter/news/348081.shtmlhttp://www.secuobs.com/twitter/news/348081.shtml @ethicalhack3r @marcwickenden samy is on the list Any public XSS attacks before that2012-10-04 02:59:31 - pdp : @ethicalhack3r @marcwickenden samy is on the list Any public XSS attacks before thathttp://www.secuobs.com/twitter/news/348080.shtmlhttp://www.secuobs.com/twitter/news/348080.shtml @Rob_OEM true : how could I forget this This reminds of the Skype and AIM XSS attacks2012-10-04 02:59:31 - pdp : @Rob_OEM true : how could I forget this This reminds of the Skype and AIM XSS attackshttp://www.secuobs.com/twitter/news/348079.shtmlhttp://www.secuobs.com/twitter/news/348079.shtml any interesting XSS attacks in 20122012-10-04 02:59:31 - pdp : any interesting XSS attacks in 2012http://www.secuobs.com/twitter/news/348077.shtmlhttp://www.secuobs.com/twitter/news/348077.shtml RT @ErrataRob: SHA1/SHA2/SHA512 are all based on MD4 Kᴇᴄᴄᴀᴋ is not, so any attack on SHA2 is unlikely to work on SHA3 Having both is good2012-10-04 00:20:58 - grecs : RT @ErrataRob: SHA1/SHA2/SHA512 are all based on MD4 Kᴇᴄᴄᴀᴋ is not, so any attack on SHA2 is unlikely to work on SHA3 Having both is goodhttp://www.secuobs.com/twitter/news/348025.shtmlhttp://www.secuobs.com/twitter/news/348025.shtml Clues re: who’s behind massive DDoS #cyberattacks on US banks http://tco/GQUZebN1 via @csmonitor Tons of coverage on this2012-10-03 23:29:21 - CoreSecurity : Clues re: who’s behind massive DDoS #cyberattacks on US banks http://tco/GQUZebN1 via @csmonitor Tons of coverage on thishttp://www.secuobs.com/twitter/news/348015.shtmlhttp://www.secuobs.com/twitter/news/348015.shtml How Cisco security researchers dealt with the DDoS attacks on financial institutions: http://tco/tMYsOnoz2012-10-03 22:50:22 - CiscoSecurity : How Cisco security researchers dealt with the DDoS attacks on financial institutions: http://tco/tMYsOnozhttp://www.secuobs.com/twitter/news/348001.shtmlhttp://www.secuobs.com/twitter/news/348001.shtml RT @grecs: RT @ErrataRob: SHA1/SHA2/SHA512 are all based on MD4 Kᴇᴄᴄᴀᴋ is not, so any attack on SHA2 is unlikely to work on SHA3 Havin 2012-10-03 22:25:46 - sambowne : RT @grecs: RT @ErrataRob: SHA1/SHA2/SHA512 are all based on MD4 Kᴇᴄᴄᴀᴋ is not, so any attack on SHA2 is unlikely to work on SHA3 Havin http://www.secuobs.com/twitter/news/347995.shtmlhttp://www.secuobs.com/twitter/news/347995.shtml is there *anyone* with first hand knowledge of the ddos attacks on us banks everything i've seen is conjecture/guesswork2012-10-03 22:25:03 - ryanaraine : is there *anyone* with first hand knowledge of the ddos attacks on us banks everything i've seen is conjecture/guessworkhttp://www.secuobs.com/twitter/news/347993.shtmlhttp://www.secuobs.com/twitter/news/347993.shtml pdfs typically used to deliver 0-day and subsequent AV company whitepapers about those same attacks - @coryaltheide2012-10-03 22:22:11 - robdew : pdfs typically used to deliver 0-day and subsequent AV company whitepapers about those same attacks - @coryaltheidehttp://www.secuobs.com/twitter/news/347988.shtmlhttp://www.secuobs.com/twitter/news/347988.shtml RT @Jacadis: Direct msg us for copy of @slandail Jerod Brennen's preso to #GrrCON @GrrCON: guide to preventing/mitigating DDoS attacks # 2012-10-03 21:29:34 - slandail : RT @Jacadis: Direct msg us for copy of @slandail Jerod Brennen's preso to #GrrCON @GrrCON: guide to preventing/mitigating DDoS attacks # http://www.secuobs.com/twitter/news/347980.shtmlhttp://www.secuobs.com/twitter/news/347980.shtml RT @pdp: any interesting XSS attacks in 2012:2012-10-03 19:04:13 - GNUCITIZEN : RT @pdp: any interesting XSS attacks in 2012:http://www.secuobs.com/twitter/news/347931.shtmlhttp://www.secuobs.com/twitter/news/347931.shtml RT @ErrataRob: SHA1/SHA2/SHA512 are all based on MD4 Kᴇᴄᴄᴀᴋ is not, so any attack on SHA2 is unlikely to work on SHA3 Having both is good2012-10-03 18:41:09 - asintsov : RT @ErrataRob: SHA1/SHA2/SHA512 are all based on MD4 Kᴇᴄᴄᴀᴋ is not, so any attack on SHA2 is unlikely to work on SHA3 Having both is goodhttp://www.secuobs.com/twitter/news/347927.shtmlhttp://www.secuobs.com/twitter/news/347927.shtml DDoS attacks used compromised web servers and 30 million packets per second http://tco/AhyjfCqT SC Mag2012-10-03 18:36:55 - ITDataSecurity : DDoS attacks used compromised web servers and 30 million packets per second http://tco/AhyjfCqT SC Maghttp://www.secuobs.com/twitter/news/347925.shtmlhttp://www.secuobs.com/twitter/news/347925.shtml Cisco Unified Communications Manager Call Manager PIN brute force attack -- http://tco/fy7FwH7r2012-10-03 16:52:49 - ebordac : Cisco Unified Communications Manager Call Manager PIN brute force attack -- http://tco/fy7FwH7rhttp://www.secuobs.com/twitter/news/347913.shtmlhttp://www.secuobs.com/twitter/news/347913.shtml Hash length extension attacks are breaking my brain Does MD5 have an 8byte length field for every 56bytes of input data #hashext2012-10-03 15:36:58 - singe : Hash length extension attacks are breaking my brain Does MD5 have an 8byte length field for every 56bytes of input data #hashexthttp://www.secuobs.com/twitter/news/347903.shtmlhttp://www.secuobs.com/twitter/news/347903.shtml DDoS attacks on US banks used compromised web servers and 30 million packets per second http://tco/gZHRzxwJ2012-10-03 15:07:33 - SCmagazineUK : DDoS attacks on US banks used compromised web servers and 30 million packets per second http://tco/gZHRzxwJhttp://www.secuobs.com/twitter/news/347894.shtmlhttp://www.secuobs.com/twitter/news/347894.shtml Expert fingers DDoS toolkit used in bank cyberattackshttp://tco/lVXfxVr22012-10-03 10:48:31 - teamcymru : Expert fingers DDoS toolkit used in bank cyberattackshttp://tco/lVXfxVr2http://www.secuobs.com/twitter/news/347841.shtmlhttp://www.secuobs.com/twitter/news/347841.shtml Financial Armageddon: Are the current DDOS attacks against US Banks what we always worried abouthttp://tco/A2HdxvHf2012-10-03 10:48:31 - teamcymru : Financial Armageddon: Are the current DDOS attacks against US Banks what we always worried abouthttp://tco/A2HdxvHfhttp://www.secuobs.com/twitter/news/347837.shtmlhttp://www.secuobs.com/twitter/news/347837.shtml RT @daboblog: White House confirms cyberattack -- http://tco/5JALlWiN | Técnica, spear phishing o el factor humano Ingeniería 2012-10-03 10:04:42 - revskills : RT @daboblog: White House confirms cyberattack -- http://tco/5JALlWiN | Técnica, spear phishing o el factor humano Ingeniería http://www.secuobs.com/twitter/news/347833.shtmlhttp://www.secuobs.com/twitter/news/347833.shtml