http://geekinfosecurity.blogspot.com/Security, Hacking and Geekingennoreply@blogger.com (Roberto Scaccia)Wed, 23 May 2012 23:45:52 PDTBloggertag:blogger.com,1999:blog-1908095138994940398446125http://creativecommons.org/licenses/by-nc-nd/2.0/http://creativecommons.org/licenses/by-nc-nd/2.0/http://creativecommons.org/images/public/somerights20.gifInformationSecurityForGeekshttp://feedburner.google.comSubscribe with NewsGatorSubscribe with BloglinesSubscribe with NetvibesSubscribe with GoogleSubscribe with PageflakesSubscribe with Mio Yahoo!http://feedproxy.google.com/~r/InformationSecurityForGeeks/~3/mojPb2F5AxI/in-google-we-trust.htmlDNSgooglemalwanoreply@blogger.com (Roberto Scaccia)Wed, 23 May 2012 23:45:00 PDTtag:blogger.com,1999:blog-1908095138994940398.post-65747112874340024082012-05-24T08:45:52.638+02:00 "Starting today we’re undertaking an effort to notify roughly half a million people whose computers or home routers are infected with a well-publicized form of malware known as DNSChanger. After successfully alerting a million users last summer to a different type of malware, we’ve replicated this method and have started showing warnings via a special message that will appear at the top of the 0<div class="feedflare"> <a href="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?a=mojPb2F5AxI:TXfuaCqtLRI:yIl2AUoC8zA"><img src="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?d=yIl2AUoC8zA" border="0"></img></a> <a href="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?a=mojPb2F5AxI:TXfuaCqtLRI:dnMXMwOfBR0"><img src="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?d=dnMXMwOfBR0" border="0"></img></a> <a href="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?a=mojPb2F5AxI:TXfuaCqtLRI:YwkR-u9nhCs"><img src="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?d=YwkR-u9nhCs" border="0"></img></a> <a href="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?a=mojPb2F5AxI:TXfuaCqtLRI:F7zBnMyn0Lo"><img src="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?i=mojPb2F5AxI:TXfuaCqtLRI:F7zBnMyn0Lo" border="0"></img></a> <a href="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?a=mojPb2F5AxI:TXfuaCqtLRI:7Q72WNTAKBA"><img src="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?d=7Q72WNTAKBA" border="0"></img></a> <a href="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?a=mojPb2F5AxI:TXfuaCqtLRI:V_sGLiPBpWU"><img src="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?i=mojPb2F5AxI:TXfuaCqtLRI:V_sGLiPBpWU" border="0"></img></a> <a href="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?a=mojPb2F5AxI:TXfuaCqtLRI:qj6IDK7rITs"><img src="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?d=qj6IDK7rITs" border="0"></img></a> <a href="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?a=mojPb2F5AxI:TXfuaCqtLRI:-BTjWOF_DHI"><img src="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?i=mojPb2F5AxI:TXfuaCqtLRI:-BTjWOF_DHI" border="0"></img></a> </div><img src="http://feeds.feedburner.com/~r/InformationSecurityForGeeks/~4/mojPb2F5AxI" height="1" width="1"/>http://geekinfosecurity.blogspot.com/2012/05/in-google-we-trust.htmlhttp://feedproxy.google.com/~r/InformationSecurityForGeeks/~3/F1rqNNyBJyA/ddos-ed-effetto-domino.htmlhacktivismDDoSdominonoreply@blogger.com (Roberto Scaccia)Fri, 04 May 2012 05:27:00 PDTtag:blogger.com,1999:blog-1908095138994940398.post-75227298237006226522012-05-04T14:27:13.310+02:00 Cari amici (mi verrebbe da dire vicini e lontani) scommetto che non ce ne è uno di voi che non sappia cosa sia un DDoS e certo non sarò io a tediarvi (basterà guardare il link a Wikipedia). Però temo, e lo dico purtroppo per esperienza, che pochi hanno ben compreso le reali ripercussioni di un DDoS. Del resto ne avevo già parlato circa un anno fa con l'avvento dell'Hacktivismo digitale. 4<div class="feedflare"> <a href="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?a=F1rqNNyBJyA:5XFQeDbaxSI:yIl2AUoC8zA"><img src="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?d=yIl2AUoC8zA" border="0"></img></a> <a href="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?a=F1rqNNyBJyA:5XFQeDbaxSI:dnMXMwOfBR0"><img src="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?d=dnMXMwOfBR0" border="0"></img></a> <a href="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?a=F1rqNNyBJyA:5XFQeDbaxSI:YwkR-u9nhCs"><img src="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?d=YwkR-u9nhCs" border="0"></img></a> <a href="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?a=F1rqNNyBJyA:5XFQeDbaxSI:F7zBnMyn0Lo"><img src="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?i=F1rqNNyBJyA:5XFQeDbaxSI:F7zBnMyn0Lo" border="0"></img></a> <a href="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?a=F1rqNNyBJyA:5XFQeDbaxSI:7Q72WNTAKBA"><img src="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?d=7Q72WNTAKBA" border="0"></img></a> <a href="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?a=F1rqNNyBJyA:5XFQeDbaxSI:V_sGLiPBpWU"><img src="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?i=F1rqNNyBJyA:5XFQeDbaxSI:V_sGLiPBpWU" border="0"></img></a> <a href="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?a=F1rqNNyBJyA:5XFQeDbaxSI:qj6IDK7rITs"><img src="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?d=qj6IDK7rITs" border="0"></img></a> <a href="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?a=F1rqNNyBJyA:5XFQeDbaxSI:-BTjWOF_DHI"><img src="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?i=F1rqNNyBJyA:5XFQeDbaxSI:-BTjWOF_DHI" border="0"></img></a> </div><img src="http://feeds.feedburner.com/~r/InformationSecurityForGeeks/~4/F1rqNNyBJyA" height="1" width="1"/>http://geekinfosecurity.blogspot.com/2012/05/ddos-ed-effetto-domino.htmlhttp://feedproxy.google.com/~r/InformationSecurityForGeeks/~3/M4mQwcOvQEo/osxflashbackk-aggiornamento-apple.htmljavatrojanmacnoreply@blogger.com (Roberto Scaccia)Tue, 03 Apr 2012 22:44:00 PDTtag:blogger.com,1999:blog-1908095138994940398.post-30910651708143178442012-04-13T08:01:09.704+02:00 Fresco fresco un aggiornamento Apple che aggiorna Java alla 1.6_31. Questo aggiornamento dovrebbe contrastare il diffondersi del Trojan che in questi giorni sta preoccupando molto gli utenti della mela.  Java è ormai diventato un vettore d'attacco privilegiato per tutte le piattaforme. Aggiornate quindi sempre questo prodotto, ovunque! Se poi siete in un contesto aziendale, allora sono0<div class="feedflare"> <a href="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?a=M4mQwcOvQEo:Nw9RhOcmz58:yIl2AUoC8zA"><img src="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?d=yIl2AUoC8zA" border="0"></img></a> <a href="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?a=M4mQwcOvQEo:Nw9RhOcmz58:dnMXMwOfBR0"><img src="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?d=dnMXMwOfBR0" border="0"></img></a> <a href="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?a=M4mQwcOvQEo:Nw9RhOcmz58:YwkR-u9nhCs"><img src="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?d=YwkR-u9nhCs" border="0"></img></a> <a href="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?a=M4mQwcOvQEo:Nw9RhOcmz58:F7zBnMyn0Lo"><img src="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?i=M4mQwcOvQEo:Nw9RhOcmz58:F7zBnMyn0Lo" border="0"></img></a> <a href="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?a=M4mQwcOvQEo:Nw9RhOcmz58:7Q72WNTAKBA"><img src="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?d=7Q72WNTAKBA" border="0"></img></a> <a href="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?a=M4mQwcOvQEo:Nw9RhOcmz58:V_sGLiPBpWU"><img src="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?i=M4mQwcOvQEo:Nw9RhOcmz58:V_sGLiPBpWU" border="0"></img></a> <a href="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?a=M4mQwcOvQEo:Nw9RhOcmz58:qj6IDK7rITs"><img src="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?d=qj6IDK7rITs" border="0"></img></a> <a href="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?a=M4mQwcOvQEo:Nw9RhOcmz58:-BTjWOF_DHI"><img