Kurt Baumgartner of Kaspersky Labs joins us to talk about Red October, a research paper that he co-authored, along with the other areas that he works on at Kaspersky.
It's time for another Drunken Security News. Much of the gang was on the road this week so Patrick Laverty sat in with Paul and Engineer Steve for the show, plus Jack's epic beard called in via Skype from lovely Maryland.
First, Paul admitted it was a stretch to bring this into a security context but he wanted to talk about an article that he found in The Economist (via Bruce Schneier) about one theory that if the US would simply be nicer to terrorists, release them from Guantanamo Bay, Cuba and stop hunting them down around the world, that they would in turn be nicer to us. Also, fewer would pop up around the world. The thinking is that jailing and killing them turns others into terrorists. So here's the leap. Can the same be said for black hat hackers? If law enforcement agencies stop prosecuting the hackers, will they be nicer and will there be fewer of them? I think we all came to the same conclusion. "Nah."
Paul also found an Adam Shostack article about how attention to the tiniest details can be important to the largest degree. The example given was the vulnerability to the Death Star in the original Star Wars movie was so small and the chances of it being exploited were so remote that the Empire overlooked it, Grand Moff Tarkin even showing his arrogance shortly before his own demise. The same can be said for our systems. It might be a tiny hole and maybe you think that no one would look for it and even if they do, what are the chances they both find it and exploit it? In some cases, it can have quite dire consequences. The Empire overlooked a small vulnerability that they shouldn't have. Are you doing the same with your systems?
Did we happen to mention that Security BSides Boston is May 18 at Microsoft NERD in Cambridge, MA and Security BSides Rhode Island is June 14th and 15th in Providence, RI. Good seats and good conference swag are still available. We all hope to see you there!
The Onion's Twitter account was breached by the Syrian Electronic Army and they handled it a way that only The Onion can, making light of both themselves and the SEA. Additionally, possibly for the first time ever, The Onion published a non-parody post about exactly how the breach occurred.
Additionally, the National Republican Congressional Committee (NRCC) web site got spam hacked/defaced with Viagra ads. The only thing we were wondering is, are we sure it was hacked and not just a convenient online pharmacy for their members?
A new whitepaper was released from MIT talking about "Honeywords". The problem being solved here is creating a way for server admins to know sooner when a passwords file has been breached on a server. In addition to the correct password, this new system would add a bunch of fake passwords as well. When the attacker starts trying usernames and passwords, if they use one of the fake passwords, the server admin would be notified that someone is doing that and it is very likely that the passwords file has been breached. It's an interesting concept to ponder.
Jack had an article from Dennis Fisher at Threatpost, asking the question about what's the point of blaming various people for cyberespionage if we don't have a plan to do something about it.
The NSA also has its own 643 page document telling its members how to use Google to find things like Excel documents in Russian that contain the word "login". Wait, I feel like I've heard of this somewhere before. Oh yeah, that's right. Johnny Long was talking about Google Hacking at least as far back as 2007. It's just interesting some times to see things that the media gets wind of and without the slightest bit of checking, thinks something is "new".
|
Rob Cheyne is a highly regarded technologist, trainer, security expert and serial entrepreneur.
He was the co-founder and CEO of Safelight Security, a leading provider of information security education programs. He has taught information security training classes to tens of thousands of developers, architects, and managers for industry-leading organizations. He has over 20 years of experience in the information technology field and has been working in information security since 1998.
Rob regularly speaks at security and training conferences, and frequently presents to the local chapters of various security organizations.
|
Negotiation skills - how closely do they mirror Social Engineering? Join us and our guest, Jenny “The Radcliffe” Radcliffe as we discuss these topics
Download Standard Podcasts
|
After 5 years of diving into the Security world head first, Andrew has finally come up bruised, beaten and a little less stupid. Like most hackers, he has ripped apart, modified and rewritten every electron and every bit possible - and under proper supervision has even gotten to play with a few really expensive toys. He now spends his time bootstrapping his DARPA CFT project (Netoko), hacking automotive networks (GoodThopter), or playing with academics as a Visiting Scholar at the University of Pennsylvania.
|
PaulDotCom Security Weekly #329
Sumit Sumit Siddarth - "The Art of Exploiting Injection Flaws"
Free Amazon Socks Proxy to Tunnel to Freedom
Drunken Security News
|
PaulDotCom Security Weekly #329
Interview with Brad Bowers
|
Drunken Security News, Jeremy Zerechak
|
|
|
Richard Bejtlich is Mandiant's Chief Security Officer. Prior to joining Mandiant, Mr. Bejtlich was the Director of Incident Response for General Electric, where he built and led the 40-member GE Computer Incident Response Team (GE-CIRT). He wrote The Tao of Network Security Monitoring, Extrusion Detection, and co-authored Real Digital Forensics. He currently writes for his blog TaoSecurity and teaches for Black Hat.
|
Trust. It is the foundation that every relationship must have to succeed. Our guest Dr. Paul Zak spent many years studying trust. Join us as he answers questions like:
What is trust?
What chemical creates trust?
How can you make someone ooze with that chemical?
Do synthetic trust products work?
Does Dave’s creepy hugging actually have any hint of truth?
Download Standard Podcasts
|
Mark Baggett is the owner of Indepth Defense, an independent consulting firm that offers incident response and penetration testing services. Mark is the author of SANS Python for Penetration testers course (SEC573) and the pyWars gaming environment. In January 2011, Mark assumed a new role as the Technical Advisor to the DoD for SANS.
Yet another PaulDotCom Security Weekly Drunken Security News! Can I Stop Typing In Caps Yet?
Please follow along at home and check out the show notes to see the stories that Paul, Larry, Jack and Allison have decided to talk about this week! Additionally, have you heard yet that Paul is putting on BSides Rhode Island? Got your ticket yet? Plus, Larry is teaching SEC616 for SANS in May in sunny San Diego. Don't miss that!
And did you check out the latest HackNaked TV by John Strand? It's an introduction to getting started with Recon-NG the new tool by Tim Tomes. If you've ever wanted a great reconnaissance tool that feels a bit like Metasploit, then give Recon-NG a try.
What are the guys busting Steve the Engineers chops about at the beginning? They thought that Steve had deleted the just-completed interview with Bill Cheswick. Much to Paul's pleasant surprise, the raw video survived and we have the interview available for you.
Paul found a story about upgrading a router by removing chips and resoldering new ones and additional ones back on. Want an overview of how this works? Larry educates us on the necessary tools and techniques. Remember, it's all about the tip size and always practice on hardware you don't care about as it's likely you'll screw it up the first time you try.
Larry also discovered the "Dave" video. Dave is a Belgian mindreader that brings people in off the street, into his New Age-y looking tent, invokes various dances, chants and feels people's energy. In the end, he is able to determine what seems like way too much personal information about these strangers. How does Dave do it? I won't reveal the trick here, but you can see the two and half minute video on YouTube for yourself. Be careful out there.
Jack gives a shoutout to Rackspace for taking on the patent trolls and Allison finds an ISP in Texas that is injecting ads in their customers' traffic. She also wonders what would happen if a customers, seeing these ads, were to simply click on them incessantly, driving up the cost to the advertisers, defeating the purpose of the advertising budget.
Hey, you know that whole "hacking back", offensive countermeasures thing? Yeah, so a guy in Russia actually tried it as we know everything's legal in Russia, right? He set up a honeypot on one of his machines that loaded malware on your machine if you went to it. Ok, maybe that doesn't sound very nice, but the only way you could get into it is if you did some SQL injection on the box. So it's not like the people affected had innocent intentions.
If you're reading this far, you're probably a security practitioner to some degree and you're aware of ATM skimmers and give an extra look for them. But do you look anywhere else other than ATMs? Skimmers are starting to pop up in all kinds of credit card terminals from the local grocery store to taxis. So be aware and maybe just pay cash.
Other stories include farting on servers, dressing like a cyberwarrior, the return of Archer and Arrested Development, sniffing, scapy and getting the government to hire security professionals who may not exactly have a pristine past.
See you next week with Mandiant's CSO Richard Bejtlich!
|
Bill Cheswick logged into his first computer in 1968. Seven years later, he was graduated from Lehigh University in 1975 with a degree resembling Computer Science. Ches has worked on (and against) operating system security for over 35 years. He is probably best known for "Firewalls and Internet Security; Repelling the Wily Hacker", co-authored with Steve Bellovin, which help train the first generation of Internet security experts.
|
|
|
Simon is a Mozilla Security Automation Engineer and ZAP Project Leader. He is also one of the founders of the OWASP Manchester chapter and the OWASP Data Exchange Format project. Simon is on to discuss OWASP's Zed Attack Proxy v2.0.0.
From the OWASP site: The Zed Attack Proxy (ZAP) is an easy to use integrated penetration testing tool for finding vulnerabilities in web applications. It is designed to be used by people with a wide range of security experience and as such is ideal for developers and functional testers who are new to penetration testing. ZAP provides automated scanners as well as a set of tools that allow you to find security vulnerabilities manually.
|
The one where we start a shiznit-storm and, oh yeah, a chat with Violet Blue....
Thanks to:
Jericho & Banasidhe for being in studio!
Enjoy!
|
Are you here to learn something about infosec? Well, you're in luck because this week you get even more. You even get Paul and Larry's beer trivia and find out who has the oldest trademark anywhere!
Can you guess the password on your first try? Of course you'd simply try the default password for the device, right? So would that be illegal to log in to that device and install software/malware? Of course it would be illegal, but it's still pretty neat that they were able to find approximately 1.2 million unprotected devices and turn about 420,000 of those into their botnet, which allowed them to scan the entire IPv4 address space in one hour. Also interestingly, this scan estimated that only about one-third of the IPv4 addresses are actually in use.
Along the same lines, Allison and Paul chatted about an article explaining how the botnet business is booming. One group is paying as much as $500 for 1,000 infections. Also discussed are the costs of a DDOS or 20,000 spam emails. Larry also pulls out $9 and some pocket lint wondering how many people he can spam with his resume.
Allison also brought up the Brian Krebs SWATing story and explains her own forays into this underground black-market subculture. Very interesting explanations of how easy it is to get enough personal information about someone in order to trick various businesses or services into helping the impersonator access their target's account.
NATO decided and published a report that they are justified in killing hackers. John offered his opinion on this that it makes sense. As war moves into new grounds and countries are using hackers to attack other countries, it makes sense that country is going to defend itself against this type of attacker.
Did you finally get your own 3D printer? Can you legally print out your own guns? Would that be legal? I would guess as long as you're the Vice-President and simply creating a double-barrel shotgun to scare people away, then it's all good. Maybe.
How's this for bottom-up economics? Larry tells us about a couple guys who owned a Subway sandwich shop and decided to get into the PIN pad business and eventually become a distributor to the parent Subway company. Except that these guys pre-installed remote admin access, and you can guess the rest.
Stick around 'til the end of the show for even more of Paul's beer trivia!
|
Jason Fossen is a principal security consultant at Enclave Consulting LLC, a published author, and a frequent public speaker on Microsoft security issues. He is the sole author of the SANS Institute's week-long Securing Windows course (SEC505), maintains the Windows day of Security Essentials (SEC401.5), and has been involved in numerous other SANS projects since 1998.
|
We don’t do it often… but when a topic so fitting comes up we just get together and chat about it. Yesterday a well known author wrote an article that stated basically “security gets in the way of having fun on the Internet”. This topic is close to us as we all focus on education and security. Enjoy the chat… March 20, 2013
Download Standard Podcasts
|
Join us with Seena Sharp of Sharp Marketing as she helps us understand if it possible to social engineer with out the use of pretexting.
She is the author of the book “Competitive Intelligence Advantage”
She answers questions like:
What type of information is the most important?
How to collect valuable data?
What are the best sources?
And much much more!
Download Standard Podcasts
|
We’re back! First new episode of Forensic 4cast since November 2011. We’ve selected a panel of top people from the field… sadly none of them were available so we have a bunch of other guys instead. Join us as we talk about Android malware, why Lee doesn’t use two-factor authentication, outsourcing to China, and so on.
Suck it Ovie!
You can either listen to the MP3 or watch the YouTube video below.
|
|
|
Jonathan leads the Microsoft Security Response Center Engineering team in investigating externally-reported security vulnerabilities and ensuring they are addressed appropriately via Microsoft's monthly security update process. Jonathan also acts as one of the engineering technical leads for the Microsoft company-wide Software Security Incident Response Process. The most important aspect of his work is helping customers find ways to reduce attack surface and protect themselves. Outside Microsoft work, Jonathan participates as a member of a reserve military unit helping to protect DoD networks and has written three-part "Gray Hat Hacking" book series.
Michael Farnum has worked with computers since he got a Kaypro II and an Apple IIc during his middle school years. Michael served in the US Army, where he drove, loaded, and gunned on the mighty M1A1 Abrams main battle tank (which is where he got his "m1a1vet" handle). Michael has worked at Accuvant as a solutions manager and is the founder of HouSecCon, THE Houston Security Conference, which will hold its 4th annual event in October.
|
Joe McCray is an Air Force Veteran and has been in IT security for over 10 years. His background includes both Network and Web Application penetration testing as well as incident response and forensics within the DoD and commercial sector.
Having a home lab is really key in our field. There always seems to be projects you want to work on that require a specific OS or software. You just need hardware at home, whether you are pen testing or doing security research. I grew tired of using laptops, and especially my own laptop. Having some low-cost servers will open up the possibilities.
|
Adrian joins the show to talk about his history in security, his co-creation of Derbycon, a primer into how he gets conference videos online so quickly and other tales of fun at conferences.