RT @codelancer: From a DDoS perspective, they are on the level of a Stuxnet type of attack http://tco/cPMPbMlx O'RLY2012-10-03 10:04:23 - r00tbsd : RT @codelancer: From a DDoS perspective, they are on the level of a Stuxnet type of attack http://tco/cPMPbMlx O'RLYhttp://www.secuobs.com/twitter/news/347828.shtmlhttp://www.secuobs.com/twitter/news/347828.shtml RT @ErrataRob: SHA1/SHA2/SHA512 are all based on MD4 Kᴇᴄᴄᴀᴋ is not, so any attack on SHA2 is unlikely to work on SHA3 Having both is good2012-10-03 09:04:11 - theharmonyguy : RT @ErrataRob: SHA1/SHA2/SHA512 are all based on MD4 Kᴇᴄᴄᴀᴋ is not, so any attack on SHA2 is unlikely to work on SHA3 Having both is goodhttp://www.secuobs.com/twitter/news/347817.shtmlhttp://www.secuobs.com/twitter/news/347817.shtml RT @ErrataRob: SHA1/SHA2/SHA512 are all based on MD4 Kᴇᴄᴄᴀᴋ is not, so any attack on SHA2 is unlikely to work on SHA3 Having both is good2012-10-03 07:34:58 - MarioVilas : RT @ErrataRob: SHA1/SHA2/SHA512 are all based on MD4 Kᴇᴄᴄᴀᴋ is not, so any attack on SHA2 is unlikely to work on SHA3 Having both is goodhttp://www.secuobs.com/twitter/news/347808.shtmlhttp://www.secuobs.com/twitter/news/347808.shtml DDoS attacks: 150Gb per second and rising http://tco/6CAnPdlp2012-10-03 05:48:17 - securityshell : DDoS attacks: 150Gb per second and rising http://tco/6CAnPdlphttp://www.secuobs.com/twitter/news/347792.shtmlhttp://www.secuobs.com/twitter/news/347792.shtml From @0xcharlie's talk: RFID sleeves will protect you from the attack that's almost impossible to execute, but not the one that's easy to2012-10-03 02:53:25 - hypatiadotca : From @0xcharlie's talk: RFID sleeves will protect you from the attack that's almost impossible to execute, but not the one that's easy tohttp://www.secuobs.com/twitter/news/347763.shtmlhttp://www.secuobs.com/twitter/news/347763.shtml RT @ErrataRob: SHA1/SHA2/SHA512 are all based on MD4 Kᴇᴄᴄᴀᴋ is not, so any attack on SHA2 is unlikely to work on SHA3 Having both is good2012-10-03 01:24:20 - dakami : RT @ErrataRob: SHA1/SHA2/SHA512 are all based on MD4 Kᴇᴄᴄᴀᴋ is not, so any attack on SHA2 is unlikely to work on SHA3 Having both is goodhttp://www.secuobs.com/twitter/news/347751.shtmlhttp://www.secuobs.com/twitter/news/347751.shtml DDoS attacks reach new level of sophistication - http://tco/ROd5Ygi1 - @prolexic2012-10-03 00:08:33 - helpnetsecurity : DDoS attacks reach new level of sophistication - http://tco/ROd5Ygi1 - @prolexichttp://www.secuobs.com/twitter/news/347741.shtmlhttp://www.secuobs.com/twitter/news/347741.shtml Router flaw allowed DNS attack on 45 million home routers http://tco/6eLJEzsW2012-10-02 23:18:16 - DarkOperator : Router flaw allowed DNS attack on 45 million home routers http://tco/6eLJEzsWhttp://www.secuobs.com/twitter/news/347736.shtmlhttp://www.secuobs.com/twitter/news/347736.shtml White House attack once again demonstrates how vulnerable staff are to spear phishing http://tco/0o4cRxpa SC Mag2012-10-02 22:37:22 - ITDataSecurity : White House attack once again demonstrates how vulnerable staff are to spear phishing http://tco/0o4cRxpa SC Maghttp://www.secuobs.com/twitter/news/347729.shtmlhttp://www.secuobs.com/twitter/news/347729.shtml Former Pirate Bay hoster raided, and shut down by DDoS attack http://tco/dhswZzES2012-10-02 21:48:39 - kakroo : Former Pirate Bay hoster raided, and shut down by DDoS attack http://tco/dhswZzEShttp://www.secuobs.com/twitter/news/347694.shtmlhttp://www.secuobs.com/twitter/news/347694.shtml RT @desmondholden: If @attritionorg tracked infosec press the whole industry would collapse Seen perhaps 2 articles on the DDoS attacks 2012-10-02 21:25:29 - MarioVilas : RT @desmondholden: If @attritionorg tracked infosec press the whole industry would collapse Seen perhaps 2 articles on the DDoS attacks http://www.secuobs.com/twitter/news/347688.shtmlhttp://www.secuobs.com/twitter/news/347688.shtml White House attack once again demonstrates how vulnerable staff are to spear phishing - SC Magazine UK http://tco/JHeKc0SC2012-10-02 20:14:42 - SCmagazineUK : White House attack once again demonstrates how vulnerable staff are to spear phishing - SC Magazine UK http://tco/JHeKc0SChttp://www.secuobs.com/twitter/news/347669.shtmlhttp://www.secuobs.com/twitter/news/347669.shtml RT @briankrebs: Switch browsers in response to 0days I found that IE was under 0day attack for 89 to 152 days in last 19 months http:// 2012-10-02 20:06:39 - securitywatch : RT @briankrebs: Switch browsers in response to 0days I found that IE was under 0day attack for 89 to 152 days in last 19 months http:// http://www.secuobs.com/twitter/news/347668.shtmlhttp://www.secuobs.com/twitter/news/347668.shtml White House admits it was hit with a phishing attack, but no classified systems were affected and no data siphoned: http://tco/9aQ5sY642012-10-02 19:45:49 - DarkReading : White House admits it was hit with a phishing attack, but no classified systems were affected and no data siphoned: http://tco/9aQ5sY64http://www.secuobs.com/twitter/news/347661.shtmlhttp://www.secuobs.com/twitter/news/347661.shtml RT @desmondholden: If @attritionorg tracked infosec press the whole industry would collapse Seen perhaps 2 articles on the DDoS attacks 2012-10-02 19:41:09 - attritionorg : RT @desmondholden: If @attritionorg tracked infosec press the whole industry would collapse Seen perhaps 2 articles on the DDoS attacks http://www.secuobs.com/twitter/news/347660.shtmlhttp://www.secuobs.com/twitter/news/347660.shtml @0xcharlie described an NFC protocol attack vector of replacing tags Even harder to detect than rogue QR codes I've been testing #sectorca2012-10-02 19:30:52 - stevewerby : @0xcharlie described an NFC protocol attack vector of replacing tags Even harder to detect than rogue QR codes I've been testing #sectorcahttp://www.secuobs.com/twitter/news/347655.shtmlhttp://www.secuobs.com/twitter/news/347655.shtml RT @malerisch: Cisco Unified Communications Manager Call Manager PIN brute force attack - http://tco/b2SPq455 - useful stuph2012-10-02 18:37:00 - sandrogauci : RT @malerisch: Cisco Unified Communications Manager Call Manager PIN brute force attack - http://tco/b2SPq455 - useful stuphhttp://www.secuobs.com/twitter/news/347644.shtmlhttp://www.secuobs.com/twitter/news/347644.shtml DDoS attacks reach new level of sophistication http://tco/QH7LnPer2012-10-02 16:29:48 - CanDeger : DDoS attacks reach new level of sophistication http://tco/QH7LnPerhttp://www.secuobs.com/twitter/news/347623.shtmlhttp://www.secuobs.com/twitter/news/347623.shtml Switch