HNNCast.2010.12.17
HNNCast for the last week of December, 2010
THE LAST EPISODE OF 2010!
Top Stories
Fallout from Payback, A Hive Divided, Gettin Gawked, Silver Popped
News
IPSEC, HP Backdoor, Stuxnet Still Smoldering, A Sad Panda Story, As the World Turns
T00l T1m3
Prospecting for Exceptions, If You Da Pro den Update, Fresh BeEF, Find Your Thrill with Blueberry Password Cracker, Use thicknet to Inject, NetworkScanViewer
Quickies
Celebrity Twitts, Double Click Made My PC Sick, Avast Sum for Protection by the Dumb, It’s Back to School, GAA’est Compromise Ever, Suncoast Knows no Wrath Like a Woman’s Scorn, HVAC Attack or Malfunctioning Crap, Bug Hunt Expands, Another Record Patch Tuesday, APB: stolen HNN fan equipment
Con Fu
p68 cfp, Get on da Astaro Shmoobus, B-Sides World Wrap-up
Stack of Shame
count: 149 (-10)
53/19 up for release on 2/4/11 (-9)
Birthdays – none
49 Days until 2/4/11
One Response to 'HNNCast.2010.12.17'
Subscribe to comments with RSS
Leave a Reply
You must be logged in to post a comment.
Posted: December 19th, 2010
at 10:53am by tan
Tagged with "Adobe Reader", "Li Jun", 2600 Magazine, 4chan, abuse of privilege, Acia Berry SPAM, amazon, anonymous, Anti-Virus, Arc Worldwide, astaro, Avast, backdoor, BeEF, Blueberry Password Cracker, Bug Bounty, CA, cablegate, CERT, CFP, CMS, code coverage, Computer Associates, content filters, convicted, COSEInc, crowd journalism, DDoS, defacement, defective products, Deviant Art, DHS, Double Click, embezzlement, exception dumper, fax attack, FBI, ftp, GAA, Gaelic Athletic Association, gawker, Gawker Media Group, Gizmodo, Gnosis, Google, Greensboro, Hell Code, HexRays, HNN stickers, HP, HVAC, IDA Pro, insider threat, Internet Explorer, IPSEC, Ja Rule, Java, lifehacker, login aggregator, LOIC, Louiville Kentucky, Low Orbit Ion Cannon, malicious ads, malware, Mastercard, McDonald's, Micropoint, Microsoft, Ministry of Public Security, Modular Storage Array, Mozilla, MSA2000 G3, MSN Online, MYSQL, Naatty Green's Brew Pub, Nessus, NetworkScanViewer, nmap, Ohio State University, OpenBSD, Operation leakSpin, Operation Payback, p68, Panasonic Tough Book CF-T2, Panda Burning Virus, Panda Security, patch Tuesday, Patricia Fowler, personal information breach, Phrack, Pirate Bay, Police Service of Northern Ireland, Prospector, Reuters, Rochester, runtime trace analysis, Security B-Sides, sentenced, Serversport Limited, shmoobus, ShmooCon, Silverpop Systems, software defects, software faults, spear phishing, Spider Labs, Stromsborg Charlottenborg, Stuxnet, Suncoast Community Health Center, TCP session manipulation, the grugq, Theo De Ratt, thicknet, TrustWave, Twitter, University of Wisconsin, vulnerabilities, Wallgreens, WikiLeaks, woanware, worm, XML, Yu Bing, ZDI, Zero Day Initiative
Comments: 1 comment
Top Stories
Fallout from Payback
http://www.2600.com/news/view/article/12037
http://nakedsecurity.sophos.com/2010/12/10/dutch-police-website-attacked-after-arrests-of-suspected-hacker/
http://nakedsecurity.sophos.com/2010/12/12/second-dutch-arrest-wikileaks-ddos-attacks
http://www.theregister.co.uk/2010/12/10/loic_for_iphone/
http://www.utwente.nl/ewi/dacs/news/archive/2010/wikileaks.doc/index.html
http://extraexploit.blogspot.com/2010/12/loic-11115-buffer-overflow.html
A Hive Divided
http://news.netcraft.com/archives/2010/12/12/mastercard-goes-down-as-anonymous-launch-2nd-attack.html
http://operationleakspin.org/
Gettin Gawked
http://thenextweb.com/media/2010/12/12/gawker-media-is-compromised-the-responsible-parties-reach-out-to-tnw/
http://www.mediaite.com/online/gawker-medias-entire-commenter-database-appears-to-have-been-hacked/
http://thenextweb.com/media/2010/12/13/gawker-hackers-release-file-with-ftp-author-reader-usernamespasswords/
