http://blogs.securiteam.com Thoughts about the world of security Thu, 02 Jul 2009 23:05:00 +0000 http://backend.userland.com/rss092 en The startup VoIPShield is changing its disclosure policy to stop giving out VoIP bugs for free and start charging vendors for it. CEO Rick Dalmazzi writes: Avaya doesn’t “have to” pay us for anything. We do not “require” payment from you. It’s Avaya’s choice if you want to acquire the results ... http://blogs.securiteam.com/index.php/archives/1297 Somebody had to do it, and I'm glad it's Aviv Raff who finally went for it. This is just the first of what I'm sure will be many twitter-related vulnerabilities. There's a lot to check in twitter, and I'm sure this will be an interesting month. While Aviv is bringing home ... http://blogs.securiteam.com/index.php/archives/1296 A few years ago, the personal blog of the Iran president Ahmadinejad included a special piece of malware code that would only be displayed for Israeli IP addresses, attempting to infect Israeli machines visiting the site while preserving a seemingly harmless appearance for any western visitor that is not an ... http://blogs.securiteam.com/index.php/archives/1295 I saw a demo of Green SQL today, and during the demo Yuli showed me a cute sql-injection method for mysql that I've never seen before. This will evade some IDS's and is also a good reply for the web development if they tell you filtering the words "OR" and "AND" ... http://blogs.securiteam.com/index.php/archives/1294 Over the past few days, both the Vancouver Sun and the Ottawa Citizen have published (basically the same) story about "Toronto-based Ancestry.ca."  From the articles, this appears to be related to such public institutions as the national archive and Library and Archives Canada.  And the price is right: "A two-week ... http://blogs.securiteam.com/index.php/archives/1293 These days, security is going digital. From live and automatic event log analysis up to personal "on-key" tokens and remotely controlled security cameras. These technologies should be used carefully. For example if the token generates 6 digits and there is no password complexity enforcement, users can set their password to "1" and ... http://blogs.securiteam.com/index.php/archives/1292 0x01 Introduction 0x02 Phrack Prophile on The PaX Team 0x03 Phrack World News 0x04 Abusing the Objective C runtime 0x05 Backdooring Juniper Firewalls 0x06 Exploiting DLmalloc frees in 2009 0x07 Persistent BIOS infection 0x08 Exploiting UMA : FreeBSD kernel heap exploits 0x09 Exploiting TCP Persist Timer Infiniteness 0x0A Malloc Des-Maleficarum 0x0B A Real SMM Rootkit 0x0C Alphanumeric RISC ARM Shellcode 0x0D Power ... http://blogs.securiteam.com/index.php/archives/1291 Following on from the previous 2 posts that have been put up here and here, after seeing the post about the T-Mobile hack on Full-Disclosure, and then T-Mobile admitting that it has happened, really got me thinking. To the best of my knowledge this will be the third high profile security ... http://blogs.securiteam.com/index.php/archives/1290 The T-mobile data breach that jbrown wrote about has been confirmed by T-Mobile. I guess not everything you read on Full Disclosure is fake after all... http://blogs.securiteam.com/index.php/archives/1289 From the looks of it, T-Mobile has been hacked and the goods stolen. They also seem to love running HP-UX. http://blogs.securiteam.com/index.php/archives/1288 The swine flu craze in Asia is almost becoming ridiculous. Flying into Beijing a doctor came on board to check everyone's temperature before they would let us out of the plane. Before passing immigration we were checked again and filled in forms to prove we ... http://blogs.securiteam.com/index.php/archives/1287 Open Security Foundation's DataLossDB has announced the winners of oldest incident contest. One of the oldest documented issue is TRW incident from 1984, when the database of credit history of 90 million American citizen was breached. Link here. Update: The winner is an incident from August 1953, when SSN's were lost. http://blogs.securiteam.com/index.php/archives/1285 OK, this has got nothing to do with computers (except that the SkyTrain is completely automated). For the past three years, Cambie Street, a major thoroughfare with at least four different shopping and business areas on it, has been almost completely shut down for the construction of the RAV (Richmond-Airport-Vancouver) SkyTrain ... http://blogs.securiteam.com/index.php/archives/1284 According to ITWorldCanada, C-level executives are pushing for greater access to social networking sites and facilities, while even IT managers and security specialists are unprepared to deal with the full range of risks from this type of activity. In order to get some traction with senior management on this issue, you ... http://blogs.securiteam.com/index.php/archives/1283 It must be the 90s again. Nirvana is on the radio, and people are finding remotely exploitable WebDAV vulnerabilities. Using unicode encoding no less - the choice of a new generation. A note to Microsoft: in the 21st century we have this new thing called "a fuzzer". You might want ... http://blogs.securiteam.com/index.php/archives/1282 The oldest documented vulnerability in computer security world is password file disclosure vulnerability from 1965, found by Mr. Ryan Russell. Open Security Foundation - an organization behind OSVDB and DataLossDB has launched a competition to find the oldest documented data loss incident. The last day to make a submission is next Friday ... http://blogs.securiteam.com/index.php/archives/1281