************************** SPONSORED BY Zscaler ************************** ONLINE WEBCAST with GARTNER: DEADLY TRIO? TABLETS, FACEBOOK, and BOTNETS in your enterprise Web Applications, Tablets, and Smartphones all drive productivity, but expose businesses to web threats and data theft. Join Zscaler, and Gartner Analyst Lawrence Orans, to learn how to enable employees while protecting your business. March 6 at 10am PST / 1pm EST http://www.sans.org/info/100371 ************************************************************************** TRAINING UPDATE - --SANS Secure Singapore 2012, Singapore, Singapore March 5-17, 2012 5 courses. Bonus evening presentations include Introduction to Windows Memory Analysis; and Why Our Defenses are Failing Us: One Click is All It Takes ... http://www.sans.org/singapore-2012/
- -- SANS Mobile Device Security Summit: The Growing and Constantly Changing Challenge, Nashville, TN Summit: March 12-13, 2012; Post-Summit Courses: March 14-15, 2012 Mobile device security experts and practitioners from organizations that have implemented successful programs will discuss the most promising approaches to this new and evolving challenge. http://www.sans.org/mobile-device-security-summit-2012/
- --SANS 2012, Orlando, FL March 23-29, 2012 40 courses. Bonus evening presentations include Exploiting Vulnerabilities: 60 Minutes from Discovery to Exploit; Evolving Threats; and Harbinger of Evil: The Forensic Art of Finding Malware. http://www.sans.org/sans-2012/
- --SANS Northern Virginia 2012, Reston, VA April 15-20, 2012 7 courses. Bonus evening presentations include Linux Forensics for Non-Linux Folks; and Who Do You Trust? SSL and TLS Under Attack http://www.sans.org/northern-virginia-2012/
- --SANS Cyber Guardian 2012, Baltimore, MD April 30-May 7, 2012 11 courses. Bonus evening presentations include Ninja Assessments: Stealth Security testing for Organizations; and Adjusting Our Defenses for 2012. http://www.sans.org/cyber-guardian-2012/
- --SANS Security West 2012, San Diego, CA May 10-18, 2012 25 courses. Bonus evening presentations include Metametrics - A New Approach to Information Security Management Metrics; and Malware Analysis Essentials Using REMnux. http://www.sans.org/security-west-2012/
Proposed legislation Would have ISP Retain IP Logs for One Year (February 27, 2012)
Proponents of privacy rights and civil liberties are speaking out against proposed legislation in the US House of Representatives that would requires Internet service providers (ISPs) to retain customers' IP logs for one year. The Protecting Children From Internet Pornographers Act is sponsored by Lamar Smith (R-Texas) who also sponsored the Stop Online Piracy Act (SOPA). The concerns about the proposed legislation include the fact that IPSs would be collecting data about users whether or not they have been accused of wrongdoing and that the stored data would be ripe for theft, leaks, and snooping. -http://www.computerworld.com/s/article/9224668/Advocacy_group_takes_aim_at_anti_ porn_bill_requiring_ISP_data_retention?taxonomyId=17
US Government Aims to Clear Computers of DNSChanger (February 27, 2012)
The Department of Homeland security (DHS) is working to identify those government computers that are still infected with malware known as DNSChanger. Unless the malware is removed from those machines, they will no longer be able to access the Internet after March 8, when a court order allowing substitute DNS servers set up by the FBI expires. The FBI has requested an extension of that order through July 9, and an expedited decision has been requested. -http://www.nextgov.com/nextgov/ng_20120227_9754.php?oref=topstory Internet Storm Center (on the FBI extension): -http://isc.sans.edu/diary.html?storyid=12652 [Editor's Note (Liston): I'm not entirely sure why this is taking so long. The mechanism for identifying DNSChanger-infected hosts is straightforward. Unfortunately, government has allowed this to drag on and now it has become a crisis. Why not leverage the FBI controlled DNS servers to notify users? i.e. when someone does a DNS lookup for specific "human-in-front-of-the-computer" type sites, redirect them to a warning page. ]
Supreme Court Decision Spurs FBI to Turn Off 3,000 GPS Tracking Devices (February 26 & 27, 2012)
Court Cannot Tell FTC to Enforce Agreements (February 24, 2012)
John Pescatore is Vice President at Gartner Inc.; he has worked in computer and network security since 1978.
Stephen Northcutt founded the GIAC certification and is President of STI, The Premier Skills-Based Cyber Security Graduate School, www.sans.edu.
Dr. Johannes Ullrich is Chief Technology Officer of the Internet Storm Center and Dean of the Faculty of the graduate school at the SANS Technology Institute.
Ed Skoudis is co-founder of CounterHackChallenges, the nation's top producer of cyber ranges, simulations, and competitive challenges, now used from high schools to the Air Force. He is also author and lead instructor of the SANS Hacker Exploits and Incident Handling course, and Penetration Testing course..
William Hugh Murray is an executive consultant and trainer in Information Assurance and Associate Professor at the Naval Postgraduate School.
Rob Lee is the curriculum lead instructor for the SANS Institute's computer forensic courses (computer-forensics.sans.org) and a Director at the incident response company Mandiant.
Rohit Dhamankar is a security professional currently involved in independent security research.
Tom Liston is a Senior Security Consultant and Malware Analyst for InGuardians, a handler for the SANS Institute's Internet Storm Center, and co-author of the book Counter Hack Reloaded.
Dr. Eric Cole is an instructor, author and fellow with The SANS Institute. He has written five books, including Insider Threat and he is a founder with Secure Anchor Consulting.
Ron Dick directed the National Infrastructure Protection Center (NIPC) at the FBI and served as President of the InfraGard National Members Alliance - with more than 22,000 members.
Mason Brown is one of a very small number of people in the information security field who have held a top management position in a Fortune 50 company (Alcoa). He is leading SANS' global initiative to improve application security.
David Hoelzer is the director of research & principal examiner for Enclave Forensics and a senior fellow with the SANS Technology Institute.
Alan Paller is director of research at the SANS Institute.
Marcus J. Ranum built the first firewall for the White House and is widely recognized as a security products designer and industry innovator.
Clint Kreitner is the founding President and CEO of The Center for Internet Security.
Brian Honan is an independent security consultant based in Dublin, Ireland.
David Turley is SANS infrastructure manager and serves as production manager and final editor on SANS NewsBites.
Please feel free to share this with interested parties via email, but no posting is allowed on web sites. For a free subscription, (and for free posters) or to update a current subscription, visit http://portal.sans.org/