Aggregator

Today we released security updates to provide additional protections against malicious attackers. As a best practice, we encourage customers to apply security updates as soon as they are released. More information about this month’s security updates and advisories can be found in the Security TechNet Library. MSRC Team

A few months ago I published a blog post about Verisign’s plans to increase the strength of the Zone Signing Key (ZSK) for the root zone. I’m pleased to provide this update that we have started the process to pre-publish a 2048-bit ZSK in the root zone for the first time on Sept. 20. Following […]

The post Increasing the Strength of the Zone Signing Key for the Root Zone, Part II appeared first on Verisign Blog.

CHFI、CCFP和CFE都是属于中立机构的认证。CHFI 由EC-Council组织开展，是关于计算机入侵调查取证的专业认证；CCFP由美国ISC2组织开展，在欧美越来越受到认可。CFE由ACFE组织开展，是国际权威的反舞弊认证。

This blog was written by Chance Hoover. Earlier this month, more than 100 channel partner engineers from across the Americas...

The post Techies Give Back at Tech Forum appeared first on McAfee Blog.

こんにちは、村木ゆりかです。 マイクロソフト社では、100 以上の国に約 15 万人の社員が在籍し、社内 IT 環境

こんにちは、村木ゆりかです。 マイクロソフト社では、100 以上の国に約 15 万人の社員が在籍し、社内 IT 環境

JetBrains系列IDE存在“本地文件泄漏”和“远程代码执行”漏洞，一起来看下漏洞的发现过程。

详细参数说明： 当把shellcode写入代码shellcode变量的时候，输入-bin shellcode.bin 将生成二进制文件数据流。 当需要把二进制数据流转换成hex(16进制的时候)输入-hex shellcode.bin hex.hex 具体请看代码。这是博主自己的学习笔记，请勿喷。

F5 Labs analysts discovered a target pattern in the IBAN number formats as well as weekly changes to the script injection content. In May 2016, the F5 Security Operations Center (SOC) detected a generic form grabber and IBAN (International Bank...

Verisign just released its Q2 2016 DDoS Trends Report, which provides a unique view into online distributed denial of service (DDoS) attack trends from mitigations enacted on behalf of customers of Verisign DDoS Protection Services and research conducted by Verisign iDefense Security Intelligence Services. Every industry is at risk as DDoS attacks continue to increase in […]

The post Verisign Q2 2016 DDoS Trends: Layer 7 DDoS Attacks a Growing Trend appeared first on Verisign Blog.

EnCE和ACE由于其所属公司取证产品EnCase和FTK的广泛认可度，成为职场上广受推崇的两个认证，认证人数也在持续增长。

F5 CISO Mike Convertino on things to keep in mind when developing a security approach to overcome the lack of visibility in the cloud. When Securing Your Applications, Seeing is Believing

最近，我们的网络监测设备（ATP高级威胁检测系统）中发现了revslider.zip文件，解压后的两个php文件mil.php，pbot.php都经过了编码处理，非常可疑。搜索revslider关键字能找到freebuf上的一篇文章

HEIST is an example of how risk and threat are different, and why the distinction matters.

洪荒是谁？来出力么？[email protected]等着你！

Flanker暴走Vegas，介绍各个议题、趣闻和沙龙，分享演讲经验

电子数据取证对于取证人员的经验和专业素养有着极高的要求,而目前国内在这方面的培训和认证尚处于起步阶段。

This blog was written by Richard Steranka. Today, from Black Hat 2016 in Las Vegas, CompuCom announced the expansion of...

The post CompuCom Launches Cloud-Based Managed Service Powered by McAfee appeared first on McAfee Blog.