It’s no secret anymore: CIA scouting for recruits

“To fill the shortage of experts in key languages and meet a presidential order for a 50% increase in analysts and overseas operatives, Goss started an end-to-end overhaul of the recruiting system. Today, security issues that once took 18 months to overcome are being handled in a matter of weeks, according to Betsy Davis, the agency’s No. 2 recruiting official.”

Source: USA Today

via Blogs Of War

One Soldier’s Opinion

via Blogs Of War:

“The media hasn’t really gotten on board with the whole Global War on Terrorism issue. What they seem to not understand is that this isn’t an “Iraq War.â€? It is a front in a global war. People think that if we just up and go that we’ll be happy and safe at home and the reality is that that’s probably not true. These psycho’s are everywhere in the world. And we are going to have to find them and get them everywhere in the world. If the bullets stopped flying in Iraq today my guess is that we’d be off to somewhere else real soon, to fight the same war, against the same enemy, on a different front. During World War II there were many fronts, but you didn’t see politicians protesting the war in Japan, or women chaining themselves to the White House’s fence because they’re son died on Iwo Jima. They understood that we were fighting a battle that needed to be fought, and because we were the only ones that could do it. It wasn’t about American pride or arrogance or money, it was much simpler than that. Bad people in charge equals a bad world. I am not bragging about the US Military (as I will occasionally do)—I am merely stating a fact that we have the largest, most hi-tech, sophisticated fighting force on the planet. And as such, it is our moral obligation to fight the bad guys in this war. That’s, in my opinion, why we came here in the first place and why we’ll go on to the next front when it pops up.”

and we can remember:

“The world is a dangerous place to live, not because of the people who are evil, but because of the people who don’t do anything about it.“  (Albert Einstein)

The SANS Top 20 Internet Security Vulnerabilities

Four years ago, the SANS Institute and the National Infrastructure Protection Center (NIPC) at the FBI released a document summarizing the Ten Most Critical Internet Security Vulnerabilities. Thousands of organizations used that list, and the expanded Top-20 lists that followed one, two, and three years later, to prioritize their efforts so they could close the most dangerous holes first. The vulnerable services that led to worms like Blaster, Slammer, and Code Red have been on these lists. This SANS Top-20 2005 is a marked deviation from the previous Top-20 lists. In addition to Windows and UNIX categories, we have also included Cross-Platform Applications and Networking Products. The change reflects the dynamic nature of the evolving threat landscape. Unlike the previous Top-20 lists, this list is not “cumulative” in nature. We have only listed critical vulnerabilities from the past year and a half or so. If you have not patched your systems for a length of time, it is highly recommended that you first patch the vulnerabilities listed in the Top-20 2004 list. We have made a best effort to make this list meaningful for most organizations. Hence, the Top-20 2005 is a consensus list of vulnerabilities that require immediate remediation. It is the result of a process that brought together dozens of leading security experts. They come from the most security-conscious government agencies in the UK, US, and Singapore; the leading security software vendors and consulting firms; the top university-based security programs; many other user organizations; and the SANS Institute. A list of participants may be found at the end of this document. The SANS Top-20 is a living document. It includes step-by-step instructions and pointers to additional information useful for correcting the security flaws. We will update the list and the instructions as more critical threats and more current or convenient methods of protection are identified, and we welcome your input along the way. This is a community consensus document — your experience in fighting attackers and in eliminating the vulnerabilities can help others who come after you. Please send suggestions via e-mail to top20@sans.org.

Source: The SANS Institute via Defense Tech

What is BLOSINT?

Blosint means Blog Source Intelligence.The name of this blog is coming from the intelligence field.

How many intelligence categories do you know? Let’s see:

- osint – humint – imint – etc.and now we have another one:

- blosint

Why?

Because we are in an open world and the blogosphere can give you enough information for your actions.

Hello world!

Welcome to WordPress.com. This is your first post. Edit or delete it and start blogging!