schuirink.net
news categories
Some of the newsfeeds can be viewed by category; choose one of the subjects below.Tech- & Geek news
News 4 (techs &) geeksTechnology news
Linux
Linux newsLinux Central headlines
Linux software announcements
Linux tips'n'tricks
Other OS'es
BEOS softwareBSD news
Mozilla
Mozilla relatedIT
SECURITYTelephony/VOIP
Networks
Internet Technology News
Webdev
WebdevelopmentWebdev::css
Webdev::javascript
WHO news
WHO newsfeedsDutch news
Dutch newsDutch weblogs
Dutch weblogsMore dutch weblogs
Podcasts
Dutch podcastsradiocast.nl
gimme headlines!!
>> SecurityFocus>> CERT/CC
>> LinuxSecurity.com - Latest News
>> Debian Security
SecurityFocus
url: http://www.securityfocus.com/SecurityFocus.com is designed to facilitate discussion on security related topics, create security awareness, and to provide the Internet's largest and most comprehensive database of security knowledge and resources to the public. It also hosts the BUGTRAQ mailing list.
News: Change in Focus
News: Twitter attacker had proper credentials
News: PhotoDNA scans images for child abuse
News: Conficker data highlights infected networks
Brief: Google offers bounty on browser bugs
Brief: Cyberattacks from U.S. "greatest concern"
Brief: Microsoft patches as fraudsters target IE flaw
Brief: Attack on IE 0-day refined by researchers
News: Monster botnet held 800,000 people's details
News: Google: 'no timetable' on China talks
News: Latvian hacker tweets hard on banking whistle
News: MS uses court order to take out Waledac botnet
Infocus: Enterprise Intrusion Analysis, Part One
Infocus: Responding to a Brute Force SSH Attack
Infocus: Data Recovery on Linux and <i>ext3</i>
Infocus: WiMax: Just Another Security Challenge?
Gunter Ollmann: Time to Squish SQL Injection
Mark Rasch: Lazy Workers May Be Deemed Hackers
Adam O'Donnell: The Scale of Security
Mark Rasch: Hacker-Tool Law Still Does Little
More rss feeds from SecurityFocus
CERT/CC
url: http://www.cert.org/At the CERT Coordination Center, we study Internet security vulnerabilities and incident activity, publish a variety of security alerts, research security and survivability in wide-area-networked computing, and develop information to help you improve security at your site.
New Podcast Released
Call for Participation: HICSS-47 "Software Security for Mobile Platforms" Minitrack
New Blog Entry: The Risks of Microsoft Exchange Features that Use Oracle Outside In
Technical Note on Foreign Involvement in Insider Intellectual Property Theft Released
New Podcast Released
New Blog Post: Keep Calm and Deploy EMET
New Blog Entry: Controlling the Malicious Use of USB Media
New Blog Entry: Don't Sign that Applet!
New Blog Entry: Finding Patterns of Malicious Use in Bulk Registrations
GeoIP in Your SOC (Security Operations Center)
Call for Participation: FloCon 2014
New Blog Entry: Second Level Domain Usage in 2012 for Common Top Level Domains
New Book Released: Secure Coding in C and C++, Second Edition
New Blog Entry: The Growth of IPv6 Announcements
New Podcast Released
New Blog Entry: An Alternate View of Announced IPv4 Space
Justification of a Pattern for Detecting Intellectual Property Theft by Departing Insiders Released
New Blog Entry: The Growth Rate of IP Addresses That Are Advertised as Usable on the Internet
New Blog Entry: How Ontologies Can Help Build a Science of Cybersecurity
New Blog Entry: Watching Domains That Change DNS Servers Frequently
New Podcast Released
Malware Analysis Lexicon Released
