United Arab Emirate's site for security news, latest security blog posts, security podcasts, hardware hacks and security related links.

Saturday, September 27, 2008

ISAFE - 2008 Dubai

The conference will be held at the Sheraton Dubai Creek Hotel & Towers, Dubai, UAE on the 29th & 30th of October 2008.

The theme of the conference is Corporate Challenges in Information Governance.

The acronym I-SAFE (Information-Security, Audit & Assurance, Forensics and Emerging Technologies) represents various aspects of information Governance, to be covered in the conference.

Visit the conference website at:
ISAFE - 2008 Dubai

or:

http://www.isacauae.org/isacaorg/NoticeContent.aspx?code=42

The brochure (http://www.isacauae.org/isafe2008/ISACA-ISAFE-2008.pdf) contains all the relevant details and information on the conference.

Free practice exams for the CISSP, CISA, SSCP, GSEC- cccure.org

The older URL was http://www.cccure.org/quiz/quiz.php and it was moved to the new URL listed below:

Free practice exams for the CISSP, CISA, SSCP, GSEC- cccure.org - Bringing Education to the World.

Happy Times :P

CHANGE OF VENUE FOR CLEMENT'S DUBAI CISSP WORKSHOP

The workshop will now take place at the Capitol Hotel in Bur Dubai, the dates are the exact same, it will be from the 11th to the 16th October 2008.

For less information and more details about other OISSG Events in Dubai and the GCC Region please visit:
Certification Workshops - Open Information Systems Security Group.

Clement's http://www.cccure.org website is an excellent resource for CISSP Certification preparation.

Sunday, September 14, 2008

Massive ATM fraud in the Arabian Gulf Region

Banks across the United Arab Emirates are fighting to restore confidence in its banking system after hackers used counterfeit cards to withdraw funds from cash machines.

It's unclear how many customer accounts have hit by the attack much less how much money has been lost over the last three days, when the issue came to the fore. Local banks including Citibank, HSBC, Lloyds TSB, National Bank of Abu Dhabi and Emirates NBD have all issued statements.


More information and links at:
The Register.co.uk

Samurai Web Testing Framework - The Metasploit (Live Disk) of Web Security

The Samurai Web Testing Framework is a live linux environment that has been pre-configured to function as a web pen-testing environment. The CD contains the best of the open source and free tools that focus on testing and attacking websites. In developing this environment, we have based our tool selection on the tools we use in our security practice. We have included the tools used in all four steps of a web pen-test.

Starting with reconnaissance, we have included tools such as the Fierce domain scanner and Maltego. For mapping, we have included tools such WebScarab and ratproxy. We then chose tools for discovery. These would include w3af and burp. For exploitation, the final stage, we included BeEF, AJAXShell and much more. This CD also includes a pre-configured wiki, set up to be the central information store during your pen-test.


For more information read:
Samurai Web Testing Framework

visit the official website here:

http://samurai.intelguardians.com/

Thursday, September 11, 2008

Apple announces iPhone firmware 2.1 availability | iPhonefreak

It is supposed to fix some of the security problems with 2.0.x and provide better battery life. For more information visit:

Apple announces iPhone firmware 2.1 availability

Tuesday, September 9, 2008

Exploit Chrome and make people run your EXEs




A flaw in Apple Safari (WebKit) combined with a Java bug tricks users into launching executables from the new browser. Get more information from the link below:

Chrome - Vulnerabilities on First Day

More info and PoC from the author:

http://aviv.raffon.net/

NEWS FEEDS:

SecurityStreet:

PandaLabs Blog

Webroot Threat Blog

Daily Infosec News

HITBSecNews

Naked Security - Sophos

Taddong

Zone-H.org News

CGISecurity

ArsTechnica:

HACK A DAY

Help Net Sec

The Spanner

Middle East Technology News

Selil Blog

HACKING IN THE NEWS

Special Defacements

The Certified Geek

DoS Files ≈ Packet Storm

E Hacking News

Banned in UAE:

The following websites are blocked by ISPs in UAE.

News ≈ Packet Storm

DARKNET

MySecured.com

Copyright © 2008-2009 UAE Hackers.com .
All rights reserved.