Wednesday, February 28, 2007

What a day...

Some days, this world is a very strange and not so secure place...

Monday, February 26, 2007

Default Router Passwords

Handy little list here.

Sunday, February 25, 2007

Hacking with Metasploit on a Nokia N800

Using a free utility from Maemo.org and a custom-built Ruby package, David Maynor has found that it is pretty easy to get Metasploit running on the $399.00 Nokia N800.

"Its not as fast as a laptop but it's still pretty quick," Maynor said, explaining that he was able to break into a Windows 2000 SP4 server using a Metasploit exploit.

David's blog here.

Saturday, February 24, 2007

Lab Rats! Episode 61: Windows Security 101

This episode provides a nice primer on windows security...

Episode 61: Windows Security 101

Release date: February 19, 2007

In episode 61, Andy and Sean show you how to tighten security on Windows XP and Vista PCs.

Friday, February 23, 2007

Friday Fun - Foul-mouthed CDs get Blown in Church

Three CD players hidden under a cathedral's pews blared sexually explicit language in the middle of an Ash Wednesday Mass, leading a bomb squad to detonate two of the devices.

Authorities determined the music players were not dangerous and kept the third one to check it for clues, said police Capt. Gary Johnson.

The CD players, duct-taped to the bottoms of the pews, were set to turn on in the middle of noon Mass on Wednesday at the Roman Catholic Cathedral Basilica of St. Francis of Assisi.

More here.

Wednesday, February 21, 2007

Home Security - When one sword in hand deserves another...

Who said chivalry was dead...

"It was a woman screaming," he recalled Tuesday. "She was screaming for help."

Sword in hand, he bounded up the stairs, kicked in the door and confronted a man who turned out to be alone - watching a pornographic movie.

"Now I feel stupid," Van Iveren said.

Worse yet, police seized his sword - a family heirloom - carted him to jail and referred the case to a prosecutor who charged Van Iveren with three criminal counts.

Full story here.

Tuesday, February 20, 2007

Smokers may be the weak IT security link

This article from Infoworld talks about how smokers are being targeted in social engineering attacks during security testing. This same premise is valid (even maybe more so) for drinkers at the local watering hole, etc...
The company hired NTA to test if it was possible to get inside the premises without proper identification, Hills said. The penetration tester waited until the smokers finished their break, then slipped in through the unlocked door, which wasn't the main one but publicly accessible.

The tester -- who skirted past other employees by saying the IT department had sent him -- made his way to a meeting room, where he hooked up his laptop to the company's VOIP (voice over Internet Protocol) network, Hills said. The tester could have launched a denial-of-service attack or intercepted phone calls.

The Silver Bullet Security Podcast #11

On the 11th episode of The Silver Bullet Security Podcast, Gary talks with Dorothy Denning, a professor in the Department of Defense Analysis at the Naval Portgraduate School. Previously, Dorothy was a distinguished professor at Georgetown University and a professor at Purdue University. Gary and Dorothy discuss Dorothy’s involvement in the Clipper Chip controversy (which earned Dorothy the moniker “clipper chick”), the concept of geo-encryption, and a famous 1990 paper she wrote describing a series of interviews with malicious hackers.

Get it here.

Sunday, February 18, 2007

Product Spotlight - USB Keylogger

Got a spare $80.00 bucks in your pocket?

2 Megabytes (16 Mbit) over 2,000,000 keystrokes
(around 1 years worth of intensive typing)

This keystroke recorder has up to 8 Megabytes memory capacity, organized into an advanced flash file system. Super fast data retrieve is achieved by switching into Flash Drive mode for download. Completely transparent for computer operation, no software or drivers required. Supports national keyboard layouts.

Buy it here.

Saturday, February 17, 2007

Missing FBI Laptops Still a Problem

Nice example for the rest of us...

Three or four FBI laptop computers are lost or stolen each month and the agency is unable to say in many instances whether information on the machines is sensitive or classified, the Justice Department's inspector general said Monday.

Of the 160 laptops lost or stolen over a 44-month period, 10 contained sensitive or classified information. The bureau did not have records on whether 51 others contained such data.

In a report five years ago, the inspector general said 354 weapons and 317 laptop computers were lost or stolen during a 28-month review.

Full Story form the AP here.

