HackingTheUniverse

You are browsing the archives of news.

DLL hijacking vulnerabilities – [sans.edu] For the last couple of days there have been a lot of discussions about a vulnerability published by a Slovenian security company ACROS. HD Moore (of Metasploit fame) also independently found hundreds of vulnerable applications and, as he said, the cat is now really out of the bag. In order [...]

Robin Sage is not a real person. Fictitious femme fatale fooled cybersecurity – [washingtontimes.com] Call her the Mata Hari of cyberspace. Robin Sage, according to her profiles on Facebook and other social-networking websites, was an attractive, flirtatious 25-year-old woman working as a “cyber threat analyst” at the U.S. Navy’s Network Warfare Command. Within less than [...]

The metaphor of warfare used to apply to cyber-conflict is strained, but is still the paradigm most often used in discussions of this area by government and military. The concepts of “target” and “territory” are vastly different in a network. Likewise, the meanings of terms like: capture, destroy, defend, attack, hold, flank, surround, and many [...]

A research paper from the Center for Automotive Embedded Systems Security, describes an attack methodology against embedded computer systems in modern automobiles. The attackers were able to activate or disengage the brakes while driving, control the engine and the lights, by plugging a laptop computer into a control socket. While this was done using direct [...]

An attack that can bypass Anti-Virus defenses has been detailed in a research paper by matousec.com. Matousec developed an engine called KHOBE (Kernel HOok Bypassing Engine) that uses an “argument switch” strategy, or SSDT hooking, to convince the AV scanner that everything is okay. KHOBE – 8.0 earthquake for Windows desktop security software – [matousec.com] [...]

SEE ALSO: CCDC Nationals 2010 (part1) CCDC Nationals 2010 (part2) CCDC Nationals 2010 (part3) Here are some tips and thoughts on preparing a blue team defense in the CCDC: PREPARATION Know yourself – Know what your skills and limitations are, know who is good at what, know who wants to do what, know what your [...]

SEE ALSO: CCDC Nationals 2010 (part1) CCDC Nationals 2010 (part2) Sunday morning found Team 7 hard at word trying to finish up the competition: Finally, they polished off the last few injects: After breaking down the network equipment, all the teams headed to the awards ceremony, where Dave Cowen, captain of the Red Team, delivered [...]

SEE ALSO: CCDC Nationals 2010 (part 1) [see this post for the introduction to CCDC Nationals 2010] On Saturday morning, all the teams gathered again to hear an update briefing from Dwayne: The scoring engine was hard at work keeping track of everything: And the Alamo Cup was waiting for a new winner to be [...]

The Collegiate Cyber Defense Competition (CCDC) is a national competition for college students designed to promote learning about cyber defense. Each year regional competitions across the nation act as preliminary rounds and then send the regional winners to a national competition in San Antonio. Each college team is required to defend an identical network from [...]

For several years, reports of ATM skimmer devices have been increasing. These devices are usually designed to fit over the card receptacle on an ATM machine or gas pump or other form of debit/credit card reader. They intercept the card data and may also collect the pin number entered and save the data for thieves [...]