New Blog Entry: CERT Insider Threat Events at the RSA Conference
New Blog Entry: Common Sense Guide to Mitigating Insider Threats - Best Practice 19 (of 19)
New Blog Entry: Common Sense Guide to Mitigating Insider Threats - Best Practice 18 (of 19)
New Blog Entry: Common Sense Guide to Mitigating Insider Threats - Best Practice 17 (of 19)
New Blog Entry: Common Sense Guide to Mitigating Insider Threats - Best Practice 16 (of 19)
New Blog Entry: Common Sense Guide to Mitigating Insider Threats - Best Practice 15 (of 19)
New Blog Entry: Common Sense Guide to Mitigating Insider Threats - Best Practice 14 (of 19)
New Podcast Released
New Blog Entry: Common Sense Guide to Mitigating Insider Threats - Best Practice 13 (of 19)
New Blog Entry: Common Sense Guide to Mitigating Insider Threats - Best Practice 12 (of 19)
New Blog Entry: Common Sense Guide to Mitigating Insider Threats - Best Practice 10 (of 19)
New Blog Entry: Common Sense Guide to Mitigating Insider Threats - Best Practice 9 (of 19)
New Blog Entry: Common Sense Guide to Mitigating Insider Threats - Best Practice 8 (of 19)
New Blog Entry: Common Sense Guide to Mitigating Insider Threats - Best Practice 7 (of 19)
New CERT/CC Blog Post: Anatomy of Java Exploits
New Blog Entry: Common Sense Guide to Mitigating Insider Threats - Best Practice 6 (of 19)
New Blog Entry: Common Sense Guide to Mitigating Insider Threats - Best Practice 5 (of 19)
New CERT/CC Blog Post: Java in Web Browser: Disable Now!
New Blog Entry: Common Sense Guide to Mitigating Insider Threats - Best Practice 4 (of 19)
New Blog Entry: Common Sense Guide to Mitigating Insider Threats - Best Practice 3 (of 19)
New Blog Entry: Common Sense Guide to Mitigating Insider Threats - Best Practice 2 (of 19)
New Blog Entry: Common Sense Guide to Mitigating Insider Threats - Best Practice 1 (of 19)
New Podcast Released
New Blog Post: The Common Sense Guide to Prevention and Detection of Insider Threats Expanded
New Blog Entry: Fourth Edition of the Common Sense Guide Is Released
Common Sense Guide to Mitigating Insider Threats, 4th Edition, Released
Technical Note Released about Research Study on Resilience Success and Failure
Forking and Joining Python Coroutines to Collect Coverage Data
Helping Developers Address Security with the CERT C Secure Coding Standard
Writing Effective YARA Signatures to Identify Malware
Insider Threats in State and Local Government
New CERT/CC Blog Post: A Look Inside CERT Fuzzing Tools
Spotlight On: Insider Threat from Trusted Business Partners Article Revised and Released
Updates to CERT Fuzzing Tools (BFF 2.6 and FOE 2.0.1)
New Podcast Released
Technical Note Released on Communication Among Incident Responders
External Threat Analysis
Insider Threats Related to Cloud Computing--Installment 10: Conclusion
New Podcast Released
The Insider Threat Awareness Virtual Roundtable Webinar
Insider Threats Related to Cloud Computing--Installment 9: Two More Proposed Directions for Future Research
Insider Threats Related to Cloud Computing--Installment 8: Three More Proposed Directions for Future Research in Detail
Insider Threats Related to Cloud Computing--Installment 7: Seven Proposed Directions for Research and Two in Detail
Competency Lifecycle Roadmap Technical Note Released
Digital Investigation Workforce Development
CERT Insider Threat Center in the News
Insider Threats Evident in All Industry Sectors
Study on Insider Cyber Fraud in Financial Services Released
New CERT/CC Blog Post: Java 7 Attack Vectors, Oh My!