src="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?i=M4mQwcOvQEo:Nw9RhOcmz58:-BTjWOF_DHI" border="0"></img></a> </div><img src="http://feeds.feedburner.com/~r/InformationSecurityForGeeks/~4/M4mQwcOvQEo" height="1" width="1"/>http://geekinfosecurity.blogspot.com/2012/04/osxflashbackk-aggiornamento-apple.htmlhttp://feedproxy.google.com/~r/InformationSecurityForGeeks/~3/v2jx8G69T7Y/come-lavora-un-cracker-ovvero-come.htmlvideocrackernoreply@blogger.com (Roberto Scaccia)Wed, 21 Mar 2012 23:41:00 PDTtag:blogger.com,1999:blog-1908095138994940398.post-28474071551515942222012-03-22T07:41:48.212+01:00 Di video sul cracking in giro ce ne sono tanti, però lo stile è sempre lo stesso: capellone 15enne che fa la SQL Injection....un po' di binario ed ecco fatto. Questi video non servono a nessuno. Riprendo invece da Paolo Attivissimo questo video, fatto davvero molto bene, e che vi consiglio di guardare fino in fondo: http://www.rsi.ch/pattichiari/node/2891 Il video fa capire che ognuno di 2<div class="feedflare"> <a href="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?a=v2jx8G69T7Y:LByTIa8jGdw:yIl2AUoC8zA"><img src="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?d=yIl2AUoC8zA" border="0"></img></a> <a href="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?a=v2jx8G69T7Y:LByTIa8jGdw:dnMXMwOfBR0"><img src="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?d=dnMXMwOfBR0" border="0"></img></a> <a href="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?a=v2jx8G69T7Y:LByTIa8jGdw:YwkR-u9nhCs"><img src="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?d=YwkR-u9nhCs" border="0"></img></a> <a href="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?a=v2jx8G69T7Y:LByTIa8jGdw:F7zBnMyn0Lo"><img src="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?i=v2jx8G69T7Y:LByTIa8jGdw:F7zBnMyn0Lo" border="0"></img></a> <a href="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?a=v2jx8G69T7Y:LByTIa8jGdw:7Q72WNTAKBA"><img src="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?d=7Q72WNTAKBA" border="0"></img></a> <a href="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?a=v2jx8G69T7Y:LByTIa8jGdw:V_sGLiPBpWU"><img src="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?i=v2jx8G69T7Y:LByTIa8jGdw:V_sGLiPBpWU" border="0"></img></a> <a href="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?a=v2jx8G69T7Y:LByTIa8jGdw:qj6IDK7rITs"><img src="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?d=qj6IDK7rITs" border="0"></img></a> <a href="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?a=v2jx8G69T7Y:LByTIa8jGdw:-BTjWOF_DHI"><img src="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?i=v2jx8G69T7Y:LByTIa8jGdw:-BTjWOF_DHI" border="0"></img></a> </div><img src="http://feeds.feedburner.com/~r/InformationSecurityForGeeks/~4/v2jx8G69T7Y" height="1" width="1"/>http://geekinfosecurity.blogspot.com/2012/03/come-lavora-un-cracker-ovvero-come.htmlhttp://feedproxy.google.com/~r/InformationSecurityForGeeks/~3/FxSOd0jpq08/gestione-degli-incidenti-di-sicurezza.htmlvideoincidentinoreply@blogger.com (Roberto Scaccia)Sat, 25 Feb 2012 00:32:00 PSTtag:blogger.com,1999:blog-1908095138994940398.post-27235925542939850532012-02-25T09:33:15.782+01:00 Se gestite così gli incidenti di Sicurezza Informatica, forse c'è qualche procedura da rivedere: Non è fantasia, ma triste realtà :)2<div class="feedflare"> <a href="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?a=FxSOd0jpq08:OBjJmdpiERg:yIl2AUoC8zA"><img src="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?d=yIl2AUoC8zA" border="0"></img></a> <a href="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?a=FxSOd0jpq08:OBjJmdpiERg:dnMXMwOfBR0"><img src="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?d=dnMXMwOfBR0" border="0"></img></a> <a href="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?a=FxSOd0jpq08:OBjJmdpiERg:YwkR-u9nhCs"><img src="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?d=YwkR-u9nhCs" border="0"></img></a> <a href="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?a=FxSOd0jpq08:OBjJmdpiERg:F7zBnMyn0Lo"><img src="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?i=FxSOd0jpq08:OBjJmdpiERg:F7zBnMyn0Lo" border="0"></img></a> <a href="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?a=FxSOd0jpq08:OBjJmdpiERg:7Q72WNTAKBA"><img src="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?d=7Q72WNTAKBA" border="0"></img></a> <a href="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?a=FxSOd0jpq08:OBjJmdpiERg:V_sGLiPBpWU"><img src="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?i=FxSOd0jpq08:OBjJmdpiERg:V_sGLiPBpWU" border="0"></img></a> <a href="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?a=FxSOd0jpq08:OBjJmdpiERg:qj6IDK7rITs"><img src="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?d=qj6IDK7rITs" border="0"></img></a> <a href="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?a=FxSOd0jpq08:OBjJmdpiERg:-BTjWOF_DHI"><img src="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?i=FxSOd0jpq08:OBjJmdpiERg:-BTjWOF_DHI" border="0"></img></a> </div><img src="http://feeds.feedburner.com/~r/InformationSecurityForGeeks/~4/FxSOd0jpq08" height="1" width="1"/>http://geekinfosecurity.blogspot.com/2012/02/gestione-degli-incidenti-di-sicurezza.htmlhttp://feedproxy.google.com/~r/InformationSecurityForGeeks/~3/c8ggpJ0HJmA/java-un-caffe-un-po-indigesto-exploit.htmljavaappletexpoitnoreply@blogger.com (Roberto Scaccia)Sun, 19 Feb 2012 23:04:00 PSTtag:blogger.com,1999:blog-1908095138994940398.post-37608164319821135702012-02-20T08:04:38.687+01:00 Che qualcuno si stia approfittando del caro vecchio runtime Java, ormai è chiaro. Non ricordo dove (tra web, blog post, twitter e facebook la mia mente vacilla) ma da più parti si sostiene che i target preferiti dai "cracker" al momento siano due: Adobe (Flash, Reader, etc.), con la sua galassia di applicazioni, e Java.  Il motivo è semplice: i prodotti Adobe e Java sono molto diffusi 2<div class="feedflare"> <a href="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?a=c8ggpJ0HJmA:TzSjgp_oMlI:yIl2AUoC8zA"><img src="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?d=yIl2AUoC8zA" border="0"></img></a> <a href="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?a=c8ggpJ0HJmA:TzSjgp_oMlI:dnMXMwOfBR0"><img src="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?d=dnMXMwOfBR0" border="0"></img></a> <a href="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?a=c8ggpJ0HJmA:TzSjgp_oMlI:YwkR-u9nhCs"><img src="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?d=YwkR-u9nhCs" border="0"></img></a> <a href="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?a=c8ggpJ0HJmA:TzSjgp_oMlI:F7zBnMyn0Lo"><img src="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?i=c8ggpJ0HJmA:TzSjgp_oMlI:F7zBnMyn0Lo" border="0"></img></a> <a href="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?a=c8ggpJ0HJmA:TzSjgp_oMlI:7Q72WNTAKBA"><img src="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?d=7Q72WNTAKBA" border="0"></img></a> <a href="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?a=c8ggpJ0HJmA:TzSjgp_oMlI:V_sGLiPBpWU"><img src="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?i=c8ggpJ0HJmA:TzSjgp_oMlI:V_sGLiPBpWU" border="0"></img></a> <a href="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?a=c8ggpJ0HJmA:TzSjgp_oMlI:qj6IDK7rITs"><img src="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?d=qj6IDK7rITs" border="0"></img></a> <a href="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?a=c8ggpJ0HJmA:TzSjgp_oMlI:-BTjWOF_DHI"><img src="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?i=c8ggpJ0HJmA:TzSjgp_oMlI:-BTjWOF_DHI" border="0"></img></a> </div><img src="http://feeds.feedburner.com/~r/InformationSecurityForGeeks/~4/c8ggpJ0HJmA" height="1" width="1"/>http://geekinfosecurity.blogspot.com/2012/02/java-un-caffe-un-po-indigesto-exploit.htmlhttp://feedproxy.google.com/~r/InformationSecurityForGeeks/~3/buVWNrFsELs/jboss-security-slides-from-owasp.htmlapplication securityowaspjbossnoreply@blogger.com (Roberto Scaccia)Tue, 24 Jan 2012 22:48:00 