SecuraBit Episode 82: Totally Rad Man!

SecuraBit Episode 82: Totally Rad Man!
May 18, 2011

Hosts:
Anthony Gartner – @anthonygartner http://anthonygartner.com
Chris Gerling – @chrisgerling
Christopher Mills – @thechrisam
Jason Mueller – @securabit_jay
Andrew Borel – @andrew_secbit
Tony Huffman – @myne_us

Guests:
Carl Herberger from http://www.radware.com/

General topics:

DDOS: Recent attacks from groups like anonymous , attack vectors, technique information and how it can effect you.

Signatures: Signature based detection and the effects it had on todays security

General security: Some general discussion on security

Securibit exploit development group (SEG) starting up blog post coming soon.

NEWS:
PSN hacked again! :
Just two days after the PlayStation Network was restored after a near month-long outage, the PSN password page has apparently been exploited. According to reports, the exploit allows other users to reset your account password using only your e-mail address and date of birth. This personal data was made available to hackersduring the initial PSN attack.
http://arstechnica.com/gaming/news/2011/05/report-playstation-network-passwords-exploited-accounts-compromised.ars

international_strategy_for_cyberspace.pdf
http://www.whitehouse.gov/sites/default/files/rss_viewer/international_strategy_for_cyberspace.pdf

Backtrack 5 is out
http://www.backtrack-linux.org/

Facebook privacy demo gets guy arrested in austrelia
http://www.net-security.org/secworld.php?id=11045

Microsoft patch tuesday
http://www.microsoft.com/technet/security/bulletin/ms11-may.mspx

Upcoming events
#BSidesDetroit (3 – 4 Jun 2011)
#BSidesStJohns St. John’s, NL (10 Jun 2011)
#BSidesCT Meriden, CT (11 Jun 2011)
FIRST Austria (12 – 17 June 2011)
#BSidesVienna(18 June 2011)
Toorcon (18 – 19 June 2011)
#BSidesLasVegas (3-4 August 2011)
BlackHat Vegas (3 – 4 August 2011)
DEFCON 19 (4 – 7 August 2011)
#BSidesLA Los Angeles, CA (18 – 19 August 2011)
#BSidesMO(21 Oct 2011)
#BSidesNewDelhi (22 – 23 October 2011)
VB Barcelona October 2011

Links:
http://www.securabit.com
Chat with us on IRC at irc.freenode.net #securabit
iTunes Podcast – http://itunes.apple.com/us/podcast/securabit/id280048405
iPhone App Now Available – http://itunes.apple.com/us/app/securabit-mobile/id382484512?mt=8

SecuraBit Episode 81: Network Admins Takeover

SecuraBit Episode 81:  Network Admins Takeover
May 4, 2011

Hosts:
Anthony Gartner – @anthonygartner http://anthonygartner.com
Andrew Borel – [email protected]_secbit
Tim Krabec  – @tkrabec

Guests:
Sam Bowne discusses IPv6 and the RA 0day attack
Twitter: @sambowne
Home page: samsclass.info

General topics:
IPv6 Info: http://samsclass.info/ipv6/60_S11.php
RA 0day attack: http://samsclass.info/ipv6/proj/flood-router6a.htm
http://orchilles.com/2011/04/ssl-renegotiation-dos-faq.html

NIST Guidelines for the Secure Deployment of IPv6
http://csrc.nist.gov/publications/nistpubs/800-119/sp800-119.pdf

Hurricane Electric cert and info
http://ipv6.he.net/certification/

BackTrack 5 Available on May 10, 2011
http://www.backtrack-linux.org/

Netwitness
http://www.netwitness.com/products-services/investigator-freeware
http://www.netwitness.com/resources/videos/investigator-tutorial-1-overview-navigation

Upcoming events:
CEIC Orlando (15 – 18 May 2011)
#BSidesROC Rochester, NY (21 May 2011)
#BSidesDetroit (3 – 4 Jun 2011)
#BSidesStJohns St. John’s, NL (10 Jun 2011)
#BSidesCT Meriden, CT (11 Jun 2011)
FIRST Austria (12 – 17 June 2011)
#BSidesVienna(18 June 2011)
Toorcon (18 – 19 June 2011)
#BSidesLasVegas (3-4 August 2011)
BlackHat Vegas (3 – 4 August 2011)
DEFCON 19 (4 – 7 August 2011)
#BSidesLA Los Angeles, CA (18 – 19 August 2011)
#BSidesMO(21 Oct 2011)
#BSidesNewDelhi (22 – 23 October 2011)
VB Barcelona October 2011

Links:
http://www.securabit.com
Chat with us on IRC at irc.freenode.net #securabit
iTunes Podcast – http://itunes.apple.com/us/podcast/securabit/id280048405
iPhone App Now Available – http://itunes.apple.com/us/app/securabit-mobile/id382484512?mt=8

Ok, maybe not THE last password

Well, after the tightly locked lips of Sony, RSA, and others, it’s nice to see a company being up front and honest with the users they store data for.

LassPass is a password manager which integrates with many different browsers and OSes (I haven’t really found many places it won’t run). It allows users to store passwords in a vault, which is then unlocked with a master password. The advantage to this, compared to other solutions, is that the data is then synced to their servers so that the passwords are available in all of those different places you use passwords.

Of course, the downside is that it makes them a big target. According to LastPass, all of the data in the vault is encrypted on the local machine, and then sent to their servers, so the data is encrypted even before it is sent.

But there is that master password, which of course would give an attacker the keys to the kingdom. According to a post on the LastPass blog they aren’t sure that something has actually happened, but they saw something they didn’t like (it sounds like perhaps in netflow data) and as such are now having all users reset their password to protect against the threat of someone brute forcing passwords against any stolen data.

Kudos to LastPass, as they seem to be very up front and honest about it, which is nice, given the recent history of data breaches. So, if you’re a LastPass user, looks like you will have to remember at least one new password.

More coverage:

LastPass blog: LastPass Security Notification

Krebs on Security: LastPass Forces Users to Pick Another Password

The H Security: Potential intrusion suspected in LastPass password service

Ghacks: LastPass Security Breach