Your daily source of Pwnage, Policy and Politics.

[display_podcast]

Episode 574 – Weekend Wrap-up with Dr. b0n3z

Episode 574 - Weekend Wrap-up with Dr. b0n3z [ 50:36 | 23.17 MB ] Play Now | Play in Popup | Download (111)

 

Episode 574 – Weekend Wrap-up with Dr. b0n3z
InfoSec Daily Podcast Episode 574 for January 21, 2012.  Tonight's podcast is hosted by Dr. Bonez, Boris Sverdlik, and Themson Mester.

 

Guests: aricon, coolacid, connection, and spridel

 

Announcements:

Unsung Heroes

Have you ever stumbled on your tool while walking and wondered “Why didn’t I know this existed!” or “If only I’d had this last week on that test”… Chris John Riley has started to gather suggestions for your “unsung hero” of the tools world.  He is looking specifically to gather a list of tools that aren’t on every penetration testers, or forensic investigators list, but that you have respect for.  http://blog.c22.cc/2012/01/13/unsung-heros


Information Security Blogger Awards 2012
Since we were over looked again for the Best Podcast on Security you can email ashimmy@hotmail.com with your name, email address and ISD Podcast as your write-in nominee.  Please note, you have to provide your blog or podcast URL so that it can be verified that you are a blogger or podcaster.  Vote for your favorite blogs as well on www.ashimmy.com.

Brad Smith (theNurse)
We all know and love Brad Smith, aka theNurse.  His humor and smiling positivity is a wonderful example for our community.  At Hacker Halted he had a massive stroke and has been in the hospital ever since.

Brad and his wife did not ask for this help, but as a community we feel that if we can help we want to.  Please feel free to check in for status or to donate.  Either way we thank you and I know Brad thanks your for your support, prayers and positive thoughts.

http://www.social-engineer.org/brad-smith-updates/
http://www.social-engineer.org/bradsmithdonation/

CampusCon 2012
When: January 21, 2012
Where: MOVED: CampusCon has been moved to the main WIT campus on Browne's Road
http://campuscon.hackingwit.com
(from Baconzombie)

New England InfoSec Tweetup
When: January 21, 2012
Where: Ledgewood Hills Clubhouse – Nashua, NH
http://neistu3.eventbrite.com/

SANS Mentoring: Security 401 SANS Security Essentials Bootcamp Style
When: Starts January 24, 2012
Where: Atlanta, GA
Discount Code:
http://www.sans.org/mentor/details.php?nid=25484

ShmooCon 2012
When: January 27th-29th, 2012
Where: Washington Hilton Hotel, Washington, DC
http://www.shmoocon.org

Schmoocon Epilogue
When: After Schmoocon
Where: Washington, DC
Hit up anyone in NOVA Hackers
http://shmooconepilogue.eventbrite.com/

Metasploit Framework Unleashed Cincinnati
When: February 11, 2012.
Where: Digitorium in Griffin Hall, the home of Northern Kentucky University’s College of Informatics
https://msfucincy.wordpress.com/
$20 donation for #HFC

Social Engineering Training with Chris Hadgany
When: March 5-9, 2012


Where: Seattle, Washington
When: July 21-24, 2012


Where: Black Hat Vegas
When: August 20-24, 2012
Where:  Bristol, UK
When:  November 12-16, 2012


Where:  Columbia, MD
http://www.social-engineer.com/social-engineer-training

BSides Chicago


When: Saturday, April 28th, 2012


Where: Volcano Room (further info coming)
Cost: Free (as always!) – Registration opening soon!
http://www.securitybsides.com/w/page/48444703/BSidesChicago-2012
They’re looking for sponsors, so if you know someone, pass it on.

Linuxfest Northwest 2012
When: Saturday, April 28th-29th, 2012
Where: Bellingham Technical College – Bellingham, WA
http://www.linuxfestnorthwest.org/
CFP now open!

AIDE 2012
When: May 21-25, 2012
Where: MU Forensic Science Center
Huntington, West Virginia
http://aide.marshall.edu
CFP now open!

LayerOne 2012
When: May 26-27, 2012
Where: Clarion Hotel – Anaheim, CA
http://www.layerone.org
CFP now open!

DerbyCon 2012 – "Dropping the Deuce"
When:  September 27-30, 2012
Where: Louisville, KY
http://www.derbycon.com

Thanks to everyone that has purchased products from Amazon through the affiliate program.  If you’re not familiar with the affiliate program, simply go to http://www.isdpodcast.com and locate the Affiliate Program link on the right hand side.

You don't have a sufficient version of Flash Player to display this animation.

 

Stories

Source:


Pentest Lessons:

Adam Compton & Zac Wagle's should get credit for the "Pentest Lessons" idea. They also started a twitter account: https://twitter.com/pentestlessons.


Lesson 1: Don’t assume that your client has any idea what you do.  Don’t assume they aren’t interested in hearing about it though.  Every time you are talking to the customer, you are representing the company.  Educating the client is a great way to build business relationships.