PSTtag:blogger.com,1999:blog-1908095138994940398.post-40224995797779506282012-01-25T07:48:16.238+01:00 Here is the new OWASP slides on JBoss Security. JBoss is a well known Java Web Application Server used in professional environment. So read it if you have it! The slides have been done by OWASP members who are very oriented to the Application Security. Well done guys! 0<div class="feedflare"> <a href="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?a=buVWNrFsELs:cs8E7IcKGxs:yIl2AUoC8zA"><img src="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?d=yIl2AUoC8zA" border="0"></img></a> <a href="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?a=buVWNrFsELs:cs8E7IcKGxs:dnMXMwOfBR0"><img src="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?d=dnMXMwOfBR0" border="0"></img></a> <a href="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?a=buVWNrFsELs:cs8E7IcKGxs:YwkR-u9nhCs"><img src="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?d=YwkR-u9nhCs" border="0"></img></a> <a href="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?a=buVWNrFsELs:cs8E7IcKGxs:F7zBnMyn0Lo"><img src="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?i=buVWNrFsELs:cs8E7IcKGxs:F7zBnMyn0Lo" border="0"></img></a> <a href="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?a=buVWNrFsELs:cs8E7IcKGxs:7Q72WNTAKBA"><img src="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?d=7Q72WNTAKBA" border="0"></img></a> <a href="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?a=buVWNrFsELs:cs8E7IcKGxs:V_sGLiPBpWU"><img src="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?i=buVWNrFsELs:cs8E7IcKGxs:V_sGLiPBpWU" border="0"></img></a> <a href="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?a=buVWNrFsELs:cs8E7IcKGxs:qj6IDK7rITs"><img src="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?d=qj6IDK7rITs" border="0"></img></a> <a href="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?a=buVWNrFsELs:cs8E7IcKGxs:-BTjWOF_DHI"><img src="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?i=buVWNrFsELs:cs8E7IcKGxs:-BTjWOF_DHI" border="0"></img></a> </div><img src="http://feeds.feedburner.com/~r/InformationSecurityForGeeks/~4/buVWNrFsELs" height="1" width="1"/>http://geekinfosecurity.blogspot.com/2012/01/jboss-security-slides-from-owasp.htmlhttp://feedproxy.google.com/~r/InformationSecurityForGeeks/~3/VBJb11IZrqY/alice-bob-il-dato-e-sensibile-perche-ha.htmlscanneralice and bobprivacynoreply@blogger.com (Roberto Scaccia)Thu, 19 Jan 2012 22:21:00 PSTtag:blogger.com,1999:blog-1908095138994940398.post-47081807113859819762012-01-20T07:21:06.603+01:00 Bob: "Che comodità questa stampante/scanner dipartimentale, mi ricordo che due anni fa avevo sollevato un polverone incredibile sulle scannerizzazioni di questi aggeggi. Ti ricordi Alice?" Alice: "Sì sì sempre il solito, ma adesso i file scansionati li cancelliamo! Una volta al mese un complesso script di cancellazione azzera il contenuto della directory! hihihihi (stavolta l'ho fregato)" 0<div class="feedflare"> <a href="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?a=VBJb11IZrqY:GRTpoJNCHmU:yIl2AUoC8zA"><img src="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?d=yIl2AUoC8zA" border="0"></img></a> <a href="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?a=VBJb11IZrqY:GRTpoJNCHmU:dnMXMwOfBR0"><img src="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?d=dnMXMwOfBR0" border="0"></img></a> <a href="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?a=VBJb11IZrqY:GRTpoJNCHmU:YwkR-u9nhCs"><img src="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?d=YwkR-u9nhCs" border="0"></img></a> <a href="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?a=VBJb11IZrqY:GRTpoJNCHmU:F7zBnMyn0Lo"><img src="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?i=VBJb11IZrqY:GRTpoJNCHmU:F7zBnMyn0Lo" border="0"></img></a> <a href="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?a=VBJb11IZrqY:GRTpoJNCHmU:7Q72WNTAKBA"><img src="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?d=7Q72WNTAKBA" border="0"></img></a> <a href="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?a=VBJb11IZrqY:GRTpoJNCHmU:V_sGLiPBpWU"><img src="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?i=VBJb11IZrqY:GRTpoJNCHmU:V_sGLiPBpWU" border="0"></img></a> <a href="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?a=VBJb11IZrqY:GRTpoJNCHmU:qj6IDK7rITs"><img src="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?d=qj6IDK7rITs" border="0"></img></a> <a href="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?a=VBJb11IZrqY:GRTpoJNCHmU:-BTjWOF_DHI"><img src="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?i=VBJb11IZrqY:GRTpoJNCHmU:-BTjWOF_DHI" border="0"></img></a> </div><img src="http://feeds.feedburner.com/~r/InformationSecurityForGeeks/~4/VBJb11IZrqY" height="1" width="1"/>http://geekinfosecurity.blogspot.com/2012/01/alice-bob-il-dato-e-sensibile-perche-ha.htmlhttp://feedproxy.google.com/~r/InformationSecurityForGeeks/~3/3QkfG8c-QlY/google-meglio-saperlo.htmlsicurezzaauthenticationgoogleprivacynoreply@blogger.com (Roberto Scaccia)Wed, 18 Jan 2012 22:53:00 PSTtag:blogger.com,1999:blog-1908095138994940398.post-7749624956818668302012-01-19T07:13:19.264+01:00 Interessante piattaforma web di Google (Google Goodtoknow) per l'educazione degli utenti alla sicurezza e privacy. Come sempre informazione chiara, semplice e fruibile da (quasi) tutti. Il sito è ovviamente in inglese e anche i video. Quattro le sezioni principali: Sicuri on-line I tuoi dati sul Web I tuoi dati su Google Gestisci i tuoi dati In ognuna di esse è presente un video principale 2<div class="feedflare"> <a href="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?a=3QkfG8c-QlY:PNuHlumyYOI:yIl2AUoC8zA"><img src="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?d=yIl2AUoC8zA" border="0"></img></a> <a href="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?a=3QkfG8c-QlY:PNuHlumyYOI:dnMXMwOfBR0"><img src="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?d=dnMXMwOfBR0" border="0"></img></a> <a href="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?a=3QkfG8c-QlY:PNuHlumyYOI:YwkR-u9nhCs"><img src="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?d=YwkR-u9nhCs" border="0"></img></a> <a href="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?a=3QkfG8c-QlY:PNuHlumyYOI:F7zBnMyn0Lo"><img src="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?i=3QkfG8c-QlY:PNuHlumyYOI:F7zBnMyn0Lo" border="0"></img></a> <a href="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?a=3QkfG8c-QlY:PNuHlumyYOI:7Q72WNTAKBA"><img src="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?d=7Q72WNTAKBA" border="0"></img></a> <a href="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?a=3QkfG8c-QlY:PNuHlumyYOI:V_sGLiPBpWU"><img src="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?i=3QkfG8c-QlY:PNuHlumyYOI:V_sGLiPBpWU" border="0"></img></a> <a href="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?a=3QkfG8c-QlY:PNuHlumyYOI:qj6IDK7rITs"><img src="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?d=qj6IDK7rITs" border="0"></img></a> <a href="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?a=3QkfG8c-QlY:PNuHlumyYOI:-BTjWOF_DHI"><img src="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?i=3QkfG8c-QlY:PNuHlumyYOI:-BTjWOF_DHI" border="0"></img></a> </div><img src="http://feeds.feedburner.com/~r/InformationSecurityForGeeks/~4/3QkfG8c-QlY" height="1" width="1"/>http://geekinfosecurity.blogspot.com/2012/01/google-meglio-saperlo.htmlhttp://feedproxy.google.com/~r/InformationSecurityForGeeks/~3/TuMJMZhAeWs/contro-la-censura-sopa.htmlcensuranoreply@blogger.com (Roberto Scaccia)Tue, 17 Jan 2012 23:12:00 PSTtag:blogger.com,1999:blog-1908095138994940398.post-64515607398346649182012-01-19T07:18:48.419+01:00 http://sopastrike.com/strike/ ---- UPDATE ---- Sembra che la diffusa protesta mondiale stia facendo ritornare sui loro passi gli estensori della legge. Internet Power! Qui una esauriente spiegazione del bravissimo Paolo Attivissimo del perché questa