HNNCast.2010.07.23
HNNCast for the third week of July, 2010
Top Stories
- Bug Bounties, Developments in Disclosure, Stuxnet Stalks Siemans SIMATIC WinCC SCADA, PDF to Play in Sandbox, Dell Malware, Spanish Mariposa is Slovenian
News
- The Next HOPE, FREE BYRONE, U.S. Cyber Defenses Suck – but Who’s Don’t?, Jews for Cheese Lover’s Pizza?, PlayNow Shut Down, Solo – Raised Where Nobody Cares
Tool Time
- Microsoft Security Essentials, Kraken, PacketFence, NMap – Defcon Edition, TrueCrypt, Nikto 2.1.2, PDF Dissector, HaraldScan, Shell of the Future, BackTrack 4 – Defcon Edition, SploitWare
Quickies
- Baidu gets to Sue, Fake French Fun, Sail the Net Like a Pirate, Schoolgirl Spycam, Vatican, Postini, Presidential Commission: Infosec Certification Creates Dangerously False Sense of Security
Cons Call
- HacKid Con, Kiwi Con, RuxCon, Source Barcelona, Defcon 18 – Pwnies, B-Sides Las Vegas, Badge Sneak Peaks, HNN@Defcon18
Stack of Shame
THANK YOU Predram Amini
Count: 122
Turning 1 This Week:
- ZDI-CAN-533 Microsoft 10, (AV:N/AC:L/Au:N/C:C/I:C/A:C) Discovered 2009-07-23 (363 days ago) by: surerun
One Response to 'HNNCast.2010.07.23'
Subscribe to comments with RSS or TrackBack to 'HNNCast.2010.07.23'.
Leave a Reply
You must be logged in to post a comment.
Posted: July 25th, 2010
at 6:38am by tan
Tagged with "cross-site scripting", A5/1, A5/3, Adobe, Adrian Lamo, AES, Anti-Virus, Apple, B-Sides, B-Sides Las Vegas, backtrack, Badges, Biadu, Blackhat, bluetooth, BNAP BNAP, botnet, Bradley manning, British Columbia Lottery Corporation, Bug Bounties, Byrone Sonne, Cameron, Commission on Cybersecurity, coordinated disclosure, crack, credit card fraud, Cross Origin, Defcon, Defcon 18, Defcon18, Dell, encryption, Ethical Disclosure, FBI, FREE BYRONE, French Foreign Ministry, full disclosure, g20, Gary McKinnon, Gaza flotilla, Google, google-bomb, gsm, Hack Lab, Hacker Haraoke, Hacker-Space Village, HacKid Con, HaraldScan, hardcoded password, hardcoded username, HNN, HOPE, I O Error, Identity Theft, Internet Storm Centre, Iranian Cyber Army, Israel, Jacob Applebaum, Javascript Injection, Jeremy Brown, JMicron, Jullian Assange, Kingpin, kiwicon, Kraken, LNK, Lund, malware, Mariposa, Microsoft, Microsoft Security Essentials, Mizilla, NAC, NASA, Network Access Control, Nikto, Ninja Networks, nmap, Obama, obfuscated javascript, online casino, OpenAMD, OS detection, PacketFence, PDF Dissector, PDF Reader, Pirate ISP, Pizzahut, PlayNow.com, Postini, PowerEdge, Pwnie's, RealTek, Register.com, responsible disclosure, RFID, Ruxcon, sandboxing, SANS, SCADA, Security B-Sides, Segway Races, Seimans, Session Hijacking, Shell of the Future, SIMATIC WinCC, Snort, Solo, Solvenia, Source Barcelona, SPAM, SploitWare, Stuxnet, Swedish Pirate Party, Tenable, the Next HOPE, TOR, Torrent, TrueCrypt, Turky, Vatican, webcam, Wiki Leaks, Windows Hibernation Files, windows shortcut, wireless drivers, www.pedofilo.com, XSS, Yellow Alert, Zymanics
Comments: 1 comment
HNNCast for the third week of July, 2010
Top Stories
Developments in Disclosure
http://www.mozilla.org/security/bug-bounty.html
http://blog.chromium.org/2010/07/celebrating-six-months-of-chromium.html
http://blogs.technet.com/b/ecostrat/archive/2010/07/22/coordinated-vulnerability-disclosure-bringing-balance-to-the-force.aspx
