SecuraBit (general)
SecuraBit Before It Bytes!

Hosts

Guests

Topics

  • Cybersecurity Startups and Accelerators featuring MACH37
    • Northern Virginia based startup accelerator
    • 17 cohorts thus far
  • How tough it can be to start your own product company
  • Pitfalls and lessons learned through assisting cohorts through their founding stages

Use Our Discount Codes

  • Use code SANS_SecuraBit150 to get 150 off of ANY training course. The discount code is good for all SANS courses in all formats.
  • Register for any SANS Security East 2015 course and receive $150 off using coupon code “SANS_SecuraBit150”. The training event takes place in New Orleans, LA –Jan 16 – 21, 2015.

Upcoming events

Links

  • www.gh0st.net/wiki - 24/7 Penetration Testing learning environment, FREE.
    • Volunteers sought to help maintain and build challenges. Local to RVA a plus!

Chat with us on IRC at irc.freenode.net #securabit

iTunes Podcast – http://itunes.apple.com/us/podcast/securabit/id280048405

 

 

Direct download: SecuraBit_EP130.mp3
Category:general -- posted at: 11:28am EDT

Hosts

Guests

Topics

Use Our Discount Codes

  • Use code SANS_SecuraBit150 to get 150 off of ANY training course. The discount code is good for all SANS courses in all formats.
  • Register for any SANS Network Security 2014 course and receive $150 off using coupon code SANS_SecuraBit150. The training event takes place in Las Vegas, NV – Oct 19-27, 2014.

Upcoming events

Links

  • www.gh0st.net/wiki - 24/7 Penetration Testing learning environment, FREE.
    • Volunteers sought to help maintain and build challenges. Local to RVA a plus!

Chat with us on IRC at irc.freenode.net #securabit

iTunes Podcast – http://itunes.apple.com/us/podcast/securabit/id280048405

 

 

Direct download: SecuraBit_EP129.mp3
Category:general -- posted at: 6:45am EDT

Hosts

Topics

  • Chicago ATC Fire
  • Scorpion
  • Shellshock

Use Our Discount Codes

  • Use code SANS_SecuraBit150 to get 150 off of ANY training course. The discount code is good for all SANS courses in all formats.
  • Register for any SANS Network Security 2014 course and receive $150 off using coupon code SANS_SecuraBit150. The training event takes place in Las Vegas, NV – Oct 19-27, 2014.

Upcoming events

Links

  • www.gh0st.net/wiki - 24/7 Penetration Testing learning environment, FREE.
  • Volunteers sought to help maintain and build challenges. Local to RVA a plus!

Chat with us on IRC at irc.freenode.net #securabit

iTunes Podcast – http://itunes.apple.com/us/podcast/securabit/id280048405




Direct download: SecuraBit_EP128.mp3
Category:general -- posted at: 8:43pm EDT

May 21st, 2014

Hosts

Guests

Topics

  • Lack of women in Cyber/IT fields. 11% of the cyber workforce consists of women.
  • Addressing the pipeline issues with getting more girls excited about STEM
  • Impostor Syndrome
  • Differences in perception between men and women from an interpersonal standpoint

Use Our Discount Codes

  • Use code SecuraBit5_SANS to get 5 percent off of ANY training course. The discount code is good for all SANS courses in all formats.
  • Register for any SANSFIRE 2014 course and receive 5% off using coupon code SecuraBit5_SANS. The training event takes place in Baltimore, MD – June 21 - 30, 2014.

Upcoming events

Links

Chat with us on IRC at irc.freenode.net #securabit

iTunes Podcast –http://itunes.apple.com/us/podcast/securabit/id280048405

iPhone App Now Available –http://itunes.apple.com/us/app/securabit-mobile/id382484512?mt=8





Direct download: SecuraBit_EP127.mp3
Category:general -- posted at: 3:31pm EDT

Hosts

Guests

Topics

  • Drones and ARM fun!
  • ArchAssault Linux
    • Kali-like environment with the ability for heavy niche customization and swapping of environments.
    • Modular. Can overlay any part of the distro onto your own Arch Linux installation
    • Bleeding edge packages
    • Great for setting up remote dropboxes via ARM devices
  • IE Exploit
  • Heartbleed wrap-up
  • RVAsec CTF prizes! (Thanks Hak5!)
  • BsidesChicago Post-mortem
  • Upcoming guests!

Use Our Discount Codes

  • Use code SecuraBit5_SANS to get 5 percent off of ANY training course. The discount code is good for all SANS courses in all formats.
  • Register for any SANSFIRE 2014 course and receive 5% off using coupon code SecuraBit5_SANS. The training event takes place in Baltimore, MD – June 21 - 30, 2014.

Upcoming events

Links

Chat with us on IRC at irc.freenode.net #securabit

iTunes Podcast –http://itunes.apple.com/us/podcast/securabit/id280048405

iPhone App Now Available –http://itunes.apple.com/us/app/securabit-mobile/id382484512?mt=8

Direct download: SecuraBit_EP126.mp3
Category:general -- posted at: 11:03pm EDT

Hosts

 

Guests

Topics

  • NolaCon

    • June 19-22, 2014 in New Orleans, LA

    • Use coupon code “securabit” to get $50 off registration!

  • RVAsec CTF

  • Banter

 

Use Our Discount Codes

  • Use code SecuraBit5_SANS to get 5 percent off of ANY training course. The discount code is good for all SANS courses in all formats.

  • Register for any SANS 2014 course and receive 5% off using coupon code SecuraBit5_SANS. The training event takes place in Orlando, FL – April 5 - 14, 2014.

 

Upcoming events

 

Links

 

Chat with us on IRC at irc.freenode.net #securabit

iTunes Podcast –http://itunes.apple.com/us/podcast/securabit/id280048405

Direct download: SecuraBit_EP125.mp3
Category:general -- posted at: 5:39pm EDT

SecuraBit Episode 124: We are ALL The Cavalry!

February 19th, 2014

Hosts

Guests

Topics

  • I am the Cavalry

  • Your USB is my Network!

    • No firewalls on networks created via USB/Firewire/Bluetooth/etc ports.

  • NTP can be very dangerous and evil!

    • Everything relies on timing.

 

Use Our Discount Codes

  • Use code SecuraBit_SANS5 to get 5 percent off of ANY training course. The discount code is good for all SANS courses in all formats.

  • Register for any SANS 2014 course and receive 5% off using coupon code SecuraBit_SANS5. The training event takes place in Orlando, FL – April 5 - 14, 2014.

