Locked History Attachments

ShowNotes/EP100

SecuraBit Episode 100

Double Header with WPS and Forensics!

March 7th, 2012

Hosts

Guests

http://www.tacnetsol.com/news/2011/12/28/cracking-wifi-protected-setup-with-reaver.html

Topics

  • Reaver WPS

8 digit pin, which is split in half (technically 4/3 because one bit is checksum)

  • Windows Registry Forensics
  • Report: LulzSec Leader Was Snitch Who Helped Snag Fellow Hackers

http://www.wired.com/threatlevel/2012/03/lulzsec-snitch/

  • Sony says a number of Michael Jackson tracks have been stolen after its website was hacked.

http://www.bbc.co.uk/newsbeat/17256870

  • github attack could leave all repos available to anyone.

http://www.zdnet.com/blog/security/how-github-handled-getting-hacked/10473 http://thehackernews.com/2012/03/github-hacked-with-ruby-on-rails-public.html?utm_source=feedburner&utm_medium=feed&utm_campaign=Feed%3A+TheHackersNews+%28The+Hackers+News+-+Daily+Cyber+News+Updates%29&utm_content=Google+Feedfetcher

  • Secunia opens up their free PSI 3.0 patch scanner for all.

http://www.theregister.co.uk/2012/03/02/secunia_psi_open/

  • BackTrack 5 R2 Released, New Kernel, New Tools

http://thehackernews.com/2012/03/backtrack-5-r2-released-new-kernel-new.html

  • Password1' is the No. 1 Password Employed by Business Users

http://www.pcmag.com/article2/0,2817,2401118,00.asp

  • A security compromise at Linode, the New Jersey-based Linux cloud provider, has warned customers that hackers breached a Web-based customer service portal used by the company and emptied the Bitcoin accounts of eight Linode customers. One Linode customer reports the theft of Bitcoins totalling around $14,000.

http://threatpost.com/en_us/blogs/linux-based-cloud-service-linode-hacked-accounts-emptied-030212

  • The U.S. National Security Agency (NSA) released the specifications for a new, super-secure smartphone for use by government officials and based on Google's widely-used Android operating system, inviting the public to make use of its research.

http://threatpost.com/en_us/blogs/nsa-develops-new-super-secure-android-phone-030212 Pwn2Own: Chrome Falls First?

  • The situation was revealed in testimony Feb. 29 by NASA Inspector General Paul Martin before the House Science, Space and Technology subcommittee. According to Martin, the agency discovered in November 2011 that hackers using a China-based IP address had compromised the network of NASA’s Jet Propulsion Laboratory (JPL) and gained full access to JPL systems and sensitive user accounts. The incident remains under investigation. In fiscal year 2011, the agency was targeted with 47 attacks he called advanced persistent threats (APTs), of which 13 were successful at compromising agency systems.

http://threatpost.com/en_us/blogs/nasa-computers-hacked-repeatedly-last-two-years-030312

Use Our Discount Code

Use “Refer_SecuraBit” to get $150.00 off of ANY training course. The discount code is good for all SANS courses in all formats. Use code 36449 to obtain 20% off of your Syngress purchase!

Upcoming events

Chat with us on IRC at irc.freenode.net #securabit

iTunes Podcast – http://itunes.apple.com/us/podcast/securabit/id280048405

iPhone App Now Available – http://itunes.apple.com/us/app/securabit-mobile/id382484512?mt=8


CategoryShowNotes