Joey Peloquin came on to talk about his recent findings with mobile security testing, and the platform he prefers, among iOS, Android and the new MS Surface. Plus, Paul and Larry are in studio to talk about the stories of the week.
|
Imagine having the power to not only social engineer anyone into giving over information with out hesitation but actually being happy for having done it? Our long time friend and podcast guest, Robin Dreeke talks about context framing and how we use it to leave our targets saying, “Thank you sir, may I have another?” Date Feb 18, 2013
Download Standard Podcasts
|
Craig Heffner is a Vulnerability Researcher with Tactical Network Solutions in Columbia, MD. He has 6 years experience analyzing wireless and embedded systems and operates the devttys0 blog which is dedicated to embedded hacking topics. He has presented at events such as Blackhat and DEF CON and teaches embedded device exploitation courses.
Have you ever jumped on a random WiFi connection and you didn't know where it was coming from? Probably. Most people have. But if you're one of Josh Wright's neighbors, or even if he's sipping coffee at the local shop, you might want to be careful about which wireless connection you're jumping on. But if you start seeing images that are out of focus or getting a page that seems about five years out of date or even end up on kittenwars.com, Josh might be the one responsible. Or at least his VM. You can get it on his site http://neighbor.willhackforsushi.com/
Josh is also working on something great for BSides Rhode Island. Check out the video below and he'll explain it. But if you hate the long lines at places like Cheesecake Factory and those stupid little buzzers that notify you when your table is ready, Josh might have some help for that. But you'll need to be at BSides RI to hear about it.
As for the stories of the week, we had a little bit of a lean week. However jokes about Jack's balls, I mean bells, were frequent and fun. After all, it was Mardi Gras and Jack brought beads for the whole crew with the one stipulation that we had to keep out clothes on.
Did you know that on Monday, February 18 at 2 pm, Paul and John will hold a free webinar with SANS. Titled "Active Defense Harbinger Distribution - Defense is Cool Again" the guys will be talking about the new offensive security distro that was built by Black Hills Infosec's Ethan Robish and John Strand. It's free, so sign up at the link above.
As for some of the stories, we knew it was going to be a rough week when Paul showed us the 10 ways to reduce security headaches in a BYOD world and #1 was to secure your data. Ohhhhkayyy. Moving on.
Paul also played the audio from a news broadcast from out west where the zombie apocalypse has begun. It's like a modern day War of the Worlds where people were actually calling the police to see if the story was true.
Jack explained how Mega's KimDotCom (isn't it quite egotistical to just take your first name and stick "dotcom" after it? I mean, seriously) continues to show his brilliance. Where else can you get a solid, top to bottom pentest for only about 10,000 euros. He challenged anyone to hack his site and after a few bugs, he began paying up. Pretty smart.
One story that actually didn't get mentioned on the show but is in the show notes is a quote from Bit9 after their hack this week: "There is no easy answer to a world where there are sophisticated actors continuously targeting every company and individual and whose primary goal is to steal information, whether for profit, power or glory. This is not fear-mongering or hype--everyone in the security business knows this fact. This is the state of cybersecurity today, and we are all frustrated and angered by it." Isn't this exactly why security firms get paid? Because there are bad people out there looking to steal information? If those people didn't exist, then would Bit9 need to exist? That's biting the hand that feeds you.
That's it for this week. We'll be back next week on the usual day, Thursday, February 21 at 6 pm EST! Until then, stay calm and hack naked!
|
Ethan Robish is a researcher with Black Hills Information Security and is here to give us some of the background on a suite of tools for the Offensive Countermeasures class - Active Defense Harbinger Distribution. The Active Defense Harbinger Distribution (ADHD) is a Linux distro based on Ubuntu 12.04 LTS. It comes with many tools aimed at active defense preinstalled and configured. The purpose of this distribution is to aid defenders by giving them tools to "strike back" at the bad guys.
A lean week in episode 319's Drunken security news, but at least the house was full with PDC staff. With Paul, Larry, Allison and Jack in-studio and John and Carlos via Skype to fill us in on all the fun.
But first, make sure to not miss the other two segments from episode 319. First was 451 Research's Wendy Nather to talk with the team, and then Ethan Robish and John Strand came on to talk about a brand new distribution. If you like distributions like Samurai, Backtrack and others, you might be interested in this one. Titled ADHD (Active Defense Harbinger Distribution) this has been three years in the making and takes on offensive security with many of the tools you love.
As for the stories of the week, Paul started off with a couple quick hits, including a joke about the Federal Reserve hack and bugs in hospital embedded devices. Then follow along as Jack goes a long way to make a joke about prime numbers, after one of the largest only-divisible-by-one-and-itselfs was discovered.
The first story they dig into is one that Larry brought along, about SSL/TLS being broken. After some explanation on the Oracle padding issue and the use of the same key, John and Larry bring up Wright's Law (to be discussed in episode 320 on Tuesday). Larry wonders, who is working on fixing SSL and if there is someone with a fix today, it could take five years until it is fully implemented.
Do you need anything more than six seconds? Apparently if you use Vine for Twitter, that's all you'll need. It's a new video sharing service, but all you get is six seconds of video. And what happens on Vine stays on Vine, right? Umm, no.
What would you do if you were Adobe's CISO? Take the staff out to lunch? Quit? Or actually get things cleaned up. I guess at least they're not Sony.
Congratulations to Allison who is Gold GCIA certified after her paper on digital watermarking to help prevent leaks. You can read the entire thing in the SANS Reading Room.
Lastly, Larry drops an "I told you so" with regard to Universal Plug and Play (uPnP). As Larry wrote, now there is a single Packet UDP exploit for it, for almost every device - of which there are millions of devices connected to the internet based on HD Moore's scanning.
Oh and if your company is looking for their next great employee (or if you get a referral bonus) contact Larry with the opportunity.
|
Wendy Nather is Research Director of the 451 Research Enterprise Security Practice. With over 20 years of IT experience, she built and managed the IT security program at the Texas Education Agency, where she directed multimillion-dollar initiatives for a statewide external user base of over 50,000. She has also provided security guidance for the datacenter consolidation of 27 Texas state agencies.
|
Episode 839 - Goodbye, Farewell and So Long
|
Episode 838 - BigBrother in .de, FTC do not track mobile, Cisco study, 2FA for Twitter, and 4k banker credentials leaked.
|
Dr. Spafford is one of the senior, most recognized leaders in the field of computing. He has an on-going record of accomplishment as a senior advisor and consultant on issues of security and intelligence, education, cybercrime and computing policy to a number of major companies, law enforcement organizations, academic and government agencies... [With] over three decades of experience as a researcher and instructor, Professor Spafford has worked in software engineering, reliable distributed computing, host and network security, digital forensics, computing policy, and computing curriculum design. Dr. Spafford is a professor with an appointment in Computer Science at Purdue University, where he has been a member of the faculty since 1987.
|
Thug is a Python low-interaction honeyclient. All too often in Incident Response you have logs that indicate a client was exploited by an exploit kit and compromised, but retrieving a copy of the the applicable piece of malware is difficult. Thug is designed to mimic a vulnerable web browser and follow the exploit kit back to its malware.
But with all that in the books, the conversation quickly turn to porn, smut and "sextortion." Yup, this was the first time that word had ever been uttered on the PaulDotCom Security Weekly, which required a visit to Urban Dictionary. As Allison noted, you can now get your very own sextortion coffee mugs, bumper stickers and magnets. The article described talks about how someone hacks into girls' computers (password guessing?), finds risqué photos and then uses those to get the girls to either send more pictures or go on video. Another man was recently charged with a similar crime where he'd talk to boys in IRC, get them to reveal themselves in a video chat where he'd then grab screenshots and use that against the victims. Lessons learned? If you are going to take a nude picture of yourself, DON'T INCLUDE YOUR FACE! But if push comes to shove, profit off it. As Paul said, it worked for the Kardashians and the Hiltons.
Did you know you're 182 times more likely to get malware on a news site than on a porn site?
China hacked the New York Times! Or did they? Wait, China did it? How in the world did a country of one billion people hack the NY Times. Isn't that the same thing as my blog getting hacked by the kid down the street and saying "The United States did it!" Maybe it was someone in China, maybe it was someone hired by Chinese government officials maybe it was someone who does things the same way that Chinese hackers have done it in the past. But as Allison and Jack noted, it's good that the Times is being so public with the situation.
As we begin adding more technology to embedded devices like televisions, we're not paying any additional attention to the security on them. Researchers are reporting having seen televisions and CCTV cameras pop up in their honeypots.
Paul talked about fifty million Universal Plug and Play network devices being open to packet attack. As he noted: "This is not a shock to me at all. UPnP is horrible, there just had to be a flaw in there somewhere. HD Moore found some, and turns out there are millions of vulnerable devices on the Internet. I am so happy to see this research come to light, it needs to happen. Free tools exist to check for the vulnerabilities, and details are forthcoming."
Speaking of forthcoming, the new version of Backtrack Linux is coming...
Oracle now cares about fixing the flaws in Java. Really? What could have possibly spurred this on? Maybe when the US Department of Homeland Security is telling everyone to stop using it? Maybe when they say they're patching the flaws and then a few minutes later, someone already has a new vulnerability for it? Good to know that this is what it takes for Oracle to finally care about security. Now imagine if such a company were involved in things like databases? Oh wait.
Wrapping this up with just a few more things. Paul talks about an XSS vulnerability in the VMware Management Interface. Free environment snapshots? Yes please!
Allison brings up the new law making it more illegal to jailbreak your mobile device if the carrier says you can not. But what about if you buy an unlocked phone for full price? That's ok, right?
Oh yeah, that grad student who was expelled from a Canadian university for telling them about their bad security practices? Well, it's actually a little worse. According to his expulsion letter, he was twice caught and admitted to using SQL injection to break into their informational systems. Yeah, that's a little more than just informing the school about their bad security practices, that's rubbing their nose in it. So lesson for the day, if you're paying someone thousands of dollars for a graduate degree, don't rub their nose in their bad security practices and expect to stick around.
Did you hear that Security BSides Rhode Island tickets are now on sale? Get them at http://bsidesri.eventbrite.com
|
Episode 837 - Silent but Deadly, Don’t Blame Us, & Me Too!
|
Episode 836 - MacOSX a/v, NYT hack, Oracle on Java, and User Fun
|
Episode 835 - UPnP, HP Printers, Alabama DHS Cyber Intrusion, Pwnium Rewards $3.14159 M, and Cloud Security Mistakes
|
Alissa Torres is a certified SANS Instructor and Incident Handler at Mandiant, finding evil on a daily basis. Alissa began her career in information security as a Communications Officer in the United States Marine Corps and is a graduate of University of Virginia and University of Maryland. She's on tonight to talk to us about Bulk Extractor.
Cisco responds to the WRT54GL Linksys router hack. They're working on a fix for people being able to remotely get a root shell, but their recommendation in the meantime? Only let friends use your router. Oh yeah, with friends like these...
Have you signed up for the SANS webinar titled "Uninstall Java? Realistic Recommendation? No. Insanity? Yes!" with John Strand, Paul Asadoorian and Eric Conrad? It's coming up, this Tuesday at 2 pm EST.
Do you have all the HTTP response codes memorized? Someone is proposing a new range of 700-level codes Some that might be helpful: HTTP 725: It Works On My Machine. And I fear how often the PaulDotCom web server will return an HTTP 767. It simply reads "Drunk".
Former Dawson College graduate student, Ahmed Al-Khabaz, who was expelled for allegedly hacking the university's infrastructure, has received multiple job offers. The guys talks about the situation with a little more detail than is often reported. He found a vulnerability and reported it. So far, so good. But then a little while later, he pointed a scanner at the vulnerability that he found, presumably setting off alarms. Even worse, the noise from the scanner pointed back to him. Once he reported the vulnerability, what's he doing going back to it, and as "evil" Jack mentions, why didn't Al-Khabaz cover his tracks better when he switched his hat color? Nonetheless, lots of weirdness abounds in this story. The university overreacted (what?!? a university overreacted? never!) instead of using this as a learning opportunity. Plus, the student may have made some mistakes along the way, yet he comes out better for it. So is the lesson here to hack your way to a job? Is that what the universities are for? Umm, no. Never go after something that you don't have explicit, written permission to hack. Plus there's Paul's suggestion of punishment here, the student should have been required to work the help desk for three months. That's enough to teach anyone a good lesson.
|
Episode 834 - Thoughts on Security Industry
|
Episode 833 - Barracuda Backdoor, Crims can watch you!, and 3 indicted for Gozi botnet.
|
Episode 832 - DHS Warning, APT Attacks, Expelled!, Protect Against Spies, at&t
|
Episode 831 - Virut, HIPAA Final Rule, IA vs IS, Even Moar Java and South Korean Competition
|
Hacking x-ray machines, comparing vulnerabilities to gun violence, unplugging java from a browser (in Paul's experience), making good money on bug bounties from IE and Adobe, condoms, castles, blaming PSY for additional Korean hacks and the best innovation story that we've heard in a while. Meow.
|
Gene and Josh talk about burnout in the infosec industry and what's being done about it. Plus Gene has a new book released that's getting rave reviews: "The Phoenix Project: A Novel About IT, DevOps, and Helping Your Business Win"
|
Episode 830 - Bodyscanners, MSAV, Genomes & Moar Java
|
Episode 829 - ColdFusion Patched, AIDE 2013 CFP Open
|
Episode 828 - CFAA update in works, Red October, dev Outsources to China, GoDaddy NTLM leak, and $5k gets you Java 0day
|
Episode 827 - Hack3rCon, Prepping and General Talk
|
Episode 826 - Scrape-DNS, Java Patched But Not Fixed, ADP-Themed Phishing Campaign, Security Vendor Could Be Next Target
|
Framing is one topic that can make or break the success of a social engineer. What if you could harness the power to reframe yourself to become anything despite any obstacle? Christine Ha is this months guest and she is truly a success story, an inspiration and a star example of re-framing. Date Jan 14, 2013
Download Standard Podcasts
|
|
|
This is an awesome interview with Kati Rodzon and Mike Murray from MAD Security about the psychology being social engineering engagements. Kati and Mike talk about the importance of confidence and playing a role. Plus, our newest intern's first project, presenting on Cross-Site Request Forgery.
|
Episode 825 - DDoS and Free Speech, nokia stops https mitm keeps http mitm, Java 0day again, Exploit kit for $10k per month, and Hacking Pipelines
|
Episode 824 - RFID Tags and school, Java Again, Nokia MitM, China’s new PII law
|
Episode 823 - FISA Warrantless, Impersonation Felony, Assault Weapons Ban
|
Eric Cole on APT and more!
|
|
|
Supersized episode with lots o' guests!