 

Upcoming events

 

Links

 

Chat with us on IRC at irc.freenode.net #securabit

iTunes Podcast – http://itunes.apple.com/us/podcast/securabit/id280048405

iPhone App Now Available – http://itunes.apple.com/us/app/securabit-mobile/id382484512?mt=8

Direct download: SecuraBit_EP124.mp3
Category:general -- posted at: 1:10pm EDT

SecuraBit Episode 123: Security Jedi 101

January 15th, 2013

Hosts

Guests

Topics

  • Reducing your attack surface

    • The Java the Challenge – See how many weeks you can go without Java installed

  • Get Focused!

    • Identify: Find the root cause of your top problem

    • Align: Build a project plan and get sponsorship

    • Communicate: Build consensus through awareness

    • Report: Build a scorecard to show results

  • Transition from ineffective processes and philosophies, make technology an enablement tool, not just another tool to misappropriate and be frustrated by.

Use Our Discount Codes

  • Use code SecuraBit_SANS5 to get 5 percent off of ANY training course. The discount code is good for all SANS courses in all formats.

  • Register for any SANS 2014 course and receive 5% off using coupon code SecuraBit_SANS5. The training event takes place in Orlando, FL – April 5 - 14, 2014.

Upcoming events

Links

Chat with us on IRC at irc.freenode.net #securabit

iTunes Podcast – http://itunes.apple.com/us/podcast/securabit/id280048405

iPhone App Now Available – http://itunes.apple.com/us/app/securabit-mobile/id382484512?mt=8

Direct download: SecuraBit_EP123.mp3
Category:general -- posted at: 8:46pm EDT

SecuraBit Episode 122: Risky Bitcoin Insurance!

December 11th, 2013

Hosts

Guests

Topics

  • Risk

    • How are organizations addressing risk?

    • Does tossing money at a problem really help?

  • Bitcoins

    • Mining and security of wallets

    • How it works

  • Liability

    • Who is liable when a car gets hacked and kills someone?

    • Are software vendors liable for their vulnerabilities?

Use Our Discount Codes

  • Use code SecuraBit_SANS5 to get 5 percent off of ANY training course. The discount code is good for all SANS courses in all formats.

  • Register for any SANS Security East course and receive 5% off using coupon code SecuraBit_SANS5. The training event takes place in New Orleans, LA – January 20 - 25, 2014.

Upcoming events

Links

Chat with us on IRC at irc.freenode.net #securabit

iTunes Podcast – http://itunes.apple.com/us/podcast/securabit/id280048405

iPhone App Now Available – http://itunes.apple.com/us/app/securabit-mobile/id382484512?mt=8

Direct download: SecuraBit_EP122.mp3
Category:general -- posted at: 9:36pm EDT

Hosts

Guests

  • SecureDrop (00:00 - 28:45)

  • Bro/Broala (29:00 - Fin)

Topics

Use Our Discount Codes

  • Use code SecuraBit_SANS5 to get 5 percent off of ANY training course. The discount code is good for all SANS courses in all formats.

  • Register for any SANS CDI 2013 course and receive 5% off using coupon code “SecuraBit_SANS5”. The training event takes place in Washington, DC – December 12 – 19, 2013.

Upcoming events

Links

Chat with us on IRC at irc.freenode.net #securabit

iTunes Podcast – http://itunes.apple.com/us/podcast/securabit/id280048405

Direct download: SecuraBit_EP121.mp3
Category:general -- posted at: 11:54am EDT

Hosts

Guests

Topics

  • Securing Change

    • Volunteer time and money to secure nonprofits

  • Bugcrowd

    • Get paid to find vulnerabilities

    • Start a bounty for your own product

News Items

  • Adobe hacked

  • Govt Shutdown

Use Our Discount Codes

  • Use code SecuraBit_5 to get 5 percent off of ANY training course. The discount code is good for all SANS courses in all formats.

  • Register for any SANSFIRE 2013 course and receive 5% off using coupon code SecuraBit_05 The training event takes place in Washington, DC – June 15-22, 2013.

Upcoming events

Links

Chat with us on IRC at irc.freenode.net #securabit

iTunes Podcast – http://itunes.apple.com/us/podcast/securabit/id280048405

Direct download: SecuraBit_EP120.mp3
Category:general -- posted at: 7:28pm EDT

Hosts

 

Guests

 

Topics

  • BlackArch Linux

    • A complementary expansion to Arch Linux for penetration testers.

 

Use Our Discount Codes

  • Use code SecuraBit_05 to get 5 percent off of ANY training course. The discount code is good for all SANS courses in all formats.

  • Register for any SANS CDI 2013 course and receive 5% off using coupon code “SecuraBit_05”. The training event takes place in Washington, DC – December 12 – 19, 2013.

 

Upcoming events

 

Links

 

Chat with us on IRC at irc.freenode.net #securabit

iTunes Podcast – http://itunes.apple.com/us/podcast/securabit/id280048405

iPhone App Now Available – http://itunes.apple.com/us/app/securabit-mobile/id382484512?mt=8

 

Direct download: SecuraBit_EP119.mp3
Category:general -- posted at: 11:02pm EDT

Hosts

Guests

Topics

Use Our Discount Codes

  • Use code SecuraBit_05 to get 5 percent off of ANY training course. The discount code is good for all SANS courses in all formats.

  • Register for any SANSFIRE 2013 course and receive 5% off using coupon code SecuraBit_05 The training event takes place in Washington, DC – June 15-22, 2013.

Upcoming events

Links

Chat with us on IRC at irc.freenode.net #securabit

iTunes Podcast – http://itunes.apple.com/us/podcast/securabit/id280048405

iPhone App Now Available – http://itunes.apple.com/us/app/securabit-mobile/id382484512?mt=8

Direct download: SecuraBit_EP118.mp3
Category:general -- posted at: 1:02pm EDT

SecuraBit Episode 117: The Internet is on Fire!

March 27th, 2013

Hosts

Guests

Topics

  • Hack.RVA events, news, and RVAsec badges!

  • CTF is being put together for offline.  Register at http://securabit.com/ctf/

  • Security Awareness training

    • Who should provide more than just basic training?

    • Security Vendors

    • Security focused organizations?

News Items

Use Our Discount Codes

  • Use code SecuraBit_5 to get 5 percent off of ANY training course. The discount code is good for all SANS courses in all formats.

  • Register for any SANSFIRE 2013 course and receive 5% off using coupon code SecuraBit_5 The training event takes place in Washington, DC – June 15-22, 2013.

Upcoming events

Links

Chat with us on IRC at irc.freenode.net #securabit

iTunes Podcast – http://itunes.apple.com/us/podcast/securabit/id280048405

iPhone App Now Available – http://itunes.apple.com/us/app/securabit-mobile/id382484512?mt=8

Direct download: SecuraBit_EP117.mp3
Category:general -- posted at: 10:32am EDT

Hosts


Guests


Topics

  • NetIQ
  • Internet History
  • Privacy and Social Media
  • Egypt’s revolution
  • Data management and risk in the cloud
  • Building Automation
  • BacNET protocol dissection
  • Shmoocon, RSA, and upcoming cons!
  • The PenLab is back up!
  • CTF Pre-registration for RVAsec 2013 will be coming soon!