protesta ha avuto e ha un senso.3<div class="feedflare"> <a href="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?a=TuMJMZhAeWs:GERthLtdbUs:yIl2AUoC8zA"><img src="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?d=yIl2AUoC8zA" border="0"></img></a> <a href="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?a=TuMJMZhAeWs:GERthLtdbUs:dnMXMwOfBR0"><img src="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?d=dnMXMwOfBR0" border="0"></img></a> <a href="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?a=TuMJMZhAeWs:GERthLtdbUs:YwkR-u9nhCs"><img src="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?d=YwkR-u9nhCs" border="0"></img></a> <a href="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?a=TuMJMZhAeWs:GERthLtdbUs:F7zBnMyn0Lo"><img src="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?i=TuMJMZhAeWs:GERthLtdbUs:F7zBnMyn0Lo" border="0"></img></a> <a href="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?a=TuMJMZhAeWs:GERthLtdbUs:7Q72WNTAKBA"><img src="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?d=7Q72WNTAKBA" border="0"></img></a> <a href="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?a=TuMJMZhAeWs:GERthLtdbUs:V_sGLiPBpWU"><img src="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?i=TuMJMZhAeWs:GERthLtdbUs:V_sGLiPBpWU" border="0"></img></a> <a href="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?a=TuMJMZhAeWs:GERthLtdbUs:qj6IDK7rITs"><img src="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?d=qj6IDK7rITs" border="0"></img></a> <a href="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?a=TuMJMZhAeWs:GERthLtdbUs:-BTjWOF_DHI"><img src="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?i=TuMJMZhAeWs:GERthLtdbUs:-BTjWOF_DHI" border="0"></img></a> </div><img src="http://feeds.feedburner.com/~r/InformationSecurityForGeeks/~4/TuMJMZhAeWs" height="1" width="1"/>http://geekinfosecurity.blogspot.com/2012/01/contro-la-censura-sopa.htmlhttp://feedproxy.google.com/~r/InformationSecurityForGeeks/~3/7-UdhG0-R0o/openssl-multiple-vulnerabilities.htmlvulnerabilitàsslnoreply@blogger.com (Roberto Scaccia)Mon, 09 Jan 2012 23:07:00 PSTtag:blogger.com,1999:blog-1908095138994940398.post-22688353674179850272012-01-18T07:55:37.028+01:00 Doveroso rimbalzare la notizia. Vista la pervasività di OpenSSL sui sistemi *nix, forse è il caso di fare un update no? 0<div class="feedflare"> <a href="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?a=7-UdhG0-R0o:djSH2pq482I:yIl2AUoC8zA"><img src="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?d=yIl2AUoC8zA" border="0"></img></a> <a href="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?a=7-UdhG0-R0o:djSH2pq482I:dnMXMwOfBR0"><img src="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?d=dnMXMwOfBR0" border="0"></img></a> <a href="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?a=7-UdhG0-R0o:djSH2pq482I:YwkR-u9nhCs"><img src="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?d=YwkR-u9nhCs" border="0"></img></a> <a href="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?a=7-UdhG0-R0o:djSH2pq482I:F7zBnMyn0Lo"><img src="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?i=7-UdhG0-R0o:djSH2pq482I:F7zBnMyn0Lo" border="0"></img></a> <a href="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?a=7-UdhG0-R0o:djSH2pq482I:7Q72WNTAKBA"><img src="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?d=7Q72WNTAKBA" border="0"></img></a> <a href="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?a=7-UdhG0-R0o:djSH2pq482I:V_sGLiPBpWU"><img src="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?i=7-UdhG0-R0o:djSH2pq482I:V_sGLiPBpWU" border="0"></img></a> <a href="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?a=7-UdhG0-R0o:djSH2pq482I:qj6IDK7rITs"><img src="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?d=qj6IDK7rITs" border="0"></img></a> <a href="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?a=7-UdhG0-R0o:djSH2pq482I:-BTjWOF_DHI"><img src="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?i=7-UdhG0-R0o:djSH2pq482I:-BTjWOF_DHI" border="0"></img></a> </div><img src="http://feeds.feedburner.com/~r/InformationSecurityForGeeks/~4/7-UdhG0-R0o" height="1" width="1"/>http://geekinfosecurity.blogspot.com/2012/01/openssl-multiple-vulnerabilities.htmlhttp://feedproxy.google.com/~r/InformationSecurityForGeeks/~3/8oQj33GorIw/hash-table-collisioni-e-attacchi-ddos.htmlDDoSvulnerabilitàsoftware security0-dayDoSnoreply@blogger.com (Roberto Scaccia)Tue, 03 Jan 2012 08:22:00 PSTtag:blogger.com,1999:blog-1908095138994940398.post-31172898492937660222012-01-03T17:22:47.041+01:00 Rischia di passare sotto silenzio questa vulnerabilità incredibilmente longeva e, almeno dalle prime valutazioni, assai pericolosa.  Pericolosa, perché con delle semplici REQUEST POST si riesce a provocare un consumo di CPU del 100%, per un tempo che può arrivare anche a delle ore. Quindi DoS o peggio DDoS. Pericolosa, perché non è relativa a questa o quella piattaforma, ma a come i 0<div class="feedflare"> <a href="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?a=8oQj33GorIw:jCSK611RSP8:yIl2AUoC8zA"><img src="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?d=yIl2AUoC8zA" border="0"></img></a> <a href="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?a=8oQj33GorIw:jCSK611RSP8:dnMXMwOfBR0"><img src="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?d=dnMXMwOfBR0" border="0"></img></a> <a href="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?a=8oQj33GorIw:jCSK611RSP8:YwkR-u9nhCs"><img src="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?d=YwkR-u9nhCs" border="0"></img></a> <a href="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?a=8oQj33GorIw:jCSK611RSP8:F7zBnMyn0Lo"><img src="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?i=8oQj33GorIw:jCSK611RSP8:F7zBnMyn0Lo" border="0"></img></a> <a href="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?a=8oQj33GorIw:jCSK611RSP8:7Q72WNTAKBA"><img src="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?d=7Q72WNTAKBA" border="0"></img></a> <a href="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?a=8oQj33GorIw:jCSK611RSP8:V_sGLiPBpWU"><img src="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?i=8oQj33GorIw:jCSK611RSP8:V_sGLiPBpWU" border="0"></img></a> <a href="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?a=8oQj33GorIw:jCSK611RSP8:qj6IDK7rITs"><img src="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?d=qj6IDK7rITs" border="0"></img></a> <a href="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?a=8oQj33GorIw:jCSK611RSP8:-BTjWOF_DHI"><img src="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?i=8oQj33GorIw:jCSK611RSP8:-BTjWOF_DHI" border="0"></img></a> </div><img src="http://feeds.feedburner.com/~r/InformationSecurityForGeeks/~4/8oQj33GorIw" height="1" width="1"/>http://geekinfosecurity.blogspot.com/2012/01/hash-table-collisioni-e-attacchi-ddos.htmlhttp://feedproxy.google.com/~r/InformationSecurityForGeeks/~3/J04vJqnVu5U/qualitapagovit-e-rainews24raiit.htmlpasswordpastebindata breachhackingnoreply@blogger.com (Roberto Scaccia)Fri, 30 Dec 2011 23:02:00 PSTtag:blogger.com,1999:blog-1908095138994940398.post-68439873393544432532011-12-31T08:02:20.257+01:00 I siti "qualitapa.gov.it" e "rainews24.rai.it" sono stati hackerati, e le credenziali di accesso ad essi pubblicate su pastebin.com!  Scorrendo la lista di credenziali, salta all'occhio che per la maggior parte di esse le password associate sono, molto probabilmente, quelle assegnate dalla piattaforma. Ma per alcune utenze invece la password è stata cambiata dagli stessi utenti.  