General CERT Announcements:
CERT:  http://www.us-cert.gov/nav/t01/

Clientless SSL VPNs:
http://www.kb.cert.org/vuls/id/261869

More Zero Window TCP Flaws Updated:
http://www.kb.cert.org/vuls/id/723308

ICS Bind 9 Vulnerability (STILL):
http://www.kb.cert.org/vuls/id/725188

And especially amusing:  H1N1 Malware:
http://www.us-cert.gov/current/index.html#h1n1_malware_campaign_circulating

TAGGED:
Trend Micro SQL Tagged:  http://img708.imageshack.us/img708/9771/trend.jpg

Microsoft TechNet:
http://security-sh3ll.blogspot.com/2009/11/microsoft-technet-vulnerable-to-cross.html

Wall Street Journal:
http://news.softpedia.com/news/Wall-Street-Journal-Website-Hacked-128719.shtml

Kapersky and BitDefender Tagged:
http://news.softpedia.com/news/Kaspersky-and-Bitdefender-Websites-Hacked-104038.shtml

Symantec Online Store:
http://news.softpedia.com/news/Symantec-Online-Store-Hacked-127726.shtml

Romanian Hacker Blog Takes FSecure:
http://news.softpedia.com/news/F-Secure-Joins-the-List-of-Compromised-Antivirus-Websites-104337.shtml

Score 1 for the Feds: Lance Atkinson is fined:
http://news.softpedia.com/news/Infamous-Pharmacy-Spammer-Gets-Fifteen-Million-Dollars-Fine-128474.shtml

GENERAL:
Windows7 Forensics:
http://blogs.sans.org/computer-forensics/2009/10/27/windows-7-computer-forensics/

Explorer 8 XSS Protection Insecure:
http://www.h-online.com/security/news/item/Security-feature-of-Internet-Explorer-8-unsafe-868837.html

Symantec's When Browsers Attack "Firefox and Malware":
http://www.symantec.com/content/en/us/enterprise/media/security_response/whitepapers/firefox_and_malware.pdf

Zeus Botnet strikes again:
http://www.net-security.org/malware_news.php?id=1152

HALL of FAME:
Maltego:  http://holisticinfosec.blogspot.com/2009/11/maltego-is-2009-toolsmith-tool-of-year.html

FUN:
DNS Rebinding:  http://ha.ckers.org/blog/20091201/dns-rebinding-video/

PPTP VPN's with Hak5:
http://revision3.com/hak5/asleap

Stefan Esser's New PHP Exploitation Work:
http://www.suspekt.org/downloads/POC2009-ShockingNewsInPHPExploitation.pdf

ICMP/IPV4 Fuzzer:
http://g-laurent.blogspot.com/2009/11/releasing-icmpv4ip-fuzzer-prototype.html

Happy Holidaze!

-- 
Skype: (623)239-3392
AT&T: (503)754-4452
www.it-clowns.com
---------------------------------------------------
PLUG-discuss mailing list - PLUG-discuss@lists.plug.phoenix.az.us
To subscribe, unsubscribe, or to change your mail settings:
http://lists.PLUG.phoenix.az.us/mailman/listinfo/plug-discuss