News Items


Use Our Discount Codes

  • Use code SecuraBit_5 to get 5 percent off of ANY training course. The discount code is good for all SANS courses in all formats.
  • Register for any SANSFIRE 2013 course and receive 5% off using coupon code SecuraBit_5 The training event takes place in Washington, DC – June 15-22, 2013.


Upcoming events


Links


Chat with us on IRC at irc.freenode.net #securabit
iTunes Podcast – http://itunes.apple.com/us/podcast/securabit/id280048405
iPhone App Now Available – http://itunes.apple.com/us/app/securabit-mobile/id382484512?mt=8

Direct download: SecuraBit_EP116.mp3
Category:general -- posted at: 9:14pm EDT

Hosts

  • Andrew Borel – @andrew_secbit
  • Mike Bailey – @mpbailey1911
  • Jason Mueller - @SecuraBit_Jay


Topics


Use Our Discount Codes

  • Use code SecuraBit_5 to get 5% off of ANY training course. The discount code is good for all SANS courses in all formats.


Upcoming events

Links


Chat with us on IRC at irc.freenode.net #securabit
iTunes Podcast – http://itunes.apple.com/us/podcast/securabit/id280048405
iPhone App Now Available – http://itunes.apple.com/us/app/securabit-mobile/id382484512?mt=8

Direct download: SecuraBit_EP115.mp3
Category:general -- posted at: 1:30pm EDT

Hosts


Topics

  • News
  • The Lab


News Items (no particular favoritism of non source links)


The Lab

  • CTF at RVASec
  • Lab upgrades and changes.



Use Our Discount Codes

  • Use code SecuraBit_Connect to get $150.00 off of ANY training course. The discount code is good for all SANS courses in all formats.
  • FREE OnDemand Bundle with corresponding course purchase for SANS Network Security 2012 with code SecuraBit_NS12OD
  • Use code 36449 for 20% off your Syngress order!


Upcoming events

Links


Chat with us on IRC at irc.freenode.net #securabit
iTunes Podcast – http://itunes.apple.com/us/podcast/securabit/id280048405
iPhone App Now Available – http://itunes.apple.com/us/app/securabit-mobile/id382484512?mt=8

Direct download: Securabit_Episode_114.mp3
Category:general -- posted at: 9:14am EDT

Hosts


Guests

  • Christopher Burgess - @burgessct - http://www.burgessct.com/

Topics

  • The state of security in Medical.
  • Social movements.
  • Lab Stuff


News Items


Use Our Discount Codes

  • Use code SecuraBit_Connect to get $150.00 off of ANY training course. The discount code is good for all SANS courses in all formats.
  • http://www.sans.org/info/119125
  • Use code 36449 for 20% off your Syngress order!


Upcoming events

Links


Chat with us on IRC at irc.freenode.net #securabit
iTunes Podcast – http://itunes.apple.com/us/podcast/securabit/id280048405
iPhone App Now Available – http://itunes.apple.com/us/app/securabit-mobile/id382484512?mt=8

Direct download: Securabit_EP113.mp3
Category:general -- posted at: 1:51pm EDT

Hosts


Guests

Topics


News Items


Use Our Discount Codes

  • Use code SecuraBit_Connect to get $150.00 off of ANY training course. The discount code is good for all SANS courses in all formats.
  • FREE OnDemand Bundle with corresponding course purchase for SANS Network Security 2012 with code SecuraBit_NS12OD
  • Use code 36449 for 20% off your Syngress order!


Upcoming events

Links


Chat with us on IRC at irc.freenode.net #securabit
iTunes Podcast – http://itunes.apple.com/us/podcast/securabit/id280048405
iPhone App Now Available – http://itunes.apple.com/us/app/securabit-mobile/id382484512?mt=8

Direct download: Securabit_EP112.mp3
Category:general -- posted at: 7:42pm EDT

Hosts


Guests

Topics

  • The Glitch
  • Derp


News Items
LastPass Sentry Warns You When Your Online Accounts Have Been Breached
http://lifehacker.com/5944301/lastpass-sentry-warns-you-when-your-online-accounts-have-been-breached

Android Hack: Cracking WiFi passwords with your phone
http://hackaday.com/2012/09/18/android-hack-cracking-wifi-passwords-with-your-phone/

Judge correctly rules WiFi sniffing legal
http://erratasec.blogspot.com/2012/09/judge-correctly-rules-wifi-sniffing.html
http://arstechnica.com/tech-policy/2012/09/sniffing-open-wifi-networks-is-not-wiretapping-judge-says/

Google Acquires Online Malware Scanner VirusTotal
http://lifehacker.com/5941392/google-acquires-online-malware-scanner-virustotal

Chase joins Bank of America in possible Islamic attack outage
http://www.theregister.co.uk/2012/09/19/chase_website_outage/

Use Our Discount Codes

  • Use code SecuraBit_Connect to get $150.00 off of ANY training course. The discount code is good for all SANS courses in all formats.
  • FREE OnDemand Bundle with corresponding course purchase for SANS Network Security 2012 with code SecuraBit_NS12OD
  • Use code 36449 for 20% off your Syngress order!

Upcoming events

Links

Chat with us on IRC at irc.freenode.net #securabit
iTunes Podcast – http://itunes.apple.com/us/podcast/securabit/id280048405
iPhone App Now Available – http://itunes.apple.com/us/app/securabit-mobile/id382484512?mt=8

Direct download: Securabit_EP111.mp3
Category:general -- posted at: 5:33pm EDT

Hosts


Guests

  • AP Delchi - http://bsideslv.com/sciencefair/ - Submit your idea through your local hackerspace and represent! This is an excellent opportunity to start new hackerspaces or make existing ones even better!


