POPULARITY
If you are not scared every time you go online to do anything then you are not living in the real world. Every transaction you make in the world today is tracked online even if you do not think it is. As a result, all your personal data is available to malicious individuals to use in ways that may cause you financial or other harm. So how do you protect yourself? Can you protect yourself? There is no one answer to this problem since hackers think up new ways to get around measures that are put in place to stop them faster than I can type this post but you have to start now. Software is getting better at stopping them but the best way to stop them is to not let your real data get out there when it does not have to. My guest today is one of the top cybersecurity professionals in the country and he shares with you, my listeners, some simple things you can do right now to protect yourself and your data. Especially if you just received one of those smart devices for the holidays like an Amazon Echo, Google Home or any other IoT device. Yuri Diogenes, Holds a Master of Science in Cybersecurity Intelligence & Forensics Investigation (UTICA College), MBA, ISSA Forth Senior Member. Yuri is a Professor for the Master of Science in Cybersecurity Program from EC-Council University. Yuri is also a co-author of twenty books published by Microsoft Press, Syngress, and Novaterra (in Brazil). Currently Yuri holds the following industry certifications: CISSP, CyberSec First Responder, CompTIA CSA+, E|CEH, E|CSA, E|CHFI, E|CND, CyberSec First Responder, CompTIA, Security+, CompTIA Cloud Essentials Certified, CompTIA Network+, CompTIA Mobility+, CASP, CSA+, MCSE and MCTS. You can follow Yuri on Twitter @yuridiogenes
Jayson E. Street is an author of “Dissecting the Hack: The F0rb1dd3n Network” from Syngress and creator of dissectingthehack.com. He has also spoken at DEFCON, DerbyCon, UCON and at several other ‘CONs and colleges on a variety of Information Security subjects. His life story can be found on Google under “Jayson E. Street.” He is a highly carbonated speaker who has partaken of Pizza from Beijing to Brazil. He does not expect anybody to still be reading this far, but if they are, please note he was chosen as one of Time’s persons of the year for 2006. On today's podcast we talk about: A Diet Pepsi Intervention How does a white hat hacker land himself on NatGeo? How does one break into the WRONG bank? The stories that only Jayson could tell And so much more... Follow him on Twitter at @jaysonstreet
Dissecting the Design of SCADA Web Human Machine Interfaces (HMIs) - Hunting Vulnerabilities Aditya K Sood Architect - Threat Research Labs, Elastica inc. Human Machine Interfaces (HMIs) are the subsets of the Supervisory Control and Data Acquisition (SCADA) systems. HMIs are control panels that provide interfaces for humans to interact with machines and to manage operations of various types of SCADA systems. HMIs have direct access to SCADA databases including critical software programs. The majority of SCADA systems have web-based HMIs that allow the humans to control the SCADA operations remotely through Internet. This talk unveils various flavors of undisclosed vulnerabilities in web-based SCADA HMIs including but not limited to remote or local file inclusions, insecure authentication through clients, weak password hashing mechanisms, firmware discrepancies, hardcoded credentials, insecure web-services, weak cryptographic design, cross-site request forgery, and many others. This talk digs deeper into the design models of various SCADA systems to highlight security deficiencies in the existing SCADA HMI deployments. The research is driven with a motivation to secure SCADA devices and to build more intelligent solutions by hunting vulnerabilities in SCADA HMIs. The vulnerabilities presented in this talk are completely undisclosed and will be revealed for the first time with live demonstrations. Aditya K Sood (Ph.D) is a senior security researcher and consultant. Dr. Sood has research interests in malware automation and analysis, application security, secure software design and cybercrime. He has worked on a number of projects pertaining to penetration testing specializing in product/appliance security, networks, mobile and web applications while serving Fortune 500 clients for IOActive, KPMG and others. He is also a founder of SecNiche Security Labs, an independent web portal for sharing research with security community. He has authored several papers for various magazines and journals including IEEE, Elsevier, CrossTalk, ISACA, Virus Bulletin, Usenix and others. His work has been featured in several media outlets including Associated Press, Fox News, Guardian, Business Insider, CBC and others. He has been an active speaker at industry conferences and presented at BlackHat, DEF CON, HackInTheBox, RSA, Virus Bulletin, OWASP and many others. Dr. Sood obtained his Ph.D from Michigan State University in Computer Sciences. Dr. Sood is also an author of "Targeted Cyber Attacks" book published by Syngress. Company Website: http://www.elastica.net Personal website: http://adityaksood.secniche.org Twitter: @AdityaKSood
Slides Here: https://defcon.org/images/defcon-22/dc-22-presentations/Erven-Merdinger/DEFCON-22-Scott-Erven-and-Shawn-Merdinger-Just-What-The-DR-Ordered-UPDATED.pdf Just What The Doctor Ordered? Scott Erven FOUNDER & PRESIDENT SECMEDIC, INC Shawn Merdinger HEALTHCARE SECURITY RESEARCHER You have already heard the stories of security researchers delivering lethal doses of insulin to a pump, or delivering a lethal shock to a vulnerable defibrillator. But what is the reality of medical device security across the enterprise? Join us for an in-depth presentation about a three-year independent research project, encompassing medical devices across all modalities inside today’s healthcare landscape. Think they are firewalled off? Well think again. Scarier yet, many remain Internet facing and are vulnerable to strategic attack with the potential loss for human life. And yes you will be amazed at what we found in just 1 hour! We will prove that an attacker can access medical devices at thousands of healthcare facilities from anywhere in the world with the potential loss of human life. This discussion will also highlight the fallout from security standards not being a requirement for medical device manufacturers, and our experience in identifying and reporting vulnerabilities. We will provide our insight into what needs to be done for healthcare organizations to respond to the new threat of cyber-attack against medical devices. We are working towards a future where cyber security issues in medical devices are a thing of the past. We will discuss the recent success and traction we have gained with healthcare organizations, federal agencies and device manufacturers in addressing these security issues. The train is now moving, so please join us to find out how you can get involved and make a difference by ensuring patient safety. Scott Erven is a healthcare security visionary and thought leader; with over 15 years’ experience in Information Technology & Security. He is also the Founder and President of SecMedic, Inc. His research on medical device security has been featured in Wired and numerous media outlets worldwide. Mr. Erven has presented his research and expertise in the field internationally. He has been involved in numerous IT certification development efforts as a subject matter expert in Information Security. His current focus is research affecting human life and public safety issues inside today’s healthcare landscape. Shawn Merdinger is a security researcher with 15 years' information security and IT experience. He is founder of MedSec, a LinkedIn group focused on medical device security risks with over 500 members and has worked with Cisco Systems, TippingPoint, an academic medical center, and as a independent security researcher and consultant. He's served as technical editor for 12 security books from Cisco Press, Pearson, Syngress and Wiley. Shawn has presented original security research at DEFCON, DerbyCon, Educause, ShmooCon, CONfidence, NoConName, O’Reilly, IT Underground, InfraGard, ISSA, CarolinaCon and SecurityOpus. He holds a master's from the University of Texas at Austin and two bachelor's from the University of Connecticut.
"Around the world in 80 cons” - A Perspective Jayson E. Street Senior Partner of Krypton Security After spending 15 years in the hacker / InfoSec community, I thought it was time to pause and look back upon all I have seen, everywhere I have been, all the people I met and everything I have learned. And then share some of that knowledge with people to hopefully help them have a leg up moving forward. More importantly, compare and contrast my experiences and perspectives with statistics we commonly see based on attacks and the countries of origin. Statistics tell one story, perspective tells the other. This is a talk on perspectives. Hackers, and hacking, are perceived differently around the world and, in turn, some view our community and what we do with different eyes than ours. I believe most reports/papers we (Americans) see about that topic are skewed and never give an accurate global image. Taking a very small dose of reality and comparing it to what we're subjected to, is interesting. Being a foreign hacker attending a con, or delivering an engagement, in an alien land often led to unexpected situations that I will also share. I will also share while searching for diversity in our global hacking culture I found things that united us more than you would expect. I show how no matter what region of the planet you come from we face a threat we all need to face and overcome. Jayson E. Street is an author of “Dissecting the hack: The F0rb1dd3n Network” from Syngress. Also creator of http://dissectingthehack.com He has also spoken at DEFCON, DerbyCon, UCON and at several other ‘CONs and colleges on a variety of Information Security subjects. His life story can be found on Google under “Jayson E. Street” *He is a highly carbonated speaker who has partaken of Pizza from Beijing to Brazil. He does not expect anybody to still be reading this far but if they are please note he was chosen as one of Time’s persons of the year for 2006. ;-) Twitter: @jaysonstreet
Jayson E. Street is an author of “Dissecting the hack: The F0rb1dd3n Network” from Syngress. Also creator of http://dissectingthehack.com He has also spoken at DEFCON, DerbyCon, UCON and at several other ‘CONs and colleges on a variety of Information Security subjects. His life story can be found on Google under “Jayson E. Street” *He is a highly carbonated speaker who has partaken of Pizza from Beijing to Brazil. He does not expect anybody to still be reading this far but if they are please note he was chosen as one of Time’s persons of the year for 2006. ;-) Twitter: @jaysonstreet
Dan Philpott is a Solutions Architect with Natoma Technologies working with Federal customers on cloud computing and federal information security projects. His work focuses on federal information security initiatives including FISMA, cybersecurity, FDCC, USGCB, HSPD-12, risk management and other federal information assurance initiatives. Has worked on federal cloud computing security with the Cloud Security Alliance and has participated in Federal CIO Council cloud and FedRAMP efforts. Founder of FISMApedia.org, information security instructor with Potomac Forum and co-author of "FISMA and the Risk Management Framework" from Syngress. He is fully buzzword compliant and an owner of the coveted Application Security Specialist baseball cap, known in security circles as the ASS hat.
