Avast Community

Technical

Asyn November 16, 2010, 1:46pm 1

Kaminsky To Release ‘Phreebird’ For Easy DNSSEC
http://ba.darkreading.com/authentication/167901072/security/application-security/228200646/index.html

Comodo - SSL issues

Sandbox Vulnerability

Asyn November 19, 2010, 8:43pm 2

Stuxnet has a double payload
http://www.h-online.com/security/news/item/Stuxnet-has-a-double-payload-1137521.html

Asyn November 19, 2010, 9:03pm 3

GPUs crack passwords in the cloud
http://stacksmashing.net/2010/11/15/cracking-in-the-cloud-amazons-new-ec2-gpu-instances/

Asyn November 20, 2010, 4:24pm 4

Super-secret debug capabilities of AMD processors
http://www.woodmann.com/collaborative/knowledge/index.php/Super-secret_debug_capabilities_of_AMD_processors_!
http://www.eweekeurope.co.uk/news/amd-denies-cpu-debugger-was-a-secret-13759

Asyn November 21, 2010, 12:15pm 5

McAfee Threats Report - Third Quarter 2010
http://www.mcafee.com/us/local_content/reports/q32010_threats_report_en.pdf

Asyn November 24, 2010, 3:50pm 6

The enemy in the network card
http://esec-lab.sogeti.com/dotclear/index.php?post%2F2010%2F11%2F21%2FPresentation-at-Hack.lu-%3A-Reversing-the-Broacom-NetExtreme-s-firmware

Asyn November 25, 2010, 2:02pm 7

Slow CPU equals malware defense…?
http://www.f-secure.com/weblog/archives/00002067.html

Asyn November 25, 2010, 9:45pm 8

European ATM skimmer attacks on the rise
http://krebsonsecurity.com/2010/11/crooks-rock-audio-based-atm-skimmers/

Asyn November 27, 2010, 8:10am 9

Secure Java programming with Fabric
http://www.cs.cornell.edu/projects/fabric/
http://www.cs.cornell.edu/andru/papers/fabric-sosp09.pdf
http://www.news.cornell.edu/stories/Sept10/Fabric.html

Asyn December 3, 2010, 6:54am 10

Chrome to run Flash Player in a sandbox
http://blog.chromium.org/2010/12/rolling-out-sandbox-for-adobe-flash.html

Asyn December 4, 2010, 3:08pm 11

Escaping IE Protected Mode
http://www.verizonbusiness.com/resources/whitepapers/wp_escapingmicrosoftprotectedmodeinternetexplorer_en_xg.pdf

Asyn December 5, 2010, 8:07pm 12

An Empirical Study of Privacy-Violating Information Flows in JavaScript Web Applications
http://cseweb.ucsd.edu/~d1jang/papers/ccs10.pdf

Asyn December 8, 2010, 1:47pm 13

IE9 and Privacy: Introducing Tracking Protection
http://blogs.msdn.com/b/ie/archive/2010/12/07/ie9-and-privacy-introducing-tracking-protection-v8.aspx

system December 8, 2010, 3:33pm 14

Pretty interesting information.

Thanks Asyn.

Asyn December 9, 2010, 11:56am 15

Support for WebSockets in Firefox 4 disabled (for now)
http://www.0xdeadbeef.com/weblog/2010/12/disabling-websockets-for-firefox-4/
https://bugzilla.mozilla.org/show_bug.cgi?id=616733
http://www.ietf.org/mail-archive/web/hybi/current/msg04744.html

bob3160 December 9, 2010, 9:22pm 16

Asyn,
What’s the difference between what you’re posting in here and what’s being posted in the
Security Warnings threat ???
http://forum.avast.com/index.php?topic=52252.0

Asyn December 10, 2010, 7:17am 17

Hi Bob…!
Well, the difference is that I don’t post any security warnings here.
Have a nice day,
asyn

Asyn December 11, 2010, 7:55am 18

NIST’s search for the super hash – just five candidates left in SHA-3 final
http://www.h-online.com/security/news/item/NIST-s-search-for-the-super-hash-just-five-candidates-left-in-SHA-3-final-1151325.html

Asyn December 12, 2010, 7:16pm 19

Operation Payback: protests via mouse click
http://www.h-online.com/security/news/item/Operation-Payback-protests-via-mouse-click-1150790.html

Asyn December 16, 2010, 7:47am 20

Brief Analysis of the Gawker Password Dump
http://www.duosecurity.com/blog/entry/brief_analysis_of_the_gawker_password_dump

Announcements