Topics

  • Science Fair!
  • Bitcoin Hack
  • GovDeals


News Items
Dropbox’s Two-Step Authentication Out of Beta, Enable It Now to Further Secure Your Data
http://lifehacker.com/5938341/dropboxs-two+step-authentication-out-of-beta-enable-it-now-to-further-secure-your-data

Here’s Everywhere You Should Enable Two-Factor Authentication Right Now
http://lifehacker.com/5938565/heres-everywhere-you-should-enable-two+factor-authentication-right-now

How Secure Are You Online: The Checklist
http://lifehacker.com/5938980/how-secure-are-you-online-the-checklist

‘Degrade, Disrupt, Deceive’: U.S. Talks Openly About Hacking Foes
http://www.wired.com/dangerroom/2012/08/degrade-disrupt-deceive/

Toyota Contractor Accused of Sabotaging Company Network, Stealing Data
http://www.wired.com/threatlevel/2012/08/toyota-alleges-sabotage/

Hackers Release 1 Million Apple Device IDs Allegedly Stolen From FBI Laptop
http://www.wired.com/threatlevel/2012/09/hackers-release-1-million-apple-device-ids-allegedly-stolen-from-fbi-laptop/

Another reason to not use floating unregulated currencies
http://nakedsecurity.sophos.com/2012/09/06/bitcoin-exchange-floored-in-virtual-bank-robbery-250000-stolen-in-security-lapse/

http://www.wired.com/images_blogs/dangerroom/2012/09/torturebox.png
Use Our Discount Codes

  • Use code SecuraBit_Connect to get $150.00 off of ANY training course. The discount code is good for all SANS courses in all formats.
  • FREE OnDemand Bundle with corresponding course purchase for SANS Network Security 2012 with code SecuraBit_NS12OD
  • Use code 36449 for 20% off your Syngress order!


Upcoming events

Links


Chat with us on IRC at irc.freenode.net #securabit
iTunes Podcast – http://itunes.apple.com/us/podcast/securabit/id280048405
iPhone App Now Available – http://itunes.apple.com/us/app/securabit-mobile/id382484512?mt=8

Direct download: SecuraBit_EP110.mp3
Category:general -- posted at: 1:55pm EDT

Hosts


Guests


Topic

  • Crisis Malware
  • Z800 For Sale
  • Citrix
  • AV Talk - Primary vs Secondary Technology
  • Mainframes and TSO Brute


News Items


Use Our Discount Codes

  • Use code SecuraBit_Connect to get $150.00 off of ANY training course. The discount code is good for all SANS courses in all formats.
  • FREE OnDemand Bundle with corresponding course purchase for SANS Network Security 2012 with code SecuraBit_NS12OD
  • Use code 36449 for 20% off your Syngress order!


Upcoming events


Links


Chat with us on IRC at irc.freenode.net #securabit
iTunes Podcast – http://itunes.apple.com/us/podcast/securabit/id280048405
iPhone App Now Available – http://itunes.apple.com/us/app/securabit-mobile/id382484512?mt=8

Direct download: SecuraBit_EP109.mp3
Category:general -- posted at: 11:39pm EDT

Hosts


Guests


Topics


Use Our Discount Codes

  • Use code SecuraBit_Connect to get $150.00 off of ANY training course. The discount code is good for all SANS courses in all formats.
  • FREE OnDemand Bundle with corresponding course purchase for SANS Network Security 2012 with code SecuraBit_NS12OD
  • Use code 36449 for 20% off your Syngress order!


Upcoming events

Links


Chat with us on IRC at irc.freenode.net #securabit
iTunes Podcast – http://itunes.apple.com/us/podcast/securabit/id280048405
iPhone App Now Available – http://itunes.apple.com/us/app/securabit-mobile/id382484512?mt=8

Direct download: SecuraBit_EP108.mp3
Category:general -- posted at: 6:13pm EDT

Hosts

Guests

Topics

  • TOOOL - The Open Organisation Of Lockpickers http://toool.us/
  • Physical Security and the Three R's
  • New edition of Practical Lockpicking coming soon!

News Items
Coders' Rights At Risk in the European Parliament
https://www.eff.org/deeplinks/2012/06/eff-european-parliament-directive-attack-information-systems

Department of Homeland Security and U.S Navy hacked
http://thehackernews.com/2012/06/department-of-homeland-security-and-us.html

US-CERT discloses security flaw in Intel chips
http://m.csoonline.com/article/708568/us-cert-discloses-security-flaw-in-intel-chips  

FEMA pushes cyber attack game for businesses
http://www.v3.co.uk/v3-uk/the-frontline-blog/2184608/fema-pushes-cyber-attack-game-businesses

United States Department of Defense data leaked by Anonymous hackers
http://thehackernews.com/2012/06/united-states-department-of-defense.html

KeepTheWebOpen.com
http://keepthewebopen.com/digital-bill-of-rights

Attacks Targeting US Defense Contractors and Universities Tied to China
http://threatpost.com/en_us/blogs/attacks-targeting-us-defense-contractors-and-universities-tied-china-061312

10000 Twitter User oauth token hacked and Exposed by Anonymous
http://thehackernews.com/2012/06/10000-twitter-user-oauth-token-hacked.html

Password flaw leaves MySQL, MariaDB open to brute force attack
http://go.theregister.com/feed/www.theregister.co.uk/2012/06/11/mysql_mariadb_password_flaw/


Use Our Discount Codes

  • Use code SecuraBit_Connect to get $150.00 off of ANY training course. The discount code is good for all SANS courses in all formats.
  • FREE exam attempt with corresponding qualifying course purchase for SANSFIRE 2012 with code SecuraBit_SFGIAC (Expires July 6th!)
  • Use code 36449 for 20% off your Syngress order!


Upcoming events


Links


Chat with us on IRC at irc.freenode.net #securabit
iTunes Podcast – http://itunes.apple.com/us/podcast/securabit/id280048405
iPhone App Now Available – http://itunes.apple.com/us/app/securabit-mobile/id382484512?mt=8

Direct download: SecuraBit_EP106.mp3
Category:general -- posted at: 12:10pm EDT

Hosts


Guests


Topics

  • APT and Penetration Testing
  • Bluetooth Hacking and Reconnaissance


News Items
Google Warning Users About State-Sponsored Attacks | threatpost
http://m.threatpost.com/en_us/blogs/google-warning-users-about-state-sponsored-attacks-060512

Apple Releases Guide To iOS Security - TechCrunch
http://m.techcrunch.com/2012/06/04/apple-releases-guide-to-ios-security/

Flame
A Massive Web of Fake Identities and Websites Controlled Flame Malware
http://www.wired.com/threatlevel/2012/06/flame-command-and-control/

Spy malware infecting Iranian networks is engineering marvel to behold
http://arstechnica.com/security/2012/05/spy-malware-infecting-iranian-networks-is-engineering-marvel-to-behold/

Meet ‘Flame,’ The Massive Spy Malware Infiltrating Iranian Computers
http://www.wired.com/threatlevel/2012/05/flame/

Stuxnet
Report: Obama Ordered Stuxnet to Continue After Bug Caused It to Spread Wildly
http://www.wired.com/threatlevel/2012/06/obama-ordered-stuxnet-continued/

Confirmed: US and Israel created Stuxnet, lost control of it
http://arstechnica.com/tech-policy/2012/06/confirmed-us-israel-created-stuxnet-lost-control-of-it/


Words to Avoid Online If You Don't Want to Join the Government's Watch List http://lifehacker.com/5913945/words-to-avoid-online-if-you-dont-want-to-join-the-governments-watch-list


Use Our Discount Codes

  • Use code SecuraBit_Connect to get $150.00 off of ANY training course. The discount code is good for all SANS courses in all formats.
  • FREE exam attempt with corresponding course purchase for SANSFIRE 2012 with code SecuraBit_SFGIAC
  • Use code 36449 for 20% off your Syngress order!