Jayson E. Street is an author of “Dissecting the hack: The F0rb1dd3n Network” from Syngress. Also creator of dissectingthehack.com He has also spoken at DEFCON, DerbyCon, UCON and at several other ‘CONs and colleges on a variety of Information Security subjects. His life story can be found on Google under “Jayson E. Street” *He is a highly carbonated speaker who has partaken of Pizza from Beijing to Brazil. He does not expect anybody to still be reading this far but if they are please note he was chosen as one of Time’s persons of the year for 2006. ;)
Jayson E. Street is an author of “Dissecting the hack: The F0rb1dd3n Network” from Syngress. He has also spoken at DEFCON, DerbyCon, UCON and at several other ‘CONs and colleges on a variety of Information Security subjects. His life story can be found on Google under “Jayson E. Street.” He is a highly carbonated speaker who has partaken of Pizza from Beijing to Brazil. He does not expect anybody to still be reading this far but if they are please note he was chosen as one of Time’s persons of the year for 2006. ;) Kevin Finisterre is a Senior Research Consultant with Accuvant, has hacked everything from utilities providers to police cars and is keen on disseminating information relating to the identification and exploitation of software vulnerabilities on many platforms.
One year after going DRM-free for their ebooks, Tor Books reports that they have "seen no discernible increase in piracy". In this episode I talk about why that is important, how DRM is anti-consumer and as an author and reader why I prefer DRM-free titles. More: http://www.tor.com/blogs/2013/04/tor-books-uk-drm-free-one-year-later Commentary: http://www.techdirt.com/articles/20130430/22322922899/tor-books-uk-says-ditching-drm-showed-no-increase-piracy.shtml My DRM-free books: http://migratingappstoipv6.com/ (O'Reilly) http://www.7ducattacks.com/ (Published by Syngress and recently made available DRM-free through O'Reilly's ebook platform)
Hosts Chris Gerling – @secbitchris Chris Mills - @thechrisam Andrew Borel – @andrew_secbit Mike Bailey – @mpbailey1911 Topics News The Lab News Items (no particular favoritism of non source links) Red October Multiple writeups at: http://www.kaspersky.com/about/news/virus/2013/Kaspersky_Lab_Identifies_Operation_Red_October_an_Advanced_Cyber_Espionage_Campaign_Targeting_Diplomatic_and_Government_Institutions_Worldwide http://malware.lu/page/articles.html http://www.informationweek.com/security/attacks/operation-red-october-attackers-wielded/240146621 Java 0-day Writeups at: https://blogs.oracle.com/security/entry/security_alert_for_cve_2013 http://krebsonsecurity.com/2013/01/zero-day-java-exploit-debuts-in-crimeware/ Developer outsources his job. Review your logs! Writeup at: http://securityblog.verizonbusiness.com/2013/01/14/case-study-pro-active-log-review-might-be-a-good-idea/ The Lab CTF at RVASec Lab upgrades and changes. Use Our Discount Codes Use code SecuraBit_Connect to get $150.00 off of ANY training course. The discount code is good for all SANS courses in all formats. FREE OnDemand Bundle with corresponding course purchase for SANS Network Security 2012 with code SecuraBit_NS12OD Use code 36449 for 20% off your Syngress order! Upcoming events http://www.secore.info Also check out the RSS feed on the right hand side of the main site! Links http://www.gh0st.net http://www.securabit.com Chat with us on IRC at irc.freenode.net #securabitiTunes Podcast – http://itunes.apple.com/us/podcast/securabit/id280048405iPhone App Now Available – http://itunes.apple.com/us/app/securabit-mobile/id382484512?mt=8
Hosts Chris Gerling – @secbitchris Chris Mills - @thechrisam Andrew Borel – @andrew_secbit Mike Bailey – @mpbailey1911 Guests Christopher Burgess - @burgessct - http://www.burgessct.com/ Topics The state of security in Medical. Social movements. Lab Stuff News Items Project Mayhem' Hacks Accounting Software http://www.darkreading.com/database-security/167901020/security/application-security/240144003/project-mayhem-hacks-accounting-software.html Yes, Google Was Down, Don’t Panic, Google is Cleaning http://www.stateofsearch.com/google-down-cleaning/ Boffin: Android's on-board malware scanner utterly FAILS http://www.theregister.co.uk/2012/12/10/android_malware_scanner_fails/ Apple Maps flaw could be deadly, warn Australian police http://www.cnn.com/2012/12/10/tech/apple-maps-australia-flaw/index.html?hpt=hp_c3 Use Our Discount Codes Use code SecuraBit_Connect to get $150.00 off of ANY training course. The discount code is good for all SANS courses in all formats. http://www.sans.org/info/119125 Use code 36449 for 20% off your Syngress order! Upcoming events http://www.secore.info https://secore.info/upcoming_conferences_feed.rss Links http://www.gh0st.net Chat with us on IRC at irc.freenode.net #securabitiTunes Podcast – http://itunes.apple.com/us/podcast/securabit/id280048405iPhone App Now Available – http://itunes.apple.com/us/app/securabit-mobile/id382484512?mt=8
Hosts Chris Gerling – @secbitchris Chris Mills - @thechrisam Andrew Borel – @andrew_secbit Mike Bailey – @mpbailey1911 Guests Brad Luyster - Louisville LVL1 Hackerspace Topics Encrypting your stuff Files http://www.truecrypt.org/ and https://www.dropbox.com/ https://www.jungledisk.com/ https://spideroak.com/ Passwords http://keepass.info/ https://lastpass.com/ https://agilebits.com/onepassword Web Browsing https://www.eff.org/https-everywhere http://www.tunnelbear.com/ News Items DARPA-Funded Radio HackRF Aims To Be A $300 Wireless Swiss Army Knife For Hackers http://www.forbes.com/sites/andygreenberg/2012/10/19/darpa-funded-radio-hackrf-aims-to-be-a-300-wireless-swiss-army-knife-for-hackers/ Real-Time Cyber-Attack Map http://map.honeynet.org/ via http://it.slashdot.org/story/12/10/19/2344253/real-time-cyber-attack-map Russian Anti-Virus Firm Plans Secure Operating System to Combat Stuxnet http://www.wired.com/threatlevel/2012/10/kaspersky-operating-system/ SMARTPHONE USERS SHOULD BE AWARE OF MALWARE TARGETING MOBILE DEVICES AND SAFETY MEASURES TO HELP AVOID COMPROMISE http://www.ic3.gov/media/2012/121012.aspx State-Sponsored Malware ‘Flame’ Has Smaller, More Devious Cousin http://www.wired.com/threatlevel/2012/10/miniflame-espionage-tool/ DOING INFOSEC RIGHT http://www.doinginfosecright.com/ Use Our Discount Codes Use code SecuraBit_Connect to get $150.00 off of ANY training course. The discount code is good for all SANS courses in all formats. FREE OnDemand Bundle with corresponding course purchase for SANS Network Security 2012 with code SecuraBit_NS12OD Use code 36449 for 20% off your Syngress order! Upcoming events http://www.secore.info https://secore.info/upcoming_conferences_feed.rss Links http://www.gh0st.net Chat with us on IRC at irc.freenode.net #securabitiTunes Podcast – http://itunes.apple.com/us/podcast/securabit/id280048405iPhone App Now Available – http://itunes.apple.com/us/app/securabit-mobile/id382484512?mt=8
Hosts Chris Gerling –@secbitchris Chris Mills - @thechrisam Andrew Borel – @andrew_secbit Mike Bailey –@mpbailey1911 Guests Ronin - @r0wnin Topics The Glitch Derp News ItemsLastPass Sentry Warns You When Your Online Accounts Have Been Breachedhttp://lifehacker.com/5944301/lastpass-sentry-warns-you-when-your-online-accounts-have-been-breached Android Hack: Cracking WiFi passwords with your phonehttp://hackaday.com/2012/09/18/android-hack-cracking-wifi-passwords-with-your-phone/ Judge correctly rules WiFi sniffing legalhttp://erratasec.blogspot.com/2012/09/judge-correctly-rules-wifi-sniffing.htmlhttp://arstechnica.com/tech-policy/2012/09/sniffing-open-wifi-networks-is-not-wiretapping-judge-says/ Google Acquires Online Malware Scanner VirusTotalhttp://lifehacker.com/5941392/google-acquires-online-malware-scanner-virustotal Chase joins Bank of America in possible Islamic attack outagehttp://www.theregister.co.uk/2012/09/19/chase_website_outage/ Use Our Discount Codes Use code SecuraBit_Connect to get $150.00 off of ANY training course. The discount code is good for all SANS courses in all formats. FREE OnDemand Bundle with corresponding course purchase for SANS Network Security 2012 with code SecuraBit_NS12OD Use code 36449 for 20% off your Syngress order! Upcoming events http://www.secore.info https://secore.info/upcoming_conferences_feed.rss Links http://www.gh0st.net http://www.kickstarter.com/projects/1186217328/the-glitch Chat with us on IRC at irc.freenode.net #securabitiTunes Podcast – http://itunes.apple.com/us/podcast/securabit/id280048405iPhone App Now Available – http://itunes.apple.com/us/app/securabit-mobile/id382484512?mt=8