Ottimo2<div class="feedflare"> <a href="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?a=J04vJqnVu5U:28jTaBewUlE:yIl2AUoC8zA"><img src="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?d=yIl2AUoC8zA" border="0"></img></a> <a href="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?a=J04vJqnVu5U:28jTaBewUlE:dnMXMwOfBR0"><img src="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?d=dnMXMwOfBR0" border="0"></img></a> <a href="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?a=J04vJqnVu5U:28jTaBewUlE:YwkR-u9nhCs"><img src="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?d=YwkR-u9nhCs" border="0"></img></a> <a href="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?a=J04vJqnVu5U:28jTaBewUlE:F7zBnMyn0Lo"><img src="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?i=J04vJqnVu5U:28jTaBewUlE:F7zBnMyn0Lo" border="0"></img></a> <a href="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?a=J04vJqnVu5U:28jTaBewUlE:7Q72WNTAKBA"><img src="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?d=7Q72WNTAKBA" border="0"></img></a> <a href="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?a=J04vJqnVu5U:28jTaBewUlE:V_sGLiPBpWU"><img src="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?i=J04vJqnVu5U:28jTaBewUlE:V_sGLiPBpWU" border="0"></img></a> <a href="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?a=J04vJqnVu5U:28jTaBewUlE:qj6IDK7rITs"><img src="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?d=qj6IDK7rITs" border="0"></img></a> <a href="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?a=J04vJqnVu5U:28jTaBewUlE:-BTjWOF_DHI"><img src="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?i=J04vJqnVu5U:28jTaBewUlE:-BTjWOF_DHI" border="0"></img></a> </div><img src="http://feeds.feedburner.com/~r/InformationSecurityForGeeks/~4/J04vJqnVu5U" height="1" width="1"/>http://geekinfosecurity.blogspot.com/2011/12/qualitapagovit-e-rainews24raiit.htmlhttp://feedproxy.google.com/~r/InformationSecurityForGeeks/~3/HQlOrq5S4EQ/ci-voleva-il-natale-podcast-video.htmldefconpodcastnoreply@blogger.com (Roberto Scaccia)Fri, 30 Dec 2011 00:17:00 PSTtag:blogger.com,1999:blog-1908095138994940398.post-7250154317406375422011-12-30T09:17:26.509+01:00 Ci voleva Babbo Natale per convincere quelli del Defcon 19 a rilasciare un bel podcast. Finalmente dico io! Almeno potremo farci gli affari loro e passare queste feste allenando la mente, oltre che lo stomaco. Lasciate il panettone e buttatevi quindi sul podcast.  Su iTunes è molto semplice aggiungere il podcast (https://www.defcon.org/podcast/defcon-19-video.rss) altrimenti usate quello che1<div class="feedflare"> <a href="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?a=HQlOrq5S4EQ:Xuj_wq5mxS8:yIl2AUoC8zA"><img src="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?d=yIl2AUoC8zA" border="0"></img></a> <a href="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?a=HQlOrq5S4EQ:Xuj_wq5mxS8:dnMXMwOfBR0"><img src="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?d=dnMXMwOfBR0" border="0"></img></a> <a href="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?a=HQlOrq5S4EQ:Xuj_wq5mxS8:YwkR-u9nhCs"><img src="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?d=YwkR-u9nhCs" border="0"></img></a> <a href="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?a=HQlOrq5S4EQ:Xuj_wq5mxS8:F7zBnMyn0Lo"><img src="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?i=HQlOrq5S4EQ:Xuj_wq5mxS8:F7zBnMyn0Lo" border="0"></img></a> <a href="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?a=HQlOrq5S4EQ:Xuj_wq5mxS8:7Q72WNTAKBA"><img src="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?d=7Q72WNTAKBA" border="0"></img></a> <a href="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?a=HQlOrq5S4EQ:Xuj_wq5mxS8:V_sGLiPBpWU"><img src="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?i=HQlOrq5S4EQ:Xuj_wq5mxS8:V_sGLiPBpWU" border="0"></img></a> <a href="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?a=HQlOrq5S4EQ:Xuj_wq5mxS8:qj6IDK7rITs"><img src="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?d=qj6IDK7rITs" border="0"></img></a> <a href="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?a=HQlOrq5S4EQ:Xuj_wq5mxS8:-BTjWOF_DHI"><img src="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?i=HQlOrq5S4EQ:Xuj_wq5mxS8:-BTjWOF_DHI" border="0"></img></a> </div><img src="http://feeds.feedburner.com/~r/InformationSecurityForGeeks/~4/HQlOrq5S4EQ" height="1" width="1"/>http://geekinfosecurity.blogspot.com/2011/12/ci-voleva-il-natale-podcast-video.htmlhttp://feedproxy.google.com/~r/InformationSecurityForGeeks/~3/YKMGhPdDhnM/attenti-quel-gioco-sul-market-android-e.htmlmalwaremarketandroidnoreply@blogger.com (Roberto Scaccia)Sat, 24 Dec 2011 22:48:00 PSTtag:blogger.com,1999:blog-1908095138994940398.post-53127509834223452142011-12-26T08:03:33.465+01:00 F-Secure segnala una pratica molto pericolosa: la pubblicazioni nei market di giochi che hanno un nome simile alla versione ufficiale e che invece sono dei malware. Un esempio per tutti è "Cut the Rope", che nella sua versione originale è a pagamento, mentre il malware ha come nome "Cut the Rope FREE" ed è appunto gratis. Stessa cosa per giochi come "Angry Birds Seasons FREE", etc. Credo che2<div class="feedflare"> <a href="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?a=YKMGhPdDhnM:nMBkt_9AuH8:yIl2AUoC8zA"><img src="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?d=yIl2AUoC8zA" border="0"></img></a> <a href="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?a=YKMGhPdDhnM:nMBkt_9AuH8:dnMXMwOfBR0"><img src="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?d=dnMXMwOfBR0" border="0"></img></a> <a href="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?a=YKMGhPdDhnM:nMBkt_9AuH8:YwkR-u9nhCs"><img src="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?d=YwkR-u9nhCs" border="0"></img></a> <a href="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?a=YKMGhPdDhnM:nMBkt_9AuH8:F7zBnMyn0Lo"><img src="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?i=YKMGhPdDhnM:nMBkt_9AuH8:F7zBnMyn0Lo" border="0"></img></a> <a href="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?a=YKMGhPdDhnM:nMBkt_9AuH8:7Q72WNTAKBA"><img src="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?d=7Q72WNTAKBA" border="0"></img></a> <a href="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?a=YKMGhPdDhnM:nMBkt_9AuH8:V_sGLiPBpWU"><img src="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?i=YKMGhPdDhnM:nMBkt_9AuH8:V_sGLiPBpWU" border="0"></img></a> <a href="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?a=YKMGhPdDhnM:nMBkt_9AuH8:qj6IDK7rITs"><img src="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?d=qj6IDK7rITs" border="0"></img></a> <a href="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?a=YKMGhPdDhnM:nMBkt_9AuH8:-BTjWOF_DHI"><img src="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?i=YKMGhPdDhnM:nMBkt_9AuH8:-BTjWOF_DHI" border="0"></img></a> </div><img src="http://feeds.feedburner.com/~r/InformationSecurityForGeeks/~4/YKMGhPdDhnM" height="1" width="1"/>http://geekinfosecurity.blogspot.com/2011/12/attenti-quel-gioco-sul-market-android-e.htmlhttp://feedproxy.google.com/~r/InformationSecurityForGeeks/~3/t9jrnKy20mw/quante-cose-si-possono-fare-con-una.htmllockpickingnoreply@blogger.com (Roberto Scaccia)Sat, 24 Dec 2011 00:06:00 PSTtag:blogger.com,1999:blog-1908095138994940398.post-53383187427700914822011-12-24T09:06:38.854+01:00 Ci saranno un milione di video sul lockpicking, però è sempre sorprendente vedere come ci possono fregare! Per non dover sentir dire più "Accidenti non sapevo ci mettessero così poco". Quindi sorprendetevi! (link) 2<div class="feedflare"> <a href="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?a=t9jrnKy20mw:wBT3dOztsfk:yIl2AUoC8zA"><img src="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?d=yIl2AUoC8zA" border="0"></img></a> <a href="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?a=t9jrnKy20mw:wBT3dOztsfk:dnMXMwOfBR0"><img src="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?d=dnMXMwOfBR0" border="0"></img></a> <a href="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?a=t9jrnKy20mw:wBT3dOztsfk:YwkR-u9nhCs"><img src="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?d=YwkR-u9nhCs" border="0"></img></a> <a href="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?a=t9jrnKy20mw:wBT3dOztsfk:F7zBnMyn0Lo"><img src="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?i=t9jrnKy20mw:wBT3dOztsfk:F7zBnMyn0Lo" border="0"></img></a> <a