read more View full post on Security Management News & Analysis View full post on National Cyber Security
AV Testing, AMTSO and EICAR
Back in 2008, EICAR rejected a paper proposed by Andrew Lee and myself discussing the state of anti-malware testing and how it might be improved, on the grounds that it was “advertising” the fledgling AMTSO (Anti-Malware Testing Standards Organization) initiative. You can decide for yourselves whether that criticism was justified:…
AV Testing, AMTSO and EICAR
Back in 2008, EICAR rejected a paper proposed by Andrew Lee and myself discussing the state of anti-malware testing and how it might be improved, on the grounds that it was “advertising” the fledgling AMTSO (Anti-Malware Testing Standards Organization) initiative. You can decide for yourselves whether that criticism was justified:…
InfosecIsland: Three Areas to Test when Assessing Mobile Applications – Mobile Application testing is something that will evolve as… http://t.co/YpLwPiJN
InfosecIsland: Three Areas to Test when Assessing Mobile Applications – Mobile Application testing is something that will evolve as… http://t.co/YpLwPiJN View full post on Twitter / InfosecIsland View full post on National Cyber Security
How to test a firewall: A three-step guide for testing firewalls
There are three steps when testing firewalls for your organization. Expert Joel Snyder explains how to test a firewall. View full post on SearchSecurity: Network Security Tactics View full post on National Cyber Security
The Hacker Academy brings sought-after Penetration Testing Reporting and Analysis Class to Techno Security Conference
The Hacker Academy, a leading training provider for information security practitioners, will contribute to the Techno Security Conference, June 1-2, 2012 in Myrtle Beach, SC with their unique class: “Penetration Testing Reporting and Analysis: Being a Tester, Not Just Another Hacker.” While most information security courses focus largely on the…
CanSecWest Day 1 – Pen testing, social authentication, APR and Duqu
A wrap-up of the news and talks from CanSecWest 2012 in Vancouver. I highlight talks on pen testing, social authentication, vulnerability mitigation and the Duqu command and control servers. View full post on Naked Security – Sophos View full post on National Cyber Security
Glass Box: The Next Phase of Web Application Security Testing?
IBM’s latest AppScan release combines static and dynamic testing methods. View full post on eSecurityPlanet RSS Feed View full post on National Cyber Security
Japan testing ‘virus’ cyberdefence weapon, reports say
The Japanese authorities have tested a ‘virus’ cyberweapon capable of tracing and disabling computers being used in cyberattacks against the country, a newspaper in the country has reported. Quoting anonymous sources said to be connected to the project, The Yomiuri Shimbun said that Japan’s Defense Ministry’s Technical Research and Development…
XSS flaw in WordPress 3.3 – How the smallest things make testing tough
Researchers discovered a cross-site scripting flaw in WordPress 3.3 yesterday that only occurs if you ran the installation with an IP address instead of a domain name. WordPress 3.3.1 is now available to fix the vulnerability. View full post on Naked Security – Sophos View full post on National Cyber…