Hosts Chris Gerling – @secbitchris Chris Mills - @thechrisam Andrew Borel – @andrew_secbit Mike Bailey – @mpbailey1911 Nichoals Berthaume - @nberthaume Guests AP Delchi - http://bsideslv.com/sciencefair/ - Submit your idea through your local hackerspace and represent! This is an excellent opportunity to start new hackerspaces or make existing ones even better! Topics Science Fair! Bitcoin Hack GovDeals News ItemsDropbox’s Two-Step Authentication Out of Beta, Enable It Now to Further Secure Your Datahttp://lifehacker.com/5938341/dropboxs-two+step-authentication-out-of-beta-enable-it-now-to-further-secure-your-dataHere’s Everywhere You Should Enable Two-Factor Authentication Right Nowhttp://lifehacker.com/5938565/heres-everywhere-you-should-enable-two+factor-authentication-right-nowHow Secure Are You Online: The Checklisthttp://lifehacker.com/5938980/how-secure-are-you-online-the-checklist‘Degrade, Disrupt, Deceive’: U.S. Talks Openly About Hacking Foeshttp://www.wired.com/dangerroom/2012/08/degrade-disrupt-deceive/Toyota Contractor Accused of Sabotaging Company Network, Stealing Datahttp://www.wired.com/threatlevel/2012/08/toyota-alleges-sabotage/Hackers Release 1 Million Apple Device IDs Allegedly Stolen From FBI Laptophttp://www.wired.com/threatlevel/2012/09/hackers-release-1-million-apple-device-ids-allegedly-stolen-from-fbi-laptop/Another reason to not use floating unregulated currencieshttp://nakedsecurity.sophos.com/2012/09/06/bitcoin-exchange-floored-in-virtual-bank-robbery-250000-stolen-in-security-lapse/http://www.wired.com/images_blogs/dangerroom/2012/09/torturebox.pngUse Our Discount Codes Use code SecuraBit_Connect to get $150.00 off of ANY training course. The discount code is good for all SANS courses in all formats. FREE OnDemand Bundle with corresponding course purchase for SANS Network Security 2012 with code SecuraBit_NS12OD Use code 36449 for 20% off your Syngress order! Upcoming events http://www.secore.info https://secore.info/upcoming_conferences_feed.rss Links http://www.gh0st.net Chat with us on IRC at irc.freenode.net #securabitiTunes Podcast – http://itunes.apple.com/us/podcast/securabit/id280048405iPhone App Now Available – http://itunes.apple.com/us/app/securabit-mobile/id382484512?mt=8
Hosts Chris Gerling – @secbitchris Chris Mills - @thechrisam Andrew Borel – @andrew_secbit Mike Bailey – @mpbailey1911 Guests Phil Young - @mainframed767 - http://mainframed767.tumblr.com/ Topic Crisis Malware Z800 For Sale Citrix AV Talk - Primary vs Secondary Technology Mainframes and TSO Brute News Items Blizzard Hacked http://us.blizzard.com/en-us/securityupdate.html backtrack 5 r3 released http://thehackernews.com/2012/08/backtrack-5-r3-released-download-now.html Use Our Discount Codes Use code SecuraBit_Connect to get $150.00 off of ANY training course. The discount code is good for all SANS courses in all formats. FREE OnDemand Bundle with corresponding course purchase for SANS Network Security 2012 with code SecuraBit_NS12OD Use code 36449 for 20% off your Syngress order! Upcoming events http://www.secore.info https://secore.info/upcoming_conferences_feed.rss Links http://www.richsec.com http://www.gh0st.net Chat with us on IRC at irc.freenode.net #securabitiTunes Podcast – http://itunes.apple.com/us/podcast/securabit/id280048405iPhone App Now Available – http://itunes.apple.com/us/app/securabit-mobile/id382484512?mt=8
Hosts Chris Gerling – @secbitchris Chris Mills - @thechrisam Andrew Borel – @andrew_secbit Mike Bailey – @mpbailey1911 Guests Angus Blitter of Day-Con VI - Day-Con VI Topics NEW Ultra Rare DEF-CON XX 20 Artist Badge http://www.ebay.com/itm/110932582602?ssPageName=STRK:MESELX:IT&_trksid=p3984.m1558.l2649 DEFCON 20 Badge Contest http://elegin.com/ http://gravitasrecordings.bandcamp.com/album/def-con-xx-compilation Events and Contests at DEF CON DerbyCon 2.0 – “The Reunion” http://www.derbycon.com/ DAY-CON VI http://www.day-con.org/127.0.0.1.html Skydog Con http://www.skydogcon.com/ Use Our Discount Codes Use code SecuraBit_Connect to get $150.00 off of ANY training course. The discount code is good for all SANS courses in all formats. FREE OnDemand Bundle with corresponding course purchase for SANS Network Security 2012 with code SecuraBit_NS12OD Use code 36449 for 20% off your Syngress order! Upcoming events http://www.secore.info https://secore.info/upcoming_conferences_feed.rss Links http://www.richsec.com http://www.gh0st.net http://www.day-con.org Chat with us on IRC at irc.freenode.net #securabitiTunes Podcast – http://itunes.apple.com/us/podcast/securabit/id280048405iPhone App Now Available – http://itunes.apple.com/us/app/securabit-mobile/id382484512?mt=8
Hosts Chris Mills – @thechrisam Andrew Borel – @andrew_secbit Guests Jonathan Cran - @jcran http://www.pwnieexpress.com Nicholas B. - @nberthaume connection http://blog.hacktalk.net Topics DEF CON 20 and BSidesLV Calendar http://securabit.com/2012/07/15/defcon-20-and-bsideslv-google-calendar/ Chris Mills’s picks http://securabit.com/2012/07/18/chrisams-picks-for-bsideslv-and-defcon-talks-2012/ http://xkcd.com/1068/ Nicholas B’s Picks BSidesLV http://pastebin.com/Jfa0ih7T http://blog.hacktalk.net/ With Connection and Nicholas B. pwnieexpress interview with Jonathan Cran http://www.pwnieexpress.com Use Our Discount Codes Use code SecuraBit_Connect to get $150.00 off of ANY training course. The discount code is good for all SANS courses in all formats. FREE exam attempt with corresponding course purchase for SANSFIRE 2012 with code SecuraBit_SFGIAC Use code 36449 for 20% off your Syngress order! Upcoming events http://www.secore.info Links http://www.gh0st.net Chat with us on IRC at irc.freenode.net #securabitiTunes Podcast – http://itunes.apple.com/us/podcast/securabit/id280048405iPhone App Now Available – http://itunes.apple.com/us/app/securabit-mobile/id382484512?mt=8
Hosts Chris Gerling – @secbitchris Chris Mills - @thechrisam Andrew Borel – @andrew_secbit Guests Deviant Ollam - @deviantollam http://deviating.net/ Topics TOOOL - The Open Organisation Of Lockpickers http://toool.us/ Physical Security and the Three R's New edition of Practical Lockpicking coming soon! News ItemsCoders' Rights At Risk in the European Parliamenthttps://www.eff.org/deeplinks/2012/06/eff-european-parliament-directive-attack-information-systemsDepartment of Homeland Security and U.S Navy hackedhttp://thehackernews.com/2012/06/department-of-homeland-security-and-us.htmlUS-CERT discloses security flaw in Intel chipshttp://m.csoonline.com/article/708568/us-cert-discloses-security-flaw-in-intel-chips FEMA pushes cyber attack game for businesseshttp://www.v3.co.uk/v3-uk/the-frontline-blog/2184608/fema-pushes-cyber-attack-game-businessesUnited States Department of Defense data leaked by Anonymous hackershttp://thehackernews.com/2012/06/united-states-department-of-defense.htmlKeepTheWebOpen.comhttp://keepthewebopen.com/digital-bill-of-rightsAttacks Targeting US Defense Contractors and Universities Tied to Chinahttp://threatpost.com/en_us/blogs/attacks-targeting-us-defense-contractors-and-universities-tied-china-06131210000 Twitter User oauth token hacked and Exposed by Anonymoushttp://thehackernews.com/2012/06/10000-twitter-user-oauth-token-hacked.htmlPassword flaw leaves MySQL, MariaDB open to brute force attackhttp://go.theregister.com/feed/www.theregister.co.uk/2012/06/11/mysql_mariadb_password_flaw/Use Our Discount Codes Use code SecuraBit_Connect to get $150.00 off of ANY training course. The discount code is good for all SANS courses in all formats. FREE exam attempt with corresponding qualifying course purchase for SANSFIRE 2012 with code SecuraBit_SFGIAC (Expires July 6th!) Use code 36449 for 20% off your Syngress order! Upcoming events http://www.secore.info Links http://www.richsec.com http://www.gh0st.net Chat with us on IRC at irc.freenode.net #securabitiTunes Podcast – http://itunes.apple.com/us/podcast/securabit/id280048405iPhone App Now Available – http://itunes.apple.com/us/app/securabit-mobile/id382484512?mt=8
Hosts Chris Gerling – @secbitchris Chris Mills - @chrisam Andrew Borel – @andrew_secbit Mike Bailey – @mpbailey1911 Guests Jason Andress - @jason_andress Ronin - @r0wnin Topics APT and Penetration Testing Bluetooth Hacking and Reconnaissance News ItemsGoogle Warning Users About State-Sponsored Attacks | threatposthttp://m.threatpost.com/en_us/blogs/google-warning-users-about-state-sponsored-attacks-060512Apple Releases Guide To iOS Security - TechCrunchhttp://m.techcrunch.com/2012/06/04/apple-releases-guide-to-ios-security/FlameA Massive Web of Fake Identities and Websites Controlled Flame Malwarehttp://www.wired.com/threatlevel/2012/06/flame-command-and-control/Spy malware infecting Iranian networks is engineering marvel to beholdhttp://arstechnica.com/security/2012/05/spy-malware-infecting-iranian-networks-is-engineering-marvel-to-behold/Meet ‘Flame,’ The Massive Spy Malware Infiltrating Iranian Computershttp://www.wired.com/threatlevel/2012/05/flame/StuxnetReport: Obama Ordered Stuxnet to Continue After Bug Caused It to Spread Wildlyhttp://www.wired.com/threatlevel/2012/06/obama-ordered-stuxnet-continued/Confirmed: US and Israel created Stuxnet, lost control of ithttp://arstechnica.com/tech-policy/2012/06/confirmed-us-israel-created-stuxnet-lost-control-of-it/Words to Avoid Online If You Don't Want to Join the Government's Watch List http://lifehacker.com/5913945/words-to-avoid-online-if-you-dont-want-to-join-the-governments-watch-listUse Our Discount Codes Use code SecuraBit_Connect to get $150.00 off of ANY training course. The discount code is good for all SANS courses in all formats. FREE exam attempt with corresponding course purchase for SANSFIRE 2012 with code SecuraBit_SFGIAC Use code 36449 for 20% off your Syngress order! Upcoming events http://www.secore.info Links http://www.rvasec.com http://www.richsec.com http://www.gh0st.net Chat with us on IRC at irc.freenode.net #securabitiTunes Podcast – http://itunes.apple.com/us/podcast/securabit/id280048405iPhone App Now Available – http://itunes.apple.com/us/app/securabit-mobile/id382484512?mt=8
