Irongeek's News Concatenator
A Logo

Feel free to include my content in your page via my
RSS feed

Help pay for
bandwidth and research equipment:


ISDPodcast Button
RootSecure Button
Social-engineer-training Button
Irongeek Button

Web Hosting:
Dreamhost Logo
Help pay for bandwidth and research equipment:


Here are the Current headlines from all of my favorite RSS sources.


Cisco Zine: How to create self-signed certificates

Cisco Zine: Unicast flooding due to asymmetric routing

Acros Security: Adobe Reader X (10.1.2) msiexec.exe Planting

Cisco Zine: Twelve Cisco vulnerabilities

Marco Ramilli's Blog: CVE-2012-0507

Cisco Zine: How to perform SSH RSA User Authentication

Offensive Security: FreePBX Exploit Phone Home

Cisco Zine: Cisco Linksys WVC200 Wireless-G PTZ Internet Video Camera buffer overflow

arstechnica: How Anonymous plans to use DNS as a weapon

arstechnica: Doxed: how Sabu was outed by former Anons long before his arrest

Marco Ramilli's Blog: Steganography Tools - a non exhaustive survey

arstechnica: Stakeout: how the FBI tracked and busted a Chicago Anon

The Register: Researchers find MYSTERY programming language in Duqu Trojan

Cisco Zine: Cisco Linksys WAG54GS CSRF Change Admin Password

Marco Ramilli's Blog: An interesting tool for your SwissKnife

Daily Mail: Turning the tables on Big Brother: Now internet users can watch who is spying on them

arstechnica: Malicious backdoor in open-source messaging apps not spotted for 3 months

Wired: Goldman Sachs Code-Theft Conviction Reversed

digg: Attackers have all they need from leaky cellphone networks to track you down

Marco Ramilli's Blog: A New Way to Detect Packers


NEW 'Off The Hook' ONLINE
17 September 2014, 8:04 pm

NEW 'Off The Hook' ONLINE

Posted 18 Sep, 2014 3:04:15 UTC

The new edition of Off The Hook from 17/09/2014 has been archived and is now available online.

NEW 'Off The Wall' ONLINE
16 September 2014, 6:42 pm

NEW 'Off The Wall' ONLINE

Posted 17 Sep, 2014 1:42:58 UTC

The new edition of Off The Wall from 16/09/2014 has been archived and is now available online.

22 August 2014, 9:44 am

Those of you who made it to HOPE X may have already seen some of this new stuff. Now it's time to release it to the world.

Our 2015 Hacker Calendar has even more historic hacker dates on it, along with 14 more spectacular foreign payphone photos in full 12"x12" glossy mode. You can start displaying it on your wall in September of this year, as the last four months of 2013 are also represented.

In response to those of you who found the blue color of our standard blue box shirts cute but annoying, we've gone back to our roots and put together a more traditional blue box shirt, one that we know will last a long time since we're still seeing the ones like this we used to make many years ago. One difference - the hacker-related headlines on the back are all new.

Finally, while supplies last, we're offering HOPE X shirts in a wide variety of sizes. These will NOT be reprinted so we suggest getting them as soon as you can if you like the design and/or want to convince people that you were at the conference.

The 2015 Hacker Calendar

The (New) Traditional Blue Box Shirt

The HOPE X Shirt

13 August 2014, 1:54 am

In response to some of the post HOPE X feedback we've been receiving at, we're addressing the needs of those of you who want high quality versions of the HOPE X talks but don't have DVD players in any of your devices. What we've done is encode all of the content into a high quality MP4 format which takes up nearly 64 gigabytes of space. We've divided these into two 32 gigabyte flash drives and added a guide for easy playback, as well as all of the audio files that come with the full DVD sets. While some of the talks are up on YouTube and we plan on posting all of them when we get a chance, these files are of much higher quality and are extremely easy to copy to any device you have. Neither the audio nor video files contain any DRM whatsoever, so you can keep these in your library indefinitely and share them with friends. You can order the HOPE X flash drives at our online store. (If you've already ordered the full DVD sets and wish to get these instead, please email us.

