InfoSec News

Salesforce.com has signed a definitive agreement to acquire Model Metrics, a cloud computing consulting and services company, with practices in the areas of mobile computing and social technologies, it said Monday.
(c) SANS Internet Storm Center. http://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.
(c) SANS Internet Storm Center. http://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.
As mobile video finally starts to take off, making money from it remains a challenge, and content providers and carriers may clash over economics before they find a way to share the costs and benefits.
DropBox, GoogleDocs, Microsoft Office 365, SkyDox ... the field of companies urging you to put your documents in the cloud is growing by the minute. Appealing as this concept might seem, CFOs and IT teams have to take a step back and evaluate the benefits and risks.
Wireshark Infiniband Dissector Denial of Service Vulnerability
Wireshark ERF File Parser Buffer Overflow Vulnerability
Wireshark CSN.1 Dissector Denial of Service Vulnerability
Adobe Acrobat and Reader CVE-2011-2442 Remote Code Execution Vulnerability
The web server behind disa.mil appears to be down. It currently resolves to but it is sending RST to requests. Thanks Paul for noticing and writing in!

Adrien de Beaupr


Teaching SANS Sec560 in Toronto #sanstoronto, 21-26 Nov 2011

sans.org/toronto-2011-cs-2 (c) SANS Internet Storm Center. http://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.
(c) SANS Internet Storm Center. http://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.
Version 5 of Carbonite Home ($59, 15-day free trial) offers some new and possibly handy functionality in two new tiers of service. Otherwise, it remains the same affordable, easy-to-use, but sometimes restrictive online backup service we reviewed last year.
Storage and sharing company Cloud Engines on Monday launched a new service called Pogoplug Cloud--a secure, cloud-based online space for storing and streaming content to and from mobile devices. Designed to integrate mobile devices with Pogoplug's existing cloud-based hardware and software storage products, Pogoplug Cloud allows users to customize their cloud experience.
Amazon said late Monday that it has begun shipping its $199 Kindle Fire to buyers a day early.
iTunes Match is new (it arrived Monday) and exciting (all your music everywhere! your old CD rips upgraded to iTunes Plus quality!), but it's also confusing. What songs went where? Did iTunes Match find a track or did your copy of iTunes have to upload it to Apple's servers?
Brussels, Belgium -- The 20th annual Global Forum last week highlighted the growing power of Asian information industries, plus the formidable technology challenges facing IT professionals who grapple with increasingly urgent integration requirements as systems converge and people become more mobile.
AT&T plans to add six more cities to its 4G LTE network on Nov. 20, bringing the total to 15 cities in the U.S.
Wordpress Zingiri Web Shop Plugin <= 2.2.3 Remote Code Execution Vulnerability
[Announcement] ClubHack 2011 Hacking and Security Conference
[Announcement] ClubHack Mag Issue 22- Nov 2011 Released
[ MDVSA-2011:173 ] openssl0.9.8
Regulators are starting to investigate what kind of oversight is in place to make sure that mobile applications don't encroach on user privacy rights, a lawyer in Microsoft's Windows Phone segment said.
Sprint may be axing its unlimited 4G plans for most devices but at least it's making sure you pay less for what you use.
It's crunch time for SAP customers and salespeople around the world, as many new software deals and contract renewals get hammered out in the fourth quarter in time to be booked before the end of the company's fiscal year.
CA Technologies has gotten its feet wet with cloud-based security before, but now the company is moving further in with a package of cloud based identity and access control services.
Symantec today widened its cloud-based security service to include Lync, Microsoft's latest instant-messaging client, so that enterprises using Lync can do anti-malware filtering and exert security controls for blocking inappropriate content along with basic data-loss prevention.
Apple today launched its $24.99-per-year iTunes Match service.
Server vendors on Monday came out in support of Advanced Micro Devices' latest Opteron 6200 server chips, which advance chip technology to new highs with 16 processor cores.
Experts say an enterprise mobile device security policy alone will fall short without the technology to enforce it.

Add to digg Add to StumbleUpon Add to del.icio.us Add to Google
[ GLSA 201111-04 ] phpDocumentor: Function call injection
[ GLSA 201111-03 ] OpenTTD: Multiple vulnerabilities
[SECURITY] [DSA 2344-1] python-django-piston security update
iGuard Biometric Access Control - Multiple Vulnerabilities
20 more questions to test your mettle where it really counts
Vint Cerf, widely considered one of the fathers of the Internet, said Monday that Internet governance is one of the most critical issues in the high-tech world.
An Iranian government official yesterday acknowledged that the Duqu attacks had infected computers in the country but claimed that the Trojan was "under control," according to a report by a state-run news agency.
[security bulletin] HPSBHF02721 SSRT100605 rev.1 - HP Directories Support for ProLiant Management Processors for Integrated Lights-Out iLO2 and iLO3, Unauthorized Access
[security bulletin] HPSBST02722 SSRT100279 rev.1 - HP StorageWorks P4000 Virtual SAN Appliance, Execution of Arbitrary Code
APPLE-SA-2011-11-10-2 Time Capsule and AirPort Base Station (802.11n) Firmware 7.6
[FOREGROUND SECURITY 2011-004] Infoblox NetMRI 6.2.1 Multiple Cross-Site Scripting (XSS) vulnerabilities
Those folks over at Apple Inc have been churning out the patches recently, so to keep them all together, here is a little summary:
Apple ID :APPLE-SA-2011-11-14-1 iTunes 10.5.1
Impact: A man-in-the-middle attacker may offer software that appearsto originate from Apple
CVE :CVE-2008-3434