Merry Christmas from the EL Crew.
Enjoy!
|
Episode 822 - You’re really dead. Cisco VoiP hack, GreenSQL report, paid Facebook message service, and elcomsoft Forensic Disk Decryptor.
|
Episode 821 - Career Dayish, VMWare VMViewer fix, Mimicing APT in pentesting, and ctf365
|
Episode 820 - Oracle Prevent Java Apps,Wiper Copycat?, Dexter, SWF Investigator, Single-browser
|
Episode 819 - Mac Trojan, Samsung Chip, Iran Trojan, EU Breach Disclosure, and TIA rejects NIST mobile security guidelines.
|
Bsides comes to RI, tons of security news!
|
Episode 818 - Minority Report, ExloitHub, FSecure 7 for ‘13, and bwall’s pot compare
|
|
|
Episode 817 - @PentestLessons, IE Data Leakage, No Anonymity, How To Rob A Bank, Dexter, and Security or FUD?
|
Episode 816 - Izz ad-Din al-Qassam, Java Attacks, Android Scanner Fail, Samsung, Carolinas Healthcare, India 1,600
|
As social engineers we don’t often have to deal with the negative aspects of psychology, but this month we do. Retired FBI Profiler and international trainer and speaker, Mary Ellen O’Toole joins us to discuss identifying psychopaths and much much more.
Download Standard Podcasts
|
Episode 815 - Necurs 80k+, NDIS backdoor, Jeff Moss on Internet, and EU power company DoS.
|
Episode 814 - Texting 911, "Project Mayhem", Royal Pwn, Debunking, ATT DDOS
|
Episode 813 - BIND 9.9.2, BlackHole & Chrome,Pak hack, 25 GPU Monster, SMB Medical Offices
|
Interesting usage of GISKismet, and some great drunken security news stories!
|
Episode 812 - Nationwide Insurance, US votes to keep internet free, and GT Mobile Browser research
|
Episode 811 - Macs targetted again, tumblr worm, darpa looks for backdoors, and King Cope’s Full Disclosure 0Days.
|
Create your own embedded pen test device w/ MiniPwner, Security fail dominates drunken security news.
|
Episode 810 - FOREX, Banks owe, Spear-Phishing, distributed computation via browser
|
Episode 809 - Syria, Printers, Solid Oak, and IAEA
|
Episode 808 - @PentestLessons, Unencrypted PAN Storage, The Email That Hacks You, and Security or FUD
|
Episode 807 - eBay XSS, 1300 Databases, RedHack Trial, Yahoo! XSS 4Sale, 20-plus flaws in SCADA
|
Episode 804 - NZ Kiosk Update, GoatSec Trial, Linux Drive By Rootkit, FreeBSD Compromise, and Konstituion Kiboshing
|
Database security & Security news drunken style!
|
Episode 804 - NZ Kiosk Update, GoatSec Trial, Linux Drive By Rootkit, FreeBSD Compromise, and Konstituion Kiboshing
|
Episode 804 - NZ Kiosk Update, GoatSec Trial, Linux Drive By Rootkit, FreeBSD Compromise, and Konstituion Kiboshing
|
Episode 803 - Google Docs as Proxy, Facebook turns on SSL, Oprah Oops and top 10 Vulns of 2012
|
Firmware reverse engineering & Security news drunken style!
|
Episode 801 - EA Origin, Skype, Adobe, Smart Card Sniffing Malware, and NASA's Lost Laptop
|
Episode 800 - Pentest Lessons, BSidesDE Wrap Up and Security or FUD
|
Our guest this week is notorious forensics guru from the UK, Nick Furneaux. Nick discusses with us the magic of API manipulation. He gave us some free “posh” tips for making websites dump the data we want as social engineers. Try these things below:
Download and install the Firefox addon - JSONView
Try:-
https://api.twitter.com/1/users/lookup.json?screen_name=BarackObama
https://api.twitter.com/1/users/lookup.json?screen_name=MittRomney
http://code.google.com/apis/ajax/playground/
The last one will find all tweets within 2 miles of the GPS coors (central london) that contains the words London Riot. Replace as desired!
http://search.twitter.com/search.json?q=london%20riot&geocode=51.50733,%20-0.12768,2ml&include_entities=true&result_type=mixed
This type of data mining can lead to searchable and impressive results for any social engineer.
Follow Nick on his twitter account, NickFX
Till next month
Download Standard Podcasts
|
Episode 797 - Adobe 0Day, CoDeSys Responds, Law Firms, Ebanking, iPhones Data
|
Episode 796 - SecZone Founder Interview, @PentestLessons, Security or FUD
|
Hacking mobile phone web browsers & Security news drunken style!
|
Security news drunken style!
|
Episode 795 - Sophos Anti-Virus, LG Smart World, China Most Threatening, Anonymous hackfest, TrustWave SC hacking
|
Episode 794 - Irish Incidents on rise, Coke-a-cola Hacked and doesn’t tell, NJ e-mail vote, Nov. 5th breaches
|
Episode 793 - Paypal Vulnerable, Android Client Side Protection, DHS The Opportunist, and Hackmageddon October Timeline
|
Episode 792 - Algerian Attack, Windows 8 defeated, ZeroAccess Botnet, Fast Flux Botnet, DigiNotar Final Report, SC Data breach, iOS 6.0.1
|
Hosts
Guests
Topics
- Encrypting your stuff
- Files
- Passwords
- Web Browsing
News Items
- DARPA-Funded Radio HackRF Aims To Be A $300 Wireless Swiss Army Knife For Hackers
- Real-Time Cyber-Attack Map
- Russian Anti-Virus Firm Plans Secure Operating System to Combat Stuxnet
- SMARTPHONE USERS SHOULD BE AWARE OF MALWARE TARGETING MOBILE DEVICES AND SAFETY MEASURES TO HELP AVOID COMPROMISE
- State-Sponsored Malware ‘Flame’ Has Smaller, More Devious Cousin
- DOING INFOSEC RIGHT
Use Our Discount Codes
- Use code SecuraBit_Connect to get $150.00 off of ANY training course. The discount code is good for all SANS courses in all formats.
- FREE OnDemand Bundle with corresponding course purchase for SANS Network Security 2012 with code SecuraBit_NS12OD
- Use code 36449 for 20% off your Syngress order!
Upcoming events
Links
Chat with us on IRC at irc.freenode.net #securabit iTunes Podcast – http://itunes.apple.com/us/podcast/securabit/id280048405 iPhone App Now Available – http://itunes.apple.com/us/app/securabit-mobile/id382484512?mt=8
|
Episode 791 - 60 Seconds Arrests, .AU Post breached again, .ru cyberspy in Georgia, DDoS & SQLi lead on forums and UK Bank Phishers arrested
|
Episode 790 - Naming hackers, Firefox 16.0.2, Xtreme RAT, NullCrew, Twinings Tea
|
Episode 789 - DNS Amplification still going, Cloud Security control, UK says lie on the internet, .JP bank phishing, and Supreme Court and ownership
|
Episode 788 - synackpwn, SCDR, Data Breach Laws & Election/Vote Hacking 2012
|
Incident Response in 3.08 MB - Always nice to see folks, like our good friend and Stogie Geeks co-host Tim Mugherini, writing about tools that work. This product just sounds useful: The idea behind Carbon Black (CB) is to monitor code execution. A small Windows agent is deployed to each host throughout the enterprise. This agent hashes each process, monitors the sub processes, module loads, registry edits, file writes, and network connections. Digital signatures and the activity of each binary is stored on the CB server.
National Weather Service Hacked - In other news, snow storms are reported in Miami, earthquakes in the mid-west, and its been raining in San Diego for 3 weeks straight, but sunny and 75 in Seattle. CSRF and XSS strike again!
The Importance of Security Awareness - User awareness is still kicking around, and everyone seems to have a different take. One thing we all agree on is that it leaves gaps, which is why you need other stuff to protect your organization. After exploring this topic, I am of the opinion that you need an awareness program. There are several companies providing this type of service, go seek them out, get a solution to educate your users that fits you, and your budget/ROI, and run with it. I firmly believe this is something everyone needs to have, just like a firewall or IDS (as lame as that sounds). Know how much return each defensive measure provides and use it accordingly.
Zero-day attacks last much longer than most would believe - This speaks to the huge problem we have with software security. On average, its takes 10 months to uncover a 0day vulnerability. Yikes, 10 months is a long time and a lotof damage will occur.
Pacemaker hacker says worm could possibly 'commit mass murder' | Computerworld Blogs - Barnaby Jack strikes again, in what could be a huge problem. This is something that has always bothered me, what happens when criminals take advantage of technology to damage people? Sure, many evil hacking groups launch DoS attacks and break into places like Sony. Thats the least of our worries, as when attacks can affect people's health and well-being on a mass scale, its a game changer. We've seen some car hacking stuff, but pacemakers hit the "heart" of the matter. The response seems to be as much diluted as it always has been, lots of finger pointing and disbelief.
|
Interview Dan Kuykendall
Dan manages NT OBJECTives’ software development and has an extensive background in web application development and security and is co-host of "An Information Security Place" Podcast.
How did you get your start in information security?
We are seeing the proliferation of apps using JSON, AJAX, REST, etc. These apps have vulns that aren't being tested by scanners and people don't know how to test them, yet there are serious vulns there.
What about HTML5, what are the new vulnerabilities and protections? How can we test them?
What are the challenges, and solutions, for an automated scanner to overcome authentication?
How do you handle technologies such as Flash?
Which seems to have more vulnerabilities, in-house written apps, open-source or commercial? Or are they all even? What advice do you have for folks looking to acquire an application to solve a business problem?
Scanners traditionally have trouble with certain vulnerabilities, which ones are the most problematic?
Are people testing them by hand? If so, what can you do to be the most efficient?
Scanners haven't really kept up with the application technology and the coverage gap is widening. Scanners need more application coverage. They will never cover all of the app, but they should cover more. What are your thoughts on that as pen testers? How do you balance manual and automated testing?
Which vulnerability, with respects to web applications, goes unnoticed and unlatched the most?
What training options are available for application developers?
What advice do you have for folks who want to get started and learn how to test web applications for security?
|
Guest Tech Segment: Charlie Eriksen on Wordpress plugin security
In this technical segment, we will look at Charlie Eriksens research into Wordpress plugin security. By searching large amounts of code for code that is often insecurely written, it is possible to find a large amount of vulnerabilities in plugins running on thousands of Wordpress sites across the internet.
Stories
How Your #Naked Pictures Ended Up on the Internet
The Security-Conscious Uncle - Yea, I'm talking about ATM card security. After reading this, and hearing my thoughts and views on Debit cards, I want to keep my money in my own safe. Banks make it so hard to keep your money secure. I don't want a Debit card, its a ridiculous concept that only benefits the bank. I want more than a 4-digit pin number too. My best advice is to only tie your ATM card to an account with a small amount of cash to limit damages, if your bank even allows you to do that.
No homecoming queen vote if you don't wear RFID tag? - I'm sorry, I don't want to wear an RFID tag. Tracking students has gotten way out of control. I proved how you can clone RFID tags in a MA CCDC compition. So, students, if you want a lesson on how to become any one of your classmates, please come find me.
Hacker wins $60 - Don't get me wrong, I think this is a good thing. The more we encourage legit folks to find vulnerabilities, the better.
Firefox 16 pulled offline following security flaw find - Firefox is becoming the new IE!
Mobile Brings a New Dimension to the Enterprise Risk Equation - I think I've solved the BYOD problem, just buy all employees brand new iPhone 5s, manage them with an MDM (like Apple Profile Manager) and everyone is happy. I think this comes down to giving the people what they want.
Reporting Mistakes - I agree that we need to be forthcoming about where security has failed. I don't get First, talking about the exact way to exploit an 0day makes it easier for more people to exploit it. Learning of a 0Day exploit, and the details, gives us a fighting chance to defend ourselves. I think there has to be some quiet time if you want to involved the vendor, then you gotta tell people. It also depends on the nature of the 0day, maybe the vendor won't listen, or maybe its 0Day in the DNS protocol.
James Bond's Dry Erase Marker: The Hotel PenTest Pen - SpiderLabs Anterior - This is just way too super cool, best usage of Arduino and Dry Erase marker EVER (maybe the only usage of the two together).
HP Communities - CISO Concerns - Security vs. Usability - CISOs love to bat around terms like security, usability, compliance, affordability, ROI, etc... These are fine, in the right context, but lets not forget, you have the word security in your title, and at some level you have to prevent people from getting pwned. Sometimes I think we lose site of that.
|
Interview Daniel Suarez
Daemon and Freedom were fairly epic. How difficult was it to begin Kill Decision knowing that you had a gang of fans with such high expectations for your next book?
