Well, like last year us securitybloggers (-twits) are coming together for a drink and meet the people behind the avatars. It was a small but fun beginning last year and we hope to see even more people this year.
Details on location etc... can be found on securityactive.co.uk.
Tuesday
Security bloggers meetup London @ RSA
SMBv2 exploit for Vista and Server 2008 released
While I was too busy with BruCON, it seems that a SMBv2 vulnerability was published: Security Advisory 975497. While it affects Windows Vista and Server 2008, other versions are not vulnerable (including Windows 7 and Windows Server 2008 R2).
Port 445 needs to be open for the service to be exploited. Microsoft hasn't released an (out of band) patch since there was no working exploit code but promised to do so if the threat landscape changed. Blocking ports 135 and 445 is one of the recommended countermeasures. You can also disable SMBv2 through a registry key if not needed.
So far it was only possible to crash the service, but that changed today. Working code has now been added to Metasploit. Although the code still needs improvement, it worked on several machines.
So, will we see new worms coming our way? Although Conficker was well written, fortunately it wasn't really used to it's full potential. Will we be that lucky again?
Discuss vulnerabilities instead of patches at your patch meetings, because only patching doesn't cut it. Have a look at NIST's Creating a patch and vulnerability management program.
Friday
CERT.be is hiring
As was told during BruCON, we can stop complaining about a missing CERT in Belgium. BELNET is looking for people to extend their team and the team should be up and running by January 2010. A big applause for their introduction!
If you are interested, look at their website cert.be/jobs.
Tuesday
International Action Day “Freedom not Fear 2009 – Stop the Surveillance Mania!” on 12th September 2009
I somehow completely missed any communication about this International Action Day “Freedom not Fear 2009.
Unfortunately, it seems that it is on the 12th of September already and that there is nothing planned in Brussels. Bad communication? Or is there nobody in Belgium at least a little bit interested in their privacy and civil rights?
More info on http://wiki.vorratsdatenspeicherung.de/Freedom_Not_Fear_2009
(Photo under creative commons from maha-online's photostream)
Subscribe to:
Posts (Atom)
Security4all Blog
Twitter
Slideshare
Facebook
Digg
Flickr
