HNNCast.2011.02.11
HNNCast for the second week of February, 2011
Top Stories
NASDAQ JAFM, How’s THIS for attention, Crime Around the World Pays, Oh TP for Google
News
Chasing the Night Dragon, Malware M&A Update, ZeuS Source on the Loose, OWASP Summit Wrap-up, Two Sides of Bug Bounties, Fish Eat Bugs Too
T00l T1m3
Hardwarez: KeyKeriKey
Updatez: green pois0n, clamAV, openDLP, aidsql, seccubus, Snort, the Metasploit Framework, BEEF, Tuna’s Netsparker, Armitage, Veracode Online Code Exam, Nmap 5.5 for Android
New Warez: Network Miner, SSL Diagnose, KoreLogic Word Lists, eEye on the Horizon
Quickies
Missouri Staffers Shown the Pwn, Egypt Defacements of Course, Tyrants Target American Internet, Cyber Security Challenge, Jail Lords is Ghey, Defacements Round-up, Old Skool TV Pir8 Busted, iPhone Warning, Recompiled Malwarez Are NOT APT, Play-time Auto-Running Out, Comcast Where Everyones an Admin, Turn Off Telnet Already!
Con Fu
BruCon Sorta IS Beer Con Already Space Rogue, HacKid interCONtinental Security B-Sides Round-Up: New Helhi, London
Stack of Shame
count: 65 (-40)
12 OVERDUE! 2/4/11 (-7)
ZDI-CAN-830 from Novell ( 230 days )
ZDI-CAN-767 from Microsoft ( 308 days )
ZDI-CAN-733 from Apple ( 323 days )
ZDI-CAN-713 from Sun Microsystems ( 333 days )
ZDI-CAN-691 from Apple ( 350 days )
ZDI-CAN-672 from Microsoft ( 371 days )
ZDI-CAN-628 from Sun Microsystems ( 378 days )
ZDI-CAN-244 from Borland ( 447 days )
ZDI-CAN-552 from Sun Microsystems ( 537 days )
ZDI-CAN-543 from Microsoft ( 551 days )
ZDI-CAN-533 from Microsoft ( 565 days )
ZDI-CAN-348 from RealNetworks ( 958 days )
One Response to 'HNNCast.2011.02.11'
Subscribe to comments with RSS
Leave a Reply
You must be logged in to post a comment.
Posted: February 13th, 2011
at 5:38pm by tan
Tagged with "bit torrent", "Hackers For Charity", "Together for the collapse of Egypt", "Windows 7", aidsql, Akamai, Al Jazeera, Ammon News, Android, anonymous, APT, Armitage, Atlanta, ATM, Australia, autorun, Barracuda, BeEF, Boston, BruCon, Brussels, Bug Bounties, Bureau of Reclamation, call for papers, CanSecWest, CFP, China, clamAV, Classic Cars dot com, Comcast, CommanderX, compromise, corporate governance portal, CSRF, Cyber Security Challenge, DDZ, defacement, Directors Desk, Diwali, DoS, Dussehra, eEye, Egypt, email spool, energy companies, Eugene Anikin, Fake Anti-Virus, FBI, firesheep, foundstone, Frank Alexander, Gaza Hackers Team, Google, green pois0n, HacKid Con, hard coded password, HBGary Federal, HFC, Hoover Dam, HP, HP Labs, Indonesia, Internet Kill-Switch, iOS, iPhone, Jail Lords, jailbreak, javascript, Jewish Peoples Policy Institute, Johnny Long, Jordanian Security Service, keyboard sniffer, KeyKeriKey, KoreLogic, Linked-In, London, malware, Marcus Ranum, McAffee, Microsoft, Missouri, Monstr, NASDAQ, NEM, Nessus, Netherlands, Netsparker, NetworkMiner, New Delhi, NFAT, nmap, one time passwords, OpenDLP, Operation Italy, Operation night Dragon, OTP, OWASP Global Summit, Owen, pcap, phishing, Q, RBS World Pay, remote installation, San Francisco, Seccubus, Security B-Sides, slavik, SMS, Snort, social engineering, social networks, SpiderLabs, spyeye, SSL Diagnose, SSLDigger, telnet, the Metasploit Framework, trojan horse, TrustWave, Twitter, two-factor authentication, Veracode, vulnerability disclosure, WiFi, WikiLeaks, William Hague, Windows Vista, Windows XP, wordlist, Wordpress, ZDI, Zero Day Initiative, Zeus
Comments: 1 comment
HNNCast for the second week of January, 2011
Top Stories
NASDAQ JAFM
http://online.wsj.com/article/SB10001424052748704709304576124502351634690.html
http://www.reuters.com/article/2011/02/05/us-nasdaq-hackers-idUSTRE7140KK20110205
http://www.directorsdesk.com/
http://www.securityweek.com/doj-asked-nasdaq-delay-disclosure-security-breach
How’s THIS for Attention
http://www.ft.com/cms/s/0/87dc140e-3099-11e0-9de3-00144feabdc0.html#axzz1D2wK5KNo
http://blogs.forbes.com/parmyolson/2011/02/06/anonymous-takes-revenge-on-security-firm-for-trying-to-sell-supporters-details-to-fbi/
http://blogs.forbes.com/parmyolson/2011/02/07/victim-of-anonymous-attack-speaks-out/
http://thepiratebay.org/torrent/6156166/HBGary_leaked_emails
http://krebsonsecurity.com/2011/02/hbgary-federal-hacked-by-anonymous/
http://arstechnica.com/tech-policy/news/2011/02/how-one-security-firm-tracked-anonymousand-paid-a-heavy-price.ars/
