Infosec Weekly Roundup
Malware Signed With a Governmental Signing Key
F-Secure Lab have found this week a malware that are digitally signed by a stolen government certificate belonging to the Malaysian Agricultural Research and Development Institute.
http://www.f-secure.com/weblog/archives/00002269.html
WireShnork – A Snort plugin for Wireshark
New plugin for Wireshark have been released that help in applying Snort rules on all packets of a PCAP file and adding a new kind of filter to Wireshark.
http://www.honeynet.org/node/790
A Simple OpenBSD Router For Your Virtual Machines
Very nice tutorial about how to install Open BSD firewall on virtualbox all based on open-source.
http://thehelpfulhacker.net/2011/11/15/virtual-box-openbsd-router/
Small Businesses Lack Adequate Internet Security: Symantec
According to survey conducted by Symantec Although SMBs know the dangers of cyber-attacks, they don’t feel they are at any risk.
ZeroAccess detection with Xuetr tool
Zeroaccess is a stealthy rootkit on this post Artem shows how to detect and analyse the rootkit using Xuetr tool.
http://artemonsecurity.blogspot.com/2011/11/zeroaccess-detection-with-xuetr-tool.html
Also on SecTechno we have published the following posts:
- Using mod_rewrite to harden Apache http://www.sectechno.com/2011/11/14/using-mod_rewrite-to-harden-apache/
- Why Patch Management Should Not Be a Fire and Forget Operation http://www.sectechno.com/2011/11/15/why-patch-management-should-not-be-a-fire-and-forget-operation/
- FileLife Keep your File in Control http://www.sectechno.com/2011/11/16/filelife-keep-your-file-in-control/
- Secret Disk Application to Hide Personal Data http://www.sectechno.com/2011/11/18/secret-disk-application-to-hide-personal-data/