Threat Level: green Handler on Duty: Didier Stevens

SANS ISC: Weekend reading SANS ISC InfoSec Forums

Participate: Learn more about our honeypot network
https://isc.sans.edu/honeypot.html

Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!
Weekend reading

 
Krebs's 3 Basic Rules for online safety: Brian Krebs over at krebsonsecurity.com manages to boil years of "security awareness" training for home users down into three simple rules that pretty much everyone can understand and follow. Kudos, Brian!

If reading the three Basic Rules is too basic for you (even though you haven't updated your Java yet - you know who you are :), here's a very decent 16-page write-up by Symantec on Qakbot, a keystroke logging online banking trojan that contains its own SOCKS proxy, so that the bad guys can plunder your bank account via your own PC, to defeat any IP filtering your bank might have in place.

Have a safe weekend.

 

Daniel

367 Posts
ISC Handler
May 21st 2011
Dan, thanks for the helpful information. Kreb's article mentions a useful tool, Secunia's Personal Software Inspector (PSI). I use that tool and it's been quite helpful in keeping my installed software current. I have no experience with FileHippo, so I don't know how that one compares. You know, helpful tools like these would be more helpful if they were listed in a "Tools" section of the ISC. Maybe there's a feeling that you want to stay away from promoting this tool or that since individual opinions/experience may differ but I think a tried and tested list of tools recommended by the Handlers would surely be helpful and well received by your audience.
Anonymous

Sign Up for Free or Log In to start participating in the conversation!