Tell us about Kill Decision
There was a fair amount of drone usage in FreedomTM). Was there a particular event or news story which inspired you to concentrate on drone warfare for Kill Decision?
What was the germination like for Kill Decision? Was it formulated before or after Daemon and Freedom(TM)
What kind of research did you do to get the drone hardware to be realistic in the book?
In a recent interview, you indicated that technology was being siphoned out of high tech meccas into other parts of the world via both Globalization as well as good old fashioned Espionage. Do you think, at least for the US, we're past the point of no return when it comes to ensuring that we're not giving away our intellectual property when we farm out our manufacturing overseas?
Similar to the above, one of the warnings in Freedom(TM) appeared to be that a nation has to safeguard its food sources - not to be complacent about the importance of being able to grow your own food to feed its citizens. Do you feel that the government is aware of this issue or that more needs to be done?
Where do you see the future of drone warfare going?
Since the book has been published, have you been given any additional information concerning how close we are to the reality seen in Kill Decision?
There was one term which we're told gives a lot of writers "grief": making love. How tough was the love scene to write in Kill Decision? :)
|
DerbyCon V2.0 was an epic con. The team was all present to share if a few firsts - and our first live podcast from DerbyCon… Check it out Date Oct 15, 2012
Download Standard Podcasts
|
|
|
|
|
|
|
Paul's Stories
A Guide To Network Vulnerability Management - Dark Reading - If you want the "training wheels" approach to vulnerability management, then you should read this article. However, the problem goes so much deeper, and this article doesn't even know what tool to use in order to scratch the surface. Sure, you gotta know what services are running on your systems, but it goes so much deeper than that. Environments, threats, systems and people all change, so howdo you keep up? How do you really find, and more importantly fix, the vulnerabilities in your environment?
Old Operating Systems Die Harder - Dark Reading - Okay, here is where you could make a lot of money. Create a company that can actually provide some real security to legacy operating systems. So many of our defenses fail if there is a vulnerability that doesn't have a patch. You can implement some security, but it doesn't really solve the true problem. Once an attacker is able to access the system, its game over. Unless, there is something that can really solve the problem, even thwart the exploit and/or shellcode. Technologies exist, but back-porting to legacy systems is not often done. And this is where we need the help.
Microsoft Disrupts ‘Nitol’ Botnet in Piracy Sweep - Microsoft takes down another botnet. Why is this news? Not-so-sure, as this should be the rule rather than the exception.
Blackhole Exploit Kit updates to 2.0 - Check this out, attackers are implementing security! Check this out, this exploit kit now sports: Dynamic URL generation, so there is no longer a standard URL pattern that could be used to identify the kit.IP blocking at the executable URL, so that AV companies can't just download your binary. This is meant to slow down AV detection. Use of Captcha in the admin panel login page, to prevent brute forcing unauthorized access. If legit defendersonly did all that, well, except for the CAPTCHA, which is useless.
Domino's Pizza says website hacked - One of the most useful things the Internet has ever given birth to, aside from access to free porn, is the ability to order pizza online. So back off! Oh, then there is this: "This is a very unfortunate event which has happened despite the security ecosystem that we have created around our online assets. Some security "ecosystem" you got there.
More SSL trouble - SSL is broken, again, Drink!
Apple unveils redesigned iPhone 5 with 4-inch display - I did not see any mention of improved security, but what a sexy device. Wireless now supports dual band n, which is awesome.
Google helps close 163 security vulnerabilities in iTunes - iTunes is a beast, I use it all the time and well at the end of the day its kind of a resource pig, but gets the job done. However, its pretty crappy software, tons of vulnerabilities, and new ones found by Google! Webkit was to blame for many...#Antivirus programs often poorly configured - New study finds AV is not configured correctly. No huge surprises there... Do weneed to make it easier to configure or are people just lazy or both?
Larry's stories
Who's your GoDaddy - [Larry] - Yup, GoDaddy dns was down for the count. This included their own authoritative DNS as well as for those for the hosted stuff. Of course, now folks are talking about DoS against root name servers, and OMG the sky is falling. Of course, a single Anonymous member took credit, and GoDaddy, said along the lines of "Ooops, we tripped on a cable and corrupted our routing tables". Who do you believe… In other notes, a leaf fell from a tree and an individual member from anonymous took credit.
What happens when your encryption is EOL-ed - [Larry] - Victorinox (the Swiss Army folks) are offering full refunds if you return the secure usb thumb drives. Why? As of September 15th the certificate will expire, and they have no intent on renewing and are stopping support for the software. If you don't get your data out of the encrypted volume before then, you'll allegedly lose it. So, what happens when we have something else like this that is significantly more mission critical, we have significant investment and no upgrade path. Choose wisely.
Judge rules WiFi Sniffing Legal - [Larry] - Basically it boils down that is you have an open network and the data is in the clear, you should be able to sniff it. Don't want someone to sniff it? Encrypt it - and yes, WEP would be sufficient for word of law here. So, why did the judge rule this way? Wireless is a shared medium. If you are not allowed to sniff traffic that is not destined to you, then how are you able to determine that the traffic on said network is destined for you? Ruling against it would make all WiFi networks illegal, just by nature of the technology.
ACTUAL Stego in the wild for "legitimate purpose" - [Larry] - I just put this story in for Darren to bust John's stones. But, it appears that Blizzard has been embedding information about the user via stegonaography into screenshots taken by the WoW clients.
Jack's Ruminations
Half of all Androids have Vulns? Also, water is wet. I'm surprised at this, I would have expected much higher. Android phones are at the mercy of their carriers for updates. And carriers are not noted for their mercy.
Chip and Pin, er, PWN Chip and pin research shows that this bandage for the fundamentally obsolete and insecure payment card systems. The EMV protocol has crypto issues, as in "programmers may not be using cryptographic random number generator algorithms to create UNs, and instead may be using counters, timestamps or homegrown algorithms that are not so random."
New FBI Facial Recognition program what could possibly go wrong? From the article "nabbing crooks after a crime is only part of the appeal. The technology also foreshadows upcoming security enhancements that will stop many offenses before they start". That "before they start" bit sounds pretty damned scary to me.
|
Interview with Jason Lam
Jason is the head of global threat management at a major financial institution based in Canada. Jason specializes in Web application security, and shares his research findings and experiences by teaching at the SANS Institute. His recent SANS courseware development includes Defending Web Application Security Essentials and Web Application Pen Testing Hands-On Immersion.
How did you get your start in information security? Tell us something no one knows about Defending Web Apps...
|
Show Notes: http://pauldotcom.com/wiki/index.php/Episode301
Answers to Allison's Puzzle Contest, Paul's Stories:
100,000 Vulnerabilities - Security vulnerabilities measured in numbers is sometimes a scary thing. At some level there you can prove strength or weakness in numbers. If you count vulnerabilities, for better or worse, how are you qualifying them? Severity? Exploitability? Ubiquity? All those things, and more, can impact your view on the matter, in fact it can make it matter, or not. The point being, try not to play the numbers game. There is a "shit ton" of vulnerabilities out there, and what we do to prevent them from happening in the first place and how we deal with them in the real world is what matters.
Schneier on Security: CSOs/CISOs Wanted: Cloud Security Questions - This is one topic which we did not debate, that is the cloud. I think, like security vs. obscurity, its a simple solution on the surface. For example, if you care about your data, don't store it in the cloud. Similarly, if you care about the security of anything, don't just obscure it, secure it. Wow, that sounds even cheesier than I thought.
Secret account in mission-critical router opens power plants to tampering | Ars Technica - This speaks to the continued lack of awareness in device manufacturers when it comes to security. I'm baffled that they have not solved the problem. The common problems they have, such as easily exploitable vulnerabilities, are easy to fix. It requires two things: Awarenesss training for developers and QA (ala Rugged/DevOps) and regular security assessments. In the grand scheme of things, it doesn't cost all that much. In the end, you produce a better product. Hopefully the market has changed, and customers value security as one component of a great product. Or maybe I live in a dream world...
The Social-Engineer Toolkit (SET) v3.7 Street Cred has been released. « - Java 0-Day is in SET. Coupled with the other Java payloads, this ensures your phishing success. On the defense side, I disagree with everyone saying "Disable Java" or "Disable Flash". There is going to be users that require this technology. Those are the users we will target. Sure, it reduces your attack surface, and that does help. But I believe what people miss the boat is just how deep "security" needs to go. Its more than layers. Its more than awareness and technology. Its about doing all sorts of things to keep your organization resilient to attacks, and having a plan to deal with successful attacks and minimize damage.
Cracking Story – How I Cracked Over 122 Million SHA1 and MD5 Hashed Passwords « Thireus' Bl0g - Nice crack...ing.
BYOD creates generation of workaholics - Saying that BYOD adds 20 hours to your work week is ridiculous. How much work can you really get done on your smartphone? If your spending that much time in email or some such thing, you need to re-evaluate your strategy. Devices and technology should make you more productive or your doing it wrong. However, it does increase the threat landscape.
3 security mistakes your management is making now - I have to say, and this usually never happens, I agree with Roger, at least on the first point of testing vendor products. I think a lot of people get this wrong. It goes deeper than what Roger stated. Sure, you should test out products before you buy them, and even use them on real production networks. Also, you have to understand your problems, develop requirements, and research the right way to test, install and configure the said products. Many don't do this and end up with the wrong products for the wrong reasons. Along these lines, products that work for others may not work for you, so don't put too much stake in what works for others. I also agree that priorities couldn't be more wrong. Attacker are successfully phishing you, so lets buy an IPS and firewall. WTF? The whole thing about "drift" is bit puzzling, but I think it just needs better clarification. Configuration management is important. The first thing most do wrong is never define a secure configuration. If you've made it that far, most don't do much to keep the systems in a secure state. The toughest organizations to break into are ones that have a secure config and work to keep systems that way.
[papers - How to Use PyDbg as a Powerful Multitasking Debugger] - Love the Python debugger, just sayin'.
|
Interview with Marc Maiffret
Marc Maiffret is the Chief Technology Officer at BeyondTrust, a leading vulnerability and compliance management company, and was a co-founder of eEye Digital Security.
How did you get your start in information security? Tell us about your work at eEye and your work in the early days there.
Back in 2007, you left eEye to start work on a mobile phone application - what would do you think is needed in the Mobile arena now that is NOT security related? What research do you think needs to be done that no one is doing now?
|
Hack your Car with CANBUS
A little into in a few minutes. yes, as implied, it is a BUS and you can gain access to it from the ODB-II port. Think a hub. All messages on a segment go to all devices on the segment. Messages can be filtered with a gateway (think firewall) between various busses, which may or may not be exposed at the ODB-II port. A little bit different from networks that we are familliar with. First off, the message do not have source field, but do have a destination in the form of a one byte arbitration ID, these arbitration IDs also indicate priority - the lower the Arbitration ID destination, the higher priority the message. So the ArbID 0 would be processed prior to 73febeef. Now, each message is sent to the bus with an ArbID, and each device LISTENS for specific ArbIDs that is concerned about. With that, Gateways can pass specific messages, and each Device can look for multiple messages. Oh, those messages? Either 11 or 29 bytes, so fairly easy to fuzz.
|
Guests: Ed Skoudis, Alex Horan, Ron Gula, Weasel
Once upon a time a big bad pen tester gets a contract with 3 little pigs, Inc. On the first test, he huffs, and he puffs and blows down the network made of straw. On the next test, you build it out of sticks, and you get the same result (everyone now, he huffs and he puffs and he…). On the next test, you build your network out of bricks, and the big bad pen tester shows up with a wrecking ball, knocks down the house and presents you with an invoice.
(strange sci-fi sound)
In a parallel universe, the big bad pen tester contracts with 3 little pigs inc. The first test the straw house gets knocked down rather fast. But 3 little pigs Inc. gets a report outlining the weaknesses in construction along with recommendations for improvement. The knocking down of the house was a mere simulation, and they are given an opportunity to add a layer to the network, of sticks. The next test the big pad pen tester has to huff and puff, and huff and puff again, simulating another network destruction. No harm is really done, so the process repeats, until a wall of bricks is built. Now the only big bad person able to get through has to really work at it, too much huffing and puffing, and decides to go rob the three little bears instead, using their APT, and eating their IP.
First question for the group, 3-5 minutes each, is penetration testing worth it, why or why not?
What benefits to you receive from a "good" penetration test and what are the qualities of a "good" penetration test? If someone were to give you a "penetration test", then run a couple of automated tools and provide the stock report, is this a bad thing in all cases? If we don't test our defenses in a controlled experiment, how do we really know they work? Lets say a penetration tester is conducting an internal penetration test, and finds out quickly that more than 50 servers have missing patches for vulnerabilities that lead to a reliable shell. What is the benefit of the penetration test from this point?
|
Automating Wifi Attacks by John Strand - In this Tech Segment we will talk about one of the easiest ways to create an evil access point to steal credentials. We will be using the very cool utility called easy-creds.
PFSense for pentesters - We use PFSense every day and love it. I also love the nice red Alix box that we built. After using it day to day, we've found that it is great, and has a few things that drive us nuts. Specifically, when you put two guys behind that doing two pentests or vuln scans, the box just cant stand up unless properly configured. We're gonna to install it on a real PC. This PC we happened to pull from the trash, and is some 64bit AMD system with 2 gig of ram. Total cost? Free. It is probably way more horses than we need for this situation, but is is what we got.
|
Guests: Wendy Nather, Iftach Amit, David Mortman, Dan Crowley, RSnake, David Maynor
"We have a firewall". "All of our systems use Anti-Virus software" "We've implemented the latest web application firewalls and intrusion prevent systems" "We have a patching cycle, weekly maintenance windows and a 30-day patch turn-around" These are things we've all heard before. These are things I often hear right before we are about to start a penetration testing. Depending on how you define success, these things do little to stop attackers.