http://blogs.technet.com/b/msrc/archive/2010/07/22/announcing-coordinated-vulnerability-disclosure.aspx
Stuxnet Stalks Siemans SIMATIC WinCC SCADA
http://www.wired.com/threatlevel/2010/07/siemens-scada/
http://www.theregister.co.uk/2010/07/20/win_shortcut_vuln_exploit_code/
http://www.itworld.com/security/114529/eset-discovers-second-variation-stuxnet-worm
PDF to Play in Sandbox
http://www.zdnet.com/blog/security/adobe-adding-sandbox-to-pdf-reader-to-ward-off-hacker-attacks/6886
Dell Malware
http://www.theregister.co.uk/2010/07/21/dell_server_warning/
Spanish Mariposa is Slovenian
http://www.theregister.co.uk/2010/07/22/mariposa_botnet_arrests/
News
The Next HOPE
http://thenexthope.org/
http://amd.hope.net/
FREE BYRONE
http://www.nowtoronto.com/guides/g20/2010/story.cfm?content=175989
http://openattitude.com/2010/06/30/free-byron-sonne/
http://toronto.ctv.ca/servlet/an/local/CTVNews/20100720/-byron-sonne-bail-100720/20100720?hub=Toronto
http://friendsofbyron.alteeve.com/index.php/Main_Page
U.S. Cyber Defenses Suck – but Who’s Don’t?
http://www.npr.org/templates/story/story.php?storyId=128574055
Jews for Cheese Lover’s Pizza?
http://www.globalpost.com/webblog/israel-and-palestine/turkish-hackers-steal-70000-israeli-passwords-and-accounts
http://www.globes.co.il/serveen/globes/docview.asp?did=1000574965&fid=942
http://www.torontosun.com/news/world/2010/07/18/14750191.html
PlayNow Shut Down
http://www.theglobeandmail.com/news/national/british-columbia/online-casino-glitch-let-players-use-others-money/article1646314/
Solo – Raised Where Nobody Cares
http://www.computerworld.com/s/article/9179480/Obama_says_he_can_t_intervene_in_British_hacker_case
Tool Time
Microsoft Security Essentials
http://microsoftfeed.com/2010/new-version-of-microsoft-security-essentials-is-now-available/
Kraken
http://lists.lists.reflextor.com/pipermail/a51/2010-July/000683.html
PacketFence
http://www.packetfence.org/en/home.html
NMap – Defcon Edition
http://nmap.org/changelog.html
TrueCrypt
http://www.truecrypt.org/
Nikto 2.1.2
http://cirt.net/Nikto2?quicktabs_1=2#quicktabs-1
PDF Dissector
HaraldScan
http://code.google.com/p/haraldscan/
Shell of the Future
http://www.andlabs.org/tools.html#sotf
BackTrack 4 – Defcon Edition
http://www.offensive-security.com/backtrack/backtrack-4-r1-blackhat-edition/
SploitWare
http://blog.tenablesecurity.com/2010/07/tenable-network-security-podcast-episode-42.html
Quickies
http://www.independent.co.uk/news/world/europe/hackers-clone-french-foreign-ministry-website-2027716.html
http://torrentfreak.com/worlds-first-pirate-internet-provider-launches-in-sweden-100720/
http://www.thelocal.de/society/20100717-28569.html
http://www.theregister.co.uk/2010/07/19/vatican_bombing/
http://www.networkworld.com/news/2010/071910-google-spam.html?hpg1=bn
http://www.hackid.org
https://kiwicon.org/cfp2010.txt
http://www.ruxcon.org.au/2010-cfp.shtml
http://www.sourceconference.com/
http://pwnies.com/nominations/
http://www.marketwire.com/press-release/Security-BSides-Announces-2010-Speaker-Line-Up-Hot-Talks-at-BSides-Las-Vegas-1293095.htm
http://www.ninjas.org/badges/defcon18/ninja_tweet_hintz_1_omg.jpg
Stack of Shame
http://www.zerodayinitiative.com/advisories/upcoming/
tan
25 Jul 10 at 6:38 am