Hosts Chris Gerling – @secbitchris Mike Bailey - @mpbailey1911 Andrew Borel – @andrew_secbit Guests Dr. Tran Emwave Professor Farnsworth News Items ANONYMOUS CLAIM: ‘WE HAVE ACCESS TO EVERY CLASSIFIED DATABASE IN THE U.S. GOVERNMENT’ http://www.theblaze.com/stories/anonymous-claim-we-have-access-to-every-classified-database-in-the-u-s-government/ Pentagon boosts contractor cybersecurity program http://thehackernews.com/2012/05/pentagon-boosts-contractor.html "The effort, known as the Defense Industrial Base ("DIB") program, is a voluntary information-sharing program in which the Department of Defense shares "unclassified indicators and related, classified contextual information" about cyber-attacks and threats with defense contractors.” “In exchange, defense contractors report known intrusions and can receive forensics analysis and damage assessments from the government after those attacks. In an optional part of the program, the DIB Enhanced Cybersecurity Services, the government shares additional classified threat and technical data with defense contractors and Internet service providers. " 17 year old Teenager arrested over TeamPoison hacking attacks http://thehackernews.com/2012/05/17-year-old-teenager-arrested-over.html "A teenage boy has been arrested on suspicion of being a member of "TeamPoison", a computer hacking group that has claimed responsibility for 1,400 offences including an attack on the phone system of Scotland Yard's counter-terrorism unit last month. These include attacks on the United Nations, the UK Anti-Terrorist Hotline, MI6 and RIM, as well as politicians including Nicolas Sarkozy and Tony Blair.” “The boy, who police suspect used the hacker nickname 'MLT' and was a spokesman for TeamPoison, was interviewed at a local police station on offences under the Computer Misuse Act on Wednesday. The arrest is part of an ongoing investigation by the Police Central e-Crime Unit (PCeU) division of the Metropolitan Police into various hacking gangs who have made headlines in the last year or so.” “TeamPoison’s highest-profile attack was mounted against Scotland Yard’s counter-terror hotline last month, has also claimed responsibility Distributed Denial of Service attacks against banks in collaboration with Anonymous, another “hacktivist” group with similar anti-corporate and anti-authority politics.” 55,000+ Twitter Accounts Hacked, How To Tell If Yours Was Among Them http://www.technobuffalo.com/internet/social-networking/55000-of-twitter-accounts-hacked-how-to-tell-if-yours-was-among-them/ How to Securely Share a Password with Someone Using LastPass http://lifehacker.com/5909321/how-to-securely-share-a-password-with-someone-using-lastpass Not a bad way to avoid "hey, what's the password to $server" and yelling the answer over the cubicle walls for all to hear. Other ways to securely share or transfer passwords/acess FBI Wants Backdoors in Facebook, Skype and Instant Messaging http://www.wired.com/threatlevel/2012/05/fbi-seeks-internet-backdoors/ Everyone Has Been Hacked. Now What? http://www.wired.com/threatlevel/2012/05/everyone-hacked/ ‘Unknowns’ Hacking Group Hits NASA, Air Force, Harvard and Others in ‘Hacking for Good’ Effort http://www.theblaze.com/stories/unknowns-hacking-group-hits-nasa-air-force-harvard-and-others-in-hacking-for-good-effort/ Use Our Discount Codes Use code SecuraBit_Connect to get $150.00 off of ANY training course. The discount code is good for all SANS courses in all formats. FREE exam attempt with corresponding course purchase for SANSFIRE 2012 with code SecuraBit_SFGIAC Use code 36449 for 20% off your Syngress order! Upcoming events http://www.secore.info Links http://www.carolinacon.org http://www.rvasec.com http://www.richsec.com http://www.gh0st.net Chat with us on IRC at irc.freenode.net #securabitiTunes Podcast – http://itunes.apple.com/us/podcast/securabit/id280048405iPhone App Now Available – http://itunes.apple.com/us/app/securabit-mobile/id382484512?mt=8
Hosts Chris Gerling –@secbitchris Chris Mills - @chrisam Andrew Borel – @andrew_secbit Guests Tom Eston - @agent0x0 Mobile App/Device Security and Security Justice. Topics Lab Contests Banter News Items Skype User IP Address Disclosure http://pastebin.com/rBu4jDm8 Google knew street cars were slurping wifi (Marius Milner was the engineer, of NetStumbler fame) http://www.theregister.co.uk/2012/04/30/google_slurp_ok/ http://www.theregister.co.uk/2012/05/01/slurp_engineer_doe_named/ Mozilla is first major tech company to denounce CISPA http://news.cnet.com/8301-1009_3-57425719-83/mozilla-is-first-major-tech-company-to-denounce-cispa/?tag=txt;title Mac Flashback trojan still making $10,000 a day http://www.darkreading.com/insider-threat/167801100/security/attacks-breaches/232901268/apple-mac-flashback-trojan-gang-still-making-money.html Indictment Returned for Jeremy Hammond in Chicago Anonymous case http://abcnews.go.com/Technology/wireStory/indictment-returned-nyc-computer-hacking-case-16264667#.T6HRSqtSTlw Use Our Discount Codes Use code SecuraBit_Connect to get $150.00 off of ANY training course. The discount code is good for all SANS courses in all formats. FREE exam attempt with corresponding course purchase for SANSFIRE 2012 with code SecuraBit_SFGIAC Use code 36449 for 20% off your Syngress order! Upcoming events http://www.secore.info Links http://www.rvasec.com http://www.richsec.com http://www.gh0st.net Chat with us on IRC at irc.freenode.net #securabitiTunes Podcast – http://itunes.apple.com/us/podcast/securabit/id280048405iPhone App Now Available – http://itunes.apple.com/us/app/securabit-mobile/id382484512?mt=8
SecuraBit Episode 72: Take risks, get owned! Recorded on December 29, 2010 Hosts: Anthony Gartner – @anthonygartner http://anthonygartner.com Chris Gerling – @chrisgerling Christopher Mills – @thechrisam Jason Mueller – @securabit_jay Andrew Borel – @andrew_secbit Guests: Jack Jones discusses Risk Assessment and the FAIR method http://riskmanagementinsight.com/ General topics: Risk Management, Small biz vs Enterprise Monte Carlo? How to Measure Anything: Finding the Value of Intangibles in Business by Douglas W. Hubbard http://www.amazon.com/How-Measure-Anything-Intangibles-Business/dp/0470539399/ref=tmm_hrd_title_0 OnePassword - http://agilewebsolutions.com/onepassword KeePass - http://keepass.info/ LastPass - http://lastpass.com/ Use our discount code "Connect_SecuraBit10" to get 10% off of ANY training course. The discount code is good for all SANS courses in all formats. Upcoming events #BSidesMSP (7 Jan 2011) ShmooCon (28-31 Jan 2011) RSA Conference 2011 (14 -18 Feb 2011) #BSidesSanFrancisco (14-15 Feb 2011) #BSidesAustin (11-12 March 2011) http://www.keepsecurityweird.org/ Links: http://securabit.com Chat with us on IRC at irc.freenode.net #securabit iTunes Podcast - http://itunes.apple.com/us/podcast/securabit/id280048405 iPhone App Now Available - http://itunes.apple.com/us/app/securabit-mobile/id382484512?mt=8
SecuraBit Episode 70: Following the wh1t3Rabbit, Hat-tricks with a wh1t3RabbitDecember 1, 2010Hosts:Anthony Gartner – @anthonygartner http://anthonygartner.comChristopher Mills – @thechrisamChris Gerling – @chrisgerlingAndrew Borel – @andrew_secbitGuests:HP's Rafal Los - @wh1t3RabbitSubscribe to his blog at http://hp.com/go/white-rabbitGeneral topics:Shmoocon tickets, who’s got them?Hat-trick http://en.wikipedia.org/wiki/Hat-trickPassword security, does it really matter?Application security to detect and prevent malicious code.Diaspora https://joindiaspora.com/Security MetricsStory time with RafalRSnake shutting down his blog after 5 years and 1000 posts http://ha.ckers.org/FTC Staff Issues Privacy Report Offers Framework for Consumers, Businesses, and Policymakers: Endorses “Do Not Track” to Facilitate Consumer Choice About Online Trackinghttp://www.ftc.gov/opa/2010/12/privacyreport.shtmSANS Discount:Use our discount code "Connect_SecuraBit10" to get 10% off of ANY training course. The discount code is good for all SANS courses in all formats.Syngress Discount:Use our discount code 36449 to receive 20% off any order direct from Elsevier!Upcoming eventsSunbelt Quarterly Briefing December 8th, 2010 at 9am and 2pmDojoCon December 11-12, 2010#BSidesBerlin December 28-30, 2010ShmooCon January 28-31, 2011Links:http://securabit.comChat with us on IRC at irc.freenode.net #securabitiTunes Podcast - http://itunes.apple.com/us/podcast/securabit/id280048405iPhone App Now Available - http://itunes.apple.com/us/app/securabit-mobile/id382484512?mt=8
