HNNCast.2010.11.12
HNNCast for the second week of November, 2010
Top Stories
Still Herding Sheep, Botnet M&A Update, Adafruit Driver Bounty, China Cellphone Malwarez, Down with Squirrels, Operation Fully Paid Back, Barracuda Bug Bounty
News
Go-Daddy Doh, Akron Student on Ice for DoS, European OPFOR, OECD DoS, CSAW Wrapup
T00lT1m3
Update Roundup, Forensic Control Tools, WoanWarez Updated, Blue Tooth Dao, JD-GUI, DNS Sec Stuff
Quickies
Sextort You Up, US Cyber Command’s Itchy Trigger Finger, Spear Phishing World Bank, Intuit DDoS, Coos Bay Co-opted Phones, Tinkode Dinks Royal Navy, Islamic Defacements, Injecting the Spice Girl, Money Control loses Control
ConFu
Phrack Pending, 2600 Digital Domination, SoOn Camp, CCC tix, B-Sides World Wrapup, Watch for BayThreat, R00tc0n Archives Up, Hackito Ergo Sum CFP
Stack of Shame
count: 145 (-20)
87
up for release on 2/4/2011 (-10)
83 days until 2/4/2011
Birthdays
- ZDI-CAN-244 from Borland ( Discovered by Anonymous 2009-11-18 )
CORRECTIONS:
MITCHELL FROST was arrested, not Michael Frost.
Dan KAMINSKY will be speaking at ThreatCon, not Dan Makinsky
One Response to 'HNNCast.2010.11.12'
Subscribe to comments with RSS
Leave a Reply
You must be logged in to post a comment.
Posted: November 14th, 2010
at 1:00pm by tan
Tagged with "Dan Kaminsky", 2600, 27C3, ACS:Law, Adafruit, amazon, anonymous, Apple Safari, Ardurino, Barnes & Nobel, Barracuda, BayThreat, Bill O'Reilly, BlackSheep, blue maho, bluesquirrel, bluetooth dao, Borland, botnet, Bug Bounty, BurpSuite, C-Base, CA, CCC, CFP, CNBC, Computer Associates, Cooks Source, Coos Bay, crypto, CSAW, Cyber Europe 2010, Dallas, DDoS, Delaware, driver bounty, EFF, EFT, embedded systems, European Network Security Agency, FBI, FileFolderEnum, Firefox, firesheep, Fireshepard, Forensic Control, forensics, Forth Worth, Go Daddy, Google, Google Ads, Google AdSense, Google Chrome, GoogleTalk, Hacker Challenge, Hackers on a Plane, Hackito Ergo Sum, HoaP, Hotmail, HTTPS Everywhere, Intiut, Islamic Foundation of Maldives, JAD, JAR, JD-GUI, Jim McLeod, Joint Research Centre, Katana, Kindel, Kinect, Maltego, malware, malwre, Manila, MioStar, Mitchell Frost, Moldova, Money Mule, moneycontrol.com, MoneyGram, Newsome High School, Nook, NYU, obexstress, OECD, Ontario, Operation Payback is a Bitch, OPFOR, Ostinato, Paris, PHP, Phrack, PuzlBox, reverse engineering, RootCon, Royal Navy, Rudy Guilliani, San Francisco, Sandcat, Seccubus, secure cookies, Security B-Sides, sextortion, SIM, Skipfish, Skype, Snort, SoOn Camp, spear phishing, spyeye, SpyEye Tracker, sql injection, SQLInjector, SSL, SSLCipherChecker, system hooks, Thunderbird, Timothy Geithner, University of Akron, University of Connecticut, US Cyber Command, VASTO, Victoria Beckham, virus, vulnerability, Wellesley High School, Western Union, Windows Live, woanware, World Bank, WSU, Xuehui Zhang, ZDI, Zero Day Initiative, Zeus, Zeus Tracker, Zigbee
Comments: 1 comment
Top Stories
Still Herding Sheep
https://www.accessnow.org/page/s/protectourprivacy
http://www.net-security.org/secworld.php?id=10118
http://notendur.hi.is/~gas15/FireShepherd/
https://www.google.com/adsense/support/bin/answer.py?hl=en&answer=10528
http://threatpost.com/en_us/blogs/firesheep-fallout-microsoft-adds-https-option-hotmail-110910
http://www.itworld.com/software/127049/hotmail-gets-secure-https-option?source=itw_rss&utm_source=twitterfeed&utm_medium=twitter
Botnet M&A Update
http://nakedsecurity.sophos.com/2010/11/05/two-suspected-zbot-mules-arrested-in-wisconsin/
http://krebsonsecurity.com/2010/11/authorities-nab-more-zeus-related-money-mules/
https://spyeyetracker.abuse.ch/
https://zeustracker.abuse.ch/
http://www.abuse.ch/?p=2958
Adafruit Driver Bounty
http://gadgetsteria.com/2010/11/05/microsoft-kinect-open-source-driver-quest-nets-2000-bounty/
