Sponsored White Papers, Webcasts, and Downloads
ZDNet Resources
- Black Hat Las Vegas Day 1
- Black Hat Las Vegas Day 1Way to go Nate, Billy, and Rob.Congrats on the Pwnie, I read about it at Dark reading, but haven't actually read your current blog yet.That bit with Kaminsky was...odd. Booing? Really?edit: Now that I've read your blog, I've got to say that I really like...
- Tags: Blogging, Black Hat
- Discussion threads 2008-08-08
- Code Diffs for DNS Exploit Code
- Diffs between revisions of the exploit code released by HDM and |)ruid. Generated by Billy Rios. by Nathan McFeters
- Tags: Billy, code, diffs, DNS, Domain Names, Exploit, Exploit Code, HDM, Internet, McFeters, Nate, Nathan McFeters, Networking, Revision, Rios, screenshots, |)ruid
- Image galleries 2008-07-23
- Taking ownership (pwnership) of content: Cross-site Scripting Google
- My good friend Billy Rios pictured to the right published another interesting exploit recently. It's a cross-site scripting exposure in spreadsheets.google.com, which is interesting because it's exploited by using the content-type returned by spreadsheets.google.com and a caching flaw on the part of Google. Here's some details from Billy's blog: I was...
- Tags: Security, Google Inc., HTML, XSS, Domain, Billy Rios, Rios, Nathan McFeters
- Blog posts 2008-04-16
- The Riverbed Optimization System (RiOS) 5.0
- The Riverbed Optimization System RiOS is the software that powers Riverbed's unique award-winning line of Steelhead application acceleration appliances and Steelhead Mobile client software. RiOS is based on patented technologies that solve a range of problems affecting Wide Area Networks WANs and application performance, including: insufficient WAN bandwidth, inefficient transport...
- Tags: Riverbed Technology Inc., RiOS, WANs, Network Technology, Networking
- White papers 2008-02-19
Additional Resources
- Culture of cheap: How discount computers cost the consumer
- The speed of TechThe problem is not cheap, but rapid devaluation. Tech has always had a sweet spot value for price. I am not keen on spending top dollar only to have the hardware devalue by 50% in a week. This is where cheap comes in. If the thing is...
- Tags: PRODUCTIVITY, computer, Honda Civic, Honda Motor Co., advertisement
- Discussion threads 2009-08-12
- Riverbed Raises the Ante Again in WAN Optimization with RiOS 5.0
- Do your remote workers have a desire for higher performance computing? In this paper by the Taneja Group, learn how Steelhead appliances from Riverbed, with its enhanced RiOS 5.0 operating system, provides a number of improvements across major areas of WAN optimization, delivering LAN-like functionality to your WAN. Download today...
- Tags: Riverbed Technology Inc., Optimization, WANs, Performance Management, Network Technology, Networking, Human Resources, Workforce Management
- White papers 2009-04-01
- Coming soon, but not really soon enough: A certification to weed out shady electronics recyclers
- Coming soon, but not really soon enough: A certification to weed out shady electronics recyclersclarificationThanks for covering this, Heather-- I encourage people to see www.e-Stewards.org for the latest information and list of responsible recyclers. We are currently upgrading our audits of these companies to a fully accredited system; until...
- Tags: Quality, shady electronics recycler, electronics recycler, electronics, certification
- Discussion threads 2008-11-10
- Apple plugs gaping holes in Java for Mac
- Apple today released Java for Mac OS X 10.5 Update 2 with patches for a total of 25 documented security flaws that could expose Mac users to malicious code execution attacks. Two of the 25 flaws are specific to Apple and could be exploited to launch...
- Tags: Apple Macintosh, Apple Inc., Programming Languages, Apple Mac OS X, Java, Desktops, Software Development, Software/Web Development, Operating Systems, Software, Apple Mac OS, Hardware, Ryan Naraine
- Blog posts 2008-09-24
- Google downplays Chrome's carpet-bombing flaw
- Google downplays Chrome's carpet-bombing flawGreatAnother company that doesn't understand blended threats when it's pointed out to them. Even worse with them responsible for Web 2.0 stuff that's a great set of vectors for attacks.RE: Google downplays Chrome's carpet-bombing flawOh the ignorance at Google never fails to amaze me. They...
- Tags: Web browsers, SECURITY, ActiveX/COM/COM+/DCOM, Google Inc., Chrome, Microsoft Internet Explorer 5.01, carpet-bombing flaw, Microsoft Internet, Microsoft Internet Explorer, Microsoft Corp.
- Discussion threads 2008-09-16
- (Photos: Inside Brazil's slums)
- (Photos: Inside Brazil's slums)ProximityWhile North America tends to have affluent and poor areas of town, many countries don't work that way. You can walk along a canal of slums in S.E.Asia and hit the entrance to one of the wealthiest neighborhoods. They're not ten meters apart.Inclusão Digitalpost duplicadoInclusão DigitalParabéns pela...
- Tags: Vertical industries, city name, slum, Paulo Perantunes, photograph
- Discussion threads 2008-08-27
- Black Hat Las Vegas Day 2
- Again, sorry for the late updates. Vegas is the kind of place that demands a lot of a person. Too many parties make it difficult to find time to blog on the conference. Pictures of the even are a bit sparse, due to consistently forgetting to bring my camera, but...
