Open Systems Journal

The state is waging a legal war against vendors of scareware apps, which are designed to pressure computer users into buying software or a service, typically via alarming pop-up messages.
Go to Source

AMD is completing the rollout of its first-generation 4000-series of
GPUs with two new entry-level offerings that aim at the growing group
of computer users who are upgrading their integrated graphics chip
systems to discrete graphics cards. AMD’s new 4500/4300 series goes
head-to head with Nvidia’s entry-level 9400-series, but promises to
undercut its rival’s price point while offering more performance.
Extra: [...]

I wrote yesterday about some of the challenges of the manager/IT worker relationship, inspired by this article on IT workers being pushed to the limit. I think that many workers feel that they’re treated unfairly and more than a few identified with the Terry Childs situation. My guess is a few people are cheering [...]

October is Cyber Security Awareness Month and this year the SANS Internet Storm Center is going to offer daily tips on each of the six steps of incident handling areas according to the following schedule:
Preparation: October 1-4
Identification: October 5-11
Containment: October 12-18
Eradication: October 19-25
Recovery: October 26-31
Lessons Learned: November 1-3
Below is the list of topics by [...]

Burrowing worm borrows Windows vuln
Security researchers have discovered one of the most subtle and sophisticated examples of Windows rootkit software known to date.…
Go to Source

More than 20 courses, SANS top instructors, all in one great place! SANS Cyber Defense Initiative 2008 is being held in Washington, DC on December 10-16. Register today!
Go to Source

Mudslinging in presidential elections is as old as the American political system. The Internet has increased both the rate as well as the quantity of attack strains. The low cost and accessibility of Internet technology has placed the power to disrupt a presidential campaign in the hands of the average American. Someone [...]

Hello, its Ryan. We’ve noticed a misconception about IPv6 that is popular on the internet: that IPv6 addresses are hard to ping sweep because there are so many possible addresses. Ping sweeping can lead to port scanning, so this misconception is viewed as a security feature. In this post, I’ll prove that, while it won’t [...]

Are you cursed with a manager that doesn’t understand technology or even your job? I think that lots of technical people feel this way, whether it’s justified or not. It can make for some rocky relationships.
I think about half of my managers over the years have been technically saavy, and half have been just [...]

A couple patches: WinZip11 on W2000 GDIlib vulnerability: http://update.winzip.com/wz112sr1.htm and MPlayer Buffer Overflow: http://www.ocert.org/advisories/ocert-2008-013.html
Further, the RealFlex RealWin 2.0 SCADA system seems vulnerable to a remote unauthenticated buffer overflow. No patch yet. If you run this software on your SCADA, now is the time to double-check if you have port tcp/910 nicely filtered. Otherwise, soon enough, [...]