Upcoming events


Links


Chat with us on IRC at irc.freenode.net #securabit
iTunes Podcast – http://itunes.apple.com/us/podcast/securabit/id280048405
iPhone App Now Available – http://itunes.apple.com/us/app/securabit-mobile/id382484512?mt=8

Direct download: SecuraBit_EP105.mp3
Category:general -- posted at: 11:37am EDT

Hosts


Guests

  • Dr. Tran
  • Emwave
  • Professor Farnsworth


News Items


Use Our Discount Codes

  • Use code SecuraBit_Connect to get $150.00 off of ANY training course. The discount code is good for all SANS courses in all formats.
  • FREE exam attempt with corresponding course purchase for SANSFIRE 2012 with code SecuraBit_SFGIAC
  • Use code 36449 for 20% off your Syngress order!


Upcoming events


Links


Chat with us on IRC at irc.freenode.net #securabit
iTunes Podcast – http://itunes.apple.com/us/podcast/securabit/id280048405
iPhone App Now Available – http://itunes.apple.com/us/app/securabit-mobile/id382484512?mt=8

Direct download: SecuraBit_EP104.mp3
Category:general -- posted at: 6:11pm EDT

Hosts

Guests

  • Tom Eston - @agent0x0
    • Mobile App/Device Security and Security Justice.

Topics

  • Lab
  • Contests
  • Banter

News Items

Use Our Discount Codes

  • Use code SecuraBit_Connect to get $150.00 off of ANY training course. The discount code is good for all SANS courses in all formats.
  • FREE exam attempt with corresponding course purchase for SANSFIRE 2012 with code SecuraBit_SFGIAC
  • Use code 36449 for 20% off your Syngress order!

Upcoming events


Links


Chat with us on IRC at irc.freenode.net #securabit
iTunes Podcast – http://itunes.apple.com/us/podcast/securabit/id280048405
iPhone App Now Available – http://itunes.apple.com/us/app/securabit-mobile/id382484512?mt=8

Direct download: SecuraBit_EP103.mp3
Category:general -- posted at: 1:03am EDT

Please join us as we kick it old school with various news and banter, as well as a special interview with Chris Sullo!  Our show notes can be found here.

Direct download: SecuraBit_EP102.mp3
Category:general -- posted at: 3:18pm EDT

Join us as we talk with Robin Wood (@digininja) about his recent survey of IT Security professionals!  Our show notes can be found here:  http://wiki.securabit.com/ShowNotes/EP101

Direct download: SecuraBit_EP101.mp3
Category:general -- posted at: 4:59pm EDT

Join us as we interview Craig Heffner of Tactical Network Solutions regarding the recent WPS vulnerability and his Reaver tool, and as we also interview Harlan Carvey whose latest Windows Forensic Analysis Toolkit book was recently released.  

Our show notes can be found here:  http://wiki.securabit.com/ShowNotes/EP100

 

 

 

Direct download: SecuraBit_EP100.mp3
Category:general -- posted at: 2:52pm EDT

Join us as we interview the CTO of Silicum Security about ECAT, Pascal Longpre! 

Please refer to our wiki for full show notes.

Direct download: SecuraBit_EP99.mp3
Category:general -- posted at: 9:41pm EDT

This time around we are giving away books! The contest officially starts NOW and will run until 11:59PM on 11/19.  We will announce winners promptly after that. Prizes will be awarded to 1st and 2nd place.  Everyone else who scores any amount of points will be entitled to a free sticker mailed to them if [...]
Category:general -- posted at: 4:16pm EDT

Hey folks, This is a wee bit late but we wanted to post the answers to our challenge that we had up before Derbycon.  Fortunately for all, there were enough tickets that nobody actually needed ours. We had a great time meeting folks and talking security, as well as meeting up with you, our valued [...]
Category:general -- posted at: 11:26pm EDT

Join us this Friday 9/30 at the Bluegrass Brewing Company @ 10pm eastern time.  Come by and grab a beer, hang out, and let us throw stickers at you! The location is: Bluegrass Brewing Company 2 Theater Sq, Louisville, KY 40202(502) 568-2224  Here are walking directions as well.  It's 0.5 miles to walk it, and [...]
Category:general -- posted at: 4:41pm EDT

Challenge closed. tuts for solutions will be submitted soon.  Congrats to our winners who completed all the challenges.  Andrew Fastow              - 13 points jgor      @indiecom        - 13 points Thanks to all that participated Look forward to seeing you next month for our #SecurabitChallenge   Anyone competing [...]
Category:general -- posted at: 11:21am EDT

Check out our wiki for show notes!

http://wiki.securabit.com/ShowNotes/EP87

Direct download: SecuraBit_EP87.mp3
Category:general -- posted at: 11:56pm EDT

Join us as we interview Lance Spitzner, Technical Director for the SANS Securing the Human Program.

Show notes are now at our wiki:  http://wiki.securabit.com/ShowNotes/EP86

Direct download: SecuraBit_EP86.mp3
Category:general -- posted at: 11:20pm EDT

Hosts

myne-us @myne_us

Jacob hammack @hammackj

Guest Host

Dave Kennedy @dave_rel1k

Guest

Dr. Tyler Bletsch (Tyler.Bletsch {at} gmail.com)

Tyler's former security group at NC State University under Xuxian Jiang - http://www.csc.ncsu.edu/faculty/jiang/

Topics

JOP programming

Turing complete exploit development (http://en.wikipedia.org/wiki/Turing_completeness)

links

JOP

JOP technical report

ftp://ftp.ncsu.edu/pub/tech/2010/TR-2010-8.pdf

JOP academic paper

http://www.csc.ncsu.edu/faculty/jiang/pubs/ASIACCS11.pdf

Tyler's dissertation (JOP in x86 and MIPS, and a few other techniques)

http://repository.lib.ncsu.edu/ir/bitstream/1840.16/6698/1/etd.pdf

ROP

http://cseweb.ucsd.edu/~hovav/dist/rop.pdf

http://blog.zynamics.com/2010/03/12/a-gentle-introduction-to-return-oriented-programming/

http://sandsprite.com/CodeStuff/Understanding_imports.html

http://j00ru.vexillium.org/?p=893

http://www.braid-game.com/

http://qubes-os.org/Architecture.html

If you like the intro music and the closing music check out http://dualcoremusic.com/nerdcore/

break music http://www.audiomicro.com/saxophone-piano-drums-short-jazz-introduction-royalty-free-stock-music-94