http://www.adafruit.com/blog/2010/11/04/the-open-kinect-project-the-ok-prize-get-1000-bounty-for-kinect-for-xbox-360-open-source-drivers/
http://www.mattcutts.com/blog/open-kinect-contest/
China Cellphone Malwarez
http://www.shanghaidaily.com/article/?id=454047&type=National
Down with Squirrels
http://chronicle.com/blogs/wiredcampus/hacker-makes-the-fifth-of-november-one-to-remember/28076
http://www.wsu1812.com/
Operation Fully Paid Back
http://www.slyck.com/news.php?story=2119
http://news.cnet.com/8301-31001_3-20022264-261.html?tag=topStories1
Barracuda Bug Bounty
http://googleonlinesecurity.blogspot.com/2010/11/rewarding-web-application-security.html
http://www.barracudanetworks.com/ns/news_and_events/index.php?nid=423
News
Go-Daddy Doh
http://www.eweek.com/c/a/Security/PHP-Attack-Hits-GoDaddy-Hosted-Sites-Again-716108/
http://www.godaddy.com/security/website-security.aspx
Akron Student on Ice for DoS
http://www.securityweek.com/former-student-gets-30-months-prison-ddosing-conservative-figures-and-using-botnets
http://www.computerworld.com/s/article/9195518/Student_who_hacked_Bill_O_Reilly_gets_30_months
European OPFOR
http://www.infosecurity-us.com/view/13739/europe-tests-cyber-defenses-in-first-regional-attack-simulation/
http://www.theregister.co.uk/2010/11/11/cyber_europe_cyberwar_exercise/
OECD DoS
http://euobserver.com/19/31199
CSAW Wrapup
http://www.poly.edu/press-release/2010/11/02/who-will-protect-our-digital-future-woman-high-school-videographer-student-
http://www.phreedom.org/blog/2010/csaw-final-challenge/
http://www.gdssecurity.com/l/b/2010/10/06/crypto-challenges-at-the-csaw-2010-application-ctf-qualifying-round/
T00lT1m3
http://www.hackfromacave.com/katana.html
http://portswigger.net/
http://www.paterva.com/
http://sourceforge.net/projects/puzlbox1/files/
http://sourceforge.net/projects/seccubus/
http://code.google.com/p/ostinato/
http://www.snort.org/
http://www.syhunt.com/?section=sandcat
http://code.google.com/p/skipfish/
http://vasto.nibblesec.org/
http://www.megapanzer.com/
http://www.forensiccontrol.com/fcresources.php
http://www.woanware.co.uk/
http://links.visibli.com/links/e4c3e1
http://java.decompiler.free.fr/?q=jdgui
http://www.slideshare.net/dakami/phreebird-suite-10-introducing-the-domain-key-infrastructure
Quickies
https://tips.fbi.gov/
http://www.fbi.gov/news/stories/2010/november/web-of-victims/web-of-victims
http://www.washingtonpost.com/wp-dyn/content/article/2010/11/05/AR2010110507304.html
http://blogs.wsj.com/washwire/2010/11/04/phishing-scam-uses-tim-geithners-name/
http://news.cnet.com/8301-27080_3-20021862-245.html
http://voices.washingtonpost.com/fasterforward/2010/11/cooks_source_masters_new_recip.html
http://www.columbian.com/news/2010/nov/05/hackers-chat-for-26-hours-on-ore-towns-phones/
http://www.portsmouth.co.uk/newshome/Hackers-claims-to-have-taken.6616987.jp
http://minivannews.com/politics/hackers-target-islamic-foundation-website-circulate-false-press-release-13176
http://defaced.zone-h.net/defaced/2010/11/01/www.victoriabeckham.com/
http://community.websense.com/blogs/securitylabs/archive/2010/11/08/moneycontrol-com-compromised.aspx?cmpid=sltw
ConFu
http://www.phrack.org
http://search.barnesandnoble.com/2600-Magazine-The-Hacker-Quarterly-Digital-Edition-Autumn-2010/Emmanuel-Goldstein/e/2940011947902/?itm=1&USRI=2600
http://sooncon.ca/wiki/SoOnCamp2012MainPage
http://www.fem.tu-ilmenau.de/index.php?id=509&L=1
http://events.ccc.de/2010/11/07/no-more-group-orders-available/
http://events.ccc.de/2010/11/10/content-meetings-are-over-fahrplan-released-2/#english
https://www.c-base.org/
http://www.securitybsides.com/w/page/12194156/FrontPage
http://www.hackersonaplane.info/27c3/
http://www.baythreat.org/
http://www.rootcon.org/xml/archives/
http://hackitoergosum.org/call-for-paper/
Stack of Shame
http://www.zerodayinitiative.com/advisories/upcoming/
tan
14 Nov 10 at 1:06 pm