The Report "Network Profiling Using Flow" Released
Insider Threats Related to Cloud Computing--Installment 6: Securing Against Other Cloud-Related Insiders
Upcoming Appearances by CERT Insider Threat Experts
New CERT/CC Blog Post: Java Security Manager Bypass Vulnerability
Insider Threats Related to Cloud Computing--Installment 5: Securing Against Cloud-Related Insiders
Report on Network Profiling Using Flow Publishedd
New Podcast Released
Insider Threats Related to Cloud Computing--Installment 4: Using the Cloud to Conduct Nefarious Activity
New Tutorial Released - Cloud Computing Security
Insider Threats Related to Cloud Computing--Installment 3: Insiders Who Exploit Cloud Vulnerabilities
Insider Threats Related to Cloud Computing--Installment 2: The Rogue Administrator
Insider Threats Related to Cloud Computing--Installment 1: Introduction
Insider Threat Report on Fraud in Financial Services Published
New CERT/CC Blog Post: CERT Failure Observation Engine 2.0 Released
New Podcast Released
New CERT/CC Blog Post: Vulnerability Data Archive
New Insider Threat Blog Post
FloCon 2013 Call for Papers
New CERT/CC Blog Post
Report from the First CERT-RMM Users Group Workshop Series Released
New Insider Threat Blog Entry
New CERT PGP Key
Report on Monitoring for Insider Theft of Intellectual Property Released
Source Code Analysis Laboratory (SCALe) Technical Note Released
Insider Threat Security Reference Architecture Technical Report Released
New CERT/CC Blog Entry
New CERT/CC Blog Entry
New Podcast Released
New CERT/CC Blog Entry
New CERT/CC Blog Entry
The CERT Top 10 List for Winning the Battle Against Insider Threats Released
New Insider Threat Blog Post
CERT-RMM V1.1: NIST Special Publication Crosswalk Version 1 Released
Principles of Trust for Embedded Systems Technical Note Published
New Podcast Released
Mission Risk Diagnostic (MRD) Method Description Technical Note Released
CERT-RMM Capability Appraisal Method (CAM) Version 1.1 Technical Report Released
CERT-RMM V1.1: Code of Practice Crosswalk Commercial Version 1.1 Technical Note Released
New Insider Threat Blog Entry
The CERT Guide to Insider Threats Book Published
Risk-Based Measurement and Analysis: Application to Software Security Technical Note Released
New Podcast Released
New Insider Threat Blog Entry
Spotlight On: Malicious Insiders and Organized Crime Activity
CERT Program Improves Security in C Programming Language Standard
New CERT/CC Blog Entry
Using Defined Processes as a Context for Resilience Measures Technical Note Released
New Podcast Released
Standards-Based Automated Remediation 2011 Update Released
Insider Threat Control Released
New Insider Threat Blog Entry
New Insider Threat Blog Entry
New Insider Threat Blog Entry
CERT Oracle Secure Coding Standard for Java Book Published
New Insider Threat Demonstration Series Launched
Insider Threat Control Technical Note Released
Agenda Now Available for Upcoming Workshop
New Podcast Released
Community College Education Report Published
2010 CERT Research Report Published
New CERT/CC Blog Entry
New Podcast Released
Registration Open for Webinar and Workshop
New Insider Threat Blog Entry
New Insider Threat Blog Entry
Keeping Your Family Safe in a Highly Connected World
Measures for Managing Operational Resilience Technical Report Published
New Podcast Released
Standards-Based Automated Remediation Special Report Released
New Insider Threat Blog Entry
Request for Proposal - SEI Code Review Process
New Podcast Released
New CERT PGP Key
New Insider Threat Blog Entry
New CERT/CC Blog Entry
A Preliminary Model of Insider Theft of Intellectual Property Technical Note Published
CERT Used XNET for Forensics Challenge
New CERT/CC Blog Entry
New Insider Threat Blog Entry
New Podcast Released
New CERT Blogs Index
Trusted Computing in Embedded Systems Workshop Released
Software Security Measurement and Analysis Presentation Released
SPREE Workshop
New CERT/CC Blog Entry
CERT Staff Presenting at SEPG Europe 2011
New Insider Threat Blog Entry
New Podcast Released
2011 CyberSecurity Watch Survey Released
New CERT/CC Blog Entry
Function Extraction (FX) Research for Computation of Software Behavior Technical Report Released
Risk and Resilience: Considerations for Information Security Risk Assessment and Management
New Insider Threat Blog Entry
New Podcast Released
New Insider Threat Presentation Published
An Analysis of Technical Observations in Insider Theft of Intellectual Property Cases Technical Note Published
Integrating the MSwA Reference Curriculum into the MSIS Model Curriculum Technical Note Published
New CERT/CC Blog Entry
Changes to Vulnerability Analysis Blog
Network Monitoring for Web-Based Threats Report Published
Security and Privacy Engineering (SPREE) Workshop Scheduled for June
New Insider Threat Blog Entry
New Podcast Released
Trust and Trusted Computing Platforms Technical Note Published
Deriving Candidate Technical Controls and Indicators of Insider Attack from Socio-Technical Models and Data Technical Note Published
Software Supply Chain Risk Management Technical Note Published
CERT Resilience Management Model Book Published
A Taxonomy of Operational Cyber Security Risks Published
Source Code Analysis Laboratory (SCALe) for Energy Delivery Systems Report Published
CERT Approach to Cybersecurity Workforce Development Report Published
New Insider Threat Blog Entry
New Insider Threat Blog Entry
How Resilient Is My Organization?
