Original post by SecuMania.org

Additional Reading

• New TCF Bank Scam Circulating
• Pocket EICAR Test File Server [Didier Stevens]
• Cybercrime fears over hi-tech cop job cull
• Opinion: I’m so bo-o-o-red with the RIAA (but what can I do?)
• Pushdo - Web Based Malware as Usual
• 10 Security Resources you should know [Security4all]
• Ex-Student Sentenced For Hacking Into A&M
• 27-month sentence in identity theft scheme (The Sacramento Bee)
• These plans are secret [Security4all]
• Pointers to any audit methodology for forensic analysis of VoIP systems?

Original post by SecuMania.org

Additional Reading

• HP confirms gaping backdoor on 82 laptop models
• Off the wire: The botnet ecosystem: do botnets need Windows?
• CIA no role model for CIOs
• 2008 IT forecasts: XP lives and the greening of tech - Computerworld Australia
• Rogue servers point users to impostor sites
• Biometrics
• Intersections Inc. Offers Award-Winning ZoneAlarm Internet Security Suite Free with IDENTITY GUARD(R) Total Protection (wallstreet:online AG)
• ISA Server 2004 is a pleasant security surprise
• Suggested Blog Reading - Friday December 14th, 2007
• Credit report freeze can stop ID theft (Tucson Citizen)

Original post by SecuMania.org

Additional Reading

• New approach in radical propaganda
• Nearly one third of smbs have experienced system compromise in the … - Dark Reading
• Identity Theft Top Priority for State Legislators More than 200 bills are currently pending at state level. By Melanie … (Finance Technology Network)
• SAML Wiki is open for business
• Sophisticated Trojan loots business bank accounts
• Nmap version 4.50 released
• Housekeeping holidays
• CourtTV’s New Reality Show to Reveal Corporate Security Exposures … - Business Wire (press release)
• Renew Now
• Inshallahshaheed - Come Out, Come Out Wherever You Are

Friday, 21 December 2007, 9:23 am Press Release: Symantec Security vendors and testing organisations also collaborate to devise new testing guidelines for today’s behaviour-based security solutions AUCKLAND … via Scoop

Original post by SecuMania.org

Additional Reading

• F-Secure Supports Fight Against Internet Money Laundering
• Hack this school network, win a router
• Off the Wall show for December 11, 2007
• Unauthorized Activity
• Cenzic Introduces Automated Security Assessment of Web … - Market Wire (press release)
• Antivirus firm says detects Google text ad trojan
• Filtering’s ding-dong fight with malicious spam
• Annc: (ISC)2 Special Events and Offers for InfoSec professionals
• Friday Squid Blogging: Squid Nativity Scene
• Paper: disregard for customers, DMCA led to Sony CD rootkit

Original post by SecuMania.org

Additional Reading

• FTC Hands Off When It Comes to Selling Your Personal Information
• Topic Requests?
• Flower Chaser
• Departmental Quotes of the Day
• Prison Break
• SANS Top 20 for 2007 Released
• Phishing Attacks Up In February
• Defeating the Shoe Scanning Machine at Heathrow Airport
• IT pro admits stealing 8.4M consumer records
• Ex-Student Sentenced For Hacking Into A&M

5 Secure Reasons for Thin Clients Baseline, NY - 6 minutes ago A zombie is a PC infected with an application—a Trojan—that gives hackers unfettered access. Zombies linked together in a network are often referred to as a …

Original post by SecuMania.org

Additional Reading

• What good is a prediction?
• Leopard Crash “Risk”
• Chamber to host seminar on identity theft (The Marshall News Messenger)
• More bugs mean Firefox is more secure
• Refuse to be Terrorized
• Phishing Scams Lure Employees
• Clarification: FTC Identity Theft Story (AP via Yahoo! Finance)
• Sign up for Vodafone E-Topup and receive 50 calling credit free
• E-voting activists praise Ohio plan to fix e-voting system
• If Your Network and Computers Could Make New Year’s Resolutions, Here …

Original post by SecuMania.org

Additional Reading

• I sense trouble brewing
• Media player users beware: more vulns ahead
• Hope Now, Pay Later
• Identity theft growing cause of concern (TVNZ)
• They didn’t even let me in on the joke
• Aladdin eToken Strong Authentication Solution Implemented to Assist…
• VoIP predicted to endure growth in attacks - Telappliant VoIP News
• Patch Wednesday!?! What’s that?
• Try To Prevent Medical Identity Theft (Investor’s Business Daily via Yahoo! Finance)
• Desktop Management: Getting It Right

The 5th International Workshop on Visualization for Cyber Security will provide a forum for new research in visualization for computer security. We are pleased to be holding this year’s meeting in conjunction with the 11th International Symposium on Recent Advances in Intrusion Detection. The VizSEC Workshop will be held at MIT in Cambridge, Massachusetts USA on Monday, September 15, 2008.