Home Security - Apperanntly TV can Kill You!


Mummified body found in Hampton Bays home
Southampton police responding to burst water pipes in a Hampton Bays home found the mummified body of the owner -- dead for more than a year -- sitting in a chair in front of a television, officials said Friday.

The television was still on.

Vincenzo Ricardo, 70, appeared to have died of natural causes in his home on Wakeman Road, said Dr. Stuart Dawson, Suffolk deputy chief medical examiner.

The medical examiner's office considered his body mummified because the lack of humidity in his home preserved his features, morgue assistant Jeff Bacchus said.
Full Story.

Judge Limits New York Police Taping

Could this set a precedent for other cities?
In a rebuke of a surveillance practice greatly expanded by the New York Police Department after the Sept. 11 attacks, a federal judge ruled yesterday that the police must stop the routine videotaping of people at public gatherings unless there is an indication that unlawful activity may occur.

Four years ago, at the request of the city, the same judge, Charles S. Haight Jr., gave the police greater authority to investigate political, social and religious groups.

In yesterday’s ruling, Judge Haight, of United States District Court in Manhattan, found that by videotaping people who were exercising their right to free speech and breaking no laws, the Police Department had ignored the milder limits he had imposed on it in 2003.
NY Times story here.

Friday, February 16, 2007

Friday Fun - Batman Sighting Puts Schools on Lockdown

SCOTTSDALE, Ariz. (AP) -- To an Arizona middle school, Batman! Three schools in the north Phoenix suburb of Cave Creek were on lockdown for about 45 minutes Wednesday morning after a student at Desert Arroyo Middle School reported seeing a person dressed as Batman run across campus, jump a fence and disappear into the desert, Scottsdale police Sgt. Mark Clark said.

More here.

Wow, lockdown.... Holy panic Batman!

Thursday, February 15, 2007

Fine for Stolen Laptop

The Nationwide Building Society has been fined £980,000 by the City watchdog over security breaches.

The fine follows the theft of a laptop from a Nationwide employee's home which contained confidential customer data.

The Financial Services Authority (FSA) found security was not up to scratch after the man had put details of nearly 11 million customers on his computer.

The FSA also found that the Nationwide did not start an investigation until three weeks after the theft occurred.

Full story here.

Do you think fines on this side of the pond would help?

Wednesday, February 14, 2007

Substitute Teacher Faces Jail Time Over Spyware

More on this previously posted story -
A 40-year-old former substitute teacher from Connecticut is facing prison time following her conviction for endangering students by exposing them to pornographic material displayed on a classroom computer.
Brian Krebs from the Washington Post, has an update on the case here.

Tuesday, February 13, 2007

Hiatus is over, posting returns....

This makes me smile...

TRENTON, Ohio -- Two Edgewood High School students were arrested Thursday and accused of hacking into the school district’s Web site to schedule an unplanned – and unauthorized – snow day.

School officials had originally planned a one-hour delay for Monday morning, following an established procedure, so they were surprised to see an announcement Sunday night that classes were canceled.

Full story here.

"I asked for a car, I got a computer. How's that for being born under a
bad sign?" - Ferris Bueller

Saturday, February 03, 2007

Hack5 Episode 2×07 LIVE February 3rd

The folks from hak5 will be broadcasting live today...

We’re excited to be announcing that episode 2×07 will be broadcasted LIVE over the Internets this February 3rd at 3:00 PM EST (-5 GMT). This schedule should work better for our European viewers.

We welcome you to sign up at hak5.org/live if you have a question for the cast and would like to be a guest on the show. There you can also find information on the stream and connecting.

Friday, February 02, 2007

Friday Fun - Humvee driving in Iraq



On the one hand, the story with this video says that American soldiers have to drive like this to limit the risk of attack. Some in the comments say its arrogant, and it’s no wonder Iraqis hate Americans. Others says if the driver slows down, gunfire would start, and thats not safe for anyone. What do you think?

Thursday, February 01, 2007

ShmooCon - Reminder!

The next (and last) round of tickets will go on sale today - Feb. 1st at noon EST.

Get yours here.

Airport Security Game

See if you can keep up with the ever-changing airport security rules.

Play here.
 
Copyright 2017 e2e Security. Powered by Blogger Blogger Templates create by Deluxe Templates. WP by Masterplan