Tuesday, November 29, 2011

Homealone - interesting tool to verify you are the sole tenant in a VM setup

found this article about a homealone package developed by RSA:   http://www.technologyreview.com/tr35/profile.aspx?TRID=1083
Posted by Louis Lee at 9:05 PM 0 comments

Tuesday, September 27, 2011

i-class compromise and HID's solution

about 2 months or so ago, some one figure out how to hack iclass key because the world dare sign by 2 cert... well i-class elite program are FREE, you just have to wait 2 extra week for them :) and you will have your own cert.

http://www.hidglobal.com/main/services/documents/iclass-elite-faq-en.pdf
Posted by Louis Lee at 5:47 PM 0 comments

Reasonable DVR with cluster capablity

this video system have alarm trigger (send and receive)... along with motion trigger recording (along with ability to cache x second before the event), along with backup drive, and smtp out.   8 camera with the capablity to cluster with other device around the world to see it in one app.. with different class / group / roles, all for $899.

http://www.samsungsv.com/Model/Detail/12/Samsung-SDE-4002N-8-Channel-DVR-Security-System
Posted by Louis Lee at 5:45 PM 0 comments

Free OWASP Training that you can host yourself

http://code.google.com/p/owasp-cbt-project/downloads/detail?name=owaspTop10_cbt.zip&can=2&q=
Posted by Louis Lee at 5:42 PM 0 comments

Friday, April 22, 2011

Cloud Security Virtual conference on 4/28/2011

ISACA is offering Cloud Service Security conference....  Register Now and get 5 CPE credit.
Posted by Louis Lee at 5:35 PM 0 comments

Thursday, April 21, 2011

Security for the SmartPhones

Iphone / Ipad's IOS 4.0 with 4.0 file system is the base line to offer encrypted end point at least for the email system:

http://anthonyvance.com/blog/forensics/ios4_data_protection/

and for Android 3.0 HoneyComb, file level encryption and some sort of remote device management will be roll out via google app:

http://androidcommunity.com/android-courts-enterprise-with-remote-tracking-encryption-more-20110408/
Posted by Louis Lee at 3:31 PM 0 comments

Tuesday, April 5, 2011

PII data leak at Marketing Email site

http://www.dailyfinance.com/story/market-news/epsilon-security-breach-protect-your-p/19901868/
Posted by Louis Lee at 3:06 PM 0 comments

Monday, March 21, 2011

RSA Break in

http://online.wsj.com/article/SB10001424052748703512404576208983743029392.html

have you dial up your pin and change your policy?

or assign new set of rsa hard / soft token?
Posted by Louis Lee at 10:32 AM 1 comments

PCI / DSS new ruling on voice recording

http://www.bankinfosecurity.com/podcasts.php?podcastID=1055&rf=2011-03-21-eb
Posted by Louis Lee at 10:30 AM 0 comments

Wednesday, March 2, 2011

DHS funded Cyber Security Training Course - 5 days - April 25-29, 2011 FREE

http://www.cyberterrorismcenter.org/sanfrancisco2.html

i just sign up for the CFR course in April.  if you already done CISSP, i would recommend the First Responder (CFR) course, and if you want to study for CISSP take the CCD source.     i sign up for CCD 2 years ago and found the material is a complete repeat of CISSP 10 domains and left.   the CFR course on the other hand is hands on lab to demonstrate actual attack and defense. 

and of course this will be actual training credit count toward your CISSP training credit.. almost a whole year worth  :)

Posted by Louis Lee at 8:55 AM 1 comments
Subscribe to: Posts (Atom)