As a result of previous VizSEC workshops, we have seen both the application of existing visualization techniques to security problems and the development of novel security visualization approaches. However, VizSEC research has focused on helping human analysts to detect anomalies and patterns, particularly in computer network defense. Other communities, led by researchers from the RAID Symposia, have researched automated methods for detecting anomalies and malicious activity.

The theme for this year’s workshop, which will be held in conjunction with RAID 2008, will be on bridging the gap between visualization and automation, such as leveraging the power of visualization to create rules for intrusion detection and defense systems. We hope that VizSEC participants will stay for the RAID Symposium and RAID participants will consider coming a day early to participate in VizSEC.

We also solicit papers that report results on visualization techniques and systems in solving all aspects of cyber security problems, including:

* Visualization of Internet routing
* Visualization of packet traces and network flows
* Visualization of intrusion detection alerts
* Visualization of attack tracks
* Visualization of security vulnerabilities
* Visualization of attack paths
* Visualization of application processes
* Visualization for forensic analysis
* Visualization for correlating events
* Visualization for computer network defense training
* Visualization for offensive information operations
* Visualization for building rules
* Visualization for feature selection
* Visualization for cryptology
* Visualization for detecting anomalous activity
* Deployment and field testing of VizSEC systems
* Evaluation and user testing of VizSEC systems
* User and design requirements for VizSEC systems
* Lessons learned from development and deployment of VizSEC systems

All submitted papers will be peer-reviewed. Full and short papers from the workshop will be published in an edited book (details to follow).

Full Papers
Full papers should present mature research results. (We will release page count and formatting instructions when we confirm the details of publishing the proceedings.)

Short Papers
Short papers can be used to present less mature research results than full papers, or late-breaking results. (We will release page count and formatting instructions when we confirm the details of publishing the proceedings.)

Demos
Demonstrations can be used to show new or updated development efforts. Demo submissions should consist of a 2 page abstract.

Posters
Posters can be used to describe work in progress or updates to previously published VizSEC research or R&D. Poster submissions should consist of a 2 page abstract.

Deadlines
April 11, 2008 : Deadline for full paper submission
May 9, 2008 : Deadline for short paper submissions
July 11, 2008 : Deadline for poster and demo abstracts

http://vizsec.org/workshop2008/

Original post by SecuMania.org

Additional Reading

• Google Toolbar flaw opens door for phishers
• Tiscali Notification: Account Update Needed
• LinkedIn Links
• Big Isle woman indicted in identity-theft case (Honolulu Advertiser)
• Leopard Crash “Risk”
• Former postal worker sentenced in identity theft case (Centre Daily Times)
• DDR Pacman (AKA DDR Pad rewiring)
• Why I Stopped Using Twitter
• Fine, Don’t Even Try to Hide Your Corruption…
• Hacking websites? Try Burp!

Original post by SecuMania.org

Additional Reading

• The Best Sites for Music Downloads
• Security fixes on tap for Windows, IE, DirectX
• Paper: disregard for customers, DMCA led to Sony CD rootkit
• Message Center: Your Lloyds TSB Change of E-mail Notification Preferences
• Spam King Alan Ralsky rumored to be in jail
• What’s that thing on your car?
• Sharing Passwords and the Trusted Insider
• Online love seekers warned of flirt-bots
• Iowa man sentenced in felony identity theft (The Argus Leader)
• End Of Year Humor And Awareness: No Folks, Hoff Didn’t Pwn Me

Original post by SecuMania.org

Additional Reading

• Encryption alone will not stop data leaks
• Unlocking encryption management
• Session Hijacking in Wireless Networks
• Nokia adds anti-virus protection to new smart phone
• The World of Identity Theft Continues to Evolve (PR Newswire via Yahoo! Finance)
• MPs condemn government over L-driver data loss
• Important Message : Activate Your Online Banking Details
• MS to bundle ‘broken’ random number tool in Vista SP1
• Real Results Report: Businesses improve customer support experiences with WebEx Support Center
• Identity Theft On The Rise (KXAN 36 Austin)