From Security Weekly Wiki
Jump to navigationJump to search

Stories for Discussion

Wikipedia Hijacked to Spread Malware - [Joe] - "The German Wikipedia has recently been used to launch a virus attack. Hackers posted a link to an all alleged fix for a new version of the blaster worm. Instead, it was a link to download malicious software. They then sent e-mails advising people to update their computers and directed them to the Wikipedia article. Since Wikipedia has been gaining more trust & credibility, I can see how this would work in some cases. The page has, of course, been fixed but this is nevertheless a valuable lesson for Wikipedia users."

Web Hacking Toolkit - [PaulDotCom] - A fabulous list of tools for web application testing. I am a big fan of Paros Proxy. I have used NTOSpider, and find it to be very thorough, and Dan is a great guy. Nikto has been around 4eva! When was the last update anyway? Whatever happened to RFP? Many tools missing, like WebScarab, but what does everyone use for web app assessments? let us know!!!

The End of Net Anonymity In Brazil - [Joe] - "The Brazilian senate is considering a bill that will make it a crime to join a chat, blog, or download from the Internet without fully identifying oneself first. If approved, it will be a crime, punishable with up to 4 years of jail time, to disseminate virus or trojans, unauthorizedly access data banks or networks and send e-mail, join chat, write a blog or download content anonymously."

New Version Of SinFP released - [PaulDotCom] - This is a pretty cool tool for OS fingerprinting. What I like to do is while I do an Nmap & Nessus scan of my target I collect the packets, then run them through p0f or SinFP in an attempt to fingerprint them beyond what Nmap/Nessus can find. It would be neat if someone were to automate this process and auto-correlate the results between p0f, SinFP, and Nmap.

Links to WiCrawl Toorcon Presentation Video - [PaulDotCom] - We talked about this tool a few weeks back, word is that it will be included in Backtrack.

WVE = CVE for Wireless Vulnerabilities - [Larry] - With all of the hububb about wireless vulnerabilityes, where is a good source to get schooled? The WVE of course!

SPAM at an all time high - [Larry] - I've seen the increase. It seems that the SPAM filer guys are having a hard time keeping up, as are the AV vendors, White hat security researchers and vendors with patches. Is this a war we cannot win?

M$ teaching OEMs about Security Development Lifecycle - [Larry] - Otherwised titled, "How we Created Secure Hardware that was Hacked in Only a Few Weeks". Can you say XBOX (and 360) hacking? I'm a bit skeptical on this one.

Check Point releases "Secure Wirless Router" for Home market - [Larry] - I say "bullshit". The device looks like it has come great features: VPN Endpoint, good firewall (CheckPoint of course), IDS/IPS, gateway AV, and WPA2. Now, what home user will pay $200 for that when the $30 on sale Dlink works (without all of the security features of course). Ont eh "secure wirelss" part, there is no mention of how they secure WPA2. I can bet that it does not involve Radius, 3rd part supplicants, or any apropriate EAP type. Would anyone form ZoneLabs/CheckPoint like to send us some eval units?

[no link yet - Larry's GAWN Gold Paper] - [Larry, Paul] - Yum.

WLAN Location Sensing - [Larry] - A great follow on to my GAWN Gold paper - signifigant more detail on why locating Rogue APs are very difficult to locate accuratley. Lots of hard math!

Fradulent You Tube video on MySpace installing Zango Cash - [Joe] - "Websense® Security LabsTM has discovered a number of user pages on the MySpace domain which have videos that look like they are from You Tube. The videos have an installer embedded within them for the Zango Cash Toolbar. When users click on the video, they are directed to a copy of the video, which is hosted on a site called "Yootube.info.""

Google Accidentally Sends Out Kama Sutra Worm - [Joe] - "Google accidentally sent out e-mail containing a mass mailing worm to about 50,000 members of an e-mail discussion list focused on its Google Video Blog"

Other Stories of Interest

Rainbowcrack, Rainbow Tables, Cain & Abel - [Larry] - From Ethicalhacker and Chris Gates. What a fantastic tutorial and backgtound on rainbow table password cracking.

How to Hack an XP Admin Password - [joe] - Havent tried this yet, but if it works, its a good nugget of info to keep in your knowledge sack

WIMAX Poster - [PaulDotCom] - WiMax, the new wireless hacking frontier. Pretty cool poster detailing the protocol, I am excited to learn about and find new vulnerabilities :)