New Insider Threat Blog Entry
CERT Career Fair Scheduled for January
Best Practices for National Cyber Security: Building a National Computer Security Incident Management Capability
New Podcast Released
Measuring Operational Resilience Using the CERT Resilience Management Model
New CERT PGP Key
New Podcast Released
New Insider Threat Blog Entry
FloCon 2011 Keynote Speaker Announced
FloCon 2011 Registration Open
New Insider Threat Blog Entry
Participation Opportunities for FloCon 2011 Published
Integrated Measurement and Analysis Framework for Software Security Technical Note Published
Security Requirements Reusability and the SQUARE Methodology
Building Assured Systems Framework Report Published
Upcoming IEEE Smart Grid Survivability Workshop
New Podcast Released
New Vulnerability Analysis Blog Entry
New Insider Threat Blog Entry
New CERT PGP Key
Insider Threat Blog Released
FloCon 2010 Proceedings Available
Software Assurance Curriculum Materials Available
New Podcast Released
FloCon 2011 Announced
New Podcast Released
Technical Note on Adapting the SQUARE Process for Privacy Requirements Engineering Published
Spotlight On: Insider Threat from Trusted Business Partners Published
New Podcast Released
CERT/CC Enhancing Collaboration Between National CSIRTs
Upcoming SEI Webinar on the CERT Resilience Management Model
New Podcast Released
National CSIRTs to Meet in Miami
Fuzz Testing Tool Available
Java Concurrency Guidelines Report Published
Second Edition of Specifications for Managed Strings Report Published
Survivability Analysis Framework Technical Note Published
New Podcast Released
Resilience Management Model Report Published
Technical Report About Network Behavior Published
New Podcast Released
2009 CERT Research Annual Report Published
New Insider Threat Presentation Published
New Podcast Released
New CERT PGP Public Key
New Podcast Released
2010 Vulnerability Discovery Workshop
MITRE CWE and CERT Secure Coding Standards
Instrumented Fuzz Testing Using AIR Integers Published
Results of 2010 CyberSecurity Watch Survey Released
New Podcast Released
New CERT PGP Public Key
New Podcast Released
New Podcast Released
SQUARE Tool Is Now Available
New Podcast Released
CERT Tactical Response and Analysis Challege Tests Cybersecurity Skills
New Podcast Released
Spotlight On - Insider Theft of Intellectual Property inside the U.S. Involving Foreign Governments or Organizations
Deadline for FloCon Abstracts Extended
Secure Design Patterns
New Podcast Released
New Podcast Released
New Podcast Released
Effectiveness of the Vulnerability Response Decision Assistance (VRDA) Framework
New Podcast Released
Spotlight On: Malicious Insiders with Ties to the Internet Underground Community (pdf), March 2009
New Podcast Released
Insider Theft of Intellectual Property for Business Advantage: A Preliminary Model
As-if Infinitely Ranged Integer Model Published
First Time Offering, Register Now: Secure Coding in C and C++
New Podcast Released
Resiliency Management Model v1.0 Released
Winners of Best Practices Contest 2009 Announced
New CERT PGP Public Key
New Podcast Released
New Podcast Released
Attend the SEI Webinar on May 14
New Podcast Released
Making the Business Case for Software Assurance Published
Register for First Insider Threat Workshop
CERT Releases Dranzer Tool
New Podcast Released
Linux Forensics Tools Repository Released
New Podcast Released
Secure Design Patterns
New Podcast Released
CERT Program Hosts Leaders in Security
2008 CERT Research Annual Report Published
New Podcast Released