browsers in response to 0days I found that IE was under 0day attack for 89 to 152 days in last 19 months http://tco/Kw4CrBLa2012-10-02 15:14:25 - briankrebs : Switch browsers in response to 0days I found that IE was under 0day attack for 89 to 152 days in last 19 months http://tco/Kw4CrBLahttp://www.secuobs.com/twitter/news/347618.shtmlhttp://www.secuobs.com/twitter/news/347618.shtml @securityskeptic what i take issue with when people ask in face of 0day under attack is when people go out of way to say don't switch2012-10-02 15:14:25 - briankrebs : @securityskeptic what i take issue with when people ask in face of 0day under attack is when people go out of way to say don't switchhttp://www.secuobs.com/twitter/news/347617.shtmlhttp://www.secuobs.com/twitter/news/347617.shtml RT @door7302: DDoS attacks: 150Gb per second and rising http://tco/5ocVhvNR2012-10-02 14:31:17 - bortzmeyer : RT @door7302: DDoS attacks: 150Gb per second and rising http://tco/5ocVhvNRhttp://www.secuobs.com/twitter/news/347613.shtmlhttp://www.secuobs.com/twitter/news/347613.shtml RT @codelancer: From a DDoS perspective, they are on the level of a Stuxnet type of attack http://tco/cPMPbMlx O'RLY2012-10-02 14:17:52 - nicolasbrulez : RT @codelancer: From a DDoS perspective, they are on the level of a Stuxnet type of attack http://tco/cPMPbMlx O'RLYhttp://www.secuobs.com/twitter/news/347610.shtmlhttp://www.secuobs.com/twitter/news/347610.shtml Washington confirms Chinese hack attack on White House computer http://tco/jXGG5K7P Spear Phishing a forensics challenge to detect2012-10-02 13:31:41 - DFMag : Washington confirms Chinese hack attack on White House computer http://tco/jXGG5K7P Spear Phishing a forensics challenge to detecthttp://www.secuobs.com/twitter/news/347607.shtmlhttp://www.secuobs.com/twitter/news/347607.shtml Revealing a little about recent DDoS attacks: It’s a bit frustrating sometimes, working for a company like Akama http://tco/3dEM6c7D2012-10-02 12:28:42 - EvilFingers : Revealing a little about recent DDoS attacks: It’s a bit frustrating sometimes, working for a company like Akama http://tco/3dEM6c7Dhttp://www.secuobs.com/twitter/news/347598.shtmlhttp://www.secuobs.com/twitter/news/347598.shtml Details on attack hitting Brazil since 2011 using 1 firmware vuln, 2 malicious scripts and 40 malicious DNS servers http://tco/HwwPeRvW2012-10-02 10:32:45 - ryanaraine : Details on attack hitting Brazil since 2011 using 1 firmware vuln, 2 malicious scripts and 40 malicious DNS servers http://tco/HwwPeRvWhttp://www.secuobs.com/twitter/news/347584.shtmlhttp://www.secuobs.com/twitter/news/347584.shtml I'm on the @Akamai blog talking about DDoS attacks over the past 2 weeks http://tco/8tRLp9542012-10-02 10:15:51 - rybolov : I'm on the @Akamai blog talking about DDoS attacks over the past 2 weeks http://tco/8tRLp954http://www.secuobs.com/twitter/news/347579.shtmlhttp://www.secuobs.com/twitter/news/347579.shtml This is the smoking gun of DDoS attacks against banks since the 18th: http://tco/3fF1gh4M2012-10-02 10:15:51 - rybolov : This is the smoking gun of DDoS attacks against banks since the 18th: http://tco/3fF1gh4Mhttp://www.secuobs.com/twitter/news/347578.shtmlhttp://www.secuobs.com/twitter/news/347578.shtml Am I just naive here when I say that the attackers only have ~700 nodes in a hand-built botnet using VPS nodes, not a 20K node botnet2012-10-02 10:15:51 - rybolov : Am I just naive here when I say that the attackers only have ~700 nodes in a hand-built botnet using VPS nodes, not a 20K node botnethttp://www.secuobs.com/twitter/news/347576.shtmlhttp://www.secuobs.com/twitter/news/347576.shtml @scarybeasts Yes Browsers stop allowing websites on non-RFC 1918 networks from issuing requests to RFC-1918 hosts Kills off CSRF attack2012-10-02 09:49:53 - jeremiahg : @scarybeasts Yes Browsers stop allowing websites on non-RFC 1918 networks from issuing requests to RFC-1918 hosts Kills off CSRF attackhttp://www.secuobs.com/twitter/news/347569.shtmlhttp://www.secuobs.com/twitter/news/347569.shtml RT @451wendy: Very nice overview by @rybolov on how @Akamai deals with DDoS attacks: https://tco/khEEuecj2012-10-02 09:42:12 - hal_pomeranz : RT @451wendy: Very nice overview by @rybolov on how @Akamai deals with DDoS attacks: https://tco/khEEuecjhttp://www.secuobs.com/twitter/news/347565.shtmlhttp://www.secuobs.com/twitter/news/347565.shtml Overview of the recent bank DDoS attacks and what can be done to prevent mitigate DDoS damage http://tco/hH8ar9iR2012-10-02 08:31:47 - BreakingPoint : Overview of the recent bank DDoS attacks and what can be done to prevent mitigate DDoS damage http://tco/hH8ar9iRhttp://www.secuobs.com/twitter/news/347553.shtmlhttp://www.secuobs.com/twitter/news/347553.shtml USA under huge DDoS attack http://tco/t6tb2cia2012-10-02 08:11:48 - SCforum : USA under huge DDoS attack http://tco/t6tb2ciahttp://www.secuobs.com/twitter/news/347551.shtmlhttp://www.secuobs.com/twitter/news/347551.shtml @briankrebs Also counting days under 0-day attack is almost as meaningless as counting zero-days themselves : lots of non zero day attack2012-10-02 08:11:36 - rik_ferguson : @briankrebs Also counting days under 0-day attack is almost as meaningless as counting zero-days themselves : lots of non zero day attackhttp://www.secuobs.com/twitter/news/347550.shtmlhttp://www.secuobs.com/twitter/news/347550.shtml RT @malerisch: Blog post - Cisco Unified Communications Manager Call Manager PIN brute force attack - http://tco/iDN6WbRt - enjoy ;-2012-10-02 04:57:34 - antic0de : RT @malerisch: Blog post - Cisco Unified Communications Manager Call Manager PIN brute force attack - http://tco/iDN6WbRt - enjoy ;-http://www.secuobs.com/twitter/news/347486.shtmlhttp://www.secuobs.com/twitter/news/347486.shtml White House confirms network breach, thwarted attack http://tco/t9vZcvnb spear phishing POTUS2012-10-02 01:33:36 - DrInfoSec : White House confirms network breach, thwarted attack http://tco/t9vZcvnb spear phishing POTUShttp://www.secuobs.com/twitter/news/347449.shtmlhttp://www.secuobs.com/twitter/news/347449.shtml Cisco CallManager vulnerable to brute force attack http://tco/huBniSRy2012-10-02 01:26:31 - CanDeger : Cisco CallManager vulnerable to brute force attack http://tco/huBniSRyhttp://www.secuobs.com/twitter/news/347434.shtmlhttp://www.secuobs.com/twitter/news/347434.shtml G+: Unlike Google Chrome and Mozilla Firefox users, IE users were exposed to active attacks against unpatched,… http://tco/QcAF5dCm2012-10-02 01:08:47 - anton_chuvakin : G+: Unlike Google