href="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?a=t9jrnKy20mw:wBT3dOztsfk:7Q72WNTAKBA"><img src="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?d=7Q72WNTAKBA" border="0"></img></a> <a href="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?a=t9jrnKy20mw:wBT3dOztsfk:V_sGLiPBpWU"><img src="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?i=t9jrnKy20mw:wBT3dOztsfk:V_sGLiPBpWU" border="0"></img></a> <a href="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?a=t9jrnKy20mw:wBT3dOztsfk:qj6IDK7rITs"><img src="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?d=qj6IDK7rITs" border="0"></img></a> <a href="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?a=t9jrnKy20mw:wBT3dOztsfk:-BTjWOF_DHI"><img src="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?i=t9jrnKy20mw:wBT3dOztsfk:-BTjWOF_DHI" border="0"></img></a> </div><img src="http://feeds.feedburner.com/~r/InformationSecurityForGeeks/~4/t9jrnKy20mw" height="1" width="1"/>http://geekinfosecurity.blogspot.com/2011/12/quante-cose-si-possono-fare-con-una.htmlhttp://feedproxy.google.com/~r/InformationSecurityForGeeks/~3/ECOWwPWquV4/cloud-un-pericolo-o-unopportunita.htmlcloud securitysicurezzaprivacynoreply@blogger.com (Roberto Scaccia)Mon, 21 Nov 2011 22:17:00 PSTtag:blogger.com,1999:blog-1908095138994940398.post-40201473093095123982011-11-27T08:36:14.549+01:00 "Cloud": credo non ci sia termine più abusato negli ultimi tempi. Ma poi cosa sarà mai questo benedetto Cloud? Non è altro che la possibilità di avere i nostri documenti, applicazioni, backup, immagini, foto, etc. sempre disponibili in Internet. Dove? Non lo saprete ed ecco perché il termine "cloud" ovvero "nuvola".  Iniziamo con lo sfatare qualche mito: non c'è bisogno di aderire 2<div class="feedflare"> <a href="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?a=ECOWwPWquV4:lnXCEf8rLl8:yIl2AUoC8zA"><img src="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?d=yIl2AUoC8zA" border="0"></img></a> <a href="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?a=ECOWwPWquV4:lnXCEf8rLl8:dnMXMwOfBR0"><img src="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?d=dnMXMwOfBR0" border="0"></img></a> <a href="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?a=ECOWwPWquV4:lnXCEf8rLl8:YwkR-u9nhCs"><img src="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?d=YwkR-u9nhCs" border="0"></img></a> <a href="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?a=ECOWwPWquV4:lnXCEf8rLl8:F7zBnMyn0Lo"><img src="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?i=ECOWwPWquV4:lnXCEf8rLl8:F7zBnMyn0Lo" border="0"></img></a> <a href="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?a=ECOWwPWquV4:lnXCEf8rLl8:7Q72WNTAKBA"><img src="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?d=7Q72WNTAKBA" border="0"></img></a> <a href="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?a=ECOWwPWquV4:lnXCEf8rLl8:V_sGLiPBpWU"><img src="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?i=ECOWwPWquV4:lnXCEf8rLl8:V_sGLiPBpWU" border="0"></img></a> <a href="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?a=ECOWwPWquV4:lnXCEf8rLl8:qj6IDK7rITs"><img src="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?d=qj6IDK7rITs" border="0"></img></a> <a href="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?a=ECOWwPWquV4:lnXCEf8rLl8:-BTjWOF_DHI"><img src="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?i=ECOWwPWquV4:lnXCEf8rLl8:-BTjWOF_DHI" border="0"></img></a> </div><img src="http://feeds.feedburner.com/~r/InformationSecurityForGeeks/~4/ECOWwPWquV4" height="1" width="1"/>http://geekinfosecurity.blogspot.com/2011/11/cloud-un-pericolo-o-unopportunita.htmlhttp://feedproxy.google.com/~r/InformationSecurityForGeeks/~3/6T6FkJDBLcc/e-nato-duqu-figlio-di-stuxnet.htmlvideostuxnetviruswormduqunoreply@blogger.com (Roberto Scaccia)Sat, 22 Oct 2011 23:23:00 PDTtag:blogger.com,1999:blog-1908095138994940398.post-27016651585864745332011-10-23T08:23:21.343+02:00 Gira da un po' la notizia e quindi è meglio rilanciarla che stare zitti. Pare che Duqu sia figlio di Stuxnet (sembra Febbre da Cavallo). Ma non ha le finalità distruttive del "padre". Del resto le nuove generazioni sono miti in tutto. Pare che il suo unico scopo sia quello di farsi gli affari nostri, probabilmente per un successivo e più distruttivo attacco. Per una descrizione sommaria il 0<div class="feedflare"> <a href="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?a=6T6FkJDBLcc:Ip6m7RKpEN4:yIl2AUoC8zA"><img src="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?d=yIl2AUoC8zA" border="0"></img></a> <a href="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?a=6T6FkJDBLcc:Ip6m7RKpEN4:dnMXMwOfBR0"><img src="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?d=dnMXMwOfBR0" border="0"></img></a> <a href="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?a=6T6FkJDBLcc:Ip6m7RKpEN4:YwkR-u9nhCs"><img src="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?d=YwkR-u9nhCs" border="0"></img></a> <a href="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?a=6T6FkJDBLcc:Ip6m7RKpEN4:F7zBnMyn0Lo"><img src="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?i=6T6FkJDBLcc:Ip6m7RKpEN4:F7zBnMyn0Lo" border="0"></img></a> <a href="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?a=6T6FkJDBLcc:Ip6m7RKpEN4:7Q72WNTAKBA"><img src="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?d=7Q72WNTAKBA" border="0"></img></a> <a href="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?a=6T6FkJDBLcc:Ip6m7RKpEN4:V_sGLiPBpWU"><img src="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?i=6T6FkJDBLcc:Ip6m7RKpEN4:V_sGLiPBpWU" border="0"></img></a> <a href="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?a=6T6FkJDBLcc:Ip6m7RKpEN4:qj6IDK7rITs"><img src="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?d=qj6IDK7rITs" border="0"></img></a> <a href="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?a=6T6FkJDBLcc:Ip6m7RKpEN4:-BTjWOF_DHI"><img src="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?i=6T6FkJDBLcc:Ip6m7RKpEN4:-BTjWOF_DHI" border="0"></img></a> </div><img src="http://feeds.feedburner.com/~r/InformationSecurityForGeeks/~4/6T6FkJDBLcc" height="1" width="1"/>http://geekinfosecurity.blogspot.com/2011/10/e-nato-duqu-figlio-di-stuxnet.htmlhttp://feedproxy.google.com/~r/InformationSecurityForGeeks/~3/hSz_Gm0Vk7Y/sicurezza-fisica-google-e-batman.htmlgooglesicurezza fisicanoreply@blogger.com (Roberto Scaccia)Tue, 18 Oct 2011 23:13:00 PDTtag:blogger.com,1999:blog-1908095138994940398.post-27042890129545865882011-10-19T08:13:33.431+02:00 Dovete fare un capitolato d'appalto per la sicurezza fisica della vostra azienda o dell'ente in cui lavorate? Guardate prima questo video :-) C'è praticamente tutto, anche i soldi (una montagna) che Google ha. Altrimenti chiamate Batman e vedete se vi fa dei prezzi vantaggiosi.  