Bojan Zdrnja Diaries
- Potential 0-day on Bind 9
- Microsoft killed Kelihos botnet
- MySQL.com compromised spreading malware
- Firefox 3.5 forced upgrade coming soon
- Microsoft Security Intelligence Report volume 10
- Windows 0-day SMB mrxsmb.dll vulnerability
- HTTP headers fun
- Oracle Java 6 Update 24
- Adobe Reader X - Sandbox
- Exchanging and sharing of assessment results
- Adobe critical security updates
- Help your competitor - Advise them of vulnerability
- EFF paper about browser tracking
- e107 CMS system website compromised
- Insider Threat information at CERT
- ESTA scam
- Results from Webhoneypot project
- Web server survival time research
- Useful browser addon - WOT
- Dshield Web Honeypot going beta
- Vista & Win2K8 SP2 available
- A new Web application security blog
- Two Adobe 0-day vulnerabilities
- OAuth vulnerability
- Digital Content on TV
- SSL attack announced at Blackhat DC
- DShield Web Honeypot - Alpha Preview Release
- Input filtering and escaping in SQL injection mitigation
- Call for volunteers - Web Honeypot Project
- Large quantity SQL Injection mitigation
- Day 28 - Avoiding Finger Pointing and the Blame Game
- Financial Crisis and security
- Day 3 - Preparation: Building Checklists
- We need academic volunteers - Web security research
- Microsoft SQL Injection Prevention Strategy
- Adobe Reader and Acrobat 8.1.2 Security Update
- SQL Injection mitigation in ASP
- Botnet malware defense
- Remote File Include spoof!?
- Does your anti-virus detect old keyloggers?
- Botnet + Underground economy Chinese focused papers
- XSS Incident Handling
- Firefox as the weapon of choice?
- MOICE - Microsoft Office Isolated Conversion Environment
- Flaw in MFC42 and MFC71 findfile() function
- Dealing with application in-security
- Web is the way to go?
- Jikto - The Javascript based bot
- Prepared Statements and SQL injections
- Kernel malware paper from F-Secure
- Botnet with reference to SANS
- Reminder of our emergency URL
- Port 2968 big rise - related to Symantec AV?
- Adobe 7.0.9 released to address the XSS vulnerability
- Week of Oracle 0-Day
- CA BrightStor ARCserve Backup 11.5 remote vulnerability
- Online backup strategy
- Botnet traffic using TOR
- Recent Two factor authentication attacks
- Debian development server compromised
- Ethereal becomes Wireshark
- Snort bypass vulnerability
- Oracle quarterly patch update
- Fill out your email!
- The Pitfall Of Two Factor Authentication
- Mac OS X trojan - OSX/Leap
- MS06-005 proof of concept exploit released
- Sun Java JRE sandbox bypass vulnerability
- IE + WMF security advisory released by Microsoft (913333)
- New Windows service ACL security advisory released (914457)
- Mac OS X security updates
- Windows buffer overflow protection
- Consensus gathering on log analysis and correlation in enterprise environment
- Thanks for info on chat monitoring; PanadaLabs report; Hyper-Threading vulnerability
- Telnet client vulnerability; DNS posioning re-appearing
- Handling phishing attack
- WS_FTP buffer overflow, DomainKeys effective?, Phishing explained
- Cisco IOS DHCP vulnerability; Rumours about vulnerabilities in Win XP SP2
- Multiple anti-virus software evasion
- Microsoft Sept Patches and Weblogic vulnerability
- New Bagle Variant Spreading