5 August 2014, 12:57 pm

We've completed our massive compilation of DVDs from the recently concluded HOPE X conference. We'll be busy printing them for weeks to come. You can find the full list of talks at our online store along with full descriptions. We want to thank everyone who helped make this the best HOPE yet.

24 July 2014, 12:28 pm

As we continue to recover from HOPE X, we are busy getting DVD sets of all of the talks ready for those who missed them or for those who want to relive them. In addition, we are adding some of the videos to our YouTube channel so you can see them right away. For now, these include Edward Snowden, Daniel Ellsberg, and Steven Rambam. Simply visit and select the talk you want to see. To get your own copy of all 100 or so talks from HOPE X, visit our store.

12 July 2014, 2:47 am

In the midst of preparations for HOPE X next weekend, we've finalized the last set of videos in the HOPE archives on Channel 2600 on YouTube. We have added 100 videos from HOPE Number Nine in 2012, featuring keynotes by NSA whistleblower William Binney and The Yes Men. There are a whole bunch of other interesting and enlightening talks from the hacker community, as always. We hope those of you looking forward to HOPE X will binge on these for a while. (They are set to play in order by track so you can experience the conference as it unfolded in three separate areas!)

Links to all of the videos can be found at our online store or at Channel 2600 on YouTube. Please help support our archiving efforts by buying DVDs for yourself or your friends at our online store. We now have all of our conferences archived on Channel 2600 via YouTube and available on DVD. We encourage you to post your comments on Channel2600 as well.

Visit HOPE Number Nine video archive (click on each title to get to the video)

Visit the archive of the HOPE conferences (all nine conferences now online, DVDs available for each of them)

Visit Channel 2600 on YouTube.

8 July 2014, 2:38 am

The brand new issue of 2600 is out for the summer, right in time for HOPE X. This has been a very tough issue to release, not only because of all of the conference preparation, but because of the massive problems we've had with our distributor filing for bankruptcy while their profitable division continues to publish magazines like Motor Trend. While it looks like we won't get paid for half a year of issues that we had to pay to print and ship, we can say that this new issue is being handled by a new distributor who promises not to run away with our money. If you see the Summer issue in a store, it means we succeeded in getting past this roadblock. You can help us recover by buying that issue. And if you already have one and don't need a backup copy, encourage a friend to take the plunge. If no friends are available, tell total strangers in the bookstore to take a look. We've gotten this far entirely because of our readers. We've always been a thorn in the side of corporate America, and this year they dealt us a very heavy blow. We'll get past it with your support. We won't forget - and we certainly won't forgive.


Get the current issue!!

Subscribe with Kindle!

Explore the DIGITAL editions!!!

3 July 2014, 12:06 pm

We are happy and honored to announce that Edward Snowden will be participating in the HOPE conference via a two-way video link. Between Snowden, Daniel Ellsberg, and Thomas Drake, we will have three of the world's most renowned whistleblowers speaking at this year's conference, in addition to well over 100 other speakers.

It was because of the mutual admiration between Ellsberg and Snowden that this special event was put together. Having these two people who have profoundly changed the history and direction of this country participating in a discussion is an occasion we will all be privileged to witness.

Snowden is, of course, still unable to leave Russia because of the threat he faces from the authorities in the United States. So he will be joining us and speaking on a video link right after Daniel Ellsberg's keynote.

See the full speaker schedule at HOPE X

Pre-register for HOPE X with your credit card or PayPal at the discounted rate.

Pay for HOPE X with Bitcoins!


25 June 2014, 3:13 am

It's happening again. Back in 1997, we were nearly driven out of business by a distributor who embezzled money and didn't pay for the magazines they were selling. We almost went out of business. Many other titles did as a result.

This time, the distributor (Source Interlink) decided to close its doors to magazine distribution after losing Time Inc.'s business. This caused us to scramble to find alternative methods of getting our magazine into stores around the world, a feat we accomplished without too much difficulty. But getting what was left of Source Interlink, now rebranded as "TEN: The Enthusiast Network," to pay us for the two issues retailers paid them for, is proving much more difficult.