SecuraBit Episode 67: We're all gonna get HAX!October 6, 2010Hosts:Chris Gerling – @chrisgerlingChristopher Mills – @thechrisamAndrew Borel – @andrew_secbit Anthony GartnerGuest: Roger GrimesGeneral topics:Authored eight books, and co-authored another 4Chasing hackers for 23 yearsSCADA issuesWhat the bad guys are doing? Black hat cloud backup?Offline patch and reset days to recover from a issue.Whitelisting may be a solution, that is just too hard to implement in many environments.Needs full sign off from the organizationDifferent levels of identificationSyngress book of the month club for episode 68Utilize code 36449 for a discount on books from Syngress!Executives should have Macs because it makes it easier on the pen testerPatching and warrantiesSANS Connector Program10% of any SANS events or training use coupon code Connect_SecuraBit10Lenny Zeltser Facebook Social Captcha Authenticationhttp://blog.zeltser.com/post/1258010402/facebook-social-captcha-authenticationUpcoming eventsHacker Halted http://www.hackerhalted.com/ Tim Is speaking October 14thPhreaknic 10/15. http://www.phreaknic.info/pn14/Bsides Delaware 11/6Bsides Dallas-FortWorth 11/6Links:http://securabit.comChat with us on IRC at irc.freenode.net #securabitiTunes Podcast - http://itunes.apple.com/us/podcast/securabit/id280048405iPhone App Now Available - http://itunes.apple.com/us/app/securabit-mobile/id382484512?mt=8
SecuraBit Episode 66:September 22, 2010 Hosts:Anthony Gartner – @anthonygartner http://anthonygartner.comChris Gerling – @chrisgerlingChristopher Mills – @thechrisamJason Mueller – @securabit_jayAndrew Borel – @andrew_secbit Guests:Aaron Barr (HB Gary Federal) @aaronbarr We discuss HBGary with Aaron, and delve into some fun topics like malware analysis, forensics, and other technical skills. General topics:Media Sponsor for:SecTor 2010 - http://www.sector.ca/Security Training October 25.Conference Sessions October 26 & 27, 2010.Twitter XSShttp://status.twitter.com/post/1161435117/xss-attack-identified-and-patched Robin SageMalware analysisBehavior of malware in memory FGET is pretty pimp (free tool that remotely images NTFS volumes)https://www.hbgary.com/community/shawnblog/fget-v10-goes-live/ Free tools from HB Garyhttps://www.hbgary.com/community/free-tools/ ForensicsHow flypaper plays into image grabbing Upcoming eventsHacker Halted http://www.hackerhalted.com/ Tim Is speaking October 14thLouisivlle Infosec 10/7. http://www.louisvilleinfosec.com/Atlanta B-Sides 10/8. http://www.securitybsides.com/BSidesAtlantaHacKid - http://www.hackid.org/ 10/9-10/10Phreaknic 10/15. http://www.phreaknic.info/pn14/Links: http://www.HBGary.com/http://www.SecuraBit.comChat with us on IRC at irc.freenode.net #securabitiTunes Podcast - http://itunes.apple.com/us/podcast/securabit/id280048405iPhone App Now Available - http://itunes.apple.com/us/app/securabit-mobile/id382484512?mt=8
Live from the Paul's Security Weekly Studio.... Want to register for any SANS conference? Please visit http://www.securityweekly.com/sans/ for our referral program. Sponsored by Core Security, listen for the new customer discount code at the end of the show Sponsored by Syngress, be the first to post the answer to the question at the end of the show and win a free book! Want some cool Security Weekly Gear? Do you hack naked? Check out our Cafepress Store! Full Show Notes Hosts: Larry "Uncle Larry" Pesce, Paul Asadoorian, Nick "Twitchy" Depetrillo, Joe "Mr. C" Conlin
Live from SANS San Diego 2007.... Want to register for any SANS conference? Please visit http://www.securityweekly.com/sans/ for our referral program. Sponsored by Core Security, listen for the discount code at the end of the show Sponsored by Syngress, be the first to post the answer to the question at the end of the show and win a free book! Want some cool Security Weekly Gear? Do you hack naked? Check out our Cafepress Store! Full Show Notes
Live from the Brand New Paul's Security Weekly Studio.... Want to register for any SANS conference? Please visit http://www.securityweekly.com/sans/ for our referral program. Sponsored by Core Security, listen for the discount code at the end of the show Sponsored by Syngress, be the first to post the answer to the question at the end of the show and win a free book! Please go update our frapper map! Want some cool Security Weekly Gear? Do you hack naked? Check out our Cafepress Store! Full Show Notes Hosts: Larry "Uncle Larry" Pesce, Paul Asadoorian, Nick "Twitchy" Depetrillo, Joe "Mr. C" Conlin Email: psw@securityweekly.com
Live from Shmoocon! WARNING: This was recorded in front of a live audience, and as a result, it contains some audio anomalies and stronger then usual language. Want to register for any SANS conference? Please visit http://www.securityweekly.com/sans/ for our referral program. Sponsored by Core Security, listen for the discount code at the end of the show Sponsored by Syngress, be the first to post the answer to the question at the end of the show and win a free book! Please go update our frapper map! Want some cool Security Weekly Gear? Do you hack naked? Check out our Cafepress Store! Full Show Notes Hosts: Larry "Uncle Larry" Pesce, Paul Asadoorian, Nick "Twitchy" Depetrillo, Joe "Mr. C" Conlin Email: psw@securityweekly.com
Live from the Brand New Paul's Security Weekly Studio.... Want to register for any SANS conference? Please visit http://www.securityweekly.com/sans/ for our referral program. Sponsored by Core Security, listen for the discount code at the end of the show Sponsored by Syngress, be the first to post the answer to the question at the end of the show and win a free book! Please go update our frapper map! Want some cool Security Weekly Gear? Do you hack naked? Check out our Cafepress Store! Full Show Notes Hosts: Larry "Uncle Larry" Pesce, Paul Asadoorian, Nick "Twitchy" Depetrillo, Joe "Mr. C" Conlin Email: psw@securityweekly.com
Live from the Brand New Paul's Security Weekly Studio.... Want to register for any SANS conference? Please visit http://www.securityweekly.com/sans/ for our referral program. Sponsored by Core Security, listen for the discount code at the end of the show Sponsored by Syngress, be the first to post the answer to the question at the end of the show and win a free book! Please go update our frapper map! Want some cool Security Weekly Gear? Do you hack naked? Check out our Cafepress Store! Full Show Notes Hosts: Larry "Uncle Larry" Pesce, Paul Asadoorian, Nick "Twitchy" Depetrillo, Joe "Mr. C" Conlin Email: psw@securityweekly.com
Live from the Brand New Paul's Security Weekly Studio.... Want to register for any SANS conference? Please visit http://www.securityweekly.com/sans/ for our referral program. Sponsored by Core Security, listen for the discount code at the end of the show Sponsored by Syngress, be the first to post the answer to the question at the end of the show and win a free book! Please go update our frapper map! Want some cool Security Weekly Gear? Do you hack naked? Check out our Cafepress Store! Full Show Notes Hosts: Larry "Uncle Larry" Pesce, Paul Asadoorian, Nick "Twitchy" Depetrillo, Joe "Mr. C" Conlin Email: psw@securityweekly.com
Live from the Brand New Paul's Security Weekly Studio.... Want to register for any SANS conference? Please visit http://www.securityweekly.com/sans/ for our referral program. Sponsored by Core Security, listen for the discount code at the end of the show Sponsored by Syngress, be the first to post the answer to the question at the end of the show and win a free book! Please go update our frapper map! Want some cool Security Weekly Gear? Do you hack naked? Check out our Cafepress Store! Full Show Notes Hosts: Larry "Uncle Larry" Pesce, Paul Asadoorian, Nick "Twitchy" Depetrillo, Joe "Mr. C" Conlin Email: psw@securityweekly.com
Live from the Brand New Paul's Security Weekly Studio.... Want to register for any SANS conference? Please visit http://www.securityweekly.com/sans/ for our referral program. Sponsored by Core Security, listen for the discount code at the end of the show Sponsored by Syngress, be the first to post the answer to the question at the end of the show and win a free book! Please go update our frapper map! Want some cool Security Weekly Gear? Do you hack naked? Check out our Cafepress Store! Full Show Notes Hosts: Larry "Uncle Larry" Pesce, Paul Asadoorian, Nick "Twitchy" Depetrillo, Joe "Mr. C" Conlin Email: psw@securityweekly.com
Live from the Brand New Paul's Security Weekly Studio.... Want to register for any SANS conference? Please visit http://www.securityweekly.com/sans/ for our referral program. Sponsored by Core Security, listen for the discount code at the end of the show Sponsored by Syngress, be the first to post the answer to the question at the end of the show and win a free book! Sponsored by Astaro, Astaro Security Gateway line of network security appliances. Listen to the show for a special offer! Please go update our frapper map! Want some cool Security Weekly Gear? Do you hack naked? Check out our Cafepress Store! Full Show Notes Hosts: Larry "Uncle Larry" Pesce, Paul Asadoorian, Nick "Twitchy" Depetrillo, Joe "Mr. C" Conlin Email: psw@securityweekly.com
