Threat Level: green Handler on Duty: Guy Bruneau

SANS ISC: InfoSec Handlers Diary Blog InfoSec Handlers Diary Blog


Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!

'Cold boot' - vendor reactions

Published: 2008-02-26
Last Updated: 2008-02-29 12:53:05 UTC
by Swa Frantzen (Version: 22)
0 comment(s)

UPDATE: This diary is completely rewritten, please see the newer guidance diary for more information.

As anticipated when we wrote the diary "in memory of hard disk encryption?" about the research from Princeton into the property of DRAM to continue to keep data for a short while without power, the disk encryption vendors are starting to react.

Vendors are welcome to point us to their explanation.

--
Swa Frantzen -- Gorilla Security

Keywords:
0 comment(s)

Another trojan embedded in a MS-Word DOC

Published: 2008-02-26
Last Updated: 2008-02-27 01:51:53 UTC
by Adrien de Beaupre (Version: 2)
0 comment(s)

Once again this appears to be a targeted attack. There have been reports of a 'zero-day' however this has been discounted by Microsoft.

Cheers,
Adrien
Bell Canada

Keywords:
0 comment(s)

XO seems to be back, Hotmail intermittent

Published: 2008-02-26
Last Updated: 2008-02-26 19:08:08 UTC
by Adrien de Beaupre (Version: 1)
1 comment(s)

The Internet Health Report has been showing red for XO connections for the past while, but seems to be coming back. We have had multiple reports of Hotmail being inaccessible as well.

Cheers,

Adrien de Beaupré

Bell Canada

 

Keywords:
1 comment(s)
Diary Archives