HNNCast 103009
HNNCast for the Last Week of October, 2009
Also on YouTube (for 3GP mobile or 720p true HD users):
PART 1: Lead Stories and News
PART 2: Quickies
Lead Stories:
- The Internet is Full of Adminholes, TWC Customers Still Vuln., Unu Injections on Banks, Parliament and ‘sorta’ barrackobama.com, News and Police Sites Swim with Swedish Fishes
News:
- 9k Facebook Apps Vuln., UK Guardian Claims Attack ‘Serious’ But Has No Details, Solo Extradition Stalled, Nigeria EFCC Busts Some Kung-Fu?, Vishing Small Banks, HNN Job Bank
Quickies:
- Anti Phishing WG Report: finger@Avalanche, UCSniff Live Release @ToorCon, Gift Card Cloning Scam, PhonSnoop for Blackberry, Australian Booksmart; not Street Smart, FBI Banking Trojan Figures, Atheists Nailed to a T-1, Gizmodo Ad-pology, Thotcon Call For Sponsors, Zeus FDIC PDF Trick Not a Treat, BONY Employee Pulls a Ballsy One, Pro ‘Unknown’ Targets Swiss Booty
Stack of Shame:
- 117; Note: Now includes vulnerabilities under 30 days old.
One Response to 'HNNCast 103009'
Subscribe to comments with RSS or TrackBack to 'HNNCast 103009'.
Leave a Reply
You must be logged in to post a comment.
Posted: October 31st, 2009
at 5:03am by tan
Tagged with Alan Johnson, Anti Phishing Working Group, Asterisk, Atheist Foundation, ATM, Avalanche, Bank of New York, barrackobama.com, Blackberry, BONY, Bredolab, Causes, Columbia University, DDoS, Default Password, DHS, Eagle Claw, Economic and Financial Crimes Commission, EFCC, extradition, Facebook, Farm Town, FarmVille, FAXX, FBI, FDIC, Gary McKinnon, Gift Cards, Gizmodo, Global Atheist, Guardian, HSBC, ING, iPhone, Jobs, Liberty Bank, Linksys, LivingSocial, Magdex, maleware, Movies, Nigeria, Orange France, phishing, PhonSnoop, Roosevelt University, Scotland Yard, SMC, Solo, Solvay Bank, sql injection, Swedish Police, Swiss Foreign Ministry, theharmonyguy, Thotcon, Time Warner, Toorcon, Trojan, TWC, UCSniff, UK Parliament, Union State Bank, University of Wisconson, Unu, vishing, VoIP, WiFi, YoVille, Zeus
Comments: 1 comment
HNNCast for the last week of October, 2009
Lead Stories:
The Internet is Full of Adminholes
http://www.wired.com/threatlevel/2009/10/vulnerable-devices/
TWC Customers Still Vuln.
http://www.wired.com/threatlevel/2009/10/routers-still-vulnerable/
Unu Injections on Banks, Parliament and ‘sorta’ barrackobama.com
http://blogs.computerworld.com/14977/obama_drupal_ing_around_whitehouse_gov_goes_open_source
http://praetorianprefect.com/archives/2009/10/the-barack-obama-donations-site-was-hacked…err-no-it-wasn’t/comment-page-1/
http://unu1234567.baywords.com/2009/10/26/barackobama-com-full-acces-sql-injection/
News and Police Sites Swim with Swedish Fishes
http://www.thelocal.se/22950/20091029/
News:
9k Facebook Apps Vuln.
http://www.readwriteweb.com/archives/how_safe_are_facebook_applications.php
http://www.softsailor.com/news/10495-facebook-password-reset-confirmation-email-comes-packed-with-bredolab-trojan-virus.html
http://threatpost.com/en_us/blogs/facebook-password-reset-spam-botnet-attack-102709
UK Guardian Claims Attack ‘Serious’ But Has No Details
http://news.bbc.co.uk/2/hi/uk_news/8324630.stm
Solo Extradition Stalled
http://business.timesonline.co.uk/tol/business/law/article6891102.ece
http://www.scmagazineus.com/Accused-hacker-McKinnon-gets-temporary-extradition-reprieve/article/156296/
Nigeria EFCC Busts Some Kung-Fu?
http://arstechnica.com/tech-policy/news/2009/10/nigeria-actually-arrests-shuts-down-online-scammers.ars
http://www.breitbart.com/article.php?id=CNG.6a8cc43eefe7559c839cd6f85e74e8f8.731&show_article=1
http://www.pointblanknews.com/os2334.html
http://www.youtube.com/watch?v=f1nKR3gYRY8
Vishing Small Banks
http://www.thestandard.com/news/2009/10/27/internet-phone-systems-become-fraudsters-tool
http://www.cnycentral.com/news/news_story.aspx?id=365998
HNN Job Bank
http://blogs.govinfosecurity.com/posts.php?postID=333
http://jobsearch.usajobs.gov/Search.aspx?cn=&rad_units=miles&brd=3876&pp=50&jbf574=HS*&vw=d&re=0&FedEmp=N&FedPub=Y&caller=agency.aspx&pg=1&q=cyber%20security%20or%20cybersecurity
Quickies:
Anti Phishing WG Report: finger@Avalanche
UCSniff Live Release @ToorCon
Gift Card Cloning Scam
PhonSnoop for Blackberry
Australian Booksmart; not Street Smart
FBI Banking Trojan Figures
Atheists Nailed to a T-1
Gizmodo Ad-pology
Thotcon Call For Sponsors
Zeus FDIC PDF Trick Not a Treat
BONY Employee Pulls a Ballsy One
Pro ‘Unknown’ Targets Swiss Booty
http://www.scmagazineus.com/Avalanche-the-most-prolific-phishing-group-of-2009/article/156216/
http://www.theregister.co.uk/2009/10/23/iphone_voip_sniffing_made_easy/
http://www.darkreading.com/security/vulnerabilities/showArticle.jhtml?articleID=220900404
http://www.theregister.co.uk/2009/10/22/rim_blackberry_bugging_software/
http://www.infosecurity-magazine.com/view/4750/from-pizza-delivery-to-atm-hacker-to-criminal-in-two-years/
http://voices.washingtonpost.com/securityfix/2009/10/fbi_cyber_gangs_stole_40mi.html?wprss=securityfix
http://host.madison.com/wsj/news/local/education/university/article_9e177bfa-c28b-11de-b6f5-001cc4c03286.html
http://www.smh.com.au/technology/security/cyber-attacks-smite-atheist-websites-20091021-h7ul.html
http://news.cnet.com/8301-27080_3-10385498-245.html?tag=mncol;title
http://www.theregister.co.uk/2009/10/27/gizmodo_suckerpunched_by_malware_hackers/
http://www.wired.com/threatlevel/2009/10/gawker/
http://www.thotcon.org/
http://voices.washingtonpost.com/securityfix/2009/10/nastygram_spoofed_fdic_bank_fa.html?wprss=securityfix
http://money.cnn.com/news/newsfeeds/articles/djf500/200910281833DOWJONESDJONLINE000865_FORTUNE5.htm
http://www.swissinfo.ch/eng/news_digest/Foreign_ministry_computer_network_hacked.html?siteSect=104&sid=11407423&ty=nd
http://www.theinquirer.net/inquirer/news/1559843/swiss-foreign-ministry-hacked
Stack of Shame
http://www.zerodayinitiative.com/advisories/upcoming/
tan
31 Oct 09 at 5:06 am