Chrome and Mozilla Firefox users, IE users were exposed to active attacks against unpatched,… http://tco/QcAF5dCmhttp://www.secuobs.com/twitter/news/347432.shtmlhttp://www.secuobs.com/twitter/news/347432.shtml RT @johnwilander: Now time for @0x6D6172696F's talk on scriptless attacks That is bypassing NoScript, XSS filters, and CSP2012-10-01 22:04:56 - securityshell : RT @johnwilander: Now time for @0x6D6172696F's talk on scriptless attacks That is bypassing NoScript, XSS filters, and CSPhttp://www.secuobs.com/twitter/news/347377.shtmlhttp://www.secuobs.com/twitter/news/347377.shtml RT @ryanaraine: Details on attack hitting Brazil since 2011 using 1 firmware vuln, 2 malicious scripts and 40 malicious DNS servers http 2012-10-01 21:03:09 - getwired : RT @ryanaraine: Details on attack hitting Brazil since 2011 using 1 firmware vuln, 2 malicious scripts and 40 malicious DNS servers http http://www.secuobs.com/twitter/news/347363.shtmlhttp://www.secuobs.com/twitter/news/347363.shtml Just posted from @rybolov Information, not hope, is the key to surviving DDoS attacks http://tco/Bni9fgAb2012-10-01 20:19:51 - mckeay : Just posted from @rybolov Information, not hope, is the key to surviving DDoS attacks http://tco/Bni9fgAbhttp://www.secuobs.com/twitter/news/347356.shtmlhttp://www.secuobs.com/twitter/news/347356.shtml RT @rybolov: I'm on the @Akamai blog talking about DDoS attacks over the past 2 weeks http://tco/8tRLp9542012-10-01 19:29:24 - danphilpott : RT @rybolov: I'm on the @Akamai blog talking about DDoS attacks over the past 2 weeks http://tco/8tRLp954http://www.secuobs.com/twitter/news/347347.shtmlhttp://www.secuobs.com/twitter/news/347347.shtml DDoS attacks hit Wells Fargo, PNC Bank, US Bancorp http://tco/O7AWprEf2012-10-01 12:58:43 - slandail : DDoS attacks hit Wells Fargo, PNC Bank, US Bancorp http://tco/O7AWprEfhttp://www.secuobs.com/twitter/news/347291.shtmlhttp://www.secuobs.com/twitter/news/347291.shtml appreciating the clarity that @Brav0Hax is bringing to MiTM attacks #DerbyCon2012-10-01 07:44:48 - rogueclown : appreciating the clarity that @Brav0Hax is bringing to MiTM attacks #DerbyConhttp://www.secuobs.com/twitter/news/347250.shtmlhttp://www.secuobs.com/twitter/news/347250.shtml Leading US banks targeted in DDoS attacks http://tco/AMSv72jW2012-10-01 06:40:49 - teksquisite : Leading US banks targeted in DDoS attacks http://tco/AMSv72jWhttp://www.secuobs.com/twitter/news/347244.shtmlhttp://www.secuobs.com/twitter/news/347244.shtml Dan Holdenon DDoS attacks against US Banks: Trying to fix your roof when it's raining is not a pleasant experience http://tco/pJMphgC42012-10-01 01:26:00 - cyberwar : Dan Holdenon DDoS attacks against US Banks: Trying to fix your roof when it's raining is not a pleasant experience http://tco/pJMphgC4http://www.secuobs.com/twitter/news/347223.shtmlhttp://www.secuobs.com/twitter/news/347223.shtml Two-stage CSRF attacks http://tco/tfi4lvEI2012-09-30 16:39:10 - securityshell : Two-stage CSRF attacks http://tco/tfi4lvEIhttp://www.secuobs.com/twitter/news/347182.shtmlhttp://www.secuobs.com/twitter/news/347182.shtml Zombies are attacking America – researchers: Banking sector DDoSers 'used botnets', say security boffinsHackers http://tco/0dxnCC8y2012-09-30 09:26:38 - obsequens : Zombies are attacking America – researchers: Banking sector DDoSers 'used botnets', say security boffinsHackers http://tco/0dxnCC8yhttp://www.secuobs.com/twitter/news/347136.shtmlhttp://www.secuobs.com/twitter/news/347136.shtml Phishing attacks employing new strategies http://tco/uCbGJiph via @ProofpointNews2012-09-30 04:36:16 - Proofpoint_Inc : Phishing attacks employing new strategies http://tco/uCbGJiph via @ProofpointNewshttp://www.secuobs.com/twitter/news/347111.shtmlhttp://www.secuobs.com/twitter/news/347111.shtml Zombies are attacking America – researchers: Banking sector DDoSers 'used botnets', say security boffins Hackers re… http://tco/D92gSxDw2012-09-30 03:40:57 - regsecurity : Zombies are attacking America – researchers: Banking sector DDoSers 'used botnets', say security boffins Hackers re… http://tco/D92gSxDwhttp://www.secuobs.com/twitter/news/347105.shtmlhttp://www.secuobs.com/twitter/news/347105.shtml #OWASP IBM: SQL Injection Vulnerabilities on Decline - And the most common attack vulnerability, SQL injection, is http://tco/N3LszwZ02012-09-30 01:54:53 - Netw0rkSecurity : #OWASP IBM: SQL Injection Vulnerabilities on Decline - And the most common attack vulnerability, SQL injection, is http://tco/N3LszwZ0http://www.secuobs.com/twitter/news/347094.shtmlhttp://www.secuobs.com/twitter/news/347094.shtml Major US banks still under DDoS attack http://tco/RrGneQDQ2012-09-30 01:00:16 - ITVulnerability : Major US banks still under DDoS attack http://tco/RrGneQDQhttp://www.secuobs.com/twitter/news/347073.shtmlhttp://www.secuobs.com/twitter/news/347073.shtml CNN's coverage of the DDoS attacks is simply ridiculous Biggest cyberattacks;High-powered application servers used http://tco/CeoxlZOW2012-09-29 19:39:08 - danchodanchev : CNN's coverage of the DDoS attacks is simply ridiculous Biggest cyberattacks;High-powered application servers used http://tco/CeoxlZOWhttp://www.secuobs.com/twitter/news/347034.shtmlhttp://www.secuobs.com/twitter/news/347034.shtml A powerful server doesn't equal a successful DDoS attack Go through 7 examples of crowdsourced opt-in botnet campaigns http://tco/XzusIHFR2012-09-29 19:39:08 - danchodanchev : A powerful server doesn't equal a successful DDoS attack Go through 7 examples of crowdsourced opt-in botnet campaigns http://tco/XzusIHFRhttp://www.secuobs.com/twitter/news/347033.shtmlhttp://www.secuobs.com/twitter/news/347033.shtml Zombies are attacking America – researchers: Banking sector DDoSers 'used botnets', say security boffins Hackers http://tco/vbprV69b2012-09-29 18:38:16 - ElReg : Zombies are attacking America – researchers: Banking sector DDoSers 'used botnets', say security boffins Hackers http://tco/vbprV69bhttp://www.secuobs.com/twitter/news/347029.shtmlhttp://www.secuobs.com/twitter/news/347029.shtml Zombies are attacking America – researchers - Banking sector DDoSers 'used botnets', say security boffins Hackers re http://tco/m6LZefX42012-09-29 17:30:16 - kakroo : Zombies are attacking America – researchers - Banking sector DDoSers 'used botnets', say security boffins Hackers re http://tco/m6LZefX4http://www.secuobs.com/twitter/news/347018.shtmlhttp://www.secuobs.com/twitter/news/347018.shtml Banks can only hope for best with DDoS attacks - http://tco/Z0nRMOFL2012-09-29 