What are we doing wrong when it comes to defense? What is the number one thing that organizations miss when it comes to defense? Should we even bother, and just know that a certain percentage of attackers will be successful? Can't we just do the easy and cheap security "things" and get by as long as we don't get owned as badly as our competition?
|
|
|
Media Manipulation. What Is it? How does it work? Can you really make people see, buy and read things? Ryan is an experienced and talented media manipulator.
Download Standard Podcasts
|
Hosts
Guests
Topic
- Crisis Malware
- Z800 For Sale
- Citrix
- AV Talk - Primary vs Secondary Technology
- Mainframes and TSO Brute
News Items
- Blizzard Hacked
- backtrack 5 r3 released
Use Our Discount Codes
- Use code SecuraBit_Connect to get $150.00 off of ANY training course. The discount code is good for all SANS courses in all formats.
- FREE OnDemand Bundle with corresponding course purchase for SANS Network Security 2012 with code SecuraBit_NS12OD
- Use code 36449 for 20% off your Syngress order!
Upcoming events
Links
Chat with us on IRC at irc.freenode.net #securabit iTunes Podcast – http://itunes.apple.com/us/podcast/securabit/id280048405 iPhone App Now Available – http://itunes.apple.com/us/app/securabit-mobile/id382484512?mt=8
|
|
|
3 years - wow. A truly humbling journey its been. 3 years we have spent researching, dissecting and analyzing all manner of human influence. With the most successful SECTF to date, we celebrate our 36th in style - AT DEFCON 20. The panel has changed (we miss you Jim), the topics have gotten deeper and the quality has gotten better.
What did this year include? How did the SECTF go? Well, find out as you join us for our 3 year anniversary LIVE!
Download Standard Podcasts
|
Hosts
Guests
Topics
- DEF CON 20 and BSidesLV Calendar
- Chris Mills’s picks
- Nicholas B’s Picks
- http://blog.hacktalk.net/
- With Connection and Nicholas B.
- pwnieexpress interview with Jonathan Cran
Use Our Discount Codes
- Use code SecuraBit_Connect to get $150.00 off of ANY training course. The discount code is good for all SANS courses in all formats.
- FREE exam attempt with corresponding course purchase for SANSFIRE 2012 with code SecuraBit_SFGIAC
- Use code 36449 for 20% off your Syngress order!
Upcoming events
Links
Chat with us on IRC at irc.freenode.net #securabit iTunes Podcast – http://itunes.apple.com/us/podcast/securabit/id280048405 iPhone App Now Available – http://itunes.apple.com/us/app/securabit-mobile/id382484512?mt=8
|
|
|
|
|
The art of obtaining information without ever asking a question, known as elicitation, is a skill that can make you a master social engineer. Join us as we talk with author and expert on this topic, John Nolan. Date June 11, 2012
Download Standard Podcasts
|
|
|
Hosts
Guests
- Dr. Tran
- Emwave
- Professor Farnsworth
News Items
- ANONYMOUS CLAIM: ‘WE HAVE ACCESS TO EVERY CLASSIFIED DATABASE IN THE U.S. GOVERNMENT’
- Pentagon boosts contractor cybersecurity program
- http://thehackernews.com/2012/05/pentagon-boosts-contractor.html
- "The effort, known as the Defense Industrial Base ("DIB") program, is a voluntary information-sharing program in which the Department of Defense shares "unclassified indicators and related, classified contextual information" about cyber-attacks and threats with defense contractors.”
- “In exchange, defense contractors report known intrusions and can receive forensics analysis and damage assessments from the government after those attacks. In an optional part of the program, the DIB Enhanced Cybersecurity Services, the government shares additional classified threat and technical data with defense contractors and Internet service providers. "
- 17 year old Teenager arrested over TeamPoison hacking attacks
- http://thehackernews.com/2012/05/17-year-old-teenager-arrested-over.html
- "A teenage boy has been arrested on suspicion of being a member of "TeamPoison", a computer hacking group that has claimed responsibility for 1,400 offences including an attack on the phone system of Scotland Yard's counter-terrorism unit last month. These include attacks on the United Nations, the UK Anti-Terrorist Hotline, MI6 and RIM, as well as politicians including Nicolas Sarkozy and Tony Blair.”
- “The boy, who police suspect used the hacker nickname 'MLT' and was a spokesman for TeamPoison, was interviewed at a local police station on offences under the Computer Misuse Act on Wednesday. The arrest is part of an ongoing investigation by the Police Central e-Crime Unit (PCeU) division of the Metropolitan Police into various hacking gangs who have made headlines in the last year or so.”
- “TeamPoison’s highest-profile attack was mounted against Scotland Yard’s counter-terror hotline last month, has also claimed responsibility Distributed Denial of Service attacks against banks in collaboration with Anonymous, another “hacktivist” group with similar anti-corporate and anti-authority politics.”
- 55,000+ Twitter Accounts Hacked, How To Tell If Yours Was Among Them
- How to Securely Share a Password with Someone Using LastPass
- FBI Wants Backdoors in Facebook, Skype and Instant Messaging
-
Everyone Has Been Hacked. Now What?
-
‘Unknowns’ Hacking Group Hits NASA, Air Force, Harvard and Others in ‘Hacking for Good’ Effort
Use Our Discount Codes
- Use code SecuraBit_Connect to get $150.00 off of ANY training course. The discount code is good for all SANS courses in all formats.
- FREE exam attempt with corresponding course purchase for SANSFIRE 2012 with code SecuraBit_SFGIAC
- Use code 36449 for 20% off your Syngress order!
Upcoming events
Links
Chat with us on IRC at irc.freenode.net #securabit iTunes Podcast – http://itunes.apple.com/us/podcast/securabit/id280048405 iPhone App Now Available – http://itunes.apple.com/us/app/securabit-mobile/id382484512?mt=8
|
Can the polygraph be beaten? How can a social engineer utilize non-verbal communication to become an professional interviewer? Join us with our guest Mike Liwiki, an FBI veteran and professional Polygraph examiner as we answer these questions. Date May 14 2012
Download Standard Podcasts
|
Hosts
Guests
- Tom Eston - @agent0x0
- Mobile App/Device Security and Security Justice.
Topics
News Items
- Skype User IP Address Disclosure
- Google knew street cars were slurping wifi (Marius Milner was the engineer, of NetStumbler fame)
- Mozilla is first major tech company to denounce CISPA
- Mac Flashback trojan still making $10,000 a day
- Indictment Returned for Jeremy Hammond in Chicago Anonymous case
Use Our Discount Codes
- Use code SecuraBit_Connect to get $150.00 off of ANY training course. The discount code is good for all SANS courses in all formats.
- FREE exam attempt with corresponding course purchase for SANSFIRE 2012 with code SecuraBit_SFGIAC
- Use code 36449 for 20% off your Syngress order!
Upcoming events
Links
Chat with us on IRC at irc.freenode.net #securabit iTunes Podcast – http://itunes.apple.com/us/podcast/securabit/id280048405 iPhone App Now Available – http://itunes.apple.com/us/app/securabit-mobile/id382484512?mt=8
|
Please join us as we kick it old school with various news and banter, as well as a special interview with Chris Sullo! Our show notes can be found here.
|
Hackers are people who like to understand the deeper things in life. Those who aren’t satisfied with boundaries or being told how to think or what to do. Our guest this month is a true “hacker”, Josh Klein. Join us as we discuss what is hacking this month. Date April 09 2012
Download Standard Podcasts
|
-RSA events
-Liability Pad
-Book club
-BYOD nitemare
-GPS rulez
-Shady fat man
-Playground fights
-NCCDC
-DerbyCon/Source Boston
-Tooltime
|
|
|
Nominations have been open for some time now but I also understand that you may not read the site, only listen to the podcast. If this is the case, this is especially for you.
|
Emotions cause an involuntary muscular response that last only 1/25th of second to 1 sec on a human face. Being able to decode these reactions can help a person communicate on a very deep and personal level. But how can they be used as a social engineer? Join us and Dr. Paul Ekman, world renowned for his research into microexpressions, as we explore this fascinating topic Release Date March 12 2012
Download Standard Podcasts
|
|
|
|
|
In this huge episode:
We're back!
Retorts
Head in the clouds
RSA love vs. Team Sad Face
Got a dollah
Cyber, cyber, cyber
Juice box
Hookers and blow
SET update
Mimikatz
Source Boston
B-Sides SF
Demerit points
Adventures in insomnia
|
Being able to build a successful profile is an essential tool for a social engineer. There are tools out there that specialize in gathering and detailing information on targets. What about social media? Chris Sumner helps us to use social media to build effective profiles on our targets Release Date Feb 13 2012
Download Standard Podcasts
|
Please join us as we talk about cybercrime, botnets, and the ever changing internet with special guest Brian Krebs! Our show notes are now on our wiki: http://wiki.securabit.com/ShowNotes/EP98
|
In Episode 97 we announced that we'd be sending some preconfigured BT5 boxes to hackerspaces as well as a virtual machine version of this for people to access our community pentesting lab. Currently, there are 15 virtual machines available to be attacked, and we're setting a current target of 15 to 20 users for this [...]
|
Please join us as we interview Ron Gula, Co-Founder of Tenable Security! We also discuss various cyber warfare topics including Al Qaeda hacking, SCADA, and our own Pentesting lab offering for the community and for hackerspaces! http://wiki.securabit.com/ShowNotes/EP97
|
For years people have told us to get a Pick Up Artist on the podcast. It never really appealed to us, till we met Jordan Harbinger. Jordan is not a PUA but a confidence consultant. He helps guys learn how to be the best they can be. He is a social engineer, an influence expert and one awesome podcast guest. Release Date January 09 2012
Download Standard Podcasts
|
|
|
Join us as we talk about 2011! Please visit our wiki for full show notes!
|
Greyscaledx rides through again and fixes our shit skype
we sewar about stuff
Why we like anon/lulz/etc
other current news
HAhah... u REALLY think we are gonna have show notes... really!?>?
InfoSec Santa is on to talk naughty
We throw Baseballs...
</end>
|
Join the crew as they interview special guest Marisa Fagan of SECore! Please visit our wiki for full show notes!
|
What can you do if a loved one was kidnapped and the government couldn’t help? The Halo Corp is a group of ex-Military commando’s that specialize in rescuing and recovering of people in very dangerous circumstances. We invited Brad Barker, the CEO of The Halo Corp onto the podcast to discuss how they use Social Engineering. Release Date December 12 2011
Download Standard Podcasts
|
Join us as we talk some lab shop with Mike Bailey and the rest of the crew! Please visit http://wiki.securabit.com/ShowNotes/EP94 for our show notes!
|
In this episode we are joined by data recovery and forensics specialist Gareth Davies. Gareth has published papers and given presentations on the subject of data storage manipulation. Our discussion contains items that, I believe, all forensic investigators should be aware of.
|
Physical Social Engineering is a very interesting topic. Although it is the easiest method into a company it is also the hardest type of pentest to sell to clients. We discuss this topic with two experienced and professional physical social engineers, Sharon Conheady and Munya Kanaventi. Release Date November 14 2011
Download Standard Podcasts
|
Please re-download the Steganography file from the original post. The first one was corrupted. It will now export with the proper lowercase key.
|
Join us as we interview Nick Keuning from GFI about their Sandbox solution! Our show notes are now housed on our wiki. Please visit this link to view them!
|
This time around we are giving away books! The contest officially starts NOW and will run until 11:59PM on 11/19. We will announce winners promptly after that. Prizes will be awarded to 1st and 2nd place. Everyone else who scores any amount of points will be entitled to a free sticker mailed to them if [...]
|
On this episode we had special guest Christofer Hoff on to discuss Cloud and Virtualized security. We touched on some pretty amazing points and we hope you'll enjoy this show! Please visit our wiki for full show notes!
|
Hey folks, This is a wee bit late but we wanted to post the answers to our challenge that we had up before Derbycon. Fortunately for all, there were enough tickets that nobody actually needed ours. We had a great time meeting folks and talking security, as well as meeting up with you, our valued [...]
|
Please visit our Wiki for full show notes
|
NLP is a subject of much debate in the security world as well in the science community. This podcast we delve deep into the top… dissecting what NLP is, how it is used in daily life, in the medical field, for therapy and of course, how it can be used by social engineers.
Download Standard Podcasts
|
Join us this Friday 9/30 at the Bluegrass Brewing Company @ 10pm eastern time. Come by and grab a beer, hang out, and let us throw stickers at you! The location is: Bluegrass Brewing Company 2 Theater Sq, Louisville, KY 40202(502) 568-2224 Here are walking directions as well. It's 0.5 miles to walk it, and [...]
|
Join us as we interview Saviour Emmanuel Ekiko, author of the Ghost Phisher tool. Show notes are now at our wiki: http://wiki.securabit.com/ShowNotes/EP90
|
Challenge closed. tuts for solutions will be submitted soon. Congrats to our winners who completed all the challenges. Andrew Fastow - 13 points jgor @indiecom - 13 points Thanks to all that participated Look forward to seeing you next month for our #SecurabitChallenge Anyone competing [...]
|
- Superstar Thoughtleader Chris Eng brings some real Infosec Talent
- All the other stuff doesn't matter =)
Oh yea... Follow @grayscaledx and thank him profusely for remixing our f'd sound. We owe him big for this one.
