Electronik Tribulation Army gone white-hat(ish)?
If you took a look at the slides for Monday’s lecture (or were there in-person), you might recall that the last slide of content contained quotes from the ETA’s current site on the Internet, eoeta.com. The new leader, “Xon”, has disavowed the actions that led to the previous leader’s arrest, and is very firm [...]
A few Black Hat USA 2009 talks are available now
Much like last year, a few of the more high-profile talks from Black Hat this year have been released on the web site pretty soon after the conference:
Black Hat USA 2009 Media Archives
The following talks have video available, as of this posting:
The Language of Trust: Exploiting Trust Relationships in Active Content – Mark Dowd, Ryan [...]
Binary 300 comic strip ruckus
Earlier today, this was making the rounds on twitter:
http://hackerschool.org/DefconCTF/17/B300.html
It’s a cute-looking manga-style comic about team Sapheads’ experiences with the “Binary 300″ challenge in the Defcon 17 CTF pre-quals. It’s kind of entertaining, and looks informative, if a bit engrish-y. I scrolled through it quickly, bookmarked it, and planned to give it a good read later.
At [...]
GhostExodus, the ETA, and a Control-Systems Incident at Carrell Clinic (Part 2)
If you haven’t read Part 1 of this story, then you really ought to take a look at it first. It serves as a good overview, and the criminal complaint filed by the FBI is a good read.
Yesterday afternoon was GhostExodus’ detention hearing. I’m not very familiar with the process one goes through after being [...]
GhostExodus, the ETA, and a Control-Systems Incident at Carrell Clinic (Part 1)
My phone has been blowing up most of the day about this. To sum it up: On the evening of the 18th, a script kiddie that was involved in a previous post on this site (“Perl Hacking is Dead”), XXxxImmortalxxXX, contacted me and began to brag about hacking a hospital’s HVAC system. Upon [...]
Bejtlich on Black Hat Budgeting
…and not the economies of running a popular security conference ;-).
I’m not usually one to just drop a link as a post, but this one totally deserves it:
Tao Security Blog – Black Hat Budgeting
Richard Bejtlich is right on target with this one. He describes how a criminal element could spend a one million dollar budget [...]
Gustavo Duarte’s Great Internals Series
I’ve spent some time looking at these posts over on Gustavo Duarte’s blog today, and I am very impressed. Gustavo has taken the time to write an entire series of posts on x86 internals, focusing on how memory works and the boot-up process. He uses Linux and, to a lesser extent, Windows in his examples, and [...]
Santa Claus is Hacking to Town Challenge Results
Over at the excellent ethicalhacker.net site, the results of the Santa Claus is Hacking to Town Skillz Challenge have been posted:
Santa Claus is Hacking to Town – Answers and Winners
These challenges are a lot of fun, and educational as well. Ed Skoudis puts a lot of effort into writing and judging them. There’s a whole archive [...]
25th Chaos Communication Congress Media
The 25th Chaos Communication Congress (25C3) took place in Berlin at the very end of December, and definitely had more than its fair share of interesting-looking talks. Luckily, for those of us who were not able to go to Germany for this conference, videos of the talks have been made available a lot sooner than [...]
Black Hat USA 2008 and Defcon 16 Audio Available
A while back, I posted about darkoz having to find a new home for the hacker media archive. Well, it appears that he has found a replacement. The previous mirror on Easynews now points to the new location:
http://avondale.good.net/dl/bd/
…and what’s more: There are MP3’s available of the recent Black Hat USA 2008 and Defcon 16 conferences [...]