Live from the Brand New Paul's Security Weekly Studio.... Want to register for any SANS conference? Please visit http://www.securityweekly.com/sans/ for our referral program. Sponsored by Core Security, listen for the discount code at the end of the show Sponsored by Syngress, be the first to post the answer to the question at the end of the show and win a free book! Sponsored by Astaro, Astaro Security Gateway line of network security appliances. Listen to the show for a special offer! Please go update our frapper map! Want some cool Security Weekly Gear? Do you hack naked? Check out our Cafepress Store! Full Show Notes Hosts: Larry "Uncle Larry" Pesce, Paul Asadoorian, Nick "Twitchy" Depetrillo, Joe "Mr. C" Conlin Email: psw@securityweekly.com
Live from the Brand New Paul's Security Weekly Studio.... Sponsored by The SANS Institute, get schooled at Bootcamp 2007 in Orlando, FL January 13-19! Now drop and give me 20 exploits! Want to register for any SANS conference? Please visit http://www.securityweekly.com/sans/ for our referral program. Sponsored by Core Security, listen for the discount code at the end of the show Sponsored by Syngress, be the first to post the answer to the question at the end of the show and win a free book! Sponsored by Astaro, Astaro Security Gateway line of network security appliances. Listen to the show for a special offer! Please go update our frapper map! Want some cool Security Weekly Gear? Do you hack naked? Check out our Cafepress Store! Full Show Notes Hosts: Larry "Uncle Larry" Pesce, Paul Asadoorian, Nick "Twitchy" Depetrillo, Joe "Mr. C" Conlin Email: psw@securityweekly.com
Live from the Brand New Paul's Security Weekly Studio.... Sponsored by The SANS Institute, get schooled at Bootcamp 2007 in Orlando, FL January 13-19! Now drop and give me 20 exploits! Want to register for any SANS conference? Please visit http://www.securityweekly.com/sans/ for our referral program. Sponsored by Core Security, listen for the discount code at the end of the show Sponsored by Syngress, be the first to post the answer to the question at the end of the show and win a free book! Sponsored by Astaro, Astaro Security Gateway line of network security appliances. Listen to the show for a special offer! Please go update our frapper map! Want some cool Security Weekly Gear? Do you hack naked? Check out our Cafepress Store! Full Show Notes Hosts: Larry "Uncle Larry" Pesce, Paul Asadoorian, Nick "Twitchy" Depetrillo, Joe "Mr. C" Conlin Email: psw@securityweekly.com
Live from the Brand New Paul's Security Weekly Studio.... Sponsored by The SANS Institute, get schooled at Bootcamp 2007 in Orlando, FL January 13-19! Now drop and give me 20 exploits! Sponsored by Core Security, listen for the discount code at the end of the show Sponsored by Syngress, be the first to post the answer to the question at the end of the show and win a free book! Sponsored by Astaro, Astaro Security Gateway line of network security appliances. Listen to the show for a special offer! Please go update our frapper map! Want some cool Security Weekly Gear? Do you hack naked? Check out our Cafepress Store! Full Show Notes Hosts: Larry "Uncle Larry" Pesce, Paul Asadoorian, Nick "Twitchy" Depetrillo, Joe "Mr. C" Conlin Email: psw@securityweekly.com
Live from the Brand New Paul's Security Weekly Studio. Sponsored by The SANS Institute, get schooled at Bootcamp 2007 in Orlando, FL January 13-19! Now drop and give me 20 exploits! Sponsored by Core Security, listen for the discount code at the end of the show Sponsored by Syngress, be the first to post the answer to the question at the end of the show and win a free book! Sponsored by Astaro, Astaro Security Gateway line of network security appliances. Listen to the show for a special offer! Please go update our frapper map! Want some cool Security Weekly Gear? Do you hack naked? Check out our Cafepress Store! Full Show Notes Hosts: Larry "Uncle Larry" Pesce, Paul Asadoorian, Nick "Twitchy" Depetrillo, Joe "Mr. C" Conlin Email: psw@securityweekly.com
Live from the Brand New Paul's Security Weekly Studio where we were celebrating the one year anniversary of our show! Happy Birthday Paul's Security Weekly! In the studio to help us celebrate is Andrew Lockhart, creator of Snort Wireless, and author of Network Security Hacks. Spinning for us live in the studio for this episode is DJ Jackalope! If you like the sounds, make sure you go buy stuff from her Cafepress store! She is also the proud owner of the only autographed pair of twitchy thongs :) Sponsored by The SANS Institute, get schooled at Bootcamp 2007 in Orlando, FL January 13-19! Now drop and give me 20 exploits! Sponsored by Core Security, listen for the discount code at the end of the show Sponsored by Syngress, be the first to post the answer to the question at the end of the show and win a free book! Sponsored by Astaro, Astaro Security Gateway line of network security appliances. Listen to the show for a special offer! Please go update our frapper map! Want some cool Security Weekly Gear? Do you hack naked? Check out our Cafepress Store! Full Show Notes Hosts: Larry "Uncle Larry" Pesce, Paul Asadoorian, Nick "Twitchy" Depetrillo, Joe "Mr. C" Conlin Email: psw@securityweekly.com
Live from the Brand New Paul's Security Weekly Studio where we were celebrating the one year anniversary of our show! Happy Birthday Paul's Security Weekly! In the studio to help us celebrate is Andrew Lockhart, creator of Snort Wireless, and author of Network Security Hacks. Spinning for us live in the studio for this episode is DJ Jackalope! If you like the sounds, make sure you go buy stuff from her Cafepress store! She is also the proud owner of the only autographed pair of twitchy thongs :) Sponsored by The SANS Institute, get schooled at Bootcamp 2007 in Orlando, FL January 13-19! Now drop and give me 20 exploits! Sponsored by Core Security, listen for the discount code at the end of the show Sponsored by Syngress, be the first to post the answer to the question at the end of the show and win a free book! Sponsored by Astaro, Astaro Security Gateway line of network security appliances. Listen to the show for a special offer! Please go update our frapper map! Want some cool Security Weekly Gear? Do you hack naked? Check out our Cafepress Store! Full Show Notes Hosts: Larry "Uncle Larry" Pesce, Paul Asadoorian, Nick "Twitchy" Depetrillo, Joe "Mr. C" Conlin Email: psw@securityweekly.com
Live from the Brand New Paul's Security Weekly Studio.... Sponsored by Core Security, listen for the discount code at the end of the show Sponsored by Syngress, be the first to post the answer to the question at the end of the show and win a free book! Sponsored by Astaro, Astaro Security Gateway line of network security appliances. Listen to the show for a special offer! Please go update our frapper map! Want some cool Security Weekly Gear? Do you hack naked? Check out our Cafepress Store! Full Show Notes Hosts: Larry "Uncle Larry" Pesce, Paul Asadoorian, Nick "Twitchy" Depetrillo, Joe "Mr. C" Conlin Email: psw@securityweekly.com
Live from the Paul's Security Weekly Studio.... Sponsored by Core Security, listen for the discount code at the end of the show Sponsored by Syngress, be the first to post the answer to the question at the end of the show and win a free book! Sponsored by Astaro, Astaro Security Gateway line of network security appliances. Listen to the show for a special offer! Please go update our frapper map! Want some cool Security Weekly Gear? Do you hack naked? Check out our Cafepress Store! Full Show Notes Hosts: Larry "Uncle Larry" Pesce, Paul Asadoorian, Nick "Twitchy" Depetrillo, Joe "Mr. C" Conlin Email: psw@securityweekly.com
Live from the Paul's Security Weekly Studio.... Sponsored by Core Security, listen for the discount code at the end of the show Sponsored by Syngress, be the first to post the answer to the question at the end of the show and win a free book! Sponsored by Astaro, Astaro Security Gateway line of network security appliances. Listen to the show for a special offer! Please go update our frapper map! Want some cool Security Weekly Gear? Do you hack naked? Check out our Cafepress Store! Full Show Notes Hosts: Larry "Uncle Larry" Pesce, Paul Asadoorian, Nick "Twitchy" Depetrillo, Joe "Mr. C" Conlin Email: psw@securityweekly.com
Live from Las Vegas, SANS Network Security 2006.... Special thanks to BlackDrag0n for coming out to help and hang out! We would also like to thank Steve, Alyson, and the entire SANS staff. Sponsored by Core Security, listen for the discount code at the end of the show Sponsored by Syngress, be the first to post the answer to the question at the end of the show and win a free book! Please go update our frapper map! Want some cool Security Weekly Gear? Do you hack naked? Check out our Cafepress Store! Full Show Notes Hosts: Larry "Uncle Larry" Pesce, Paul Asadoorian, Nick "Twitchy" DePetrillo, "The Mason" Email: psw@securityweekly.com
Live from the Paul's Security Weekly Studio.... Sponsored by Core Security, listen for the discount code at the end of the show Sponsored by Syngress, be the first to post the answer to the question at the end of the show and win a free book! You should register for SANS Las Vegas 2006, we will be there doing a live show! Please go update our frapper map! Want some cool Security Weekly Gear? Do you hack naked? Check out our Cafepress Store! Full Show Notes Hosts: Larry "Uncle Larry" Pesce, Paul Asadoorian, Nick "Twitchy" Depetrillo, Joe "Mr. C" Conlin Email: psw@securityweekly.com
