SANS ISC SecNewsFeed http://isc.sans.org en-us (C) SANS Institute 2012 isc rss feed maker 30 handlers@sans.org (ISC Handlers) SANS ISC SecNewsFeed http://isc.sans.org/images/status.gif http://isc.sans.org Dealing with security vulnerabilities er bugs (Appsec Streetfighter Blog) http://blogs.sans.org/appsecstreetfighter/2011/10/04/dealing-with-security-vulnerabilies-er-bugs/ http://blogs.sans.org/appsecstreetfighter/2011/10/04/dealing-with-security-vulnerabilies-er-bugs/ CVE-2011-3659 (Natl. Vulnerability Database) http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2011-3659 http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2011-3659 Critical PHP vulnerability being fixed (Heise Security News) http://rss.feedsportal.com/c/32569/f/491736/s/1c5a39fb/l/0L0Sh0Eonline0N0Csecurity0Cnews0Citem0CCritical0EPHP0Evulnerability0Ebeing0Efixed0E14273160Bhtml0Cfrom0Crss/story01.htm http://rss.feedsportal.com/c/32569/f/491736/s/1c5a39fb/l/0L0Sh0Eonline0N0Csecurity0Cnews0Citem0CCritical0EPHP0Evulnerability0Ebeing0Efixed0E14273160Bhtml0Cfrom0Crss/story01.htm 4 Ways to Prevent Domain Name Hijacking (NetworkWorld Security) http://www.networkworld.com/news/2012/020112-4-ways-to-prevent-domain-255616.html?source=nww_rss http://www.networkworld.com/news/2012/020112-4-ways-to-prevent-domain-255616.html?source=nww_rss New Trojan routes your bank's calls to CROOKS (The Register) http://go.theregister.com/feed/www.theregister.co.uk/2012/02/02/ice_ix_trojan_social_engineering_trickery/ http://go.theregister.com/feed/www.theregister.co.uk/2012/02/02/ice_ix_trojan_social_engineering_trickery/ Bugtraq: CAL-2012-0004 opera array integer overflow (SecurityFocus Vulnerabilities) http://www.securityfocus.com/archive/1/521471 http://www.securityfocus.com/archive/1/521471 ISC StormCast for Thursday, February 2nd 2012 http://isc.sans.edu/podcastdetail.html?id2299, (Thu, Feb 2nd) (InternetStormCenter) http://isc.sans.edu/podcastdetail.html?id=2299 http://isc.sans.edu/podcastdetail.html?id=2299 Android malware turned out to be benign (Appolicious) (Yahoo Security) http://us.rd.yahoo.com/dailynews/rss/security/*http://us.rd.yahoo.com/dailynews/external/appolicious_rss/rss_appolicious_tc/http___www_androidapps_com_articles10938_android_malware_turned_out_to_be_benign/44392265/SIG=12otagl1r/*http://www.androidapps.com http://us.rd.yahoo.com/dailynews/rss/security/*http://us.rd.yahoo.com/dailynews/external/appolicious_rss/rss_appolicious_tc/http___www_androidapps_com_articles10938_android_malware_turned_out_to_be_benign/44392265/SIG=12otagl1r/*http://www.androidapps.com "Traversal Using Relays around NAT (TURN) Uniform Resource Identifiers" - Marc Petit-Huguenin, Suhas Nandakumar, Gonzalo Salgueiro, Paul Jones (Internet Drafts) http://tools.ietf.org/html/petithuguenin-behave-turn-uris-00.txt http://tools.ietf.org/html/petithuguenin-behave-turn-uris-00.txt OASIS Targets Cloud Portability (Network Computing Security) http://www.networkcomputing.com/cloud-computing/232600121 http://www.networkcomputing.com/cloud-computing/232600121 Cloud computing in financial service organizations (IT Toolbox Blogs) http://it.toolbox.com/blogs/rickscloud/cloud-computing-in-financial-service-organizations-50263 http://it.toolbox.com/blogs/rickscloud/cloud-computing-in-financial-service-organizations-50263 Prisons in the U.S. (Schneier blog) http://www.schneier.com/blog/archives/2012/02/prisons_in_the.html http://www.schneier.com/blog/archives/2012/02/prisons_in_the.html Apple Fixes 52 Bugs in OS X Snow Leopard, Lion in Security Update (E-Week Security) http://feeds.ziffdavisenterprise.com/~r/RSS/eweeksecurity/~3/g7bWGxT-8QI/ http://feeds.ziffdavisenterprise.com/~r/RSS/eweeksecurity/~3/g7bWGxT-8QI/