Direct download: securabit_SEG_style_2_JOP_with_Tyler_Bletsch.mp3
Category:general -- posted at: 12:48pm EDT

SecuraBit Episode 83:  Hey look its the Human Hacker!!!
June 1, 2011

Hosts:
Anthony Gartner – @anthonygartner http://anthonygartner.com
Chris Gerling  – @chrisgerling - MIA
Christopher Mills – @thechrisam - MIA
Jason Mueller – @securabit_jay - MIA
Andrew Borel –  @andrew_secbit
Tony Huffman – @myne_us
Tim Krabec  - @tkrabec

Guests:
Chris Hadnagy ( @humanhacker on Twitter ) discusses Social Engineering: The Art of Human Hacking

General topics:
Social Engineering: The Art of Human Hacking
http://www.amazon.com/Social-Engineering-Human-Hacking-ebook/dp/B004EEOWH0/ref=tmm_kin_title_0?ie=UTF8&m=AG56TWVU5XWC2
Social-Enginer.org
- variety of guests who use social enginering
Does Social Engineering Always Involve Deception?
Marketing or Social Engineering
Stereotypes
online help from skype :) <LOL
Social Engineer CTF for DEFCON 19
Five Key Points of Social Engineering

Links to News:
http://www.rollingstone.com/music/news/hackers-plant-fake-tupac-story-on-pbs-website-20110531http://www.redstate.com/neil_stevens/2011/05/28/anthony-weiner-and-his-eponymous-twitter-hack/
http://threatpost.com/en_us/blogs/report-l3-warns-employees-attacks-using-compromised-securid-tokens-060111


Use our discount code "Connect_SecuraBit" to get $150.00 off of ANY training course. The discount code is good for all SANS courses in all formats.


Upcoming events
#BSidesStJohns St. John's, NL (10 Jun 2011)
#BSidesCT Meriden, CT (11 Jun 2011)
FIRST Austria (12 - 17 June 2011)
#BSidesVienna(18 June 2011)
Toorcon (18 - 19 June 2011)
#BSidesLasVegas (3-4 August 2011)
BlackHat Vegas (3 - 4 August 2011)
DEFCON 19 (4 - 7 August 2011)
SANS Boston 2011(8 - 15 August 2011)
#BSidesLA Los Angeles, CA (18 - 19 August 2011)
#BSidesMO(21 Oct 2011)
#BSidesNewDelhi (22 - 23 October 2011)
VB Barcelona October 2011

Links:
http://www.securabit.com
Chat with us on IRC at irc.freenode.net #securabit
iTunes Podcast - http://itunes.apple.com/us/podcast/securabit/id280048405
iPhone App Now Available - http://itunes.apple.com/us/app/securabit-mobile/id382484512?mt=8

Direct download: SecuraBit_EP83.mp3
Category:general -- posted at: 7:45am EDT

SecuraBit Episode 82:  Totally Rad Man!

May 18, 2011

Hosts:

Anthony Gartner – @anthonygartner http://anthonygartner.com

Chris Gerling  – @chrisgerling

Christopher Mills – @thechrisam

Jason Mueller – @securabit_jay

Andrew Borel –  @andrew_secbit

Tony Huffman – @myne_us

Guests:

Carl Herberger from http://www.radware.com/ 

General topics:

 DDOS: Recent attacks from groups like anonymous , attack vectors, technique information and how it can effect you.

Signatures: Signature based detection and the effects it had on todays security

General security: Some general discussion on security 

Securibit exploit development group (SEG)  starting up blog post coming soon.

 

NEWS:

PSN hacked again! : 

 Just two days after the PlayStation Network was restored after a near month-long outage, the PSN password page has apparently been exploited. According to reports, the exploit allows other users to reset your account password using only your e-mail address and date of birth. This personal data was made available to hackersduring the initial PSN attack.

http://arstechnica.com/gaming/news/2011/05/report-playstation-network-passwords-exploited-accounts-compromised.ars

international_strategy_for_cyberspace.pdf

http://www.whitehouse.gov/sites/default/files/rss_viewer/international_strategy_for_cyberspace.pdf

Backtrack 5 is out

http://www.backtrack-linux.org/

Facebook privacy demo gets guy arrested in austrelia

http://www.net-security.org/secworld.php?id=11045

Microsoft patch tuesday

http://www.microsoft.com/technet/security/bulletin/ms11-may.mspx

Use our discount code "Connect_SecuraBit" to get $150.00 off of ANY training course. The discount code is good for all SANS courses in all formats.

Upcoming events

#BSidesDetroit (3 - 4 Jun 2011)

#BSidesStJohns St. John's, NL (10 Jun 2011)

#BSidesCT Meriden, CT (11 Jun 2011)

FIRST Austria (12 - 17 June 2011)

#BSidesVienna(18 June 2011)

Toorcon (18 - 19 June 2011)

#BSidesLasVegas (3-4 August 2011)

BlackHat Vegas (3 - 4 August 2011)

DEFCON 19 (4 - 7 August 2011)

#BSidesLA Los Angeles, CA (18 - 19 August 2011)

#BSidesMO(21 Oct 2011)

#BSidesNewDelhi (22 - 23 October 2011)

VB Barcelona October 2011

Links:

http://www.securabit.com

Chat with us on IRC at irc.freenode.net #securabit

iTunes Podcast - http://itunes.apple.com/us/podcast/securabit/id280048405

iPhone App Now Available - http://itunes.apple.com/us/app/securabit-mobile/id382484512?mt=8

Direct download: SecuraBit_EP82.mp3
Category:general -- posted at: 9:00am EDT

SecuraBit Episode 79:  Back to the basics with Marcus Carey!
April 6, 2011

Hosts:
Christopher Mills – @thechrisam
Jason Mueller – @securabit_jay
Tony Huffman – @myne_us

Guests:
Marcus J Carey- @iFail
http://hackersforcharity.org/

General topics:

NEWS:
Epsilon:
http://www.pcworld.com/businesscenter/article/224192/epsilon_data_breach_expect_a_surge_in_spear_phishing_attacks.html
http://www.eweek.com/c/a/Security/Epsilon-Data-Breach-Highlights-Cloud-Computing-Security-Concerns-637161/
http://threatpost.com/en_us/blogs/list-companies-hit-epsilon-breach-040511
https://threatpost.com/en_us/blogs/epsilon-data-breach-expands-include-capital-one-disney-others-040411
http://www.epsilon.com/News%20&%20Events/Press_Releases_2011/Epsilon_Notifies_Clients_of_Unauthorized_Entry_into_Email_System/p1057-l3

"On March 30th, an incident was detected where a subset of Epsilon clients' customer data were exposed by an unauthorized entry into Epsilon's email system. The information that was obtained was limited to email addresses and/or customer names only. A rigorous assessment determined that no other personal identifiable information associated with those names was at risk. A full investigation is currently underway," the statement said.