Live from the Paul's Security Weekly Studio.... Sponsored by Core Security, listen for the discount code at the end of the show Sponsored by Syngress, be the first to post the answer to the question at the end of the show and win a free book! You should register for SANS Las Vegas 2006, we will be there doing a live show! Please go update our frapper map! Want some cool Security Weekly Gear? Do you hack naked? Check out our Cafepress Store! Full Show Notes Hosts: Larry "Uncle Larry" Pesce, Paul Asadoorian, Nick "Twitchy" Depetrillo, Joe "Mr. C" Conlin Email: psw@securityweekly.com
Live from the Paul's Security Weekly Studio.... Sponsored by Core Security, listen for the discount code at the end of the show Sponsored by Syngress, be the first to post the answer to the question at the end of the show and win a free book! You should register for SANS Las Vegas 2006, we will be there doing a live show! Please go update our frapper map! Want some cool Security Weekly Gear? Do you hack naked? Check out our Cafepress Store! Full Show Notes Hosts: Larry "Uncle Larry" Pesce, Paul Asadoorian, Nick "Twitchy" Depetrillo, Joe "Mr. C" Conlin Email: psw@securityweekly.com
Live from the Paul's Security Weekly Studio.... Sponsored by Core Security, listen for the discount code at the end of the show Sponsored by Syngress, be the first to post the answer to the question at the end of the show and win a free book! You should register for SANS Las Vegas 2006, we will be there doing a live show! Please go update our frapper map! Want some cool Security Weekly Gear? Do you hack naked? Check out our Cafepress Store! Full Show Notes Hosts: Larry "Uncle Larry" Pesce, Paul Asadoorian, Nick "Twitchy" Depetrillo, Joe "Mr. C" Conlin Email: psw@securityweekly.com
Live from the Paul's Security Weekly Studio.... Sponsored by Core Security, listen for the discount code at the end of the show Sponsored by Syngress, be the first to post the answer to the question at the end of the show and win a free book! You should register for SANS Las Vegas 2006, we will be there doing a live show! Please go update our frapper map! Want some cool Security Weekly Gear? Do you hack naked? Check out our Cafepress Store! Full Show Notes Hosts: Larry Pesce, Paul Asadoorian, "Twitchy", Joe Conlin Email: psw@securityweekly.com
Live from the Paul's Security Weekly Studio.... Sponsored by Core Security, listen for the discount code at the end of the show Sponsored by Syngress, be the first to post the answer to the question at the end of the show and win a free book! You should register for SANS Las Vegas 2006, we will be there doing a live show! Please go update our frapper map! Full Show Notes Hosts: Larry Pesce, Paul Asadoorian, "Twitchy", Joe Conlin Email: psw@securityweekly.com
Live from the Paul's Security Weekly Studio.... Sponsored by Core Security, listen for the discount code at the end of the show Sponsored by Syngress, be the first to post the answer to the question at the end of the show and win a free book! You should register for SANS Las Vegas 2006, we will be there doing a live show! Please go update our frapper map! Full Show Notes Hosts: Larry Pesce, Paul Asadoorian, "Twitchy" Email: psw@securityweekly.com
Live from the Paul's Security Weekly Studio.... Sponsored by Core Security, listen for the discount code at the end of the show Sponsored by Syngress, be the first to post the answer to the question at the end of the show and win a free book! You should register for SANS Las Vegas 2006, we will be there doing a live show! Please go update our frapper map! Full Show Notes Hosts: Larry Pesce, Paul Asadoorian, "Twitchy" Email: psw@securityweekly.com
Live from the Paul's Security Weekly Studio.... This episode was also broadcast over our Icecast server. Details will be announced in our IRC chatroom #Security Weekly on Freenode (irc.freenode.net) and on the Security Weekly blog. Sponsored by Core Security, listen for the discount code at the end of the show Sponsored by Syngress, be the first to post the answer to the question at the end of the show and win a free book! You should register for SANS Las Vegas 2006, we will be there doing a live show! Please go update our frapper map! Full Show Notes Hosts: Larry Pesce, Paul Asadoorian, "Twitchy" Email: psw@securityweekly.com
Live from the Paul's Security Weekly Studio.... This episode was also broadcast over our Icecast server. Details will be announced in our IRC chatroom #Security Weekly on Freenode (irc.freenode.net) and on the Security Weekly blog. Sponsored by Core Security, listen for the discount code at the end of the show Sponsored by Syngress, be the first to post the answer to the question at the end of the show and win a free book! You should register for SANS Las Vegas 2006, we will be there doing a live show! Please go update our frapper map! Full Show Notes Hosts: Larry Pesce, Paul Asadoorian, "Twitchy" Email: psw@securityweekly.com
Live from the Paul's Security Weekly Studio.... This episode was also broadcast over our Icecast server. Details will be announced in our IRC chatroom #Security Weekly on Freenode (irc.freenode.net) and on the Security Weekly blog. Sponsored by Core Security, listen for the discount code at the end of the show Sponsored by Syngress, be the first to post the answer to the question at the end of the show and win a free book! Sponsored by The SANS Institute, listen to the discount code for SANSFIRE this summer for 5% off this conference Please go update our frapper map! Full Show Notes Hosts: Larry Pesce, Paul Asadoorian Email: psw@securityweekly.com
Live from the Paul's Security Weekly Studio.... This episode was also broadcast over SkypeCast, so look for us each week when we record. It will also be announced in our IRC chatroom #Security Weekly on Freenode (irc.freenode.net). Sponsored by Core Security, listen for the discount code at the end of the show Sponsored by Syngress, be the first to post the answer to the question at the end of the show and win a free book! Sponsored by The SANS Institute, listen to the discount code for SANSFIRE this summer for 5% off this conference Please go update our frapper map! Full Show Notes Hosts: Larry Pesce, Paul Asadoorian Email: psw@securityweekly.com
Live from the Paul's Security Weekly Studio.... This episode was also broadcast over SkypeCast, so look for us each week when we record. It will also be announced in our IRC chatroom #Security Weekly on Freenode (irc.freenode.net). Sponsored by Core Security, listen for the discount code at the end of the show Sponsored by Syngress, be the first to post the answer to the question at the end of the show and win a free book! Sponsored by The SANS Institute, listen to the discount code for SANSFIRE this summer for 5% off this conference Please go update our frapper map! Full Show Notes
Live via Skype from the Casa del Pesce.... This episode was unfortunatley not broadcast over SkypeCast. Paul is off on his honeymoon this week...so the audio is not the greatest, but not all that bad. Do look for us next week in our IRC chatroom #Security Weekly on Freenode (irc.freenode.net). Sponsored by Core Security, listen for the discount code at the end of the show Sponsored by Syngress, be the first to post the answer to the question at the end of the show and win a free book! Sponsored by The SANS Institute, listen to the discount code for SANSFIRE this summer for 5% off this conference Please go update our frapper map! Full Show Notes
Live via Skype from the Paul's Security Weekly Studio and Casa del Pesce.... This episode was unfortunatley not broadcast over SkypeCast. Craziness this week With Paul's wedding and all! However, do look for us in our IRC chatroom #Security Weekly on Freenode (irc.freenode.net). Sponsored by Core Security, listen for the discount code at the end of the show Sponsored by Syngress, be the first to post the answer to the question at the end of the show and win a free book! Sponsored by The SANS Institute, listen to the discount code for SANSFIRE this summer for 5% off this conference Please go update our frapper map! Full Show Notes
Live from the Paul's Security Weekly Studio.... This episode was also broadcast over SkypeCast, so look for us each week when we record. It will also be announced in our IRC chatroom #Security Weekly on Freenode (irc.freenode.net). Sponsored by Core Security, listen for the discount code at the end of the show Sponsored by Syngress, be the first to post the answer to the question at the end of the show and win a free book! Sponsored by The SANS Institute, listen to the discount code for SANSFIRE this summer for 5% off this conference Please leave some comments for us in iTunes! This is the link to our iTunes entry. Full Show Notes
Live from the Paul's Security Weekly Studio.... This episode was also broadcast over SkypeCast, so look for us each week when we record. It will also be announced in our IRC chatroom #Security Weekly on Freenode (irc.freenode.net). Sponsored by Core Security, listen for the discount code at the end of the show Sponsored by Syngress, be the first to post the answer to the question at the end of the show and win a free book! Sponsored by The SANS Institute, listen to the discount code for SANSFIRE this summer for 5% off this conference Please leave some comments for us in iTunes! This is the link to our iTunes entry. Full Show Notes
