Comments on: HNNCast 103009 http://www.hackernews.com/2009/10/31/hnncast-103009/ All content © 2009, 2010 SRT Studios, LLC Sun, 26 Jun 2011 22:40:42 +0000 hourly 1 http://wordpress.org/?v= By: tan http://www.hackernews.com/2009/10/31/hnncast-103009/comment-page-1/#comment-25 tan Sat, 31 Oct 2009 09:06:08 +0000 http://www.hackernews.com/?p=737#comment-25 HNNCast for the last week of October, 2009 Lead Stories: The Internet is Full of Adminholes http://www.wired.com/threatlevel/2009/10/vulnerable-devices/ TWC Customers Still Vuln. http://www.wired.com/threatlevel/2009/10/routers-still-vulnerable/ Unu Injections on Banks, Parliament and 'sorta' barrackobama.com http://blogs.computerworld.com/14977/obama_drupal_ing_around_whitehouse_gov_goes_open_source http://praetorianprefect.com/archives/2009/10/the-barack-obama-donations-site-was-hacked…err-no-it-wasn’t/comment-page-1/ http://unu1234567.baywords.com/2009/10/26/barackobama-com-full-acces-sql-injection/ News and Police Sites Swim with Swedish Fishes http://www.thelocal.se/22950/20091029/ News: 9k Facebook Apps Vuln. http://www.readwriteweb.com/archives/how_safe_are_facebook_applications.php http://www.softsailor.com/news/10495-facebook-password-reset-confirmation-email-comes-packed-with-bredolab-trojan-virus.html http://threatpost.com/en_us/blogs/facebook-password-reset-spam-botnet-attack-102709 UK Guardian Claims Attack 'Serious' But Has No Details http://news.bbc.co.uk/2/hi/uk_news/8324630.stm Solo Extradition Stalled http://business.timesonline.co.uk/tol/business/law/article6891102.ece http://www.scmagazineus.com/Accused-hacker-McKinnon-gets-temporary-extradition-reprieve/article/156296/ Nigeria EFCC Busts Some Kung-Fu? http://arstechnica.com/tech-policy/news/2009/10/nigeria-actually-arrests-shuts-down-online-scammers.ars http://www.breitbart.com/article.php?id=CNG.6a8cc43eefe7559c839cd6f85e74e8f8.731&show_article=1 http://www.pointblanknews.com/os2334.html http://www.youtube.com/watch?v=f1nKR3gYRY8 Vishing Small Banks http://www.thestandard.com/news/2009/10/27/internet-phone-systems-become-fraudsters-tool http://www.cnycentral.com/news/news_story.aspx?id=365998 HNN Job Bank http://blogs.govinfosecurity.com/posts.php?postID=333 http://jobsearch.usajobs.gov/Search.aspx?cn=&rad_units=miles&brd=3876&pp=50&jbf574=HS*&vw=d&re=0&FedEmp=N&FedPub=Y&caller=agency.aspx&pg=1&q=cyber%20security%20or%20cybersecurity Quickies: Anti Phishing WG Report: finger@Avalanche UCSniff Live Release @ToorCon Gift Card Cloning Scam PhonSnoop for Blackberry Australian Booksmart; not Street Smart FBI Banking Trojan Figures Atheists Nailed to a T-1 Gizmodo Ad-pology Thotcon Call For Sponsors Zeus FDIC PDF Trick Not a Treat BONY Employee Pulls a Ballsy One Pro 'Unknown' Targets Swiss Booty http://www.scmagazineus.com/Avalanche-the-most-prolific-phishing-group-of-2009/article/156216/ http://www.theregister.co.uk/2009/10/23/iphone_voip_sniffing_made_easy/ http://www.darkreading.com/security/vulnerabilities/showArticle.jhtml?articleID=220900404 http://www.theregister.co.uk/2009/10/22/rim_blackberry_bugging_software/ http://www.infosecurity-magazine.com/view/4750/from-pizza-delivery-to-atm-hacker-to-criminal-in-two-years/ http://voices.washingtonpost.com/securityfix/2009/10/fbi_cyber_gangs_stole_40mi.html?wprss=securityfix http://host.madison.com/wsj/news/local/education/university/article_9e177bfa-c28b-11de-b6f5-001cc4c03286.html http://www.smh.com.au/technology/security/cyber-attacks-smite-atheist-websites-20091021-h7ul.html http://news.cnet.com/8301-27080_3-10385498-245.html?tag=mncol;title http://www.theregister.co.uk/2009/10/27/gizmodo_suckerpunched_by_malware_hackers/ http://www.wired.com/threatlevel/2009/10/gawker/ http://www.thotcon.org/ http://voices.washingtonpost.com/securityfix/2009/10/nastygram_spoofed_fdic_bank_fa.html?wprss=securityfix http://money.cnn.com/news/newsfeeds/articles/djf500/200910281833DOWJONESDJONLINE000865_FORTUNE5.htm http://www.swissinfo.ch/eng/news_digest/Foreign_ministry_computer_network_hacked.html?siteSect=104&sid=11407423&ty=nd http://www.theinquirer.net/inquirer/news/1559843/swiss-foreign-ministry-hacked Stack of Shame http://www.zerodayinitiative.com/advisories/upcoming/ HNNCast for the last week of October, 2009