Lesson 2:  Stay within your scope: if you've been hired to audit or test – don't fix anything.

In my reckless youth I popped a box that had a virus on it.  I thought I'd be a superhero and remove the virus so I could laugh about it during my report presentation.  Instead the machine locked up, and 300 Kilometres away I could FEEL it's blue screen. Yeah, it was the company's payroll server.


Lesson 3:  Depending on your engagement agreement, if you fuck up something really important (like a payroll system), don't wait long before reporting it.


Lesson 4: If you are doing an audit which consists mostly of interviews, actually perform the interview. Don’t go into tangents and stories. It is an interview after all. Ask them to explain their job functions, what they do on a day to day basis, and what types of challenges they run in to. #SoShowMeOrFuckYou


Source: http://www.wired.com/threatlevel/2012/01/anons-rickroll-botnet/


A version of Anonymous’ voluntary botnet software, known as LOIC (Low Orbit Ion Canon), was modified to make it not so voluntary, drafting unwary bystanders, journalists and even anons who don’t support DDoS tactics into attacks on the U.S. Justice Department. Thursday’s trickery seems not to have been central to the successful takedown of sites like justice.gov, RIAA.com and MPAA.com, but not all anons are pleased with forcing unwitting bystanders to join in a potentially illegal action.

The trick snagged those who happened to click on a shortened link on social-media services, expecting information on the ongoing #opmegaupload retaliation for the U.S. Justice Department’s takedown of popular file sharing site Megaupload. Instead they were greeted by a Javascript version of LOIC — People were already firing packets at targeted websites by the time their page was loaded.

 

Source: http://www.reuters.com/article/2012/01/21/us-internet-piracy-megaupload-idUSTRE80K07Q20120121


A police official said dozens of officers, backed by helicopters, forced their way into the mansion, nestled in lush, rolling farmland, after Dotcom refused them entry, a scene more reminiscent of a high-octane spy drama than the usual policeman's lot in rural New Zealand.
"Despite our staff clearly identifying themselves, Mr Dotcom retreated into the house and activated a number of electronic-locking mechanisms," said Detective Inspector Grant Wormald from the Organised and Financial Crime Agency New Zealand.
Officers broke the locks and Dotcom barricaded himself into a safe room which officers had to cut their way through to gain access.
"Once they gained entry into this room, they found Mr Dotcom near a firearm which had the appearance of a shortened shotgun," he said. "It was definitely not as simple as knocking at the front door."

 

Source: http://www.nydailynews.com/news/national/wifi-signal-racist-anti-semitic-slur-teaneck-nj-sparks-police-probe-signal-rec-center-router-article-1.1008135


A bigot named their WiFi signal “F— All Jews and N—-” — and now cops are investigating.

The hateful signal I.D. popped up on the IPHONE of a 28-year-old mom inside a Teaneck, N.J. recreation center, where her 3-year-old daughter was attending dance class.

The offending signal was coming from a router connected in the Richard Rodda Community Center in the the township, located 10 miles outside New York City.

The Teaneck Police Department Juvenile Bureau and the Bergen County Prosecutor's Office Computer Crime Unit are investigating it as a "possible bias crime," Wilson said.

Source: http://thenextweb.com/dd/2012/01/21/7-ways-to-start-learning-how-to-code-right-now-for-free/

 

1. Processing

2. Codeacademy
3. Bloc (Ruby)
4. Get Physical
5. Start with HTML
6. Grab your iPAD, connect to F— All Jews and N—-” and then throw it in a lake.
7. Read, Watch and Fail

Source: http://www.techdirt.com/articles/20120120/14472117492/mpaa-directly-publicly-threatens-politicians-who-arent-corrupt-enough-to-stay-bought.shtml

Reinforcing the fact that Chris Dodd really does not get what's happening, and showing just how disgustingly corrupt the MPAA relationship is with politicians, Chris Dodd went on Fox News toexplicitly threaten politicians who accept MPAA campaign donations that they'd better pass Hollywood's favorite legislation… or else:

"Those who count on quote 'Hollywood' for support need to understand that this industry is watching very carefully who's going to stand up for them when their job is at stake. Don't ask me to write a check for you when you think your job is at risk and then don't pay any attention to me when my job is at stake,"

This certainly follows what many people assumed was happening, and fits with the anonymous comments from studio execs that they will stop contributing to Obama, but to be so blatant about this kind of corruption and money-for-laws politics in the face of an extremely angry public is a really, really, really tone deaf response from Dodd.

All works represented here are compiled from various sources (email, IRC, forums, and original author/websites). If the original work is copyrighted it is presented under the fair use of a copyrighted work, Copyright Act of 1976, 17 U.S.C. § 107, for purposes of criticism, comment, news reporting, teaching, and research. No use is directly intended as an infringement of copyright. Attribution is always given to the original source, if known. To have any copyrighted material removed, please contact isdpodcast[at]isdpodcast[dot]com.