NetSec

9.23.2005

Handbook for Bloggers and Cyber-Dissidents

posted by Theobromine Friday, September 23, 2005

I give you, Exploiting MD5 collisions (in C#).. now with more yummie source code goodness in every byte!

posted by Jscott Friday, September 23, 2005

Hackers to hear from Microsoft about a more secure IE at Hack In the Box (Malaysia)

posted by GeeWhiz Friday, September 23, 2005

9.22.2005

NT shellcodes prevention demystified

posted by GeeWhiz Thursday, September 22, 2005

Supermarket chain freezes Internet access. Audits are put in place to enforce policy - Usage audits look for exposure in four areas: productivity loss, legal liability, bandwidth consumption and data security. "Other companies give their employees full Internet access and take it away when there is a problem...Our attitude is, 'Don't give them anything that's not required to do their job.'""

posted by Theobromine Thursday, September 22, 2005

NSA granted Net location-tracking patent - #6,947,978 Method for geolocating logical network addresses - The tests for a patent are utility, novelty, non-oviousness and lack of prior art. This patent fails the obviousness, novelty and prior art tests for me. Triangulation and telemetry are nothing new and neither is it's application to the Internet. There is plenty of prior art on the topic although new methods may be involved that are unaffected by the prior art. The NSA may have patented this to prevent a private corporation doing so (and later extracting license fees).

posted by GeeWhiz Thursday, September 22, 2005

9.21.2005

Firefox Command Line URL Shell Command Injection (Unix/Linux only)
Solution: Update to firefox 1.0.7 (1.0.7 fixes other stability and security issues, recommended for all users)

posted by Lance Wednesday, September 21, 2005

9.20.2005

Mailnator Real Time Spam Map shows (in semi-realtime) ip addresses that are currently sending the most spam to Mailinator.

posted by GeeWhiz Tuesday, September 20, 2005

Google speaks "haxor"

Here is a "l33t" translator where you can adjust the "l33tne55" of your translation from 0 to 100%

Foxtrot's Jason tries to act elite

Okay, fine. Here is some "relevant" material. Symantec's semi-annual report notes some disturbing trends like the growth of modular malicious code - code that has limited functionality initially but then downloads additional functionality once a system has been infected; DOS attacks increasing from an average of 119 per day to 927 over the previous six month period; the time btw the disclosure of a vulnerability and the release of associated exploit code has decreased from 6.4 days to 6.0 days. Read a summary of the report at the link above.

posted by Theobromine Tuesday, September 20, 2005

Apple CEO blasts 'greedy' music labels

Google Launches WiFi Service - Google Secure Access Beta

posted by GeeWhiz Tuesday, September 20, 2005

Writing Small Shellcode from NGS Software

posted by GeeWhiz Tuesday, September 20, 2005

9.19.2005

You missed it. Today was Talk Like a Pirate Day. I managed to get through the entire day without hearing one single "Arrr!". Hope not to hear from you next year either!

posted by joat Monday, September 19, 2005

Report from Symantec: I.E. is more secure than Mozilla web browsers

posted by Theobromine Monday, September 19, 2005

UK: Land of the Bots - Who would've thought that the nation in which 70% of those surveyed gave up their password for a bar of chocolate would ALSO be the nation hosting the largest portion of compromised, bot-infested PC's?

Crime? What crime?

E-Eye Eyes Yet Another IE Flaw

Worm Redirects Google Searches To Look-Alike Site

posted by GeeWhiz Monday, September 19, 2005

9.18.2005

You thought binaries were dangerous? Striking ph33r in the hearts of script kiddies, the Underhanded C Contest and the International Obfuscated C Contest.

Squeeze the information you want out of Google. Read "Using Google Efficiently".

Maybe this vulnerability in BitTorrent tracker ratio calculation will work out in your favor.

If that's not your style, check out this Windows XP SP2 Firewall Bypass that allows malicious code on a user's system to bypass the SP2 firewall to access the Internet without user notification. The trick has been around for a while, but the technique and code have been improved.

posted by Autonomous Coward Sunday, September 18, 2005