Da notare il processo di distruzione dei dischi rigidi, il riconoscimento biometrico a più livelli e la 0<div class="feedflare"> <a href="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?a=hSz_Gm0Vk7Y:ZPt-Yzqrmog:yIl2AUoC8zA"><img src="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?d=yIl2AUoC8zA" border="0"></img></a> <a href="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?a=hSz_Gm0Vk7Y:ZPt-Yzqrmog:dnMXMwOfBR0"><img src="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?d=dnMXMwOfBR0" border="0"></img></a> <a href="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?a=hSz_Gm0Vk7Y:ZPt-Yzqrmog:YwkR-u9nhCs"><img src="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?d=YwkR-u9nhCs" border="0"></img></a> <a href="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?a=hSz_Gm0Vk7Y:ZPt-Yzqrmog:F7zBnMyn0Lo"><img src="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?i=hSz_Gm0Vk7Y:ZPt-Yzqrmog:F7zBnMyn0Lo" border="0"></img></a> <a href="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?a=hSz_Gm0Vk7Y:ZPt-Yzqrmog:7Q72WNTAKBA"><img src="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?d=7Q72WNTAKBA" border="0"></img></a> <a href="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?a=hSz_Gm0Vk7Y:ZPt-Yzqrmog:V_sGLiPBpWU"><img src="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?i=hSz_Gm0Vk7Y:ZPt-Yzqrmog:V_sGLiPBpWU" border="0"></img></a> <a href="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?a=hSz_Gm0Vk7Y:ZPt-Yzqrmog:qj6IDK7rITs"><img src="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?d=qj6IDK7rITs" border="0"></img></a> <a href="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?a=hSz_Gm0Vk7Y:ZPt-Yzqrmog:-BTjWOF_DHI"><img src="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?i=hSz_Gm0Vk7Y:ZPt-Yzqrmog:-BTjWOF_DHI" border="0"></img></a> </div><img src="http://feeds.feedburner.com/~r/InformationSecurityForGeeks/~4/hSz_Gm0Vk7Y" height="1" width="1"/>http://geekinfosecurity.blogspot.com/2011/10/sicurezza-fisica-google-e-batman.htmlhttp://feedproxy.google.com/~r/InformationSecurityForGeeks/~3/sYmjH7_3OOc/defcon-19-disponibile-il-dvdgratis.htmlhackerdefconnoreply@blogger.com (Roberto Scaccia)Tue, 18 Oct 2011 22:25:00 PDTtag:blogger.com,1999:blog-1908095138994940398.post-40722826105614559922011-10-19T07:25:16.000+02:00 Scaricate il DVD dell'ultimo Defcon con le slide degli interventi e qualche altra cosa: https://www.defcon.org/index.html#dc19dvd Vederli su Internet avrà anche il suo fascino ma se ce li avete belli e pronti è meglio no? ;-)2<div class="feedflare"> <a href="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?a=sYmjH7_3OOc:pF-15nxrfRk:yIl2AUoC8zA"><img src="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?d=yIl2AUoC8zA" border="0"></img></a> <a href="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?a=sYmjH7_3OOc:pF-15nxrfRk:dnMXMwOfBR0"><img src="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?d=dnMXMwOfBR0" border="0"></img></a> <a href="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?a=sYmjH7_3OOc:pF-15nxrfRk:YwkR-u9nhCs"><img src="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?d=YwkR-u9nhCs" border="0"></img></a> <a href="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?a=sYmjH7_3OOc:pF-15nxrfRk:F7zBnMyn0Lo"><img src="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?i=sYmjH7_3OOc:pF-15nxrfRk:F7zBnMyn0Lo" border="0"></img></a> <a href="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?a=sYmjH7_3OOc:pF-15nxrfRk:7Q72WNTAKBA"><img src="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?d=7Q72WNTAKBA" border="0"></img></a> <a href="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?a=sYmjH7_3OOc:pF-15nxrfRk:V_sGLiPBpWU"><img src="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?i=sYmjH7_3OOc:pF-15nxrfRk:V_sGLiPBpWU" border="0"></img></a> <a href="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?a=sYmjH7_3OOc:pF-15nxrfRk:qj6IDK7rITs"><img src="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?d=qj6IDK7rITs" border="0"></img></a> <a href="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?a=sYmjH7_3OOc:pF-15nxrfRk:-BTjWOF_DHI"><img src="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?i=sYmjH7_3OOc:pF-15nxrfRk:-BTjWOF_DHI" border="0"></img></a> </div><img src="http://feeds.feedburner.com/~r/InformationSecurityForGeeks/~4/sYmjH7_3OOc" height="1" width="1"/>http://geekinfosecurity.blogspot.com/2011/10/defcon-19-disponibile-il-dvdgratis.htmlhttp://feedproxy.google.com/~r/InformationSecurityForGeeks/~3/6KXPUEr1Zyw/steve-jobs-e-morto-viva-il-re.htmlapplenoreply@blogger.com (Roberto Scaccia)Wed, 05 Oct 2011 21:58:00 PDTtag:blogger.com,1999:blog-1908095138994940398.post-37895464578171104772011-10-13T07:17:23.738+02:00 Si può pensar bene o male di lui, dei suoi prodotti, della sua vita, delle sue scelte, ma resta il fatto che è stato un visionario che ha contribuito in modo decisivo al futuro tecnologico di tutti noi.  "Stay hungry. Stay foolish" Ciao Steve e grazie.0<div class="feedflare"> <a href="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?a=6KXPUEr1Zyw:vAuLTZzxckA:yIl2AUoC8zA"><img src="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?d=yIl2AUoC8zA" border="0"></img></a> <a href="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?a=6KXPUEr1Zyw:vAuLTZzxckA:dnMXMwOfBR0"><img src="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?d=dnMXMwOfBR0" border="0"></img></a> <a href="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?a=6KXPUEr1Zyw:vAuLTZzxckA:YwkR-u9nhCs"><img src="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?d=YwkR-u9nhCs" border="0"></img></a> <a href="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?a=6KXPUEr1Zyw:vAuLTZzxckA:F7zBnMyn0Lo"><img src="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?i=6KXPUEr1Zyw:vAuLTZzxckA:F7zBnMyn0Lo" border="0"></img></a> <a href="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?a=6KXPUEr1Zyw:vAuLTZzxckA:7Q72WNTAKBA"><img src="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?d=7Q72WNTAKBA" border="0"></img></a> <a href="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?a=6KXPUEr1Zyw:vAuLTZzxckA:V_sGLiPBpWU"><img src="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?i=6KXPUEr1Zyw:vAuLTZzxckA:V_sGLiPBpWU" border="0"></img></a> <a href="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?a=6KXPUEr1Zyw:vAuLTZzxckA:qj6IDK7rITs"><img src="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?d=qj6IDK7rITs" border="0"></img></a> <a href="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?a=6KXPUEr1Zyw:vAuLTZzxckA:-BTjWOF_DHI"><img src="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?i=6KXPUEr1Zyw:vAuLTZzxckA:-BTjWOF_DHI" border="0"></img></a> </div><img src="http://feeds.feedburner.com/~r/InformationSecurityForGeeks/~4/6KXPUEr1Zyw" height="1" width="1"/>http://geekinfosecurity.blogspot.com/2011/10/steve-jobs-e-morto-viva-il-re.htmlhttp://feedproxy.google.com/~r/InformationSecurityForGeeks/~3/_ypYvvRgBEc/quando-lusabilita-si-coniuga-con-la.htmltimemachinerestorebackupLionnoreply@blogger.com (Roberto Scaccia)Mon, 19 Sep 2011 09:29:00 PDTtag:blogger.com,1999:blog-1908095138994940398.post-78458025950291428672011-09-19T18:29:56.672+02:00 Capita di rado di assistere ad un evento così. Per chi come me ha la fissazione della sicurezza poi ha quasi del miracoloso.  Se un software o un sistema è sicuro di solito non ce ne accorgiamo. E se è insicuro ce ne accorgiamo solo quando il danno è fatto e non c'è più niente da fare! Partiamo dagli albori: confidenzialità, integrità e disponibilità. L'ho presa troppo alla larga? Forse. 0<div class="feedflare"> <a href="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?a=_ypYvvRgBEc:-0gbUXVEn48:yIl2AUoC8zA"><img src="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?d=yIl2AUoC8zA" border="0"></img></a> <a href="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?a=_ypYvvRgBEc:-0gbUXVEn48:dnMXMwOfBR0"><img src="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?d=dnMXMwOfBR0" border="0"></img></a> <a href="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?a=_ypYvvRgBEc:-0gbUXVEn48:YwkR-u9nhCs"><img src="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?d=YwkR-u9nhCs" border="0"></img></a> <a href="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?a=_ypYvvRgBEc:-0gbUXVEn48:F7zBnMyn0Lo"><img src="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?i=_ypYvvRgBEc:-0gbUXVEn48:F7zBnMyn0Lo" border="0"></img></a> <a href="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?a=_ypYvvRgBEc:-0gbUXVEn48:7Q72WNTAKBA"><img src="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?d=7Q72WNTAKBA" border="0"></img></a> <a href="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?a=_ypYvvRgBEc:-0gbUXVEn48:V_sGLiPBpWU"><img src="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?i=_ypYvvRgBEc:-0gbUXVEn48:V_sGLiPBpWU" border="0"></img></a> <a href="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?a=_ypYvvRgBEc:-0gbUXVEn48:qj6IDK7rITs"><img src="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?d=qj6IDK7rITs" border="0"></img></a> <a href="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?a=_ypYvvRgBEc:-0gbUXVEn48:-BTjWOF_DHI"><img