birdmen in the sky
Labels: evolution
posted by omarg at
2:32 AM
0 Comments
Monday, December 29, 2008
Tuesday, December 23, 2008
Another MS SQL 0-day exploit itw: Microsoft SQL Server sp_replwritetovarbin (thanks God it wont be another slammer)
3 years after slammer, probably the fastest spreading worm ever, caused mayhem, a zero-day ms-sql exploit is out there in the wild...
Microsoft Security Advisory (961040)
Anyone who have seen slammer in action wont never forget how powerful that worm is. Curious enough, more than 2 years later, in 2007 while I was helping the guys who manage one of Italy's biggest data center, the IPS there keep on detecting slammer 376-bytes packets.
I don’t think another ms sql will cause same spearding power as slammer, as these days, only ignorant people will leave UDP port 1434 open...
CVE-2008-5416
PS: the identity of slammer's author was never discovered, as the patient 0...
Microsoft Security Advisory (961040)
Anyone who have seen slammer in action wont never forget how powerful that worm is. Curious enough, more than 2 years later, in 2007 while I was helping the guys who manage one of Italy's biggest data center, the IPS there keep on detecting slammer 376-bytes packets.
I don’t think another ms sql will cause same spearding power as slammer, as these days, only ignorant people will leave UDP port 1434 open...
CVE-2008-5416
PS: the identity of slammer's author was never discovered, as the patient 0...
Labels: security
posted by omarg at
10:16 PM
0 Comments
Thursday, December 18, 2008
you are heimskur!
heimskur is stupid in icelandic..
but heimskur is also means stay at home...
because stupid people should stay at home
because you are stupid if you stay a home
but heimskur is also means stay at home...
because stupid people should stay at home
because you are stupid if you stay a home
Labels: quote of the day
posted by omarg at
12:50 AM
0 Comments
Wednesday, December 17, 2008
IE zero day vulnerability
something is in the air...
this is a BIG deal any IE zero day vulnerability
CVE-2008-4844
MS08-078
ORI: 10 Dec 2008
this is a BIG deal any IE zero day vulnerability
CVE-2008-4844
MS08-078
ORI: 10 Dec 2008
Labels: security
posted by omarg at
12:23 PM
0 Comments
Monday, December 15, 2008
$50 billion hole in a pyramid scheme
I'm speechless.
what to say about $50 billion hole in a pyramid scheme?
when we analyze this economic crisis, we can be blame people who work in financial companies.. they earn TONS of money but creates nothing except disaster... many people lost their live savings.
it is worst than zero sum game
but nothing compares to $50 billion hole in pyramid scheme arranged by Bernard Madoff ex NASDAQ chairman...
on second thought, pension system in some countries is actually a legalized pyramid scheme...
On further note, many investors who invest in Bernard L. Madoff Investment Securities LLC KNEW Bernie had to be cheating, because the returns he was generating were impossibly good. But they thought it was insider trading, not a Ponzi scheme.
What the hell is the regulators & the auditors were doing???
what to say about $50 billion hole in a pyramid scheme?
when we analyze this economic crisis, we can be blame people who work in financial companies.. they earn TONS of money but creates nothing except disaster... many people lost their live savings.
it is worst than zero sum game
but nothing compares to $50 billion hole in pyramid scheme arranged by Bernard Madoff ex NASDAQ chairman...
on second thought, pension system in some countries is actually a legalized pyramid scheme...
On further note, many investors who invest in Bernard L. Madoff Investment Securities LLC KNEW Bernie had to be cheating, because the returns he was generating were impossibly good. But they thought it was insider trading, not a Ponzi scheme.
What the hell is the regulators & the auditors were doing???
Labels: the economist
posted by omarg at
9:27 PM
0 Comments
Wednesday, December 10, 2008
WTF!!! another WMF vulnerability - meaning remote code execution
http://www.microsoft.com/technet/security/Bulletin/ms08-071.mspx
A vulnerability in GDI allow remote code execution...
Imagine if with IE you access a site that host malicious WMF file <~ drive by install scenario :(
A vulnerability in GDI allow remote code execution...
Imagine if with IE you access a site that host malicious WMF file <~ drive by install scenario :(
Labels: security
posted by omarg at
10:58 PM
0 Comments
Previous Posts
- This blog has moved
- how corporation works in US, by Jon Stewart
- again...another IE 0-day...
- another IE 0-day...
- 60 minutes wingsuit base
- cool love story
- IE 0-day in the wild... scary...
- Adobe 0-day vulnerabilty... again ... again...
- IE 0-day in the wild... again
- drive by install... MS09-065.mspx
Archives
- November 2006
- December 2006
- January 2007
- March 2007
- April 2007
- May 2007
- June 2007
- July 2007
- October 2007
- January 2008
- February 2008
- March 2008
- April 2008
- May 2008
- June 2008
- July 2008
- August 2008
- September 2008
- October 2008
- November 2008
- December 2008
- January 2009
- February 2009
- March 2009
- April 2009
- May 2009
- June 2009
- July 2009
- August 2009
- September 2009
- October 2009
- November 2009
- December 2009
- January 2010
- February 2010
- March 2010
- deepsh.it
- my old blog
- Secunia
- F-Secure Blog
- The Register
- Schneier on Security
- Avert Labs Blog
- C.I.S.R.T.
- Kaspersky Lab Blog
- Symantec Blog
- Websense Blog
- ISC SANS Blog
- eEye Research Blog
- X-Force Blog
- M$RClowns Blog
- Dave Navarro
- router god
- Bangalore Tigers
- Security Fix
- Daemon News
- BSD at work
- Netcraft
Links
Subscribe to
Posts [Atom]