The difference between now and 1997 is that this company is not really out of business. In fact, they're making a point of launching new endeavors. They publish their own magazines and presumably pay for those. All fine and good. We just ask that we also get paid for what we're owed. This is only fair. Instead, we're hearing reports that only the part of the company that owes us money will be filing for bankruptcy, leaving the other part free to keep operating. This is corporate logic we refuse to accept - the two entities shared the same name until things went sour - they are most definitely related and we hold them fully accountable.

Attempts to reach the company for the past few weeks to discuss this have met with no success. Meanwhile, Scott Dickey, the chief executive officer, says of the rebranded company, "We are the world's premier network of enthusiast brands - we create and deliver content every day that informs, entertains, inspires and connects with enthusiasts." Sounds wonderful. But what we'd really like them to deliver is a check for what they owe us. Spread that enthusiasm a bit.

TEN: The Enthusiast Network (yes, we're going to keep using their new awkward name at every opportunity so they can't claim they're somehow not responsible for their debts under the old name) is described as having "one of the largest male enthusiast databases on the market today. Their publications cover almost all major male interests groups such as Automotive, High-Tech, and Action Sports. They have over sixty individual titles including well known magazines such as Motor Trend, Automobile Magazine, Hot Rod, Stereophile and Surfing." If you do a little searching, you'll see that they're hiring all kinds of people and looking to expand their operations. We're happy for them. Really.

But we also have a message for TEN: The Enthusiast Network: You don't get to just make mistakes in one area, change your name, and set up shop in another without fulfilling your outstanding obligations. Sure, your half of Source Interlink may not have been the one that fell apart. But it was still part of the same company. You had the same name! (until you realized that you no longer wanted to be seen as connected to your failed endeavors) How this is not seen as an obvious fact is precisely why such travesties of justice continue to occur. If anyone needs more proof of the close relations between these two "separate" companies, consider that the very day the distribution half closed its doors, their publishing half announced it was closing 12 titles. "Separate" is clearly not an accurate description. And while we realize that through their corporate lawyers and doublespeak, they can probably get away with this sort of subterfuge fairly easily, we believe they have a moral obligation to do the right thing - and that is a position we can never yield on.

We are far from the only publication facing extinction because of the actions of TEN: The Enthusiast Network. But we intend to be the loudest. We hope our readers and supporters join us and help to put the pressure on. There is nearly $100,000 in outstanding invoices that we're not getting any answers on and we have lots of bills that have to be paid with the money we've earned but not received. Ironically, checks are still going to this company for magazines that our readers have bought. This is the environment that magazine publishers are forced to accept, as if the publishing industry wasn't difficult enough to survive in.

What does this mean for 2600? It means we have some serious battles to wage. We're going to keep fighting to get some justice and we may also have to fight simply to survive. In the worst case scenario, being ripped off at this level would make it almost impossible for us to continue publishing. We would have to make a lot of painful choices and cut back on things for no reason other than some outside company's mismanagement. Our readers have supported both our print and digital publications and we've been doing quite well overall. That's what makes this so frustrating. The hacker community has been tremendously supportive and constructive in keeping 2600 strong. None of us deserve this.

To make matters worse, this comes at a time when we're organizing our biggest conference yet, HOPE X. This is when funds are most needed, as there are so many things that need to be paid for when a conference is in the works. To have this level of uncertainty over our heads is more than a little torturous.

How can you help? We are not a charity so we are not asking for donations. What we're asking for is involvement. Help us to spread the word and get this resolved. If there's something we do that you like, support it or tell friends. Buy our new issue when it hits the stands in July - we'll actually get paid for this one. Make us Number One on Kindle. Let people know about HOPE X and get as many of them as possible to come to the conference. (Our growing list of talks is pretty damn impressive.) If 500 people buy tickets who wouldn't have otherwise bought tickets to the event, that would be enough for us to get through this without getting paid. Not that we wouldn't still be angry as hell, but at least we wouldn't be facing oblivion.

