HNNCast.2010.08.06
HNNCast for the second week of August 2010
Top Stories
Jailbreak Me Demos Threat, Full Disclosure: Crappy Software Ahead
Courtnee: BlackHat/B-Sides/Defcon Wrap-Up
News
StuxNet Tongue-Twister, Masato Notoutforlong, Citi App Spills Secrets, Wake Up People
T00l Time
Aanval, Razorback, DFF, Passware, BinPack, BinNavi, PDF Dissector, PinTool, Seccubus, SotF, L0phtCrack
Quickies
Bulletin on vBulletin, Houston We Have a < 140 Character Problem, Carbon Trading Site Polluted, the Mets Bust Some Marlins, Ausi Malware Author Pleas, Virus Variants Spike, Inside Mumba, Moving Money from QA
Hong CON Phooey
Excaliber Con, H2H, HoaP, Thotcon 2, Shmoocon, HacKid Con, HNN in the Defcon Badge
Stack of Shame
count: 117
Posted: August 8th, 2010
at 1:47pm by tan
Tagged with "cross-site scripting", "open source", Aanval, ACME Pharm, activists, Adobe, airpwn, android rootkit, Anthony Harrison, anti-carbon trading, Apple, arrest, ATM, B-Sides, back door, banking credentials, Banking Trojan, barcode, Barnaby Jack, Behind the Firewall, binary analysis, BinNavi, BinPack, Blackhat, botnet, Brad Threatt, breeches, bugs, c, cancelled talks, Capture the Flag, carbon trading, Central e-Crime Unit, Chinese Cyber Army, Chymine, Cigigroup, CityBank, compiler optimization, coordinated disclosure, Cross Site Scripting Filters, CTF, Dark Tangent, debugging, decrypt, Defcon 18, Defcon 19, Defcon Badge, DFF, Digital Forensic Framework, digital forensics, disclosure, distribution, distro, driver debugging, dynamic instrumentation, dynamic instrumentation framework, eBay, emo, emulator, enterprise equipment, Excaliber Con, exploit, filters", flat screen TV, forensic framework, Forrester, forum software, framework, full disclosure, Goat Bar, Google, GPU, Grand Idea Studio, grandideastudio.com, GSM eavesdropping, guilty, H2H, Hacker News, Hacker News Network, HacKid Con, hacktivism, high speed trading, HNN, HoaP, IBM, IDA Pro, IE, Intel, Internet Explorer 8, iPad, iPhone, jackpotting, jailbreaking, jailbreakme.com, java script, javascript, Jeff Moss, Joe Grand, kernel debugging, keynote, L0phtCrack, Las Vegas Edition, LNK, local, malware, management console, manga octopus, manga sea urchin, manga squid, Masato Nakatsuji, McAffee, Members 1st Federal Credit Union, metasploit, Metropolitan Police, Microsoft, mobile banking, mobile device security, Most Epic Fail, Mozilla, Mumba, NASA, Nessus, obfuscated java script, Octopus virus, Passware, passwords, patches, PDF, PDF Dissector, phishing, PIN, PinTool, plea, Power Point, profiling, Pwnie Awards, python, Razorback, RC4, remote, remote debugging, remote jailbreak, responsible disclosure, Rio, Riv, Riviera, Robin Sage, Sality, SANS, SANS Boston, SCADA, Seccubus, Security, security research, security researchers, security tools, Seimans, ShmooCon, SIMATIC, smart phone botnet, SMTP, Snort, social engineering contest, social networking, SotF, Sourcefire, stack of shame, Stuxnet, syslog, Thotcon 2, Tipping Point, TrueCrypt, Twitter, University of Virginia, UPC, usernames, vBulletin, Vegas, Verizon Data Breach Investigations Report, Vobfus, vulnerability reporting, website defacement, West Coast Hackers, Win32 driver debugging, Win32 kernel debugging, WinCC, Word, worm, XSS, ZDI, Zero Day Initiative, Zeus, Zeus botnet, Zynamics
Comments: 1 comment
HNNCast.2010.07.23
HNNCast for the third week of July, 2010
Top Stories
- Bug Bounties, Developments in Disclosure, Stuxnet Stalks Siemans SIMATIC WinCC SCADA, PDF to Play in Sandbox, Dell Malware, Spanish Mariposa is Slovenian
News
- The Next HOPE, FREE BYRONE, U.S. Cyber Defenses Suck – but Who’s Don’t?, Jews for Cheese Lover’s Pizza?, PlayNow Shut Down, Solo – Raised Where Nobody Cares
Tool Time