12:47:13 - slandail : Banks can only hope for best with DDoS attacks - http://tco/Z0nRMOFLhttp://www.secuobs.com/twitter/news/346992.shtmlhttp://www.secuobs.com/twitter/news/346992.shtml Leading US banks targeted in DDoS attacks http://tco/c2V6D1kC via @paulfroberts2012-09-29 12:30:49 - gcluley : Leading US banks targeted in DDoS attacks http://tco/c2V6D1kC via @paulfrobertshttp://www.secuobs.com/twitter/news/346982.shtmlhttp://www.secuobs.com/twitter/news/346982.shtml RT @jgrahamc: At #vb2012 established that the @CloudFlare DDoS attack dip in late January is likely caused by the Chinese New Year http 2012-09-29 11:28:34 - alexeck : RT @jgrahamc: At #vb2012 established that the @CloudFlare DDoS attack dip in late January is likely caused by the Chinese New Year http http://www.secuobs.com/twitter/news/346976.shtmlhttp://www.secuobs.com/twitter/news/346976.shtml Phishing attacks still major problem for businesses http://tco/geo6ysGc via @ProofpointNews2012-09-29 11:17:15 - Proofpoint_Inc : Phishing attacks still major problem for businesses http://tco/geo6ysGc via @ProofpointNewshttp://www.secuobs.com/twitter/news/346967.shtmlhttp://www.secuobs.com/twitter/news/346967.shtml Major US banks still under DDoS attack http://tco/z8fhzCvt2012-09-29 10:33:36 - DarkOperator : Major US banks still under DDoS attack http://tco/z8fhzCvthttp://www.secuobs.com/twitter/news/346966.shtmlhttp://www.secuobs.com/twitter/news/346966.shtml Java flaw allows attackers to bypass sandbox defences http://tco/Zu4Fym3E Computer Weekly2012-09-29 09:41:21 - ITDataSecurity : Java flaw allows attackers to bypass sandbox defences http://tco/Zu4Fym3E Computer Weeklyhttp://www.secuobs.com/twitter/news/346953.shtmlhttp://www.secuobs.com/twitter/news/346953.shtml RT @teksquisite: Time-sensitive keywords prominent in phishing attacks http://tco/vUb8zFcy2012-09-29 08:41:37 - HenkvanRoest : RT @teksquisite: Time-sensitive keywords prominent in phishing attacks http://tco/vUb8zFcyhttp://www.secuobs.com/twitter/news/346938.shtmlhttp://www.secuobs.com/twitter/news/346938.shtml @pwpslade AV does kill the bottom feeder attacks Prob is too many see it as a panacea PCI says it's all I needso I'm done2012-09-29 03:47:52 - armorguy : @pwpslade AV does kill the bottom feeder attacks Prob is too many see it as a panacea PCI says it's all I needso I'm donehttp://www.secuobs.com/twitter/news/346900.shtmlhttp://www.secuobs.com/twitter/news/346900.shtml Major US banks still under DDoS attack http://tco/PDr4svr12012-09-29 02:19:14 - CanDeger : Major US banks still under DDoS attack http://tco/PDr4svr1http://www.secuobs.com/twitter/news/346890.shtmlhttp://www.secuobs.com/twitter/news/346890.shtml PNC Bank Hit By Crowdsourced Hacktivist Attacks: Financial services website disrupted by DDoS attacks launched t http://tco/oXklyvJ82012-09-28 21:29:09 - opexxx : PNC Bank Hit By Crowdsourced Hacktivist Attacks: Financial services website disrupted by DDoS attacks launched t http://tco/oXklyvJ8http://www.secuobs.com/twitter/news/346833.shtmlhttp://www.secuobs.com/twitter/news/346833.shtml RT @SCMagazine: DDoS attacks hit Wells Fargo, PNC Bank, US Bancorp | http://tco/qKAQBCSq2012-09-28 21:23:04 - LogTalk : RT @SCMagazine: DDoS attacks hit Wells Fargo, PNC Bank, US Bancorp | http://tco/qKAQBCSqhttp://www.secuobs.com/twitter/news/346832.shtmlhttp://www.secuobs.com/twitter/news/346832.shtml @andrewsmhay I'm with the other comments on mitigating SSH passwd attacks +use a stable distro that publishes rapid sec update packages2012-09-28 19:29:02 - leonward : @andrewsmhay I'm with the other comments on mitigating SSH passwd attacks +use a stable distro that publishes rapid sec update packageshttp://www.secuobs.com/twitter/news/346804.shtmlhttp://www.secuobs.com/twitter/news/346804.shtml Another CSO Online interview, this time about banking DDoS attacks @jeremiahg is also interviewed http://tco/dycFfwUx2012-09-28 17:46:21 - lbhuston : Another CSO Online interview, this time about banking DDoS attacks @jeremiahg is also interviewed http://tco/dycFfwUxhttp://www.secuobs.com/twitter/news/346794.shtmlhttp://www.secuobs.com/twitter/news/346794.shtml RT @kidko92: Holy crap Did the news just say that the DDoS hacker attacks mean A Cyberwar is underway” // #cybercybercybercyber2012-09-28 16:23:13 - hrbrmstr : RT @kidko92: Holy crap Did the news just say that the DDoS hacker attacks mean A Cyberwar is underway” // #cybercybercybercyberhttp://www.secuobs.com/twitter/news/346772.shtmlhttp://www.secuobs.com/twitter/news/346772.shtml @briankrebs @KimZetter @TomRyanBlog @packetninjas USB sticks don't attack computers Attackers attack computers2012-09-28 16:19:00 - innismir : @briankrebs @KimZetter @TomRyanBlog @packetninjas USB sticks don't attack computers Attackers attack computershttp://www.secuobs.com/twitter/news/346769.shtmlhttp://www.secuobs.com/twitter/news/346769.shtml Find out which are the top words used in spear phishing attacks to compromise enterprise networks: http://tco/AJv2uf902012-09-28 12:46:46 - FireEye : Find out which are the top words used in spear phishing attacks to compromise enterprise networks: http://tco/AJv2uf90http://www.secuobs.com/twitter/news/346719.shtmlhttp://www.secuobs.com/twitter/news/346719.shtml RT @regvulture: Vandals break into congressman's office, install Linux on PCs: Grimm: 'Very ignorant' attack A US congressmen has b… ht 2012-09-28 09:27:08 - cudeso : RT @regvulture: Vandals break into congressman's office, install Linux on PCs: Grimm: 'Very ignorant' attack A US congressmen has b… ht http://www.secuobs.com/twitter/news/346685.shtmlhttp://www.secuobs.com/twitter/news/346685.shtml Banks can only hope for best with DDoS attacks http://tco/1earq0iO via @csoonline2012-09-28 06:25:17 - BillBrenner70 : Banks can only hope for best with DDoS attacks http://tco/1earq0iO via @csoonlinehttp://www.secuobs.com/twitter/news/346654.shtmlhttp://www.secuobs.com/twitter/news/346654.shtml 'Nothing new' in DDoS attacks http://tco/nb6MI7M2 via @CSOonline2012-09-28 06:25:17 - BillBrenner70 : 'Nothing new' in DDoS attacks http://tco/nb6MI7M2 via @CSOonlinehttp://www.secuobs.com/twitter/news/346653.shtmlhttp://www.secuobs.com/twitter/news/346653.shtml Infosec - Leading US banks targeted in DDoS attacks http://tco/K18atMWp2012-09-28 04:24:50 - AlertBoot : Infosec - Leading US banks targeted in DDoS attacks http://tco/K18atMWphttp://www.secuobs.com/twitter/news/346628.shtmlhttp://www.secuobs.com/twitter/news/346628.shtml Ask the Expert: @lewisnic explains how to defend