We do intend to survive, even if the actions of TEN: The Enthusiast Network put us massively into debt. We're hackers - we always find a way. As we vowed back in 1997, we will never do this kind of thing to those we're indebted to. If we owe bills, we will pay them. If people order things from us, they will always get them. If we make bad business decisions, we'll correct them and pay for our mistakes. These are basic values we've always subscribed to. We are more than willing to help teach these values to those companies that don't understand them.

TEN: The Enthusiast Network Facebook Page

TEN: The Enthusiast Network Twitter Feed

TEN: The Enthusiast Network Instagram

TEN: The Enthusiast Network LinkedIn Account


Security Focus

News: Change in Focus
9 March 2010, 4:00 pm
Change in Focus
News: Twitter attacker had proper credentials
17 December 2009, 4:00 pm
Twitter attacker had proper credentials
News: PhotoDNA scans images for child abuse
17 December 2009, 4:00 pm
PhotoDNA scans images for child abuse

>> Advertisement <<
Can you answer the ERP quiz?
These 10 questions determine if your Enterprise RP rollout gets an A+.
News: Conficker data highlights infected networks
15 December 2009, 4:00 pm
Conficker data highlights infected networks
Brief: Google offers bounty on browser bugs
1 February 2010, 4:00 pm
Google offers bounty on browser bugs
Brief: Cyberattacks from U.S. "greatest concern"
27 January 2010, 4:00 pm
Cyberattacks from U.S. "greatest concern"

>> Advertisement <<
Can you answer the ERP quiz?
These 10 questions determine if your Enterprise RP rollout gets an A+.
Brief: Microsoft patches as fraudsters target IE flaw
20 January 2010, 4:00 pm
Microsoft patches as fraudsters target IE flaw
Brief: Attack on IE 0-day refined by researchers
17 January 2010, 4:00 pm
Attack on IE 0-day refined by researchers
News: Monster botnet held 800,000 people's details
3 March 2010, 4:00 pm
Monster botnet held 800,000 people's details

>> Advertisement <<
Can you answer the ERP quiz?
These 10 questions determine if your Enterprise RP rollout gets an A+.
News: Google: 'no timetable' on China talks
3 March 2010, 4:00 pm
Google: 'no timetable' on China talks
News: Latvian hacker tweets hard on banking whistle
25 February 2010, 4:00 pm
Latvian hacker tweets hard on banking whistle
News: MS uses court order to take out Waledac botnet
24 February 2010, 4:00 pm
MS uses court order to take out Waledac botnet

>> Advertisement <<
Can you answer the ERP quiz?
These 10 questions determine if your Enterprise RP rollout gets an A+.
Infocus: Enterprise Intrusion Analysis, Part One

Enterprise Intrusion Analysis, Part One
Infocus: Responding to a Brute Force SSH Attack

Responding to a Brute Force SSH Attack
Infocus: Data Recovery on Linux and ext3

Data Recovery on Linux and <i>ext3</i>

>> Advertisement <<
Can you answer the ERP quiz?
These 10 questions determine if your Enterprise RP rollout gets an A+.
Infocus: WiMax: Just Another Security Challenge?

WiMax: Just Another Security Challenge?
Gunter Ollmann: Time to Squish SQL Injection

Time to Squish SQL Injection
Mark Rasch: Lazy Workers May Be Deemed Hackers

Lazy Workers May Be Deemed Hackers

>> Advertisement <<
Can you answer the ERP quiz?
These 10 questions determine if your Enterprise RP rollout gets an A+.
Adam O'Donnell: The Scale of Security

The Scale of Security
Mark Rasch: Hacker-Tool Law Still Does Little

Hacker-Tool Law Still Does Little
More rss feeds from SecurityFocus

News, Infocus, Columns, Vulnerabilities, Bugtraq ...

15 most recent posts on

If you would like to republish one of the articles from this site on your webpage or print journal please contact IronGeek.

Copyright 2014, IronGeek
Louisville / Kentuckiana Information Security Enthusiast