Now Sponsored by: Listeners who gave us enough $ to buy new gear and sound better than we did on this ep.
Dunno if we can credit him/her/them yet but if we get permission we will.
\m/
|
Hosts Chris Gerling - @secbitchris Chris Mills - @chrisam Andrew Borel - @andrew_secbit Tony Huffman - @myne_us Guests Rafal Los - @Wh1t3Rabbit http://h30499.www3.hp.com/t5/Following-the-White-Rabbit-A/bg-p/sws-119 Topics Vericode vs Oracle Root Certificate Authorities Anonymous Item X Use Our Discount Code Use "Connect_SecuraBit" to get $150.00 off of ANY training course. The discount code is good for all [...]
|
Probably no other name is thought of more when people talk about social engineering than Kevin Mitnick. Kevin’s new book, “Ghost in the Wires” is now on the New York Times Best Seller list and there is a lot of comments, debates and opinions about Kevin floating around. The Social-Engineer.Org crew asks the questions that the rest of the world is afraid.
Download Standard Podcasts
|
In this episode Rob Lee has joined me to talk about the Consortium of Digital Forensic Specialists (CDFS).
For more information about CDFS please visit http://www.cdfs.org
Also, if you’re wondering what Rob was talking about towards the end, here’s the video in question: http://www.youtube.com/watch?v=kA565OyOkLM
WARNING!
I can not be held responsible for your own personal well-being if you choose to watch this.
|
Rambling about con's n vegas mayhem
Bye Bye BSides
other stuffz
less content than normal... we were in recovery =) u were too.... admit it.
|
|
|
We are now doing our show notes inside of our wiki. If you have suggestions or comments please feel free to leave them here. http://wiki.securabit.com/ShowNotes/EP88 Thank you for listening!
|
|
|
VEGAS!!! BlackHat 2011, BSidesLV, and Defcon 19 schedule reviews!!! See you all at the Cons next week. ConBlackmail.com is COMING! Parties, Booze, and Puke!
|
No show notes this week... sorry ;)
intro- GTFTS- Samuel L. Jackson
Outtro- Overdose: Jamie Foxx
|
|
|
Opening song by Dr. Dre & Eminem. TV shows, chat with the White Rabbit about all kinds of shit. Closing song by Emiliana Torrini from the SuckerPunch soundtrack. (ya, ryan did the show notes on this one)
|
Hosts
myne-us @myne_us
Jacob hammack @hammackj
Guest Host
Dave Kennedy @dave_rel1k
Guest
Dr. Tyler Bletsch (Tyler.Bletsch {at} gmail.com)
Tyler's former security group at NC State University under Xuxian Jiang - http://www.csc.ncsu.edu/faculty/jiang/
Topics
JOP programming
Turing complete exploit development (http://en.wikipedia.org/wiki/Turing_completeness)
links
JOP
JOP technical report
ftp://ftp.ncsu.edu/pub/tech/2010/TR-2010-8.pdf
JOP academic paper
http://www.csc.ncsu.edu/faculty/jiang/pubs/ASIACCS11.pdf
Tyler's dissertation (JOP in x86 and MIPS, and a few other techniques)
http://repository.lib.ncsu.edu/ir/bitstream/1840.16/6698/1/etd.pdf
ROP
http://cseweb.ucsd.edu/~hovav/dist/rop.pdf
http://blog.zynamics.com/2010/03/12/a-gentle-introduction-to-return-oriented-programming/
http://sandsprite.com/CodeStuff/Understanding_imports.html
http://j00ru.vexillium.org/?p=893
http://www.braid-game.com/
http://qubes-os.org/Architecture.html
If you like the intro music and the closing music check out http://dualcoremusic.com/nerdcore/
break music http://www.audiomicro.com/saxophone-piano-drums-short-jazz-introduction-royalty-free-stock-music-94
|
Really long episode featuring Dave Marcus
|
Our guests this month are people you all know and love… but this time we talk to Muts, Jim, Dookie… oh and Dave (and a special GUEST) about the release of their book, Metasploit: A Penetration Testers Guide in this first interview with the crew about their book. Release Date July 11 2011
Download Standard Podcasts
|
Sorry no show notes kiddoes. This is a rush job then back to work, and I wasn't present for recording to take notes.
|
|
|
In this episode I have taken a break from hosting and my wife, Alisha has taken over as the first all-female panel takes the stage in a special edition of Forensic 4cast.
Listen to the first ladies of forensics discuss how they got into the field, as well as the challenges and perks of working in the field as a member of the fairer sex.
Sadly I forgot to put something in the episode about the LinkedIn Group. If you are a female forensicator please join the group “Women in Digital Forensics” http://www.linkedin.com/groups?home=&gid=3766181&trk=anet_ug_hm. I joined it and am now an honorary woman. Not sure how I feel about that particular moniker…
*The original file had a small problem that I have now fixed.
|
|
|
|
|
Our guest Dan Airely is a behavioral economist. He is a renowned author and speaker on the topics of Predictable Irrationality.
Download Standard Podcasts
|
SecuraBit Episode 82: Totally Rad Man!
May 18, 2011
Hosts:
Anthony Gartner – @anthonygartner http://anthonygartner.com
Chris Gerling – @chrisgerling
Christopher Mills – @thechrisam
Jason Mueller – @securabit_jay
Andrew Borel – @andrew_secbit
Tony Huffman – @myne_us
Guests:
Carl Herberger from http://www.radware.com/
General topics:
DDOS: Recent attacks from groups like anonymous , attack vectors, technique information and how it can effect you.
Signatures: Signature based detection and the effects it had on todays security
General security: Some general discussion on security
Securibit exploit development group (SEG) starting up blog post coming soon.
NEWS:
PSN hacked again! :
Just two days after the PlayStation Network was restored after a near month-long outage, the PSN password page has apparently been exploited. According to reports, the exploit allows other users to reset your account password using only your e-mail address and date of birth. This personal data was made available to hackersduring the initial PSN attack.
http://arstechnica.com/gaming/news/2011/05/report-playstation-network-passwords-exploited-accounts-compromised.ars
international_strategy_for_cyberspace.pdf
http://www.whitehouse.gov/sites/default/files/rss_viewer/international_strategy_for_cyberspace.pdf
Backtrack 5 is out
http://www.backtrack-linux.org/
Facebook privacy demo gets guy arrested in austrelia
http://www.net-security.org/secworld.php?id=11045
Microsoft patch tuesday
http://www.microsoft.com/technet/security/bulletin/ms11-may.mspx
Use our discount code "Connect_SecuraBit" to get $150.00 off of ANY training course. The discount code is good for all SANS courses in all formats.
Upcoming events
#BSidesDetroit (3 - 4 Jun 2011)
#BSidesStJohns St. John's, NL (10 Jun 2011)
#BSidesCT Meriden, CT (11 Jun 2011)
FIRST Austria (12 - 17 June 2011)
#BSidesVienna(18 June 2011)
Toorcon (18 - 19 June 2011)
#BSidesLasVegas (3-4 August 2011)
BlackHat Vegas (3 - 4 August 2011)
DEFCON 19 (4 - 7 August 2011)
#BSidesLA Los Angeles, CA (18 - 19 August 2011)
#BSidesMO(21 Oct 2011)
#BSidesNewDelhi (22 - 23 October 2011)
VB Barcelona October 2011
Links:
http://www.securabit.com
Chat with us on IRC at irc.freenode.net #securabit
iTunes Podcast - http://itunes.apple.com/us/podcast/securabit/id280048405
iPhone App Now Available - http://itunes.apple.com/us/app/securabit-mobile/id382484512?mt=8
|
Our guest Aaron Delwiche is a TED speaker and a college professor that focuses on the use of propaganda. His site is devoted to understanding how it works. Release Date May 19 2011
Download Standard Podcasts
|
|
|
Welcome to the first of many EL Podcasts to come. We cover a ton of stuff, including some more details on the recent changes. We hope you like the new format as much as we do!
Previously known as EL 1: A New Era. The name apparently confused people
|
Our favorite linux distribution is about to release its new version - BackTrack5. How better to announce the release than by a big ol’ podcast complete with Infected Mushroom and almost the whole dev crew - Release Date May 05 2011
Download Standard Podcasts
|
This episode I had the pleasure of talking to Brian Karney and Lee Reiber about AD Triage, MPE+, and FTK version 4.
|
SecuraBit Episode 80: Our 8080 Episode April 20, 2011
Hosts: Anthony Gartner – @anthonygartner http://anthonygartner.com Christopher Mills – @thechrisam Andrew Borel – @andrew_secbit Tony Huffman – @myne_us Dan Mitchell - @danmitchell
Guests: int80 - @dualcoremusic DualcoreMusic
General topics: http://dualcoremusic.com/nerdcore/ http://www.youtube.com/watch?v=CMNry4PE93Y
NEWS:
Patch Tuesday April 2011 64 patched: http://www.microsoft.com/technet/security/current.aspx http://isc.sans.edu/diary.html?date=2011-04-11
Oracle Critical Patch Update Advisory - April 2011 http://www.oracle.com/technetwork/topics/security/cpuapr2011-301950.html
Verizon 2011 Data Breach Report http://www.verizonbusiness.com/resources/reports/rp_data-breach-investigations-report-2011_en_xg.pdf
Barracuda http://www.thetechherald.com/article.php/201115/7044/Malaysian-group-hits-Barracuda-Networks-Update?utm_source=feedburner&utm_medium=feed&utm_campaign=Feed:+SecurityBloggersNetwork+%28Security+Bloggers+Network%29 http://blog.barracuda.com/pmblog/index.php/2011/04/12/waf-importance/ http://www.securecomputing.net.au/News/254601,barracuda-hack-shows-importance-of-defenceindepth.aspx?utm_source=twitterfeed&utm_medium=twitter http://www.flyingpenguin.com/?p=11513 “Starting Saturday night at approximately 5pm Pacific time, an automated script began crawling our Web site in search of unvalidated parameters. After approximately two hours of nonstop attempts, the script discovered a SQL injection vulnerability in a simple PHP script that serves up customer reference case studies by vertical market. As with many ancillary scripts common to Web sites, this customer case study database shared the SQL database used for marketing programs which contained names and email addresses of leads, channel partners and some Barracuda Networks employees. The attack utilized one IP address initially to do reconnaissance and was joined by another IP address about three hours later. We have logs of all the attack activity, and we believe we now fully understand the scope of the attack.”
Texas http://www.txsafeguard.org/ http://blogs.chron.com/texaspolitics/archives/2011/04/personal_inform.html “Personal information of about 3.5 million Texans -- including names, mailing addresses and Social Security numbers -- was posted on a publicly accessible server at the state comptroller's office, much of it for more than a year, Comptroller Susan Combs said.”
Michigan Police taking your phones http://www.thenewspaper.com/news/34/3458.asp http://www.geekosystem.com/cellebrite-cellphone-hacker/ “The American Civil Liberties Union (ACLU) is currently engaged in a war of words and requests for information on a device used by the Michigan state police that can extract information from cellphones. The device, which has reportedly been in use since at least 2008, is apparently being used by the police during minor traffic violations.”
Wordpress http://en.blog.wordpress.com/2011/04/13/security/ http://newenterprise.allthingsd.com/20110413/wordpress-com-suffers-security-breach/?mod=ATD_rss&utm_source=twitterfeed&utm_medium=twitter http://threatpost.com/en_us/blogs/wordpress-hacked-source-code-stolen-041311
Georgian woman cuts off web access to whole of Armenia http://www.guardian.co.uk/world/2011/apr/06/georgian-woman-cuts-web-access
Hacker Group Changes Millions of Passwords to "password"; Only 38% of Users Notice http://www.f-secure.com/weblog/archives/00002134.html “Passwords from over 3,000,000 user accounts were apparently set to "password" late last night in a wide-spread hack that affected hundreds of news, retail and Web 2.0 sites. Most affected users are completely unaware of the attack.”
Quick Mentions: FBI take down botnet http://threatpost.com/en_us/blogs/doj-shuts-down-botnet-disables-infected-systems-041411 Facebook adds 2 factor http://threatpost.com/en_us/blogs/facebook-adds-two-factor-authentication-041911 Flash 0 day: http://www.adobe.com/software/flash/about/ Anything below version 10.2.153.1 is vulnerable
Use our discount code "Connect_SecuraBit" to get $150.00 off of ANY training course. The discount code is good for all SANS courses in all formats.