New Course Offering: Insider Threat Workshop
The CERT/CC and FIRST Announce Best Practices Contest 2009
New Podcast Released
Richard Pethia Receives CSO Compass Award
New Podcast Released
Common Sense Guide to Prevention and Detection of Insider Threats, Version 3.1
New Podcast Released
New Podcast Released
New Podcast Released
New Podcast Released
CERT Resiliency Engineering Framework (REF) Outline Published
New Podcast Released
New Podcast Released
The CERT C Secure Coding Standard Published
CERT Statistics Updated
New Podcast Released
New Podcast Released
Interactive Vulnerability Reporting Form Released
New Podcast Released
Java Secure Coding Standard Released
New Technical Note Released
New Podcast Released
New Podcast Released
New Podcast Released
CERT Statistics Updated
New Podcast Released
New Podcast Released
CERT Autoresponder Disabled
New Podcast Released
Winners of Best Practices Security Awards Announced
New Podcast Released
Evaluation of CERT Secure Coding Rules through Integration with Source Code Analysis Tools Published
New Podcast Released
New Podcast Released
New CERT PGP Public Key
Making the Business Case for Software Assurance
New Podcast Released
New Podcast Released
Vulnerability Analysis Blog Published
New Podcast Released
CERT Statistics Updated
CERT Authors Publish Book About Building Security into Software Products
Reminder: Entries for Security Awards Due April 30
New Podcast Released
Incident Management Mission Diagnostic Method, Version 1.0 Published
CERT Sponsors FIRST Conference
New Podcast Released
CERT Resiliency Engineering Framework, v0.95R Available
2007 CERT Research Annual Report Published
New Podcast Released
FIRST and Carnegie Mellon Software Enginnering Institute CERT Coordination Center Unveil New Security Awards
New Podcast Released
CERT to Participate in Second Annual Counter eCrime Operations Summit
New Podcast Released
New Podcast Released
SQUARE Instructional Materials Released
New Podcast Released
CERT Statistics Updated
Insider Threat Studies Released
New Podcast Released
LinuxSecurity.com - Latest News
url: http://www.linuxsecurity.comThe Community's Center for Security
Apple end-to-end encryption far from bulletproof
Cops Shut Down Hacker Drug Ring
3 Questions About NSA Surveillance
7 essentials for defending against DDoS attacks
Prism doesn't have CIOs in a panic -- yet
PNoy phone hacker denies vandalism
Our Top-Secret Message to NSA Whistleblower Edward Snowden
Blowback from the NSA Surveillance
LulzSec Hacker Ryan Cleary To Be Released
Can You Completely Secure Linux?
Kim Dotcom releases a video of Megaupload raid
Google detects phishing attacks in Iran ahead of elections
Debian Security
url: http://security.debian.org/Debian Security Advisories
DSA-2711 haproxy
DSA-2710 xml-security-c
DSA-2698 tiff
DSA-2628 nss-pam-ldapd
DSA-2709 wireshark
DSA-2708 fail2ban
DSA-2707 dbus
DSA-2706 chromium-browser
DSA-2705 pymongo
DSA-2704 mesa
DSA-2703 subversion
DSA-2702 telepathy-gabble
DSA-2700 wireshark
DSA-2699 iceweasel
DSA-2701 krb5
DSA-2697 gnutls26
DSA-2696 otrs2
DSA-2695 chromium-browser
DSA-2694 spip
DSA-2693 libx11
DSA-2675 libxvmc
DSA-2692 libxxf86vm
DSA-2691 libxinerama
DSA-2690 libxxf86dga
DSA-2689 libxtst
DSA-2688 libxres
DSA-2687 libfs
DSA-2686 libxcb
DSA-2685 libxp
DSA-2684 libxrandr
DSA-2683 libxi
DSA-2682 libxext
DSA-2681 libxcursor
DSA-2680 libxt
DSA-2679 xserver-xorg-video-openchrome
DSA-2678 mesa
DSA-2677 libxrender
DSA-2676 libxfixes
DSA-2674 libxv
DSA-2673 libdmx
DSA-2672 kfreebsd-9
DSA-2671 request-tracker4
DSA-2670 request-tracker3.8