src="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?i=_ypYvvRgBEc:-0gbUXVEn48:-BTjWOF_DHI" border="0"></img></a> </div><img src="http://feeds.feedburner.com/~r/InformationSecurityForGeeks/~4/_ypYvvRgBEc" height="1" width="1"/>http://geekinfosecurity.blogspot.com/2011/09/quando-lusabilita-si-coniuga-con-la.htmlhttp://feedproxy.google.com/~r/InformationSecurityForGeeks/~3/hvK1lXFUaGQ/anche-tu-sei-un-hacker.htmlvideohackernoreply@blogger.com (Roberto Scaccia)Wed, 31 Aug 2011 13:52:00 PDTtag:blogger.com,1999:blog-1908095138994940398.post-62379644971452733402011-08-31T22:52:33.174+02:00 Probabilmente alla fine di questo video esclamerete: "Accidenti, sono un hacker e non lo sapevo!" Alcune verità assolute nel video: Hacking è passione: quanti fanno lavori che odiano? Hacking è uscire dagli schemi: pensiero laterale, grande dote! Hacking è stimoli intellettuali: fondamentali per sopravvivere. Hacker sono anche Donne e Bambini: dopo wargames qualcuno si è convinto per i 0<div class="feedflare"> <a href="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?a=hvK1lXFUaGQ:gcl39BnWfRA:yIl2AUoC8zA"><img src="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?d=yIl2AUoC8zA" border="0"></img></a> <a href="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?a=hvK1lXFUaGQ:gcl39BnWfRA:dnMXMwOfBR0"><img src="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?d=dnMXMwOfBR0" border="0"></img></a> <a href="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?a=hvK1lXFUaGQ:gcl39BnWfRA:YwkR-u9nhCs"><img src="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?d=YwkR-u9nhCs" border="0"></img></a> <a href="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?a=hvK1lXFUaGQ:gcl39BnWfRA:F7zBnMyn0Lo"><img src="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?i=hvK1lXFUaGQ:gcl39BnWfRA:F7zBnMyn0Lo" border="0"></img></a> <a href="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?a=hvK1lXFUaGQ:gcl39BnWfRA:7Q72WNTAKBA"><img src="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?d=7Q72WNTAKBA" border="0"></img></a> <a href="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?a=hvK1lXFUaGQ:gcl39BnWfRA:V_sGLiPBpWU"><img src="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?i=hvK1lXFUaGQ:gcl39BnWfRA:V_sGLiPBpWU" border="0"></img></a> <a href="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?a=hvK1lXFUaGQ:gcl39BnWfRA:qj6IDK7rITs"><img src="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?d=qj6IDK7rITs" border="0"></img></a> <a href="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?a=hvK1lXFUaGQ:gcl39BnWfRA:-BTjWOF_DHI"><img src="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?i=hvK1lXFUaGQ:gcl39BnWfRA:-BTjWOF_DHI" border="0"></img></a> </div><img src="http://feeds.feedburner.com/~r/InformationSecurityForGeeks/~4/hvK1lXFUaGQ" height="1" width="1"/>http://geekinfosecurity.blogspot.com/2011/08/anche-tu-sei-un-hacker.htmlhttp://feedproxy.google.com/~r/InformationSecurityForGeeks/~3/ofl44ehsxoQ/php-537-e-apache-web-server.htmlvulnerabilitàexploitphpapachenoreply@blogger.com (Roberto Scaccia)Wed, 24 Aug 2011 23:30:00 PDTtag:blogger.com,1999:blog-1908095138994940398.post-40426330275510010402011-08-25T08:30:55.816+02:00 E' da un po' di tempo che non faccio segnalazioni del genere. Ci sono molti siti a cui sarete affezionati e che sono sicuramente più tempestivi del sottoscritto. Ma quando esce qualche cosa di clamoroso, lo spirito di servizio di questo blog esce fuori :-) - Cominciamo da PHP: la nuova versione 5.3.7 implementa la crypt() in modo singolare, perché alcune volte il risultato della cifratura 0<div class="feedflare"> <a href="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?a=ofl44ehsxoQ:uObhqI0Ro5M:yIl2AUoC8zA"><img src="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?d=yIl2AUoC8zA" border="0"></img></a> <a href="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?a=ofl44ehsxoQ:uObhqI0Ro5M:dnMXMwOfBR0"><img src="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?d=dnMXMwOfBR0" border="0"></img></a> <a href="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?a=ofl44ehsxoQ:uObhqI0Ro5M:YwkR-u9nhCs"><img src="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?d=YwkR-u9nhCs" border="0"></img></a> <a href="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?a=ofl44ehsxoQ:uObhqI0Ro5M:F7zBnMyn0Lo"><img src="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?i=ofl44ehsxoQ:uObhqI0Ro5M:F7zBnMyn0Lo" border="0"></img></a> <a href="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?a=ofl44ehsxoQ:uObhqI0Ro5M:7Q72WNTAKBA"><img src="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?d=7Q72WNTAKBA" border="0"></img></a> <a href="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?a=ofl44ehsxoQ:uObhqI0Ro5M:V_sGLiPBpWU"><img src="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?i=ofl44ehsxoQ:uObhqI0Ro5M:V_sGLiPBpWU" border="0"></img></a> <a href="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?a=ofl44ehsxoQ:uObhqI0Ro5M:qj6IDK7rITs"><img src="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?d=qj6IDK7rITs" border="0"></img></a> <a href="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?a=ofl44ehsxoQ:uObhqI0Ro5M:-BTjWOF_DHI"><img src="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?i=ofl44ehsxoQ:uObhqI0Ro5M:-BTjWOF_DHI" border="0"></img></a> </div><img src="http://feeds.feedburner.com/~r/InformationSecurityForGeeks/~4/ofl44ehsxoQ" height="1" width="1"/>http://geekinfosecurity.blogspot.com/2011/08/php-537-e-apache-web-server.htmlhttp://feedproxy.google.com/~r/InformationSecurityForGeeks/~3/qTSH77RgPvA/alice-bob-password-wallet.htmlpasswordalice and bobnoreply@blogger.com (Roberto Scaccia)Mon, 22 Aug 2011 10:03:00 PDTtag:blogger.com,1999:blog-1908095138994940398.post-9415662872596640832011-08-22T19:04:32.498+02:00 Bob: "...e quindi io alla fine per gestire le password utilizzo un "Password Wallet" " Alice: "Cosa?" Bob: "Password Wallet: applicazione che memorizza le password, opportunamente protetta mediante cifratura ed unica password di accesso." Alice: "Ma nooo, io le password me le ricordo a memoria!" Bob: "(tranquilla lei!)" 2<div class="feedflare"> <a href="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?a=qTSH77RgPvA:UUtOn2rWmuA:yIl2AUoC8zA"><img src="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?d=yIl2AUoC8zA" border="0"></img></a> <a href="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?a=qTSH77RgPvA:UUtOn2rWmuA:dnMXMwOfBR0"><img src="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?d=dnMXMwOfBR0" border="0"></img></a> <a href="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?a=qTSH77RgPvA:UUtOn2rWmuA:YwkR-u9nhCs"><img src="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?d=YwkR-u9nhCs" border="0"></img></a> <a href="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?a=qTSH77RgPvA:UUtOn2rWmuA:F7zBnMyn0Lo"><img src="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?i=qTSH77RgPvA:UUtOn2rWmuA:F7zBnMyn0Lo" border="0"></img></a> <a href="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?a=qTSH77RgPvA:UUtOn2rWmuA:7Q72WNTAKBA"><img src="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?d=7Q72WNTAKBA" border="0"></img></a> <a href="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?a=qTSH77RgPvA:UUtOn2rWmuA:V_sGLiPBpWU"><img src="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?i=qTSH77RgPvA:UUtOn2rWmuA:V_sGLiPBpWU" border="0"></img></a> <a href="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?a=qTSH77RgPvA:UUtOn2rWmuA:qj6IDK7rITs"><img src="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?d=qj6IDK7rITs" border="0"></img></a> <a href="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?a=qTSH77RgPvA:UUtOn2rWmuA:-BTjWOF_DHI"><img src="http://feeds.feedburner.com/~ff/InformationSecurityForGeeks?i=qTSH77RgPvA:UUtOn2rWmuA:-BTjWOF_DHI" border="0"></img></a> </div><img src="http://feeds.feedburner.com/~r/InformationSecurityForGeeks/~4/qTSH77RgPvA" height="1" width="1"/>http://geekinfosecurity.blogspot.com/2011/08/alice-bob-password-wallet.html