Upcoming events CEIC Orlando (15 – 18 May 2011) #BSidesROC Rochester, NY (21 May 2011) #BSidesDetroit (3 - 4 Jun 2011) #BSidesStJohns St. John's, NL (10 Jun 2011) #BSidesCT Meriden, CT (11 Jun 2011) FIRST Austria (12 - 17 June 2011) #BSidesVienna(18 June 2011) Toorcon (18 - 19 June 2011) #BSidesLasVegas (3-4 August 2011) BlackHat Vegas (3 - 4 August 2011) DEFCON 19 (4 - 7 August 2011) #BSidesLA Los Angeles, CA (18 - 19 August 2011) #BSidesMO(21 Oct 2011) #BSidesNewDelhi (22 - 23 October 2011) VB Barcelona October 2011
Links: http://www.securabit.com http://dualcoremusic.com/nerdcore/
Chat with us on IRC at irc.freenode.net #securabit iTunes Podcast - http://itunes.apple.com/us/podcast/securabit/id280048405 iPhone App Now Available - http://itunes.apple.com/us/app/securabit-mobile/id382484512?mt=8
|
There are a lot of skills that a social engineer needs to be successful. With all the important skills out there, one of the most is building rapport. We invited back one of our favorite guests, Robin Dreeke, to talk about how he builds rapport in 5 minutes or less. Release Date April 11 2011
Download Standard Podcasts
|
In this episode we’re joined by Steve Salinas and Ashley Stockdale from Guidance Software. They’ve taken time out of their busy schedules to talk about the upcoming release of EnCase Forensic Version 7.
|
SecuraBit Episode 79: Back to the basics with Marcus Carey! April 6, 2011
Hosts: Christopher Mills – @thechrisam Jason Mueller – @securabit_jay Tony Huffman – @myne_us
Guests: Marcus J Carey- @iFail http://hackersforcharity.org/
General topics:
NEWS: Epsilon: http://www.pcworld.com/businesscenter/article/224192/epsilon_data_breach_expect_a_surge_in_spear_phishing_attacks.html http://www.eweek.com/c/a/Security/Epsilon-Data-Breach-Highlights-Cloud-Computing-Security-Concerns-637161/ http://threatpost.com/en_us/blogs/list-companies-hit-epsilon-breach-040511 https://threatpost.com/en_us/blogs/epsilon-data-breach-expands-include-capital-one-disney-others-040411 http://www.epsilon.com/News%20&%20Events/Press_Releases_2011/Epsilon_Notifies_Clients_of_Unauthorized_Entry_into_Email_System/p1057-l3
"On March 30th, an incident was detected where a subset of Epsilon clients' customer data were exposed by an unauthorized entry into Epsilon's email system. The information that was obtained was limited to email addresses and/or customer names only. A rigorous assessment determined that no other personal identifiable information associated with those names was at risk. A full investigation is currently underway," the statement said.
LizaMoon: http://threatpost.com/en_us/blogs/counterspin-lizamoon-web-attacks-no-big-deal-040511 In a post on Cisco's security blog, senior security researcher Mary Landesman said that data from the company's ScanSafe Web security infrastructure suggests that just over 1,000 Web domains have been compromised using the SQL injection attack, not the 500,000 to 1.5 million cited in published reports.
https://threatpost.com/en_us/blogs/widespread-lizamoon-web-attacks-push-rogue-antivirus-040111 “Websense researchers wrote on Thursday that a Google search for Web sites hosting the malicious URLs identified over 1.5 million Web sites hosting the code”
Pandora.com data leak: http://threatpost.com/en_us/blogs/pandora-mobile-app-transmits-gobs-personal-data-040611?utm_source=Home+Page&utm_medium=Top+Graphic+Bar&utm_campaign=Position+3 “The data included both the owner's GPS location and tidbits the owners gender, birthday and postal code information. There was evidence that the app attempted to provide continuous location monitoring - which would tell advertisers not just where the user accessed the application from, but also allow them to track that user's movement over time. “
RSA attack: http://threatpost.com/en_us/blogs/rsa-securid-attack-was-phishing-excel-spreadsheet-040111 “"The attacker in this case sent two different phishing emails over a two-day period. The two emails were sent to two small groups of employees; you wouldn’t consider these users particularly high profile or high value targets. The email subject line read '2011 Recruitment Plan," Uri Rivner, head of new technologies in the identity protection division of RSA wrote in a post on the attack” http://www.nsslabs.com/research/analytical-brief-rsa-breach.html
¾ Energy Firms Had Data Breach over last year: http://threatpost.com/en_us/blogs/study-three-four-energy-firms-had-data-breach-last-year-040511 Long perceived to be beyond the attention of hackers, energy firms and utilities now report that they are being targeted. In the Ponemon study, 76% of the IT security staff interviewed reported that their organization had experienced "one or more data breaches" in the last 12 months. A similar number - 69% - said they felt a data breach was likely to occur in the next 12 months, Ponemon said.
Comodo what really happened: https://threatpost.com/en_us/blogs/phony-ssl-certificates-issued-google-yahoo-skype-others-032311 http://pastebin.com/uSdKNDN5 “ I found out that TrustDll.dll takes care of signing. It was coded in C#. Simply I decompiled it and I found username/password of their GeoTrust and Comodo reseller account. “
FBI asks for help on cracking code: http://www.h-online.com/security/news/item/FBI-asks-for-help-cracking-a-code-in-unsolved-murder-case-1220007.html
Other Stories: http://www.techdirt.com/articles/20110401/13241213732/exploit-hadopi-site-turns-it-into-pirate-bay-supporter.shtml http://news.softpedia.com/news/Google-Chrome-to-Block-Malicious-Downloads-193386.shtml
Use our discount code "Connect_SecuraBit" to get $150.00 off of ANY training course. The discount code is good for all SANS courses in all formats.
Upcoming events: ThotCon (15 Apr 2011) #BSidesChicago (16 - 17 Apr 2011) #BSides London, (20 Apr 2011) CEIC Orlando (15 – 18 May 2011) #BSidesROC Rochester, NY (21 May 2011) #BSidesDetroit (3 - 4 Jun 2011) #BSidesStJohns St. John's, NL (10 Jun 2011) #BSidesCT Meriden, CT (11 Jun 2011) FIRST Austria (12 - 17 June 2011) #BSidesVienna(18 June 2011) Toorcon (18 - 19 June 2011) #BSidesLasVegas (3-4 August 2011) BlackHat Vegas (3 - 4 August 2011) DEFCON 19 (4 - 7 August 2011) #BSidesLA Los Angeles, CA (18 - 19 August 2011) #BSidesMO(21 Oct 2011) #BSidesNewDelhi (22 - 23 October 2011) VB Barcelona October 2011
Links: http://www.securabit.com Chat with us on IRC at irc.freenode.net #securabit iTunes Podcast - http://itunes.apple.com/us/podcast/securabit/id280048405 iPhone App Now Available - http://itunes.apple.com/us/app/securabit-mobile/id382484512?mt=8
|
Ladies and Gentleman, it grieves us to no end to announce that this will be the final episode of Exotic Liability. It's been a blast, and we wish we could continue, but life and work have proven to be to big of an obstacle to over come. We said we'd do this until we not having fun anymore and we've reached that point. Organizing schedules has taken all the fun out of it. We will keep our twitter presence, and www.exoticliability.com will stick around as a place where like minded individuals can get together.
Thank you to all of our listeners for the crazy amount of support you've given us. With much sadness, we say goodbye.
-Exotic Liability
|
|
|
|
|
Reporters have an amazing knack of getting information from people. That alone interests us, but then you mix in their ability to take that info and make it interesting, make it captivating and make it real - that is an art. We talk to a, in our opinion, superb reporter that works with CNET news as well as CBS Interactive, Elinor Mills. She helps us to uncover the secrets to this art and see what we can learn. Release Date March 07 2011
Download Standard Podcasts
|
Is today’s show we discuss the HBGary v Anonymous issues, the opening of the CFCE to non-law enforcement, the future of digital forensics tools, and the 2011 Forensic 4cast Awards.
|
|
|
Getting people to put their heart into their work can be achieved through many motivations. If you have a job your employer does this through fair compensation and benefits. But how does one motivate volunteers when there is no money involved? Not only that but keep them motivated day after day and year after year? Join us as we discuss this topic and a very special announcement with Johny Long, DualCore and the crew live at Shmoo 2011.
Download Standard Podcasts
|
Securabit Episode 75: Booze over IP February 9, 2011
Hosts: Anthony Gartner – @anthonygartner http://anthonygartner.com Chris Gerling – @chrisgerling Christopher Mills – @thechrisam Jason Mueller – @securabit_jay Andrew Borel – @andrew_secbit Tony (myne-us) – @myne_us
Guests: Mike Dahn twitter: @mikd
Joe Gottlieb Twitter: joe_gottlieb
General topics: Mike:Bsides origins and other. http://chaordicmind.com/blog/ Joe: Open Security Intelligence http://www.opensecurityintelligence.com/
On Monday, February 14th, SIEM and log management vendor SenSage will introduce the Open Security Intelligence forum to the security community to become involved in. The concept of the community is to share best practices in open security analytics to improve our collective security defenses. Specifically, Joe Gottlieb, President and CEO of SenSage would like to discuss: - Current challenges with today’s SIEM tools, which are a decade old - Why security analytics needs to be ‘open’ - Why integrating business intelligence tools (i.e. Pentaho, Microsoft Exchange, Cognos, etc.) with SIEM tools can create useful dashboards that help security analysts mine huge data stores for the ‘needle in the haystack’ information they need - Why ‘security quants’ (analysts that can look deep into the data and develop complex yet useful SQL queries) will become the next role in the SOC - The benefits of joining the community and sharing best practices
The community will be hosted on a web portal – www.opensecurityintelligence.com – that is under development and will be discussed in our Feb. 14 release. Also, Joe is also giving a talk at Security BSides SF on 2/14 at 3pm PT on this very topic.
--HBGary Federal http://krebsonsecurity.com/2011/02/hbgary-federal-hacked-by-anonymous/
--Nasdaq attack does not yet have reports of how they where attacked. The comment on the website was for the 1999 attack where someone defaced the nasdaq website.
Quotes from http://www.wallstreetandtech.com/technology-risk-management/229201267
The operator of the Nasdaq Stock Exchange said it found "suspicious files" on its computer servers, in a Web application called Directors Desk which is used by members of corporations' boards of directors who want to share information and files.
"What seems most likely is that the web servers were compromised in an attempt to use them to inject malicious software into their clients," commented one reader of the nakedsecurity.sophos.com blog.
--Bsides http://www.securitybsides.com/w/page/12194156/FrontPage to contact: info (at) securitybsides dot org -or- call 415-742-1739
--Exploit developers corner Looking for exploit developers!
If you have recently published an exploit or have a previously published exploits you would like to talk about contact us at feedback@securabit.com or can contact Tony (myne-us) directly on IRC at freenode #securabit to have a small interview about your discovery. List of common questions. -How did you find the vulnerability? -What is your goal in vulnerability research? -How did you go about disclosing the vulnerability and how did the vendor respond? -And more...
!!Caution!!: No undisclosed vulnerabilities (0 day)! These vulnerabilities need to be reported to the vendor and patched or exceed a time period where vendor did not patch. If interested in releasing exploit on the show that is fine if can show proof you disclosed to vendor or see the proof of concept already posted on exploit-db or have a CVE.
Us:NetWitness Spectrum at RSA http://www.netwitness.com/products/spectrum.aspx
Use our discount code "Connect_SecuraBit10" to get 10% off of ANY training course. The discount code is good for all SANS courses in all formats.
Upcoming events RSA Conference 2011 (14 -18 Feb 2011) #BSidesSanFrancisco (14 - 15 Feb 2011) #BSidesCleveland (18 Feb 2011) #BSidesHalifax (5 Mar 2011) #BSidesGSO Greensboro, NC (9 Mar 2011) CanSecWest2011 (9 - 11 Mar 2011) #BSidesAustin (11 - 12 March 2011) http://www.keepsecurityweird.org/ BlackHat Europe 2011 (17 - 18 Mar 2011) #BSidesChicago (16 - 17 Apr 2011) #BSides London, (20 Apr 2011) #BSidesROC Rochester, NY (21 May 2011) #BSidesDetroit (3 - 4 Jun 2011)
Links: http://securabit.com Chat with us on IRC at irc.freenode.net #securabit iTunes Podcast - http://itunes.apple.com/us/podcast/securabit/id280048405 iPhone App Now Available - http://itunes.apple.com/us/app/securabit-mobile/id382484512?mt=8
|
Securabit Episode 74: Podcasting in the Dark with Brian Krebs January 26, 2011
Hosts: Anthony Gartner – @anthonygartner http://anthonygartner.com Chris Gerling – @chrisgerling Christopher Mills – @thechrisam Andrew Borel – @andrew_secbit
Guests: Brian Krebs - @briankrebs - http://krebsonsecurity.com/
General topics:
- I recall reading about various greeting card based attacks over the years. Do you think they've all been originated by the same folks who did this one? Or at least, with the same goals in mind?
- How prevalent do you think ATM skimmers are? What are some ways the common person can look out for them?
- Do you think financial institutions are getting better at educating their customers about the protections provided/not provided under Regulation E?
- Do you anticipate payment processing centers becoming a bigger target for criminals vs the individual businesses?
- Since many financials are under pressure from new reserve requirements, do you think new security requirements will force smaller financials to merge? How can they balance the need to offer more convenient services (such as mobile banking) with the need to improve security at the same time?
- What do you think the top 3 stories for 2010 were? Why do you think they were the top stories?
Use our discount code "Connect_SecuraBit10" to get 10% off of ANY training course. The discount code is good for all SANS courses in all formats.
Upcoming events RSA Conference 2011 (14 -18 Feb 2011) #BSidesSanFrancisco (14 - 15 Feb 2011) #BSidesCleveland (18 Feb 2011) #BSidesHalifax (5 Mar 2011) #BSidesGSO Greensboro, NC (9 Mar 2011) CanSecWest2011 (9 - 11 Mar 2011) #BSidesAustin (11 - 12 March 2011) http://www.keepsecurityweird.org/ BlackHat Europe 2011 (17 - 18 Mar 2011) #BSidesChicago (16 - 17 Apr 2011) #BSides London, (20 Apr 2011) #BSidesROC Rochester, NY (21 May 2011) #BSidesDetroit (3 - 4 Jun 2011)
Links: http://securabit.com Chat with us on IRC at irc.freenode.net #securabit iTunes Podcast - http://itunes.apple.com/us/podcast/securabit/id280048405 iPhone App Now Available - http://itunes.apple.com/us/app/securabit-mobile/id382484512?mt=8
|
Pure awesome, Nuff said.