http://www.mediaite.com/online/exclusive-gawker-hacker-gnosis-explains-method-and-reasoning-behind-his-actions/
http://blogs.reuters.com/felix-salmon/2010/12/13/gawker-media-gets-hacked/
http://lifehacker.com/5712785/
http://mashable.com/2010/12/13/acai-berry-twitter-worm-warning/
http://blogs.forbes.com/firewall/2010/12/13/the-lessons-of-gawkers-security-mess/
http://mediamemo.allthingsd.com/20101214/the-gawker-hack-ripple-hits-linkedin/
http://pastebin.com/RqqyebeH
Silver Popped
http://www.theregister.co.uk/2010/12/15/silverpop_breach_probe/
http://www.infosecurity-us.com/view/14706/mcdonalds-admits-to-customer-database-breach/
http://www.pcworld.com/businesscenter/article/213345/hackers_steal_mcdonalds_customer_data.html
http://technolog.msnbc.msn.com/_news/2010/12/10/5624759-hackers-steal-walgreens-e-mail-list-attack-consumers
http://www.securityweek.com/walgreens-customer-email-list-falls-hands-hackers
News
IPSEC
http://marc.info/?l=openbsd-tech&m=129236621626462&w=2
http://seclists.org/fulldisclosure/2010/Dec/441
HP Backdoor
http://www.securityweek.com/backdoor-vulnerability-discovered-hp-msa2000-storage-systems
Stuxnet Still Smoldering
http://chemical-facility-security-news.blogspot.com/2010/12/stuxnet-secrets.html
http://www.foxnews.com/scitech/2010/12/09/despite-iranian-claims-stuxnet-worm-causing-nuclear-havoc/
http://www.microsoft.com/technet/security/bulletin/ms10-dec.mspx
A Sad Panda Story
http://www.reuters.com/article/idUSTRE6B91XT20101210
http://articleleader.info/panda-burning-incense-manufacturer-jun-prison-or-to-join-the-network-security-panda-burning-incense-hackers-security-industry/
http://nakedsecurity.sophos.com/2010/12/10/anti-virus-company-hires-convicted-chinese-malware-author/
http://blogs.wsj.com/chinarealtime/2010/12/12/panda-hacker-donates-for-cloud%E2%80%99s-future/
As the World Turns
http://www.theregister.co.uk/2010/12/13/chinese_anti_virus_corruption/
T00l T1m3
http://www.coseinc.com/en/index.php?rt=downloads
http://www.hex-rays.com/idapro/idadown.htm
http://beef.googlecode.com/
http://www.hsc.fr/ressources/outils/blueberry/index.html.en
https://github.com/SpiderLabs/thicknet
https://www.trustwave.com/spiderLabs-tools.php
http://www.woany.co.uk/news/networkscanviewer-v1-0-3/
http://www.woany.co.uk/networkscanviewer/
Quickies
http://nakedsecurity.sophos.com/2010/12/14/has-rapper-ja-rule-had-his-twitter-hacked/
http://www.computerworld.com/s/article/9200899/Google_Microsoft_ad_networks_briefly_hit_with_malware
https://threatpost.com/en_us/blogs/major-ad-networks-found-serving-malicious-ads-121210
http://www.zone-h.org/mirror/id/12699523
http://www.scmagazineus.com/hackers-access-uw-madison-computer-systems/article/192558/
http://host.madison.com/wsj/news/local/education/university/article_f5966aac-0408-11e0-af11-001cc4c03286.html
http://www.dispatch.com/live/content/local_news/stories/2010/12/15/OSU-security-breach.html?sid=101
http://www.rte.ie/news/2010/1210/gaa.html
http://www.sportsnewsireland.com/2010/12/10/important-notice-regarding-gaa-membership-database-being-hacked/
http://www.theregister.co.uk/2010/12/14/healthcare_bofh_turned_hacker_jailed/
http://tampa.fbi.gov/dojpressrel/pressrel10/ta120710.htm
http://translate.google.com/translate?js=n&prev=_t&hl=en&ie=UTF-8&layout=2&eotf=1&sl=sv&tl=en&u=http%3A%2F%2Fwww.corren.se%2Fostergotland%2Fmotala%2F%3FarticleId%3D5464070%26date%3D%26menuids&act=url
http://threatpost.com/en_us/blogs/mozilla-expands-bug-bounty-web-apps-121410
http://www.informationweek.com/news/software/operating_systems/showArticle.jhtml?articleID=228800149
Con Fu
http://www.phrack.org/cfp_p68.txt
http://blog.uncommonsensesecurity.com/
http://www.securitybsides.com/w/page/32853890/BSidesGSO
Stack of Shame
http://www.zerodayinitiative.com/advisories/upcoming/
tan
19 Dec 10 at 11:10 am