against iPad exploit and rogue access point attacks http://tco/rJdqTxnu2012-09-28 02:12:47 - SearchSecurity : Ask the Expert: @lewisnic explains how to defend against iPad exploit and rogue access point attacks http://tco/rJdqTxnuhttp://www.secuobs.com/twitter/news/346610.shtmlhttp://www.secuobs.com/twitter/news/346610.shtml News: Some activist DDoS attacks growing in sophistication, expert says http://tco/loYdMkVx2012-09-28 02:12:47 - SearchSecurity : News: Some activist DDoS attacks growing in sophistication, expert says http://tco/loYdMkVxhttp://www.secuobs.com/twitter/news/346607.shtmlhttp://www.secuobs.com/twitter/news/346607.shtml Streamline Burp Intruder attacks with Payload Processing Regex http://tco/KDasGsTY plus a nice collection of wordlists2012-09-28 00:18:24 - Infosanity : Streamline Burp Intruder attacks with Payload Processing Regex http://tco/KDasGsTY plus a nice collection of wordlistshttp://www.secuobs.com/twitter/news/346574.shtmlhttp://www.secuobs.com/twitter/news/346574.shtml Leading US banks targeted in DDoS attacks http://tco/HiY06jm32012-09-28 00:07:15 - SophosLabs : Leading US banks targeted in DDoS attacks http://tco/HiY06jm3http://www.secuobs.com/twitter/news/346566.shtmlhttp://www.secuobs.com/twitter/news/346566.shtml Cyber attacks are additional rungs in the escalation ladder - Ed Skoudis #Cyberwar #BruCON2012-09-28 00:00:22 - attritionorg : Cyber attacks are additional rungs in the escalation ladder - Ed Skoudis #Cyberwar #BruCONhttp://www.secuobs.com/twitter/news/346559.shtmlhttp://www.secuobs.com/twitter/news/346559.shtml RT @teamcymru: HoneyMap, a real-time world map which visualizes attacks captured by honeypots of the Honeynet Projecthttp://tco/F8uffjM92012-09-27 23:51:31 - y0m : RT @teamcymru: HoneyMap, a real-time world map which visualizes attacks captured by honeypots of the Honeynet Projecthttp://tco/F8uffjM9http://www.secuobs.com/twitter/news/346554.shtmlhttp://www.secuobs.com/twitter/news/346554.shtml DDoS attacks against big American banks have caused delays but no damage #security #infosec via @NYTimes http://tco/axolTHZW2012-09-27 23:15:40 - dpwallace : DDoS attacks against big American banks have caused delays but no damage #security #infosec via @NYTimes http://tco/axolTHZWhttp://www.secuobs.com/twitter/news/346550.shtmlhttp://www.secuobs.com/twitter/news/346550.shtml RT @attritionorg: Cyber attacks are additional rungs in the escalation ladder - Ed Skoudis #Cyberwar #BruCON2012-09-27 21:01:57 - ChrisJohnRiley : RT @attritionorg: Cyber attacks are additional rungs in the escalation ladder - Ed Skoudis #Cyberwar #BruCONhttp://www.secuobs.com/twitter/news/346502.shtmlhttp://www.secuobs.com/twitter/news/346502.shtml @jadedsecurity I'm trying to get as much off VPN iPads, phones and workstations as possible for attack surface reduction2012-09-27 20:55:18 - hrbrmstr : @jadedsecurity I'm trying to get as much off VPN iPads, phones and workstations as possible for attack surface reductionhttp://www.secuobs.com/twitter/news/346500.shtmlhttp://www.secuobs.com/twitter/news/346500.shtml Many ways to break SSL with CRIME attacks, experts warn: link Eyal Estrin CISSP, CISA, CEH, Security+, MCSE:S http://tco/6VQHvUGm2012-09-27 18:08:18 - eyalestrin : Many ways to break SSL with CRIME attacks, experts warn: link Eyal Estrin CISSP, CISA, CEH, Security+, MCSE:S http://tco/6VQHvUGmhttp://www.secuobs.com/twitter/news/346441.shtmlhttp://www.secuobs.com/twitter/news/346441.shtml Reading -- Banks can only hope for the best with DDoS attacks http://tco/azymUkpo via @networkworld2012-09-27 16:18:09 - LogTalk : Reading -- Banks can only hope for the best with DDoS attacks http://tco/azymUkpo via @networkworldhttp://www.secuobs.com/twitter/news/346401.shtmlhttp://www.secuobs.com/twitter/news/346401.shtml On-demand video session, “How to protect your business from a DDoS attack” is next #InfosecurityVC2012 http://tco/uFoldAPv @cityunilondon2012-09-27 15:53:55 - InfosecurityMag : On-demand video session, “How to protect your business from a DDoS attack” is next #InfosecurityVC2012 http://tco/uFoldAPv @cityunilondonhttp://www.secuobs.com/twitter/news/346389.shtmlhttp://www.secuobs.com/twitter/news/346389.shtml Virtualized BYOD active-defense of API orchestration thru self-healing private cloud 2 holistically protect from CyberWolf attack #BSidesDFW2012-09-27 12:25:55 - Shpantzer : Virtualized BYOD active-defense of API orchestration thru self-healing private cloud 2 holistically protect from CyberWolf attack #BSidesDFWhttp://www.secuobs.com/twitter/news/346362.shtmlhttp://www.secuobs.com/twitter/news/346362.shtml RT @diocyde: CN APT PlugX actor identified in latest 0days attacks by researchers and absolutely no one pays attention #connecttheDotz2012-09-27 11:06:23 - fifth_sentinel : RT @diocyde: CN APT PlugX actor identified in latest 0days attacks by researchers and absolutely no one pays attention #connecttheDotzhttp://www.secuobs.com/twitter/news/346307.shtmlhttp://www.secuobs.com/twitter/news/346307.shtml Vandals break into congressman's office, install Linux on PCs: Grimm: 'Very ignorant' attack A US congressmen has b… http://tco/qsqBU8g02012-09-27 10:13:16 - regsecurity : Vandals break into congressman's office, install Linux on PCs: Grimm: 'Very ignorant' attack A US congressmen has b… http://tco/qsqBU8g0http://www.secuobs.com/twitter/news/346278.shtmlhttp://www.secuobs.com/twitter/news/346278.shtml Time-sensitive keywords prominent in phishing attacks http://tco/vUb8zFcy2012-09-27 05:28:59 - teksquisite : Time-sensitive keywords prominent in phishing attacks http://tco/vUb8zFcyhttp://www.secuobs.com/twitter/news/346140.shtmlhttp://www.secuobs.com/twitter/news/346140.shtml @joshcorman Aww, it would be a cruel trick to perform a denial of service attack on the restrooms at BruCon2012-09-27 04:15:35 - mckeay : @joshcorman Aww, it would be a cruel trick to perform a denial of service attack on the restrooms at BruConhttp://www.secuobs.com/twitter/news/346109.shtmlhttp://www.secuobs.com/twitter/news/346109.shtml Hackers target Windows Update in phishing attack: With users and administrators around the world scrambling to p http://tco/DLfRe2at2012-09-25 08:51:45 - hackinthebox : Hackers target Windows Update in phishing attack: With users and administrators around the world scrambling to p http://tco/DLfRe2athttp://www.secuobs.com/twitter/news/346094.shtmlhttp://www.secuobs.com/twitter/news/346094.shtml North Korea provides great examples of sending messages to rival nations via DDoS attack Iran