HNNCast.2011.02.25
HNNCast for the last week of February, 2011
Top Story
Two Minutes of Hate, Two Weeks of FUD, Too Long Behind Bars
News
HB Gary’s Fake Friends, Cenzic Can’t DO so they patent and SUE, We R All Up in Yer Musics
T00l T1m3
updated: Mod Security, Nikto, Seccubus, SAMHAIN, THICKNET, Autologon
new: Volatility, Splunk for OSSEC, NiX, inSSIDer
NetWitness Note
Quickies
Celebrity Twits: Kim Kardassian, BBC World News
Cyber Mumbo Jumbo, Cyber UL
Defacements: Voice of America, Avira
Med School Compromise, Dutch Banking DDoS, MFA No Panacea, ODDJOB, CyberFool Index, Patch Time
Con Fu
X’d CaliberCon, PST CFP, DC19 CFP
Stack of Shame
count: 54 (-4)
10 (-2) OVERDUE! ; 2/4/11 (-21):
>ZDI-CAN-830 Novell [RISK=10] (245 days) – thanks Stephen Fewer (Harmony Security)
>ZDI-CAN-767 Microsoft [RISK=10] (323 days) thanks: Anonymous
>ZDI-CAN-733 Apple [RISK=10] (338 days) thanks: Anonymous
>ZDI-CAN-713 Sun Microsystems [RISK=10] (348 days) thanks: Anonymous
>ZDI-CAN-691 Apple [RISK=10] (365 days) thanks: wushi (team509)
>ZDI-CAN-672 Microsoft [RISK=10] (386 days) thanks: Moti Joseph
>ZDI-CAN-244 Borland [RISK=10] (462 days) thanks: Anonymous
>ZDI-CAN-543 Microsoft [RISK=10] (566 days) thanks: Peter Vreugdenhil
>ZDI-CAN-533 Microsoft [RISK=10] (580 days) thanks: surerun
>ZDI-CAN-348 RealNetworks [RISK=10] (973 days) thanks: Matteo Memelli (ryujin)
One Response to 'HNNCast.2011.02.25'
Subscribe to comments with RSS
Leave a Reply
You must be logged in to post a comment.
Posted: February 27th, 2011
at 3:32pm by spacerog
Tagged with "Windows 7", anonymous, Apache, Autologon, Avira, Baker-Hughes, BBC World News, botnet, BP, Burp Suite Pro, Byron Sonne, call for papers, Cenzic, CFP, China, compromise, Conoco, Cyber War, cyber-espionage, cybercrime, David Parkman, DDoS, defacement, Defcon 19, ExcaliberCon, ExxonMobil, Facebook, file integrity, forensics framework, Foundscan, ftp, FUD, fuzzing, g20, Hack Lab, HB Gary, HIDS, Howard Schmidt, HP, HTTP, HTTPS, iDeal, IMAP, ING, inSSIDer, intrusion, Iranian Cyber Army, Java, Justin Timberlake, Kim Kardashian, Lady Gaga, long range key duplication, malware, Marathon, McAffee, metasploit, MFA, Microsoft, MOD Security, multi-factor-authentication, MYSQL, nCircle, Nessus, NetWitness, Night Dragon, Nikto, NiX, Norton, NTObjectives, oddjob, OWASP, packet radio, password cracker, patch Tuesday, patent troll, Privacy Security and Trust, privacy technology, proxy tumbling, PST, python, Quebec, Rabobank, Rapid 7, Real Networks, remote display monitoring, Retina, RFID passport cloners, Ron Gula, rootkit, RSA, SAMHAIN, Saudi Security, Seccubus, Service Pack, Shell, social media, SOCKS, SourceForge, Spectrum, SpiderLabs, Splunk for OSSEC, spy technology, SSH, St George University, stego, stop232patent, SysInternals, thicknet, TOR, Trojan, Twitter, UL, Vista, Voice of America, Volatility, WAF, wi-fi scanner, Wuxi, XP, ZDI, zero-day, Zeus
Comments: 1 comment
HNNCast for the last week of February, 2011
Top Stories
Two Minutes of Hate
http://www.computerworld.com/s/article/9211038/Hacker_claims_credit_for_knocking_church_s_site_offline?taxonomyId=82
http://www.scmagazineuk.com/anonymous-hits-westboro-baptist-church-websites-after-online-verbal-trade-off/article/196699/
http://www.salon.com/news/feature/2011/02/21/anonymous_westboro_church_hoax/index.html?
http://www.youtube.com/watch?v=OZJwSjor4hM
Two Weeks of FUD
http://www.bloomberg.com/news/2011-02-24/exxon-shell-bp-said-to-have-been-hacked-through-chinese-internet-servers.html
Too Long Behind Bars
http://freebyron.org
News
HB Gary’s Fake Friends
ttp://arstechnica.com/tech-policy/news/2011/02/black-ops-how-hbgary-wrote-backdoors-and-rootkits-for-the-government.ars
https://www.infosecisland.com/blogview/11846-Magenta-HBGary-Federals-Cyberoffense-Failure.html
Cenzic Can’t DO so they patent and SUE
http://stop232patent.com/
We R All Up in Yer Musics
http://www.infosecurity-magazine.com/view/16058/trojans-used-to-download-thousands-of-unreleased-music-tracks-from-producers-computers/
http://www.aceshowbiz.com/news/view/w0010516.html
T00l T1m3
http://sourceforge.net/projects/mod-security/files/modsecurity-crs/0-CURRENT/
http://security-sh3ll.blogspot.com/2011/02/nikto-v214-released.html
https://cirt.net/nikto/nikto-2.1.4.tar.bz2
http://www.vulnerabilitydatabase.com/toolswatch/2011/02/20/852/
http://www.vulnerabilitydatabase.com/toolswatch/2011/02/20/samhain-file-integrity-intrusion-detection-system-v2-8-2-released/
http://www.la-samhna.de/samhain/s_download.html
https://github.com/SpiderLabs
https://www.trustwave.com/spiderLabs-tools.php
http://technet.microsoft.com/en-us/sysinternals/bb963905
http://www.vulnerabilitydatabase.com/toolswatch/2011/02/20/volatility-the-advanced-memory-forensics-framework-v1-4-released/
http://splunkbase.splunk.com/apps/All/4.x/App/app:Splunk+for+OSSEC+-+Splunk+v4+version
http://www.vulnerabilitydatabase.com/toolswatch/2011/02/20/nix-brute-forcer-v1-1-1-released/
http://www.vulnerabilitydatabase.com/toolswatch/2011/02/20/inssider-v2-0-7-0126-the-wi-fi-network-scanner-released/
http://www.metageek.net/support/videos/inssider
http://www.metageek.net/docs/inssider-user-guide
https://twitter.com/#!/RonGula
http://netwitness.com//products/spectrum.aspx
Con Fu
http://www.tweetdeck.com/twitter/ExcaliburCon/~C1gny
http://blog.remes-it.be/?p=534
http://www.unb.ca/pstnet/pst2011/
https://www.defcon.org/html/defcon-19/dc-19-cfp.html
tan
27 Feb 11 at 5:22 pm