Lead Stories:
The Internet is Full of Adminholes
http://www.wired.com/threatlevel/2009/10/vulnerable-devices/

TWC Customers Still Vuln.
http://www.wired.com/threatlevel/2009/10/routers-still-vulnerable/

Unu Injections on Banks, Parliament and ‘sorta’ barrackobama.com
http://blogs.computerworld.com/14977/obama_drupal_ing_around_whitehouse_gov_goes_open_source
http://praetorianprefect.com/archives/2009/10/the-barack-obama-donations-site-was-hacked…err-no-it-wasn’t/comment-page-1/
http://unu1234567.baywords.com/2009/10/26/barackobama-com-full-acces-sql-injection/

News and Police Sites Swim with Swedish Fishes
http://www.thelocal.se/22950/20091029/

News:
9k Facebook Apps Vuln.
http://www.readwriteweb.com/archives/how_safe_are_facebook_applications.php
http://www.softsailor.com/news/10495-facebook-password-reset-confirmation-email-comes-packed-with-bredolab-trojan-virus.html
http://threatpost.com/en_us/blogs/facebook-password-reset-spam-botnet-attack-102709

UK Guardian Claims Attack ‘Serious’ But Has No Details
http://news.bbc.co.uk/2/hi/uk_news/8324630.stm

Solo Extradition Stalled
http://business.timesonline.co.uk/tol/business/law/article6891102.ece
http://www.scmagazineus.com/Accused-hacker-McKinnon-gets-temporary-extradition-reprieve/article/156296/

Nigeria EFCC Busts Some Kung-Fu?
http://arstechnica.com/tech-policy/news/2009/10/nigeria-actually-arrests-shuts-down-online-scammers.ars
http://www.breitbart.com/article.php?id=CNG.6a8cc43eefe7559c839cd6f85e74e8f8.731&show_article=1
http://www.pointblanknews.com/os2334.html
http://www.youtube.com/watch?v=f1nKR3gYRY8

Vishing Small Banks
http://www.thestandard.com/news/2009/10/27/internet-phone-systems-become-fraudsters-tool
http://www.cnycentral.com/news/news_story.aspx?id=365998

HNN Job Bank
http://blogs.govinfosecurity.com/posts.php?postID=333
http://jobsearch.usajobs.gov/Search.aspx?cn=&rad_units=miles&brd=3876&pp=50&jbf574=HS*&vw=d&re=0&FedEmp=N&FedPub=Y&caller=agency.aspx&pg=1&q=cyber%20security%20or%20cybersecurity

Quickies:
Anti Phishing WG Report: finger@Avalanche
UCSniff Live Release @ToorCon
Gift Card Cloning Scam
PhonSnoop for Blackberry
Australian Booksmart; not Street Smart
FBI Banking Trojan Figures
Atheists Nailed to a T-1
Gizmodo Ad-pology
Thotcon Call For Sponsors
Zeus FDIC PDF Trick Not a Treat
BONY Employee Pulls a Ballsy One
Pro ‘Unknown’ Targets Swiss Booty
http://www.scmagazineus.com/Avalanche-the-most-prolific-phishing-group-of-2009/article/156216/
http://www.theregister.co.uk/2009/10/23/iphone_voip_sniffing_made_easy/
http://www.darkreading.com/security/vulnerabilities/showArticle.jhtml?articleID=220900404
http://www.theregister.co.uk/2009/10/22/rim_blackberry_bugging_software/
http://www.infosecurity-magazine.com/view/4750/from-pizza-delivery-to-atm-hacker-to-criminal-in-two-years/
http://voices.washingtonpost.com/securityfix/2009/10/fbi_cyber_gangs_stole_40mi.html?wprss=securityfix
http://host.madison.com/wsj/news/local/education/university/article_9e177bfa-c28b-11de-b6f5-001cc4c03286.html
http://www.smh.com.au/technology/security/cyber-attacks-smite-atheist-websites-20091021-h7ul.html
http://news.cnet.com/8301-27080_3-10385498-245.html?tag=mncol;title
http://www.theregister.co.uk/2009/10/27/gizmodo_suckerpunched_by_malware_hackers/
http://www.wired.com/threatlevel/2009/10/gawker/
http://www.thotcon.org/
http://voices.washingtonpost.com/securityfix/2009/10/nastygram_spoofed_fdic_bank_fa.html?wprss=securityfix
http://money.cnn.com/news/newsfeeds/articles/djf500/200910281833DOWJONESDJONLINE000865_FORTUNE5.htm
http://www.swissinfo.ch/eng/news_digest/Foreign_ministry_computer_network_hacked.html?siteSect=104&sid=11407423&ty=nd
http://www.theinquirer.net/inquirer/news/1559843/swiss-foreign-ministry-hacked

Stack of Shame
http://www.zerodayinitiative.com/advisories/upcoming/

]]>