LizaMoon:
http://threatpost.com/en_us/blogs/counterspin-lizamoon-web-attacks-no-big-deal-040511
In a post on Cisco's security blog, senior security researcher Mary Landesman said that data from the company's ScanSafe Web security infrastructure suggests that just over 1,000 Web domains have been compromised using the SQL injection attack, not the 500,000 to 1.5 million cited in published reports.

https://threatpost.com/en_us/blogs/widespread-lizamoon-web-attacks-push-rogue-antivirus-040111
“Websense researchers wrote on Thursday that a Google search for Web sites hosting the malicious URLs identified over 1.5 million Web sites hosting the code”

Pandora.com data leak:
http://threatpost.com/en_us/blogs/pandora-mobile-app-transmits-gobs-personal-data-040611?utm_source=Home+Page&utm_medium=Top+Graphic+Bar&utm_campaign=Position+3
“The data included both the owner's GPS location and tidbits the owners gender, birthday and postal code information. There was evidence that the app attempted to provide continuous location monitoring - which would tell advertisers not just where the user accessed the application from, but also allow them to track that user's movement over time. “

RSA attack:
http://threatpost.com/en_us/blogs/rsa-securid-attack-was-phishing-excel-spreadsheet-040111
“"The attacker in this case sent two different phishing emails over a two-day period. The two emails were sent to two small groups of employees; you wouldn’t consider these users particularly high profile or high value targets. The email subject line read '2011 Recruitment Plan," Uri Rivner, head of new technologies in the identity protection division of RSA wrote in a post on the attack”
http://www.nsslabs.com/research/analytical-brief-rsa-breach.html

¾ Energy Firms Had Data Breach over last year:
http://threatpost.com/en_us/blogs/study-three-four-energy-firms-had-data-breach-last-year-040511
Long perceived to be beyond the attention of hackers, energy firms and utilities now report that they are being targeted. In the Ponemon study, 76% of the IT security staff interviewed reported that their organization had experienced "one or more data breaches" in the last 12 months. A similar number - 69% - said they felt a data breach was likely to occur in the next 12 months, Ponemon said.

Comodo what really happened:
https://threatpost.com/en_us/blogs/phony-ssl-certificates-issued-google-yahoo-skype-others-032311
http://pastebin.com/uSdKNDN5
“ I found out that TrustDll.dll takes care of signing. It was coded in C#.
Simply I decompiled it and I found username/password of their GeoTrust and Comodo reseller account. “

FBI asks for help on cracking code:
http://www.h-online.com/security/news/item/FBI-asks-for-help-cracking-a-code-in-unsolved-murder-case-1220007.html

Other Stories:
http://www.techdirt.com/articles/20110401/13241213732/exploit-hadopi-site-turns-it-into-pirate-bay-supporter.shtml
http://news.softpedia.com/news/Google-Chrome-to-Block-Malicious-Downloads-193386.shtml

Use our discount code "Connect_SecuraBit" to get $150.00 off of ANY training course. The discount code is good for all SANS courses in all formats.

Upcoming events:
ThotCon (15 Apr 2011)
#BSidesChicago (16 - 17 Apr 2011)
#BSides London, (20 Apr 2011)
CEIC Orlando (15 – 18 May 2011)
#BSidesROC Rochester, NY (21 May 2011)
#BSidesDetroit (3 - 4 Jun 2011)
#BSidesStJohns St. John's, NL (10 Jun 2011)
#BSidesCT Meriden, CT (11 Jun 2011)
FIRST Austria (12 - 17 June 2011)
#BSidesVienna(18 June 2011)
Toorcon (18 - 19 June 2011)
#BSidesLasVegas (3-4 August 2011)
BlackHat Vegas (3 - 4 August 2011)
DEFCON 19 (4 - 7 August 2011)
#BSidesLA Los Angeles, CA (18 - 19 August 2011)
#BSidesMO(21 Oct 2011)
#BSidesNewDelhi (22 - 23 October 2011)
VB Barcelona October 2011

Links:
http://www.securabit.com
Chat with us on IRC at irc.freenode.net #securabit
iTunes Podcast - http://itunes.apple.com/us/podcast/securabit/id280048405
iPhone App Now Available - http://itunes.apple.com/us/app/securabit-mobile/id382484512?mt=8

Direct download: SecuraBit_EP79.mp3
Category:general -- posted at: 11:43pm EDT

Securabit Episode 74: Podcasting in the Dark with Brian Krebs
January 26, 2011

Hosts:
Anthony Gartner – @anthonygartner http://anthonygartner.com
Chris Gerling  – @chrisgerling
Christopher Mills – @thechrisam
Andrew Borel –  @andrew_secbit

Guests:
Brian Krebs - @briankrebs - http://krebsonsecurity.com/

General topics:

  • I recall reading about various greeting card based attacks over the years.  Do you think they've all been originated by the same folks who did this one?  Or at least, with the same goals in mind?
  • How prevalent do you think ATM skimmers are?  What are some ways the common person can look out for them?
  • Do you think financial institutions are getting better at educating their customers about the protections provided/not provided under Regulation E?
  • Do you anticipate payment processing centers becoming a bigger target for criminals vs the individual businesses?
  • Since many financials are under pressure from new reserve requirements, do you think new security requirements will force smaller financials to merge? How can they balance the need to offer more convenient services (such as mobile banking) with the need to improve security at the same time?
  • What do you think the top 3 stories for 2010 were? Why do you think they were the top stories?


Use our discount code "Connect_SecuraBit10" to get 10% off of ANY training course. The discount code is good for all SANS courses in all formats.

Upcoming events
RSA Conference 2011 (14 -18 Feb 2011)
#BSidesSanFrancisco (14 - 15 Feb 2011)
#BSidesCleveland (18 Feb 2011)
#BSidesHalifax (5 Mar 2011)
#BSidesGSO Greensboro, NC (9 Mar 2011)
CanSecWest2011 (9 - 11 Mar 2011)
#BSidesAustin (11 - 12 March 2011) http://www.keepsecurityweird.org/
BlackHat Europe 2011 (17 - 18 Mar 2011)
#BSidesChicago (16 - 17 Apr 2011)
#BSides London, (20 Apr 2011)
#BSidesROC Rochester, NY (21 May 2011)
#BSidesDetroit (3 - 4 Jun 2011)

Links:
http://securabit.com
Chat with us on IRC at irc.freenode.net #securabit
iTunes Podcast - http://itunes.apple.com/us/podcast/securabit/id280048405
iPhone App Now Available - http://itunes.apple.com/us/app/securabit-mobile/id382484512?mt=8

Direct download: SecuraBit_EP74.mp3
Category:general -- posted at: 3:43pm EDT

SecuraBit  Episode 70: Following the wh1t3Rabbit, Hat-tricks with a wh1t3Rabbit
December 1, 2010

Hosts:
Anthony Gartner – @anthonygartner http://anthonygartner.com
Christopher Mills – @thechrisam
Chris Gerling  – @chrisgerling
Andrew Borel –  @andrew_secbit

Guests:
HP's Rafal Los - @wh1t3Rabbit
Subscribe to his blog at http://hp.com/go/white-rabbit

General topics:
Shmoocon tickets, who’s got them?