- Tags: black hat, microsoft corp., applet, image, vegas, nathan mcfeters
- Blog posts 2008-08-09
- Black Hat Las Vegas Day 1
- Well, this is well late, but here's my recap of Black Hat Day 1. Sorry for the delay, but I've been terribly busy finishing up preparations for my Day 2 talk. The first talk I went to see, "Pointers and Handles, A Story of Unchecked Assumptions...
- Tags: Billy Rios, Black Hat, Cyberthreats, Nathan McFeters, Phishing, Security, Spam, Spam And Phishing, Viruses And Worms
- Blog posts 2008-08-08
- On GIFARs
- Ever since Rob McMillan of IDG published a story giving a preview of our coming Black Hat talk, specifically a preview of the portion of our talk related to GIFARs, media coverage of the research has swirled a bit out of control and there's been some misconceptions. My co-presenter John...
- Tags: Black Hat, Vector, Applet, Image, Attack, Heasman, Nathan McFeters
- Blog posts 2008-08-02
- Black Hat Sneak Preview
- Rob McMillan from IDG interviewed John Heasman and I today about the presentation we will be delivering with Rob Carter at Black Hat Vegas next week. The article has a good teaser about one of the more interesting of the many attacks we will cover, namely what we've coined...
- Tags: Black Hat, Java Applet, Web Application, Web Browser, Applet, Attack, GIFAR, Java, Programming Languages, Security, Software Development, Software/Web Development, Nathan McFeters
- Blog posts 2008-08-01
- Airport security part 6: Skimming at airport kiosks
- We've talked a lot about airport security here see other links at the bottom of this article, but one thing we haven't covered yet is airport kiosks. Not that they haven't caught my attention, there's just so much wrong at the airport, it takes time to cover it all. Richard...
- Tags: Credit Card, Airport Security, Airport Kiosk, Stiennon, Sales Channel, Financial Services, Sales, Nathan McFeters
- Blog posts 2008-07-28
- |)ruid and HD Moore release part 2 of DNS exploit
- [Updated 07/24/2008: Gallery images of diffs of code revisions has been included and will be updated as things change, see here.] Earlier today, noted researchers |)ruid and HD Moore released exploit code for the Metasploit tool for attacking the DNS flaw that was originally reported by Dan...
- Tags: DNS, Domain, Server, Entry, Exploit, NS, NS Record, Domain Names, Networking, Internet, Nathan McFeters
- Blog posts 2008-07-23
- A look at the recent Firefox 3 vulnerability
- True to form, Billy Rios promised a more in depth look at the MSFA2008-35 vulnerability which is another protocol handler flaw in Firefox 3. As previously reported here, this was another protocol handler flaw that led to arbitrary remote command execution, and is especially dangerous since it can be deployed...
- Tags: Mozilla Firefox 3.0, Mozilla Firefox, Apple Safari, Vulnerability, Protocol Handler, Firefox3, Security Decision, Web Browsers, Security, Internet, Nathan McFeters
- Blog posts 2008-07-22
- E-gold owners plead guilty to money laundering
- Wow, big morning! If anyone has seen Nitesh Dhanjani and Billy Rios's talk on phishing and identity theft, which was presented at the last couple Black Hat conferences, and will be on display again at Black Hat Vegas, you know that the identity theft market is a huge problem. You...
- Tags: Flooz, Currency Service, Identity Theft, Phishing, Security, Spam And Phishing, Nathan McFeters
- Blog posts 2008-07-22
- 2008 Pwnie Award nominees announced
- Well, after getting 134 nominations, and spending countless hours pulling out nominees, the judges for the 2008 Pwnie Awards have announced the final nominees to be voted on. From the site: The final list of nominees for the nine Pwnie Award categories is ...
- Tags: Attack, Flaw, Lifelock, Nathan McFeters, Nominee, Security, Vulnerability, XSS, XSS Flaw
- Blog posts 2008-07-21
- Romanian authorities arrest cybercrime suspects
- Well, eight days, and a joint effort to help prevent phishing and two major arrests related to identity theft, and I feel like we've made a decent attack on the identity theft culture. Score one for the good guys for once. Just a day after reading...
- Tags: Arrest, eBay Inc., Romania, Romanian, Phishing, Identity Theft, Cyberthreats, Spam, Viruses And Worms, Security, Spam And Phishing, Nathan McFeters
- Blog posts 2008-07-17
- << Previous
- page 1 of 1
- Next >>
White Papers and Webcasts
The Business Essentials Guide provides you useful tools and templates to help grow your business and save you time with automated shipping solutions.
When you transition from your existing Red Hat environment to SUSE Linux Enterprise from Novell, you can recognize dramatic cost savings, perhaps as much 50%
A simplified IT environment isn't just less complex. It's also more reliable. Standardize on a single Linux platform with SUSE Linux Enterprise from Novell, and get the world's most interoperable Linux
Doc delivers the scoop on today's enterprise content management, printer maintenance, and all other issues related to document management. It's the DocuMentor Blog.
