Brain Salcedo was convicted back in 2004 of hacking the Lowe’s (a national home improvement retail chain) computer network through an unsecured wireless network. Brian and his partner found the unsecured wireless network while Wardriving. Brian’s plan was to eventually tap in and siphon off millions of credit card’s through a backdoor installed in a […]
Lessons Learned from the Lowe’s Hacker Brian Salcedo Read More »
This is one of those security breaches that underlines the need for physical security if you are doing remodeling or construction where there is potentially sensitive customer data being held…like a bank! From the official bank disclosure: “The Hongkong and Shanghai Banking Corporation Limited confirms one of its computer servers went missing on 26 April
HSBC branch server goes missing Read More »
Saw this on Liquidmatrix today…. Some programmers in the UK created a Facebook application that could be downloaded by a Facebook user which would allow the programmers to view personal information even with the privacy settings changed. From the UK article: “Details such as the date of birth, address and contact numbers of the user,
New Facebook “Loophole” Found Read More »
For those of you using phpBB2 (which last I checked was still one of the most popular open source forum software out there), you had better start to think about upgrading to the latest version, phpBB3 “Olympus”. I have always had a love/hate relationship with phpBB…it has been the most popular target for attackers in
phpBB2 Retirement Plan Announced Read More »
I have seen a couple blogs posts, articles and even the creator of winlockpwn (the hack/script that allows you to bypass Windows authentication through FireWire) saying that this script is nothing more then a “partytrick”… “Wow and amaze your friends by magically unlocking a Windows PC without a password!” While this seems like a fun
Winlockpwn: More then a Partytrick Read More »
The latest versions of fgdump and pwdump have been released by the foofus.net team. Looks like the most important change is that both tools support 64-bit targets. Here is the official announcement: “The foofus.net team is pleased to announce updates to both fgdump (2.0.0) and pwdump (1.7.1), which incorporate a number of new features, the
New versions of fgdump and pwdump released Read More »
If you are in the Cleveland, Ohio area and a security professional be sure to check out the other security bloggers that are located in our area: Security Second Thoughts The Security Shoggoth Securi-D Even if you are not from Cleveland, check them out! Matt and I are also on Twitter. Here is Matt’s profile,
The Cleveland Security Community Read More »
Posted at Securi-D’s blog…I am spreading the word to other hip and cool technology people in Cleveland, Ohio… 😛 Thursday, May 8, 2008 Case Western Reserve University Thwing Center Cleveland, Ohio 9am – 4 pm To the Cleveland 2.0 Community: This is an outstanding opportunity for the entire Cleveland community to learn and participant in
Collaboration Technology and Engaging the Campus 2008 Read More »
If you happened to sign-up for the Black Hat USA 2008 Briefings early this year you will notice that as a paid delegate you are able to review and comment on all the current papers submitted to the Black Hat speaker review board. You can basically comment and rate each paper and also provide comments
New Black Hat Call for Papers Review Process Read More »
I finally decided to check out what all the hype was about and took the Twitter plunge. I am now a security “Twit”. Not sure how I feel about being a “Twit” but so far so good. 🙂 It’s actually quite addicting as others have pointed out and I have started to convert my friends