Live from the Paul's Security Weekly Studio.... This episode was also broadcast over SkypeCast, so look for us each week when we record. It will also be announced in our IRC chatroom #Security Weekly on Freenode (irc.freenode.net). Sponsored by Core Security, listen for the discount code at the end of the show Sponsored by Syngress, be the first to post the answer to the question at the end of the show and win a free book! Sponsored by The SANS Institute, listen to the discount code for SANSFIRE this summer for 5% off this conference Please go update our frapper map! Full Show Notes
Live from the Paul's Security Weekly Studio.... This episode was also broadcast over SkypeCast, so look for us each week when we record. It will also be announced in our IRC chatroom #Security Weekly on Freenode (irc.freenode.net). Sponsored by Core Security, listen for the discount code at the end of the show Sponsored by Syngress, be the first to post the answer to the question at the end of the show and win a free book! Sponsored by The SANS Institute, listen to the discount code for SANSFIRE this summer for 5% off this conference Please go update our frapper map! Help us get a cool logo and slogan! Go to our contest page and read all about how you can win free Snort gear and a one-year subscription to VRT rules. Sponsored by Sourcefire Full Show Notes
Live from the Paul's Security Weekly Studio.... We had two special guests on the show, Kevin Amorin from Harvard and co-deveoper of Packet Fence, and Martin Mckeay of the Network Security Podcast. This episode was also broadcast over SkypeCast, so look for us each week when we record. It will also be announced in our IRC chatroom #Security Weekly on Freenode (irc.freenode.net). Sponsored by Core Security, listen for the discount code at the end of the show Sponsored by Syngress, be the first to post the answer to the question at the end of the show and win a free book! Sponsored by The SANS Institute, listen to the discount code for SANSFIRE this summer for 5% off this conference Please go update our frapper map! Help us get a cool logo and slogan! Go to our contest page and read all about how you can win free Snort gear and a one-year subscription to VRT rules. Sponsored by Sourcefire Full Show Notes
Sponsored by Core Security, listen for the discount code at the end of the show Sponsored by Syngress, be the first to post the answer to the question at the end of the show and win a free book! Sponsored by The SANS Institute, listen to the discount code for SANSFIRE this summer for 5% off this conference Please go update our frapper map! Help us get a cool logo and slogan! Go to our contest page and read all about how you can win free Snort gear and a one-year subscription to VRT rules. Sponsored by Sourcefire Full Show Notes
Sponsored by Core Security, listen for the discount code at the end of the show Sponsored by Syngress, be the first to post the answer to the question at the end of the show and win a free book! Sponsored by The SANS Institute, listen to the discount code for SANSFIRE this summer for 5% off this conference Please go update our frapper map! Help us get a cool logo and slogan! Go to our contest page and read all about how you can win free Snort gear and a one-year subscription to VRT rules. Sponsored by Sourcefire Full Show Notes
Sponsored by Core Security, listen for the discount code at the end of the show Sponsored by Syngress, be the first to post the answer to the question at the end of the show and win a free book! Sponsored by The SANS Institute, listen to the discount code for SANSFIRE this summer for 5% off this conference Please go update our frapper map! Help us get a cool logo and slogan! Go to our contest page and read all about how you can win free Snort gear and a one-year subscription to VRT rules. Sponsored by Sourcefire Full Show Notes
Live from the Paul's Security Weekly Studio.... Sponsored by Core Security, listen for the discount code at the end of the show Sponsored by Syngress, be the first to post the answer to the question at the end of the show and win a free book! Sponsored by The SANS Institute, listen to the discount code for SANSFIRE this summer for 5% off this conference Please go update our frapper map! Please leave us feedback in the iTunes Store! Full Show Notes
Sponsored by Core Security, listen for the discount code at the end of the show Sponsored by Syngress, be the first to post the answer to the question at the end of the show and win a free book! Sponsored by The SANS Institute, listen to the discount code for SANSFIRE this summer for 5% off this conference Please go update our frapper map! Please leave us feedback in the iTunes Store! Full Show Notes
Live from the Paul's Security Weekly Studio.... Come join our very first "open show" on March 30, 2006 5:30PM EST you can Skype into our show and participate on our show! The first topic will be "Piggybacking Wireless Networks: Is it legal? Moral? Ethical? Cool? Not Cool?". Come join us and let us know what you think! Sponsored by Core Security, listen for the discount code at the end of the show Sponsored by Syngress, be the first to post the answer to the question at the end of the show and win a free book! Please go update our frapper map! If you are in the Providence, RI area the week of April 1st you can come to ACUTA to hear Twitchy and I give presentations (separate ones) Please leave us feedback in the iTunes Store! Full Show Notes, Direct Downloads, and Feed Links
Live from the Paul's Security Weekly Studio.... Come join our very first "open show" on March 30, 2006 5:30PM EST you can Skype into our show and partiticapte on our show! The first topic will be "Piggybacking Wireless Networks: Is it legal? Moral? Ethical? Cool? Not Cool?". Come join us and let us know what you think! Sponsored by Core Security, listen for the discount code at the end of the show Sponsored by Syngress, be the first to post the answer to the question at the end of the show and win a free book! Please go update our frapper map! If you are in the Providence, RI area the week of April 1st you can come to ACUTA to hear Twitchy and I give presentations (separate ones) Please leave us feedback in the iTunes Store! Full Show Notes, Direct Downloads, and Feed Links
Live from the Paul's Security Weekly Studio.... Sponsored by Core Security, listen for the discount code at the end of the show Sponsored by Syngress, be the first to post the answer to the question at the end of the show and win a free book! Please go update our frapper map! Please leave us feedback in the iTunes Store! Full Show Notes, Direct Downloads, and all feeds.
Live from the Paul's Security Weekly Studio.... Sponsored by Core Security, listen for the discount code at the end of the show Sponsored by Syngress, be the first to post the answer to the question at the end of the show and win a free book! Please go update our frapper map! Its not Twitchy's birthday this week Smurf attacks are not so sweet Our first audio comment! Here are some good Bluetooth Links, Thanks Christian! Hacking into voice mail, using good voice mail passwords Please leave us feedback in the iTunes Store! Detecting botnets from Sana Security, anyone using this product? And More! For direct downloads, full show notes, and feed links go here. .com
Live from the Paul's Security Weekly Studio.... Sponsored by Core Security, listen for the discount code at the end of the show Sponsored by Syngress, be the first to post the answer to the question at the end of the show and win a free book! Last weeks winner was William Day, congrats! Please go update our frapper map! Using Cain & Abel properly mwcollectd, nepetheses, and differences between "Security Ninja" and "Ninja Fan" Larry give us the update from SANS Orlando 2006 and more! Full show notes, direct downloads, and feed links can be found here. .com
Live from Paul's Dojo.... Sponsored by Core Security, listen for the discount code at the end of the show Sponsored by Syngress, be the first to post the answer to the question at the end of the show and win a free book! Last weeks winner was Steve Murawski, who is now a proud 0wner of "Penetration Testing Open Source Toolkit" Plesae go update our frapper map! Paul talks about 2 Security incidents, Dos from Japan, Smurfs Larry did no work this week Nick has interns and more! Full show notes, feeds, and direct downloads are here.
Sponsored by Core Security, listen for the discount code at the end of the show Sponsored by Syngress, be the first to post the answer to the question at the end of the show and win a free book! Interview of Mike Poor and Ed Skodis Part I has been posted Our Frapper Map service is available now, go to http://securityweekly.com and add yourself to the map! One of our listeners recommends "Damn Small Linux" for a USB Thumb drives can boot Linux. This Week's Show Links For direct downloads and full show information go here.