Intro - "Bullet in the Head" by Rage Against the Machine
Outro - "Cop Killer" by Body Count
|
|
|
There has been a lot of buzz about the new book, Social Engineering: The Art of Human Hacking. Along with the “buzz” is some very positive reviews and feedback. The team at Social-Engineer.Org decided to gather a selection from the community as well as the SEORG team and interview the author, their very own Chris Hadnagy. Release Date Jan 10 2011
Download Standard Podcasts
|
|
|
In this episode we have Joe Garcia from ‘Cybercrime 101′, Dave Melvin and Chris Curran from ‘Inside the Core’, and Simon returns to join us for our Christmas Supershow Spectacular!
|
SecuraBit Episode 71: Managing our Careers with Lee Kushner December 15, 2010
Hosts: Anthony Gartner – @anthonygartner http://anthonygartner.com Chris Gerling – @chrisgerling Christopher Mills – @thechrisam Andrew Borel – @andrew_secbit
Guests: Lee Kushner - @LJKush - http://www.ljkushner.com/ - http://www.infosecleaders.com/
General topics: Discussion on Career Management The importance of having a career plan. It’s a very crowded market in information security, and it’s getting more so every day.
www.infosecleaders.com/2010-compensation-survey/ FAQ: Compromised Commenting Accounts on Gawker Media http://lifehacker.com/5712785/
OnePassword - http://agilewebsolutions.com/onepassword KeePass - http://keepass.info/ LastPass - http://lastpass.com/
Use our discount code "Connect_SecuraBit10" to get 10% off of ANY training course. The discount code is good for all SANS courses in all formats.
Upcoming events #BSidesBerlin (28-30 Dec 2010) #BSidesMSP (7 Jan 2011) ShmooCon (28-31 Jan 2011) RSA Conference 2011 (14 -18 Feb 2011) #BSidesSanFrancisco (14-15 Feb 2011) #BSidesAustin (March 2011)
Links: http://securabit.com Chat with us on IRC at irc.freenode.net #securabit iTunes Podcast - http://itunes.apple.com/us/podcast/securabit/id280048405 iPhone App Now Available - http://itunes.apple.com/us/app/securabit-mobile/id382484512?mt=8
|
In the movies a Jedi hand wave can force a target to think or act the way they want, but in real life what is needed to “influence” targets to think and act the way you want? Anchoring and Elicitation are two powerful tools of the social engineer. Join us as professional social engineer and FBI agent Robin Dreeke helps us to analyze these two powerful aspects of social engineering. Release Date Dec 12 2010
Download Standard Podcasts
|
- Mike Tyson
- Crazy Stories
- Lenny Zeltser Joins in
- Uncontrolable Laughter
- Port 79
http://www.kickstarter.com/projects/793929175/spoken-word-music-album-by-paulie-lipman
Intro: "Geek Love" by Paulie Lipman
Outro: "Atlas Quit" by Paulie Lipman
|
Deception is very hard to understand. What if we could write an algorithm that would dissect deception allow us to delve in at a molecular level? This month’s podcast does that. We talk with a psychologist and research that has dedicated his life to defining and understanding deception. Release Date Nov 8 2010
Download Standard Podcasts
|
-Andrew Gavin Joins in
-OpenDLP
-IDS/FUD stuff
-VAST/VOIP Stuff
-Random News
-No boobs in Australia
Intro: "Big girls need love too" by Blueprint
Outro: "The Spicy McHaggis Jig" by Dropkick Murphys
|
-The Return of stripper talk
-Cons
-Cool talks
-Random News
-Phone Creeper
-Sexting
-Some Voicemail
-And a Slew of other stuff
Intro: "Black Swan" By Thom Yorke
Outro: "Fuck You" By Cee Lo Green
|
Non-Verbal Communication is the way our bodys, faces, hands and feet tell the story about what our true thoughts are. Join us this month as we talk with one of the world’s leading experts in non-verbal communications, Joe Navarro. A 25 year veteran of the FBI and leading researcher into Body Language and Non-Verbal Communications, Joe helps us to see how these are used to both deceive and detect deception.
Download Standard Podcasts
|
-The boys actually talk security
-The Guys from NSS Labs join in
-Exploit Hub
-All kinds of other greatness
Intro: "Virus" By Deltron 3030
Outro: "Truth From Fiction" By Supreme Beings of Leisure
|
Looking for social engineering skills in interesting jobs has always been a theme of our podcast since the beginning. Our guest this month made a career out of scamming people on camera, but with no malicious intent. Paul Wilson is a magician, consultant to some of the biggest stars in the world as well as professional con artist. Join us as we discuss his experiences and what he has learned. Release Date 13 September 2010
Download Standard Podcasts
|
-@shoebox joins in
-http://www.openlocksport.com
-Tip of the Day!
-Kinds of other Crazyness
Intro: "Passing By Behind Your Eyes" By Sunday School
Outro: "Rubber Vagina" By Unknown (Maybe Rodney Rude)
|
WOW. Our first year is just about over and here is our 1st year anniversary episode.We hope you enjoy the social-engineer crew live at Defcon with a room of about 100 people asking questions and getting involved in the fun. Thank you for the great year and we look forward to whats in store.
Download Standard Podcasts
|
-Disaster Protocol Joins in for some shit talking
-Tools and News
-Pure Comedy
-BH.BSidesLV.DC talks
-@jsokoly joins in
- @myrcurial calls in
-http://freebyron.com
-EL Scares Marketing (and HR)
Intro: Ligatt Parody by the boys from Disaster Protocol (shitcast.co.uk)
Outro: "60 Revolutions" by Gogol Bordello
|
Sorry no time for Show notes... I'll try to get some up for this episode later.
Intro: "Lies" by Johnny Knows Karate
Outro: "Shrooms" by The Lonely Island
|
What happens when the results of not being successful can cause jail time? Is there a way to use SE skills to keep you from the slammer? We talk to Dale Carson’s author of “Arrest Proof Yourself” about this very topic
Download Standard Podcasts
|
-Social Networking
-Bad Articles
-Lameness
-F.U.D.
-Terrible Top 10
-Tons of other stuff
Intro: "Sofa King" by Dangerdoom
Outro: "Prince Charming" by Brother Ali
|
-Rolaf & Andrew from Paterva talk Maltego -Fun with trucks and guns -More Blue Lasers -Tiger Team Rip-off -Crazy dude tries to take out Bin Laden -Drinking & Writing -Eat Da Poo Poo! -And more of the EL you love Intro "Bottom Line" by Swollen Members Outro "Eat Da Poo Poo AutoTune Remix" by BartBaKer (Youtube)
|
-Random News -More Ligatt -Book Troubles -Screw Google, some more. -Firing Squad Intro: "Golden Brown" by The Stranglers Outro: "Tennessee Wedding" by Jim Bianco
|
-Carlos Perez joins in -SANS Pentesting Summit -Pentesters need to learn business -All kinds of Ligatt stuff -@infosecmafia Joins in too -Tons more Intro "Let it off" by Phantogram Outro "Shut the fuck up" by Cake
|
A round table discussion with some of the brightest minds in social engineering. We will discuss future of social engineering and hear some really cool stories of actual exploits.
Download Standard Podcasts
|
No time for show notes, but Fucking Awesome! Tons of tools and tons of stories!!!!!!!1111one!111!one1
|
Join us as we interview one of the world’s leading experts in unconscious persuasion. Kevin helps us to analyze the methods that people are manipulated while on auto pilot. We dig deep and learn some of most amazing tips on persuasion you will ever hear.
Download Standard Podcasts
|
-Happy Mothers Day
-our 13 month aniversary
-A whole lot of wrong
-A little bit of security
-A few fun tools
-Second big red button
-A bunch of other crap
Intro: "Mr. Shiny Cadillackness" by Clutch
Outro: "Gatman & Robbin'" by 50 Cent ft. Eminem
|
-Thotcon
-National CCDC
-Source Boston
-Mexico City
-War Stories
-Tons of other stuff!
Intro - "Fuck you" by Lily Allen
Outro - "Fuck song" from Disaster Movie
|
The information contained in this podcast is some of the most mind blowing we have ever released. An intimate talk with someone who has detailed knowledge of how to perform identity theft. He outlines, details and shows how these attacks are performed then talks with us how we can mitigate these attacks. You will not want to miss this one.
Download Standard Podcasts
|
I'm running way short on time, so sorry for the lacking show notes. I promise it's a great one though!
-Confessions of a sec addict
-M$/RSA's NEW!!! findings
-A Ton more
Intro - Shame of Life by The Butthole Surfers
Outro - My Dick by Mickey Avalon
|
-TJX Hacker
-Viper Car Alarms
-319753 Mute
-Voice Mail
-Drunk Dialed by our intern
-Tons and Tons more
Intro/Outro - "Typical" by Mute Math
|
-Kos Interview Part 2
-Eurotrash + Jason Street Join in
-Ton more
Intro - "The Worst Day Since Yesterday" by Flogging Molly
Outro - "DUI #1" by Mac Lethal
|
-Part 1 of 2
-Battery Trojan
-Kos Joins in
-More Goog vs China
-Tons more.
Intro - "Cause = Time" by Broken Social Scene
Outro - Natalie Portman Rap from SNL
|
Join the Social-Engineer.org team as we discuss the topics of persuasion and mindlessness with Harvard psychologist and world renowned persuasion expert, Ellen Langer.
Download Standard Podcasts
|
-More Tech Problems
-Ian Amit joins in
-http://www.securityandinnovation.com/
-Cyberwar Jedi mind trick
-Nerd Thunderdome and BSidesLV 2010
-Botnet Fun
-Legalities
-ExcaliberCon
-A bunch more
Intro: Cyborg Love by Mac Lethal
Outro: Dirty Girl by Felt 2
|
-EL's 50th Episode Double the length
-Joe Grand joins in
-Tons of fun Hardware hacking stuff
-Technical Problems
-Badges, that shit ain't easy
-TV Sucks
-Jhaddix drops in
-CN goes to Jail
-Wet your noodle for the EFF
-Lady Laz3r show in Vegas
-A ton more
Intro: Closer to the Club by NIN vs 50 Cent
Outro: Poker Face Cover by Chris Daughtry
|
-First live stream(ish)!
-Rickrolled Live
-EL Android/iPhone Apps
-Boyscout, It's magic
-nmap String of Doom
-Unexpected Guests
-A ton of security stuff!
-Shmoocon
-Hackcon
Intro/Outro - Put it in Your Mouth by Akinyele
|
A live edition of the podcast done at Shmoo Con. We had a very lively topic on how we use the information that is gathered on our social engineering audits. We invited TWO special guests, Tom Eston from Security Justice as well as Shawn Moyer. Both are experienced and seasoned pentesters and social engineers. We rip apart the information security field as well as policies, education and user relation in this podcast.
Download Standard Podcasts
|
-iPad -Only in Vegas
-Tech Crunch
-Joomla
-Laz3r is useless
-Addictomatic.com
-Socialmention.com
-Entitycube.research.microsoft.com
-Yasni.com
Intro - What's the Story Morning Glory by Oasis
Outro - El Chupa Nibre by Dangerdoom
|
-Aluc joins in (@thealuc)
-Useful/Cool phone apps
-Give credit where it's due
-Red Teaming
-Much More
|
-Rafal Los is a Ninja Gangsta -Web Scanners -US getting hacked isn't new -iQuake, app for quake victims -Tons, I do mean tons, more
|
Have you ever wondered where BackTrack came from? Want to know how new editions of our favorite pentesting tool come about? Join us as we talk with muts, balding_parrot, pure_hate as well our panel and special guest and web developer DigiP.
This exclusive will be one to remember.
Download Standard Podcasts
|
-The Goog vs China
-Haiti -Vegas -CES -Dogs Invade -Porn and plot lines -Upcoming Cons -Tons More
|
Join us as we reveal some of the secrets that are widely used in marketing. From social engineering tactics, NLP secrets and manipulation strategies are now unmasked. We join forces with NLP and SE Expert Brad Smith to discuss these hot topics.
Download Standard Podcasts
|
-Hezbolla -Epic failures -TSA -The system works -Voicemail -Facebook Apps -A TON more
|
- Brittney Murphy
- Sky Hacking
- Gates calls in
- Security, it's nothing new - Bad Santa
- And more
|
We discuss the aspect of framing from a very unique perspective. Join us as we delve into the depths of framing and see how we use it in our daily lives and what we can learn from a Harvard Math Genius.
Download Standard Podcasts
|
-Delchi starts off the show -Tom Brennan talks OWASP Top10 -And more of the offensive security you love
|
-Cyborg Bruce -Passwords are easy -7 Scam Principles -SE -and more!
|
- China stories galore - Walmart, No questions asked - France takes it again - ELCon?!?! We need your input!
|
Pretexting is one of the key components of social engineering. When we decided to search out a professional radio host we never thought we would meet one as dynamic and intriguing as Tom Mischke. Join us as Tom helps us to analyze a side of pretexting we rarely consider.
Download Standard Podcasts
|
Marcus J. Carey joins us DojoSec/DojoCon Mitnick bashing Tigerteam is bullshit Giving earns respect A new meaning to ATM
|
- Jayson E. Street - Dissectingthehack.com - The return of Skype - Dale and Delchi call in - Tech problems make Laz3r cry - Infosec Camps - Sharing Info - It's a community - Strippers to hackers program
|
-Tool Runners -Information Gathering -Social Security Engineers -Mistreating Strippers
|
This month we are interviewing ex-Law Enforcement agent Matt Churchill. He has experience in interrogation and interview tactics.
Download Standard Podcasts
|
Episode 799 - Stuxnet at Chevron, MW3 vulns, Google Info Requests, CSA 2012 reprise, and Blizzard sued
|