was probably watching http://tco/3XKvia6r2012-09-22 16:25:25 - taosecurity : North Korea provides great examples of sending messages to rival nations via DDoS attack Iran was probably watching http://tco/3XKvia6rhttp://www.secuobs.com/twitter/news/346043.shtmlhttp://www.secuobs.com/twitter/news/346043.shtml RT @RSA_Fraud: The US hosted 80 pourcents of phishing attacks launched in August - read more in RSA's Sept Monthly Online Fraud Report | http:/ 2012-09-22 12:29:54 - rsasecurity : RT @RSA_Fraud: The US hosted 80 pourcents of phishing attacks launched in August - read more in RSA's Sept Monthly Online Fraud Report | http:/ http://www.secuobs.com/twitter/news/345998.shtmlhttp://www.secuobs.com/twitter/news/345998.shtml Eager iPhone 5 fans targeted in UPS phishing attack http://tco/l6X9mAzH via @V3_co_uk #iphone5 #iphone #phishing2012-09-22 12:11:07 - websense : Eager iPhone 5 fans targeted in UPS phishing attack http://tco/l6X9mAzH via @V3_co_uk #iphone5 #iphone #phishinghttp://www.secuobs.com/twitter/news/345984.shtmlhttp://www.secuobs.com/twitter/news/345984.shtml Does anyone know of / have an EC2 AMI specifically vulnerable to a variety of common attacks Ie metasploitable-as-an-AMI #need2pwn2012-09-22 08:31:31 - taylorbanks : Does anyone know of / have an EC2 AMI specifically vulnerable to a variety of common attacks Ie metasploitable-as-an-AMI #need2pwnhttp://www.secuobs.com/twitter/news/345941.shtmlhttp://www.secuobs.com/twitter/news/345941.shtml RT @calebbarlow: The afterglow of a cyber attack - how IBM's darknet detects the activity in the #XForceReport http://tco/CQy1UvzF #infosec2012-09-22 02:24:35 - Q1Labs : RT @calebbarlow: The afterglow of a cyber attack - how IBM's darknet detects the activity in the #XForceReport http://tco/CQy1UvzF #infosechttp://www.secuobs.com/twitter/news/345880.shtmlhttp://www.secuobs.com/twitter/news/345880.shtml RT @LucasErratus: APT state sponsored attackers still primarily use spear phishing for initial infiltration, but we do see them do SQL 2012-09-21 21:26:59 - Mandiant : RT @LucasErratus: APT state sponsored attackers still primarily use spear phishing for initial infiltration, but we do see them do SQL http://www.secuobs.com/twitter/news/345810.shtmlhttp://www.secuobs.com/twitter/news/345810.shtml Funny phishing attack using #LinkedIn http://tco/3t2HznYK sed -i 's/XXX/www/' domain owned http://tco/FUMg8HHY2012-09-21 17:37:49 - emgent : Funny phishing attack using #LinkedIn http://tco/3t2HznYK sed -i 's/XXX/www/' domain owned http://tco/FUMg8HHYhttp://www.secuobs.com/twitter/news/345749.shtmlhttp://www.secuobs.com/twitter/news/345749.shtml Updated SSLyze v05 with a server side check for the CRIME attack CVE-2012-4969, that uses SSL Compression available — http://tco/VCdJnIL42012-09-21 14:13:36 - pentestit : Updated SSLyze v05 with a server side check for the CRIME attack CVE-2012-4969, that uses SSL Compression available — http://tco/VCdJnIL4http://www.secuobs.com/twitter/news/345722.shtmlhttp://www.secuobs.com/twitter/news/345722.shtml An analysis of DDoS attack methodologies http://tco/kqxbH2oy2012-09-21 14:11:16 - InfosecurityMag : An analysis of DDoS attack methodologies http://tco/kqxbH2oyhttp://www.secuobs.com/twitter/news/345721.shtmlhttp://www.secuobs.com/twitter/news/345721.shtml RT @ixiacom: More on CRIME: http://tco/DWSG2ej3 Many ways to break SSL with CRIME attacks via @arstechnica http://tco/Vp5J1EF42012-09-21 00:39:39 - BreakingPoint : RT @ixiacom: More on CRIME: http://tco/DWSG2ej3 Many ways to break SSL with CRIME attacks via @arstechnica http://tco/Vp5J1EF4http://www.secuobs.com/twitter/news/345565.shtmlhttp://www.secuobs.com/twitter/news/345565.shtml G+: Understanding the nature of DDoS attacks… http://tco/5sN9wMlY2012-09-20 19:50:33 - 0x58 : G+: Understanding the nature of DDoS attacks… http://tco/5sN9wMlYhttp://www.secuobs.com/twitter/news/345520.shtmlhttp://www.secuobs.com/twitter/news/345520.shtml Full Disclosure: CVE-2012-3451 - Apache CXF is vulnerable to SOAP Action spoofing attacks on Document Literal we http://tco/on5hHOky2012-09-20 19:20:33 - SecMailLists : Full Disclosure: CVE-2012-3451 - Apache CXF is vulnerable to SOAP Action spoofing attacks on Document Literal we http://tco/on5hHOkyhttp://www.secuobs.com/twitter/news/345513.shtmlhttp://www.secuobs.com/twitter/news/345513.shtml RT @digitalbond: Nessus Audit Updates adds Open Ports http://tco/DAVvmqp6 this is great for NERC CIP and any attack surface audit2012-09-20 16:37:02 - RonGula : RT @digitalbond: Nessus Audit Updates adds Open Ports http://tco/DAVvmqp6 this is great for NERC CIP and any attack surface audithttp://www.secuobs.com/twitter/news/345494.shtmlhttp://www.secuobs.com/twitter/news/345494.shtml Some years ago, same time and date i was working on a skype 0day and was not a simple vulnerability but a 0day attack technique #CAS2012-09-20 15:40:31 - emgent : Some years ago, same time and date i was working on a skype 0day and was not a simple vulnerability but a 0day attack technique #CAShttp://www.secuobs.com/twitter/news/345472.shtmlhttp://www.secuobs.com/twitter/news/345472.shtml Mobile Pwn2Own: iPhone 4S hacked by Dutch team: How long would it take a determined attacker to hack into Apple' http://tco/CaD1dlj32012-09-20 14:38:13 - EvilFingers : Mobile Pwn2Own: iPhone 4S hacked by Dutch team: How long would it take a determined attacker to hack into Apple' http://tco/CaD1dlj3http://www.secuobs.com/twitter/news/345469.shtmlhttp://www.secuobs.com/twitter/news/345469.shtml Microsoft promises fast fix for IE zero-day as new attacks are discovered http://tco/Xj9ZSWM62012-09-20 13:38:30 - ITVulnerability : Microsoft promises fast fix for IE zero-day as new attacks are discovered http://tco/Xj9ZSWM6http://www.secuobs.com/twitter/news/345454.shtmlhttp://www.secuobs.com/twitter/news/345454.shtml IE zero-day exploit linked to Java 7 attackers | via @SCMagazine | http://tco/YPMLAOLb2012-09-20 12:40:08 - rsasecurity : IE zero-day exploit linked to Java 7 attackers | via @SCMagazine | http://tco/YPMLAOLbhttp://www.secuobs.com/twitter/news/345437.shtmlhttp://www.secuobs.com/twitter/news/345437.shtml IE zero-day exploit linked to Java 7 attackers: Researchers believe a new zero-day vulnerability, affecting Inte http://tco/DVKl2vhb2012-09-20 11:31:14 - hackinthebox : IE zero-day exploit linked to Java 7 attackers: Researchers believe a new zero-day vulnerability, affecting Inte http://tco/DVKl2vhbhttp://www.secuobs.com/twitter/news/345424.shtmlhttp://www.secuobs.com/twitter/news/345424.shtml