SANS ISC SecNewsFeed

SANS ISC SecNewsFeed http://isc.sans.org en-us (C) SANS Institute 2009 isc rss feed maker 30 handlers@sans.org (ISC Handlers) SANS ISC SecNewsFeed http://isc.sans.org/images/status.gif http://isc.sans.org Postini technology to spread across Google Apps (NetworkWorld Security) http://www.networkworld.com/news/2009/110609-postini-technology-to-spread-across.html http://www.networkworld.com/news/2009/110609-postini-technology-to-spread-across.html Securing The Cyber Supply Chain (InformationWeek) (Yahoo News) http://us.rd.yahoo.com/dailynews/rss/search/%22Internet+Storm+Center%22/SIG=13lcglqat/*http%3A//www.informationweek.com/news/government/security/showArticle.jhtml?articleID=221600499&cid=RSSfeed_IWK_All http://us.rd.yahoo.com/dailynews/rss/search/%22Internet+Storm+Center%22/SIG=13lcglqat/*http%3A//www.informationweek.com/news/government/security/showArticle.jhtml?articleID=221600499&cid=RSSfeed_IWK_All CVE-2009-3878 (javasystemwebserver) (Natl. Vulnerability Database) http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-3878 http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-3878 Vuln: Prototype JavaScript Framework Cross-Site Ajax Request Vulnerability (SecurityFocus Vulnerabilities) http://www.securityfocus.com/bid/36926 http://www.securityfocus.com/bid/36926 Backdoor in top iPhone games stole user data, suit claims (The Register) http://go.theregister.com/feed/www.theregister.co.uk/2009/11/06/iphone_games_storm8_lawsuit/ http://go.theregister.com/feed/www.theregister.co.uk/2009/11/06/iphone_games_storm8_lawsuit/ The Doghouse: ADE 651 (Schneier blog) http://www.schneier.com/blog/archives/2009/11/the_doghouse_ad.html http://www.schneier.com/blog/archives/2009/11/the_doghouse_ad.html A new version of Firefox (3.5.5) just became available. According to the release notes they are stability improvements., (Fri, Nov 6th) (InternetStormCenter) http://isc.sans.org/diary.html?storyid=7540&rss http://isc.sans.org/diary.html?storyid=7540&rss Adobe Issues Shockwave Security Update (November 3, 4 & 6, 2009) (SANS Newsbites) http://www.sans.org/newsletters/newsbites/newsbites.php?vol=11&issue=88&rss=Y#sID305 http://www.sans.org/newsletters/newsbites/newsbites.php?vol=11&issue=88&rss=Y#sID305 Senate Committee Passes Data Breach Laws (E-Week Security) http://feeds.ziffdavisenterprise.com/~r/RSS/eweeksecurity/~3/_52FtLCaaj0/ http://feeds.ziffdavisenterprise.com/~r/RSS/eweeksecurity/~3/_52FtLCaaj0/ Postini Technology to Spread Across Google Apps (PC World) (Yahoo Security) http://us.rd.yahoo.com/dailynews/rss/security/*http://news.yahoo.com/s/pcworld/20091106/tc_pcworld/postinitechnologytospreadacrossgoogleapps http://us.rd.yahoo.com/dailynews/rss/security/*http://news.yahoo.com/s/pcworld/20091106/tc_pcworld/postinitechnologytospreadacrossgoogleapps Updates for Adobe's Shockwave, Sun's Java (SecurityFix Blog) http://voices.washingtonpost.com/securityfix/2009/11/security_updates_for_adobes_sh.html?wprss=securityfix http://voices.washingtonpost.com/securityfix/2009/11/security_updates_for_adobes_sh.html?wprss=securityfix TLS negotiation flaw published (CGISecurity.com) http://www.cgisecurity.com/2009/11/steve-dispensa-and-marsh-ray-have-published-a-paper-describing-a-weakness-in-the-tls-negotiation-process-from-the-whitepaper.html http://www.cgisecurity.com/2009/11/steve-dispensa-and-marsh-ray-have-published-a-paper-describing-a-weakness-in-the-tls-negotiation-process-from-the-whitepaper.html 09.45.27 Mozilla Firefox Multiple Remote Memory Corruption Vulnerabilities (SANS @Risk) http://www.sans.org/newsletters/risk/display.php?v=8&i=45&rss=Y#09.45.27 http://www.sans.org/newsletters/risk/display.php?v=8&i=45&rss=Y#09.45.27