http://pastebin.com/x69Akp5L
http://en.rian.ru/world/20110207/162490100.html
http://www.pcmag.com/article2/0,2817,2379697,00.asp
Crime Around the World Pays
http://www.zdnet.com/blog/security/hacker-3-escapes-jail-time-in-rbs-worldpay-atm-heist/8096
Oh TP for Google
http://googleblog.blogspot.com/2011/02/advanced-sign-in-security-for-your.html
News
Chasing the Night Dragon
http://uk.reuters.com/article/2011/02/10/us-energy-cyber-china-idUKTRE7190XP20110210
Malware M&A Update
http://www.theregister.co.uk/2011/01/25/spyeye_zeus_merger/
http://www.darkreading.com/vulnerability-management/167901026/security/attacks-breaches/229200216/zeus-spyeye-merger-advances.html
http://www.trusteer.com/blog/turning-tables-spyeye
ZeuS Source on the Loose
http://krebsonsecurity.com/2011/02/zeus-source-code-for-sale-got-100000/
OWASP Summit Wrap-up
http://twitter.com/#!/johnwilander/status/34747135744278528
Two Sides of Bug Bounties
http://d.hatena.ne.jp/masatokinugawa/20110207/google_security
T00l T1m3
http://greenpois0n.com
http://www.clamav.net/
http://www.vulnerabilitydatabase.com/toolswatch/2011/02/09/opendlp-v2-6-released/ http://www.vulnerabilitydatabase.com/toolswatch/2011/02/09/aidsql-v02062011-with-database-reverse-engineering-released/
http://www.vulnerabilitydatabase.com/toolswatch/2011/02/09/seccubus-v1-5-4-openvas-client-3-x-compatibility-support-released/
http://blog.metasploit.com/2011/02/metasploit-framework-352-released.html https://code.google.com/p/beef/downloads/list
http://www.mavitunasecurity.com/blog/netsparker-1833-is-out/
http://www.fastandeasyhacking.com/
http://www.securityweek.com/veracode-expands-mobile-app-verification-service-android-and-ios
http://seclists.org/nmap-dev/2011/q1/440
https://twitter.com/#!/dinodaizovi
http://nakedsecurity.sophos.com/2011/02/04/android-market-web-store-backdoor-phone-hackers/
http://www.netresec.com/?page=NetworkMiner
http://www.vulnerabilitydatabase.com/toolswatch/2011/02/09/ssl-diagnos-v0-8-1a-released/
http://contest.korelogic.com/wordlists.html
http://www.vulnerabilitydatabase.com/toolswatch/2011/02/09/eeye-to-release-free-vulnerability-scanner-with-zero-day-identification-and-configuration-auditing/
Quickies
http://www.fox4kc.com/news/wdaf-molawmakers-facebook-hacked-2711,0,4490001.story
http://gizmodo.com/#!5752310
http://www.wired.com/threatlevel/2011/02/hoover/
http://www.journalism.co.uk/news/al-jazeera-site-hacked-by-opponents-of-pro-democracy-movement-in-egypt/s2/a542649/
http://www.wired.com/threatlevel/2011/02/hoover/
http://www.infosecurity-magazine.com/view/15548/finalists-decided-for-cyber-security-challenge/
https://cybersecuritychallenge.org.uk/
http://seclists.org/fulldisclosure/2011/Feb/155
http://www.presstv.ir/detail/163907.html
http://nakedsecurity.sophos.com/2011/02/07/classiccars-com-hacked-by-indonesian-hackers/
http://stopmalvertising.com/malware-reports/wordpress-france-hacked.html
http://www.google.com/hostednews/afp/article/ALeqM5jvpHYEdsa7e-KNCnLUgr2-ygnoOw?docId=CNG.c0c63e4646495230d8449227753b8d56.c61
http://gizmodo.com/#!5144199/prank-of-the-year-comcast-tucson-airs-graphic-porn-during-super-bowl-nsfw
http://www.securecomputing.net.au/News/247537,man-charged-for-hacking-super-bowl-feed-inserting-porn.aspx?
http://en.wikipedia.org/wiki/John_R._MacDougall
http://thenextweb.com/apple/2011/02/10/researchers-reveal-iphone-passwords-in-under-six-minutes/
http://www.silicon.com/technology/security/2011/02/07/hague-details-cyber-attacks-on-whitehall-39746929/?s_cid=931
http://www.cio.co.uk/news/3259725/uk-government-under-targeted-cyberattack/?olo=rss
http://nakedsecurity.sophos.com/2011/02/09/microsoft-says-good-riddance-usb-autorun/
http://www.scmagazineuk.com/microsoft-moves-to-stamp-out-autorun-enabled-malware-by-adding-it-to-the-windows-update-channel/article/195955/
http://blog.spiderlabs.com/2011/02/twsl2011-002-vulnerabilities-in-comcast-docsis-30-business-gateways-smcd3g-ccr.html
http://itmanagement.earthweb.com/daily_news/article.php/421600/Hackers-Turn-Back-the-Clock-with-Telnet-Attacks.htm
Con Fu
http://blog.brucon.org/2011/01/brucon-call-for-papers-2011.htm
http://www.hackid.org/content/
http://www.securitybsides.com/w/page/12194156/FrontPage
Stack of Shame
http://www.zerodayinitiative.com/advisories/upcoming/
tan
13 Feb 11 at 5:39 pm