The Security Onion LiveCD

The Security Onion LiveCD is now available! You can download it from the following location:
http://distro.ibiblio.org/pub/linux/distributions/security-onion/

What is it?
The Security Onion LiveCD is a bootable CD that contains software used for installing, configuring, and testing Intrusion Detection Systems.

What software does it contain?
The Security Onion LiveCD is based on Xubuntu 9.04 and contains Snort 2.8.4.1, Snort 3.0.0b3 (Beta), sguil, idswakeup, nmap, metasploit, scapy, hping, fragroute, fragrouter, netcat, paketto, tcpreplay, and many other security tools.

More City Fun - City asks applicants for Internet passwords

Job applicants with the City of Bozeman are finding that those private Internet discussions and pictures may not be so private after all. The city is asking job seekers for the user names — and passwords — to Internet social networking or Web groups they belong to. The decision is sparking an outcry from those who say the policy goes way too far.

Read more here.

Public Safety - City's dress code requires underwear!

If you want to work for the city of Brooksville, be sure that you use deodorant, that your clothes fit properly and that you cover up your wounds and tattoos. And, for goodness sake, wear underwear.

The Brooksville City Council approved a dress and appearance policy by a count of 4-1 this month, with only Mayor Joe Bernardini casting the dissenting vote. He questioned how the code would be interpreted and enforced.

This could be a job opportunity - undercover Underwear Inspectors!

Full story here.

Wireshark 1.2 Released

Wireshark 1.2.0 has been released. This is the new stable release branch of Wireshark and many new and exciting features have been added since 1.0 was released.

Universal wireless keyboard sniffer: Keykeriki

Kind of a cool thing... "This opensource hardware and software project enables every person to verify the security level of their own keyboard transmissions, and/or demonstrate the sniffing attacks (for educational purpose only)."

Securing your assets.

A MIRACLE new smart-bra that BOOSTS a woman's cleavage when she feels sexy is being tested by lingerie designers.

The magic bra detects changes in body temperature brought on by sexual arousement and squeezes boobs together to create a bigger cleavage.

Then when things cool off again the bra's built-in memory relaxes the fabric and the wearer's bust returns to normal, say its Slovenian inventors.

“Designer Suzana Gorisek said: "As a woman's body changes, so the size of the bra changes. That's the advantage of this bra."

More here.

ATM malware used in Russia lets attackers control machines.

Rhetorical question, but why would any sane person use Windows XP for an ATM???

"Trustwave investigators said malware used in several ATM breaches in Eastern Europe allows attackers to take over the machines and dump cash from them.

The compromised ATMs ran Microsoft's Windows XP, but Trustwave can't disclose the ATM software the malware targets, Percoco said."

(IN)SECURE magazine

DOWNLOAD ISSUE 21 here (June 2009).

Couple highlights -

* Using Wireshark to capture and analyze wireless traffic
* Q&A: Ron Gula on Nessus and Tenable Network Security
* Lots more, nice issue...

Using the DATALOSSdb info, Voltage releases data breach map

Kind of cool…

http://www.voltage.com/solutions/data-breach/

You can embed the map on a web page if you are so inclined...