- Microsoft Security Essentials, Kraken, PacketFence, NMap – Defcon Edition, TrueCrypt, Nikto 2.1.2, PDF Dissector, HaraldScan, Shell of the Future, BackTrack 4 – Defcon Edition, SploitWare
Quickies
- Baidu gets to Sue, Fake French Fun, Sail the Net Like a Pirate, Schoolgirl Spycam, Vatican, Postini, Presidential Commission: Infosec Certification Creates Dangerously False Sense of Security
Cons Call
- HacKid Con, Kiwi Con, RuxCon, Source Barcelona, Defcon 18 – Pwnies, B-Sides Las Vegas, Badge Sneak Peaks, HNN@Defcon18
Stack of Shame
THANK YOU Predram Amini
Count: 122
Turning 1 This Week:
- ZDI-CAN-533 Microsoft 10, (AV:N/AC:L/Au:N/C:C/I:C/A:C) Discovered 2009-07-23 (363 days ago) by: surerun
Posted: July 25th, 2010
at 6:38am by tan
Tagged with "cross-site scripting", A5/1, A5/3, Adobe, Adrian Lamo, AES, Anti-Virus, Apple, B-Sides, B-Sides Las Vegas, backtrack, Badges, Biadu, Blackhat, bluetooth, BNAP BNAP, botnet, Bradley manning, British Columbia Lottery Corporation, Bug Bounties, Byrone Sonne, Cameron, Commission on Cybersecurity, coordinated disclosure, crack, credit card fraud, Cross Origin, Defcon, Defcon 18, Defcon18, Dell, encryption, Ethical Disclosure, FBI, FREE BYRONE, French Foreign Ministry, full disclosure, g20, Gary McKinnon, Gaza flotilla, Google, google-bomb, gsm, Hack Lab, Hacker Haraoke, Hacker-Space Village, HacKid Con, HaraldScan, hardcoded password, hardcoded username, HNN, HOPE, I O Error, Identity Theft, Internet Storm Centre, Iranian Cyber Army, Israel, Jacob Applebaum, Javascript Injection, Jeremy Brown, JMicron, Jullian Assange, Kingpin, kiwicon, Kraken, LNK, Lund, malware, Mariposa, Microsoft, Microsoft Security Essentials, Mizilla, NAC, NASA, Network Access Control, Nikto, Ninja Networks, nmap, Obama, obfuscated javascript, online casino, OpenAMD, OS detection, PacketFence, PDF Dissector, PDF Reader, Pirate ISP, Pizzahut, PlayNow.com, Postini, PowerEdge, Pwnie's, RealTek, Register.com, responsible disclosure, RFID, Ruxcon, sandboxing, SANS, SCADA, Security B-Sides, Segway Races, Seimans, Session Hijacking, Shell of the Future, SIMATIC WinCC, Snort, Solo, Solvenia, Source Barcelona, SPAM, SploitWare, Stuxnet, Swedish Pirate Party, Tenable, the Next HOPE, TOR, Torrent, TrueCrypt, Turky, Vatican, webcam, Wiki Leaks, Windows Hibernation Files, windows shortcut, wireless drivers, www.pedofilo.com, XSS, Yellow Alert, Zymanics
Comments: 1 comment
HNNCast012910
Also on YouTube (for 3GP mobile or 720p true HD users):
PART 1: Lead Stories & News
PART 2: Quickies
HNNCast for the fourth week of January, 2010
Lead Stories
- Red Eye Crew on Da Loose, Google Bamboozle, Phishing for Oil Execs, Chinese Activists Attacked, TOR Compromise
News
- Another Verdict v. Anonymous, Boards.IE Compromise, South Korean CC Exposure
- Courtnee: the J35t3r
- Zimuse Worm has Teeth, Johnny Dead
Quickies
- TechCrunch Defaced, e107 Buggered, AOL Update Really Zeus, K Slams Door on AdSense, Symantec Slams Door on Spotify, Cons Call
Stack of Shame
- Count: 138
- Happy 1st Birthday to Cisco and RealNetworks
Posted: January 31st, 2010
at 1:26am by tan
Tagged with "South Korea", Activist, anglefire.com, anonymous, AOL Instant Messenger, APT, bid data, Boards.ie, Brazil, Brian Mettenbrink, China, Chinese Human Rights, Church of Scientology, Cisco, CNN, compromise, ConnocoPhillips Marathon Oil, Credit Card data, DDoS, defacement, Dmitriy Guzner, Drive-By, e107, ExxonMobil, FBI, Google, Google AdSense, GovTrends, HNN, HP, IE, Indonesia, Intel, Irish National Police, Jester, Johnny Depp, Joomla, Kaspersky, MBR, Michael Arington, oil company, PCI, Quahog Con, RealNetworks, Red Eye CREW, Schmoo Ball, Schmoo Con, Slovakia, social networking, Spotify, Symantec, TechCrunch, Terrorist, ThePlanet, Tipping Point, TOR, trending topic, Trojan, Twitter, USB, WikID, woot, worm, ZDI, Zero Day Initiative, Zeus, Zimuse, Zone-H Archive
Comments: 6 comments