Hat-trick http://en.wikipedia.org/wiki/Hat-trick

Password security, does it really matter?

Application security to detect and prevent malicious code.

Diaspora https://joindiaspora.com/

Security Metrics

Story time with Rafal

RSnake shutting down his blog after 5 years and 1000 posts http://ha.ckers.org/

FTC Staff Issues Privacy Report Offers Framework for Consumers, Businesses, and Policymakers: Endorses “Do Not Track” to Facilitate Consumer Choice About Online Tracking
http://www.ftc.gov/opa/2010/12/privacyreport.shtm

SANS Discount:
Use our discount code "Connect_SecuraBit10" to get 10% off of ANY training course. The discount code is good for all SANS courses in all formats.

Syngress Discount:
Use our discount code 36449 to receive 20% off any order direct from Elsevier!

Upcoming events
Sunbelt Quarterly Briefing December 8th, 2010 at 9am and 2pm
DojoCon December 11-12, 2010
#BSidesBerlin December 28-30, 2010
ShmooCon January 28-31, 2011

Links:
http://securabit.com
Chat with us on IRC at irc.freenode.net #securabit
iTunes Podcast - http://itunes.apple.com/us/podcast/securabit/id280048405
iPhone App Now Available - http://itunes.apple.com/us/app/securabit-mobile/id382484512?mt=8

Direct download: SecuraBit_EP70.mp3
Category:general -- posted at: 1:08pm EDT

SecuraBit  Episode 64:  A whole lot of organized crime going on!
August 25, 2010

Hosts:
Anthony Gartner – @anthonygartner http://anthonygartner.com
Chris Gerling  – @chrisgerling
Andrew Borel –  @andrew_secbit

Guests:
Bryan Sartin - Director of Investigative Response at Verizon Business

General topics:
Verizon RISK Team - http://www.verizonbusiness.com/products/security/risk/

Bryan Sartin, the Director of Investigative Response at Verizon Business, discusses the 2010 Verizon Data Breach Report
http://www.verizonbusiness.com/resources/reports/rp_2010-data-breach-report_en_xg.pdf

VERIS Framework - https://verisframework.wiki.zoho.com/

MalCon: A Call for ‘Ethical Malcoding’ http://krebsonsecurity.com/2010/08/malcon-a-call-for-ethical-malcoding/

SecTor 2010 - http://www.sector.ca/
Security Training October 25.
Conference Sessions October 26 & 27, 2010.

The real iTunes fraud vulnerability: Gullible users - http://news.cnet.com/8301-13579_3-20014481-37.html

Upcoming events
Hacker Halted http://www.hackerhalted.com/ Tim Is speaking October 14th
Louisivlle Infosec 10/7. http://www.louisvilleinfosec.com/
Atlanta B-Sides 10/8. http://www.securitybsides.com/BSidesAtlanta
HacKid - http://www.hackid.org/ 10/9-10/10
Phreaknic 10/15. http://www.phreaknic.info/pn14/

Links:
http://securabit.com
Chat with us on IRC at irc.freenode.net #securabit
iTunes Podcast - http://itunes.apple.com/us/podcast/securabit/id280048405
iPhone App Now Available - http://itunes.apple.com/us/app/securabit-mobile/id382484512?mt=8

Direct download: SecuraBit_EP64.mp3
Category:general -- posted at: 6:33pm EDT

SecuraBit Episode 63:  Walking to the Waffle House with Andy Willingham
August 11, 2010
Hosts:
Anthony Gartner – @anthonygartner http://anthonygartner.com
Chris Gerling  – @chrisgerling
Christopher Mills – @thechrisam
Jason Mueller – @securabit_jay
Andrew Borel –  @andrew_secbit

Guests:
Andy Willingham (Southern Fried Security Podcast) - @andywillingham http://www.andyitguy.com/blog/

General topics:
DEFCON/BLACKHAT/BSides Recap
--Chris’s experience this year, and a review of the medical facilities in Las Vegas
--General entertaining banter

Shiny Old VxWorks Vulnerabilities
http://blog.metasploit.com/2010/08/vxworks-vulnerabilities.html

Facebook name extraction based on email/wrong password
http://seclists.org/fulldisclosure/2010/Aug/130

Apple Fixes PDF Vunerability that allowed webbased Jail Break.
iOS 4.0.2 Software Update http://support.apple.com/kb/DL1061

Interview with Andy Willingham
ShmooCon 2011 Dates Announced
http://tinyurl.com/29nzc46

Microsoft drops the patch bomb
http://www.securabit.com/2010/08/10/microsoft-drops-the-patch-bomb/

Andriod Malware and Unexpected Features
http://crave.cnet.co.uk/mobiles/android-gets-its-first-texting-malware-50000303/

Free Android antivirus clocks up 2.5m downloads
http://www.theregister.co.uk/2010/08/11/free_android_security_app/

A Review of Verizon and Google's Net Neutrality Proposal
http://www.eff.org/deeplinks/2010/08/google-verizon-netneutrality

Upcoming events
South Florida ISSA’s Hack the flag and chili cook-off  Saturday August 14, 2010 from 12:00pm - 5:00pm
http://sfissa.org/index.php/sfissa-mm-events/htf-main/85-hack-the-flag-2010
Hacker Halted http://www.hackerhalted.com/ Tim Is speaking October 14th
Louisivlle Infosec 10/7. http://www.louisvilleinfosec.com/
Atlanta B-Sides 10/8. http://www.securitybsides.com/BSidesAtlanta
HacKid - http://www.hackid.org/ 10/9-10/10
Phreaknic 10/15. http://www.phreaknic.info/pn14/

Links:

http://www.securabit.com
Chat with us on IRC at irc.freenode.net #securabit
iTunes Podcast - http://itunes.apple.com/us/podcast/securabit/id280048405
iPhone App Now Available - http://itunes.apple.com/us/app/securabit-mobile/id382484512?mt=8
Direct download: SecuraBit_EP63.mp3
Category:general -- posted at: 10:59am EDT