SecuraBit Episode 34: RoundTable Well Virtually anyway!!!

This week we welcome Scott Fitzpatrick of Symantec to join our roundtable on the news items of the day.

News Items:
StrongWebMail Fail – http://www.pcworld.com/businesscenter/article/166314/web_mail_company_to_pay_prize_after_ceo_hacked.html

TweetDeck still passes authentication in the clear

Google Apps criticized about their security

iPhone 3.0 Teathering Hack – http://www.jellysms.com/blog/enable-internet-tethering-with-your-iphone-in-2-minutes-on-o2-ireland-with-30-gm/

RSnake’s SlowLoris (low bandwidth, greedy, poisonus HTTP client) – http://ha.ckers.org/slowloris/

Mubix presenting a six hour work shop “From Shell to Owning the Company” at ToorCamp

DefCon and the Podcasters Meetup
– In Sky box 207 and 208 8pm or after the last talk on Saturday night.
– Exotic Liability (http://www.exoticliability.com/) and Germaina Newbs (http://grmn00bs.blogspot.com/) will be join the line up.

PaulDot Com with Securabity Thursday July 2, 2009 at 7pm.

Join us in IRC at irc.freenode.net #securabit

Our Next live recording is July 1, 2009 at 8pm EDT.

Hosts:
Chris Gerling – http://www.chrisgerling.com – @hak5chris
Jason Mueller – @securabit_jay
Christopher Mills – http://www.packetsense.net – @thechrisam
Rob Fuller – Mubix – http://room362.com – @Mubix
Andrew Borel – @andrew_secbit

Guests:
Scott Fitzpatrick

Links:
Symantec – http://www.symantec.com/
Mubix – Couch to Career – http://www.room362.com/archives/564-couch-to-career-follow-up.html

SecuraBit Episode 33: Bursting Clouds with Kostya Kortchinsky

In this episode we talk to Kostya about the process that is behind
Cloud Burst.  He speaks about breaking out of the existing Virtual
Machine and into the host.  Once you own the host you have the ability
to own other Virtual Machines.

Quick Topics:

OS X Security Update

Palm Pre

North Korea Cyberware

Air France Flight 447

Hosts:

Anthony Gartner – http://www.anthonygartner.com – @anthonygartner

Chris Gerling – http://www.chrisgerling.com – @hak5chris

Christopher Mills – http://www.packetsense.net – @thechrisam

Jason Mueller – @securabit_jay

Guests:

Kostya Kortchinsky – http://www.linkedin.com/pub/kostya-kortchinsky/4/211/a71

Tim Krabec – http://www.SMBMinute.com – @tkrabec

Links:

Immunity Inc – http://www.immunitysec.com/

CLOUDBURST exploit video -  http://www.immunityinc.com/documentation/cloudburst-vista.html

CVE-2009-1244 – http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-1244

53634 : VMware Multiple Products Display Function Host OS Arbitrary Code Execution – http://osvdb.org/53634

Microsoft Security Bulletin MS08-067 – http://www.microsoft.com/technet/security/Bulletin/MS08-067.mspx

SyScan ’09 Singapore July 2-3 – http://www.syscan.org/Sg/program.html

The Cassandra Tool – https://cassandra.cerias.purdue.edu/main/index.html

Apple Security Update 2009-002 / Mac OS X v10.5.7 – http://support.apple.com/kb/HT3549

Palm̠ Pre̫ Рhttp://www.palm.com/us/products/phones/pre/

North Korea Builds Up Cyber Warfare Unit – http://news.yahoo.com/s/afp/20090505/ts_afp/nkoreaitmilitary

Air France Flight 447 – http://en.wikipedia.org/wiki/Air_France_Flight_447

DEFCON̠ Hacking Conference Рhttp://www.defcon.org/

Immunity CANVAS – http://www.immunitysec.com/products-canvas.shtml