Apple ID:APPLE-SA-2011-11-10-2 Time Capsule and AirPort Base Station (802.11n)Firmware 7.6
Impact: An attacker in a privileged network position may be able tocause arbitrary command execution via malicious DHCP responses

Apple ID:APPLE-SA-2011-11-10-1 iOS 5.0.1 Software Update
Impact: Visiting a maliciously crafted website may lead to the disclosure of sensitive information
Impact: Viewing a document containing a maliciously crafted font may lead to arbitrary code execution
CVE : CVE-2011-3439
Impact: An attacker with a privileged network position may intercept user credentials or other sensitive information
CVE : Non-provided
Impact: An application may execute unsigned code
Impact: Visiting a maliciously crafted website may lead to the

disclosure of sensitive information
Impact: A person with physical access to a locked iPad 2 may be able to access some of the user's data
None of these would appear to address the Core Security announced Sandbox vulnerability (CVE-2011-1516) referenced here.
Also note Swa's earlier diary on recent updates to the Java distribution.
ISC Handler

(c) SANS Internet Storm Center. http://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.
APPLE-SA-2011-11-10-1 iOS 5.0.1 Software Update
Addressing a major source of complaints with its Apps suite, Google has announced that it will now offer around-the-clock phone support for the core components in the Apps for Business version of the hosted collaboration and communication suite.
Researchers from security vendor F-Secure have spotted a rare malicious software sample that carried a valid code-signing certificate from a Malaysian governmental institution.
A new tender document for the Internet Assigned Numbers Authority (IANA) aims to strengthen the transparency, independence and accountability of the next IANA contractor.
Gadget gurus have been testing out Amazon's Kindle Fire media tablet ahead of the device's Tuesday ship date and the consensus is that it's a solid alternative to the iPad for some environments. The Fire even matches the device when it comes to breadth of downloadable content to put on the new tablet, thanks to Amazon's wealth of digital content, including e-books, movies, television shows, Android apps, and, of course, e-books.
Re: Re: foofus.net security advisory - Lexmark Multifunction Printer Information Leakage
[security bulletin] HPSBMU02714 SSRT100244 rev.2 - HP Network Node Manager i (NNMi) for HP-UX, Linux, Solaris, and Windows, Remote Unauthorized Disclosure of Information
Google is running a secret research lab in the San Francisco area where they're building robots and re-imagining the future, the New York Times reported yesterday.
A Spanish tech site, TecnoDroidVe, has published what it claims are Google Music screen shots.
In this interview, security expert Gunnar Peterson explains why securing health care IT systems is quite different from other types of business IT infrastructure.
Although developer enthusiasm for Apple's iOS is still strong, app programmers are extremely interested in Amazon's Kindle Fire, which goes on sale Tuesday, a new survey from Appcelerator said.
Artman clicked an RSS link and got a screenful of code instead of easy access to favorite news sources. He asked the Windows forum for advice.
We tend to take more photos over the holiday season than at any other time of year. Thanksgiving feasts, Christmas trees, glowing menorahs, and family gatherings all make for compelling photo opportunities. This year, as you dust off the digital camera and charge up your battery pack, take some time to do your homework. Brush up on some photographic basics by reviewing my composition tips, then try using the tips collected in this article to turn your holiday photos into works of art. Happy holiday shooting!
Businesses have been trying to find a use for touchscreen PCs since the technology was released widely back in 2009. Touchscreen computers are marketed primarily as multimedia centers and personal PCs, but there's a place for them in the office.
30 Days With the Cloud: Day 5
The low-cost Amazon.com tablet could jump-start an Android market that is not competing favorably against the iPad in Appcelerator's survey
Microsoft will start allowing developers to preview Windows 8 Embedded in the first quarter of next year, with plans to eventually release its embedded computing products in the quarters following the Windows 8 desktop version launch.
With an eye to bringing power efficiency to high-performance systems, a prototype supercomputer with quad-core ARM processors is being built at the Barcelona Supercomputing Center in Spain.
Japan's K Computer has retained its pole position on the Top500 list of fastest supercomputers and become the first machine on the list to achieve performance of more than 10 petaflops.
Tibco is giving its Spotfire BI (business intelligence) and visualization tool an injection of social collaboration through integrations with Microsoft SharePoint and its own Tibbr enterprise social networking product, the company announced Monday.
The simplicity of Apple's OS X development tools, if not their price, is enticing enough to cause some developers to leave Linux behind. Insider (registration required)
IBM has reached a deal with Chinese electronics retailer Suning Appliance to build research centers in China and the U.S. meant to develop e-commerce products for the company.
Cray Inc. is building a supercomputer for federally funded scientific research under a contract valued at $188 million that was originally won by IBM.
New 16-core AMD Opteron 6200-series CPUs in the Dell R715 bring huge bang for the buck to wide virtualization workloads, but not until your OS supports it
Intel on Monday announced what it called its fastest chip to date for PCs, the six-core Core i7-3960X Extreme Edition processor, which is based on the Sandy Bridge microarchitecture and designed for use in high-end desktops.
After a brief delay and more than a year of chatter, Advanced Micro Devices on Monday announced the availability of its first 16-core Opteron server chips, which pack the largest number of cores available on x86 chips today.
Internet Storm Center Infocon Status