RT @PatriceAuffret: If your memory usage is filling quickly by your Web browser, you may be under a heap spray attack #esw12 #EuSecWest2012-09-20 10:05:26 - dragosr : RT @PatriceAuffret: If your memory usage is filling quickly by your Web browser, you may be under a heap spray attack #esw12 #EuSecWesthttp://www.secuobs.com/twitter/news/345406.shtmlhttp://www.secuobs.com/twitter/news/345406.shtml RT @e_kaspersky: New Internet Explorer 0day vulnerability already exploited in attacks http://tco/FhVGtxB7 by @elinormills - +1 re 2012-09-20 09:42:06 - CiscoSecurity : RT @e_kaspersky: New Internet Explorer 0day vulnerability already exploited in attacks http://tco/FhVGtxB7 by @elinormills - +1 re http://www.secuobs.com/twitter/news/345391.shtmlhttp://www.secuobs.com/twitter/news/345391.shtml Critical zero-day bug in Internet Explorer under active attack | Ars Technica http://tco/jGGC1NjZ2012-09-20 08:08:36 - sambowne : Critical zero-day bug in Internet Explorer under active attack | Ars Technica http://tco/jGGC1NjZhttp://www.secuobs.com/twitter/news/345374.shtmlhttp://www.secuobs.com/twitter/news/345374.shtml Microsoft promises fast fix for IE zero-day as new attacks are discovered http://tco/KnOzB1DC2012-09-20 03:09:57 - CanDeger : Microsoft promises fast fix for IE zero-day as new attacks are discovered http://tco/KnOzB1DChttp://www.secuobs.com/twitter/news/345304.shtmlhttp://www.secuobs.com/twitter/news/345304.shtml Exploit Released for Internet Explorer zero-day attacks : CVE-2012-4969 http://tco/0S7qjY6V2012-09-20 03:09:57 - CanDeger : Exploit Released for Internet Explorer zero-day attacks : CVE-2012-4969 http://tco/0S7qjY6Vhttp://www.secuobs.com/twitter/news/345300.shtmlhttp://www.secuobs.com/twitter/news/345300.shtml AlertLogic says that cloud environments have a lower frequency of attacks2012-09-20 02:34:08 - alexhutton : AlertLogic says that cloud environments have a lower frequency of attackshttp://www.secuobs.com/twitter/news/345289.shtmlhttp://www.secuobs.com/twitter/news/345289.shtml Microsoft promises fast fix for IE zero-day as new attacks are discovered - http://tco/JggorX7r2012-09-20 01:51:58 - helpnetsecurity : Microsoft promises fast fix for IE zero-day as new attacks are discovered - http://tco/JggorX7rhttp://www.secuobs.com/twitter/news/345278.shtmlhttp://www.secuobs.com/twitter/news/345278.shtml RT @scmagazine: VIDEO: It's a difficult experience when you're at the receiving end of a targeted phishing attack | http://tco/cklVsksO2012-09-19 19:22:58 - ibmsecurity : RT @scmagazine: VIDEO: It's a difficult experience when you're at the receiving end of a targeted phishing attack | http://tco/cklVsksOhttp://www.secuobs.com/twitter/news/345203.shtmlhttp://www.secuobs.com/twitter/news/345203.shtml Inside the guts of a fiendish Internet Explorer 0-day attack: Bite down, matey, surgeon Pott's got his chopper o http://tco/UzZI723C2012-09-19 16:07:39 - obsequens : Inside the guts of a fiendish Internet Explorer 0-day attack: Bite down, matey, surgeon Pott's got his chopper o http://tco/UzZI723Chttp://www.secuobs.com/twitter/news/345148.shtmlhttp://www.secuobs.com/twitter/news/345148.shtml Critical zero-day bug in Internet Explorer under active attack #security #infosec http://tco/wSEcx4Id2012-09-19 11:49:47 - idexperts : Critical zero-day bug in Internet Explorer under active attack #security #infosec http://tco/wSEcx4Idhttp://www.secuobs.com/twitter/news/345095.shtmlhttp://www.secuobs.com/twitter/news/345095.shtml You say your voice is your password I'll call, and raise; my voice is my attack vector - from HitB conference - http://tco/D3YVDjIr2012-09-19 08:32:02 - RayDavidson : You say your voice is your password I'll call, and raise; my voice is my attack vector - from HitB conference - http://tco/D3YVDjIrhttp://www.secuobs.com/twitter/news/345050.shtmlhttp://www.secuobs.com/twitter/news/345050.shtml Microsoft issues workaround for IE 0-day exploited in current attacks http://tco/OKCJAYpv2012-09-19 08:17:27 - HypedupCat : Microsoft issues workaround for IE 0-day exploited in current attacks http://tco/OKCJAYpvhttp://www.secuobs.com/twitter/news/345049.shtmlhttp://www.secuobs.com/twitter/news/345049.shtml Attacking via network boot, Config DHCP, tftp, PXE boot attack, multiple systems and 20 minutes for the lab You give #sansns2012, you win2012-09-19 03:51:13 - LostRogue : Attacking via network boot, Config DHCP, tftp, PXE boot attack, multiple systems and 20 minutes for the lab You give #sansns2012, you winhttp://www.secuobs.com/twitter/news/345008.shtmlhttp://www.secuobs.com/twitter/news/345008.shtml Microsoft issues workaround for IE 0-day exploited in current attacks - http://tco/U7JlJnB0 @msftsecurity2012-09-19 02:23:22 - helpnetsecurity : Microsoft issues workaround for IE 0-day exploited in current attacks - http://tco/U7JlJnB0 @msftsecurityhttp://www.secuobs.com/twitter/news/344982.shtmlhttp://www.secuobs.com/twitter/news/344982.shtml RT @ixiacom: Critical malware attack exploits a zero-day vulnerability in the latest versions of IE via @arstechnica http://tco/DHIX7eSY2012-09-19 02:04:08 - BreakingPoint : RT @ixiacom: Critical malware attack exploits a zero-day vulnerability in the latest versions of IE via @arstechnica http://tco/DHIX7eSYhttp://www.secuobs.com/twitter/news/344978.shtmlhttp://www.secuobs.com/twitter/news/344978.shtml RT @VUPEN: Microsoft released a security advisory related to the ongoing Internet Explorer zero-day attacks IE10 + Win8 are safe http:/ 2012-09-19 00:50:30 - revskills : RT @VUPEN: Microsoft released a security advisory related to the ongoing Internet Explorer zero-day attacks IE10 + Win8 are safe http:/ http://www.secuobs.com/twitter/news/344960.shtmlhttp://www.secuobs.com/twitter/news/344960.shtml Microsoft released a security advisory related to the ongoing Internet Explorer zero-day attacks IE10 + Win8 are safe http://tco/RALmGGsA2012-09-19 00:44:41 - VUPEN : Microsoft released a security advisory related to the ongoing Internet Explorer zero-day attacks IE10 + Win8 are safe http://tco/RALmGGsAhttp://www.secuobs.com/twitter/news/344956.shtmlhttp://www.secuobs.com/twitter/news/344956.shtml Ask the Expert: @lewisnic assesses Pinterest security and how to defend against social engineering attacks http://tco/8bbF00aA2012-09-18 18:41:25 - SearchSecurity : Ask the Expert: @lewisnic assesses Pinterest security and how to defend against social engineering attacks http://tco/8bbF00aAhttp://www.secuobs.com/twitter/news/344874.shtmlhttp://www.secuobs.com/twitter/news/344874.shtml