Dailydave mailing list archives

Re: A change

From: Charles Miller <cmiller () securityevaluators com>
Date: Fri, 15 Jan 2010 13:40:24 -0600

I think the interesting thing about "sophisticated" attacks, is that  
if they are actually sophisticated, the victims never know it  
happened.  And if the victim's DO figure out it happened, at least  
they shouldn't be able to find your 0-day sitting in their inbox for  
analysis.  Total amateur hour (not that it probably wouldn't have  
pwned me).

Charlie

On Jan 15, 2010, at 12:39 PM, dave wrote:

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

I think we're seeing a sudden change in how large companies (or simply
companies with a high level of perceived threat[1]) deal with software
security. Perhaps the era of IDS and AV and scanners has come to an
abrupt end? We can only hope.

Everyone says an attack is "sophisticated" whenever any 0day is
involved. But that should be the baseline. Or rather, it IS the  
baseline
and everyone seems to just be finding out.

One of the things Immunity has been including in our services but is  
now
offering seperately is a client-side 0day penetration test against a
single host using CANVAS technology. You get your penetration verified
during phone consultation. And you receive real-time analyst
interpretation of results, plus delivery of log data at the end. For
more information you can contact mark () immunityinc com.



Thanks,
Dave Aitel
Immunity, Inc.

[1]http://news.cnet.com/8301-27080_3-10434551-245.html
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (GNU/Linux)
Comment: Using GnuPG with Fedora - http://enigmail.mozdev.org

iEYEARECAAYFAktQtl4ACgkQtehAhL0gherpYgCfcmGb9odb00W5XC9GgXbHHzXf
KjUAn32K/UblyoI4dA9iIC6ktbqNfa+i
=EWHt
-----END PGP SIGNATURE-----
_______________________________________________
Dailydave mailing list
Dailydave () lists immunitysec com
http://lists.immunitysec.com/mailman/listinfo/dailydave


_______________________________________________
Dailydave mailing list
Dailydave () lists immunitysec com
http://lists.immunitysec.com/mailman/listinfo/dailydave

Current thread:

A change dave (Jan 15)
- Re: A change Charles Miller (Jan 15)
  - Re: A change Moxie Marlinspike (Jan 15)
    - Re: A change Parity (Jan 19)
  - Re: A change Rich Smith (Jan 18)
  - Re: A change delchi delchi (Jan 20)
- Re: A change Nelson Brito (Jan 18)
  - Re: A change val smith (Jan 19)
  - Re: A change Matthew Wollenweber (Jan 20)
    - Re: A change Marius (Jan 20)
    - Re: A change Jim Manico (Jan 20)
    - Re: A change Menerick, John (Jan 24)

(Thread continues...)