Below the Surface: Exploring the Deep Web from Trendmirco

darkweb

Trendmicro wrote a very good report covering the deep and dark web found HERE. It is worth the read and includes many examples with screenshots of the types of goods and services sold as well as statistics of the types of users and systems seen over the last few years. Here is the intro from the report. Continue reading

VN:F [1.9.22_1171]
Rating: 0.0/5 (0 votes cast)

Cisco Announces Intent to Acquire OpenDNS

imgresSAN JOSE, Calif. – June 30, 2015 – Today, Cisco announced its intent to acquire OpenDNS, a privately held security company based in San Francisco. OpenDNS provides advanced threat protection for any device, anywhere, anytime. The acquisition will boost Cisco’s Security Everywhere approach by adding broad visibility and threat intelligence from the OpenDNS cloud delivered platform. Continue reading

VN:F [1.9.22_1171]
Rating: 0.0/5 (0 votes cast)

Cisco ASA 5506 Unboxing and First Look At New ASDM Management

ASAs1I finally received a brand new ASA5506 and thought I would share my experience along with the new FirePOWER ASDM GUI. For those that are not aware of this release or the ASA series, the history goes like this. Cisco released the VPN concentrator and PIX firewall a long time ago. Eventually those technologies were consolidated into the Adaptive Security Appliance (ASA) series of appliances. The smallest 1st generation ASA is the 5505 that has been around for a long time and designed for small offices or home networks (shown in the above picture on the right). Cisco released a new line of ASA appliances known as the X series however didn’t release a replacement for the 5505 until this past March. That replacement is the ASA5506 (the black appliance on the left). Continue reading

VN:F [1.9.22_1171]
Rating: 5.0/5 (1 vote cast)

Book Review: Penetration Testing With Raspberry Pi

raspberrypiBerislav Kucan from net-security.org posted a nice writeup on the book Aamir Lakahni and I wrote on penetration testing using a Raspberry Pi. The original write up can be found HERE.

Introduction

Raspberry Pi is a small and portable single board computer that can be transformed into a penetration testing system. This book will show you how. Continue reading

VN:F [1.9.22_1171]
Rating: 0.0/5 (0 votes cast)

Make Spammers Pay You with write.io

delete-spam-button

My buddy Aamir Lakahni wrote a interesting post on the write.io service. The original post can be found HERE. I see a valuable use case for this when I attend events and conferences. They make you provide a email address that gets hammered with SPAM. It will be nice to make them pay to plug their messages. It is a better approach then just providing a fake email account. Below is Aamir’s article.

What if you had to pay to send every email? Would you think twice about what you send? Would it change the content or the clarity of the message? Do you think charging money to send email would reduce SPAM and other unwanted email? Continue reading

VN:F [1.9.22_1171]
Rating: 0.0/5 (0 votes cast)

Cardinals Face F.B.I. Inquiry in Hacking of Astros’ Network

17CARDINALSweb1-master675Wow this is a first. A sports team caught hacking a rival team to get scouting reports, internal discussions and other goodies! In summary, the FBI is claiming that the Cardinal’s front desk hacked the Astro’s network. The original post can be found HERE. Here is the article from http://www.theatlantic.com/

WASHINGTON — The F.B.I. and Justice Department prosecutors are investigating whether front-office officials for the St. Louis Cardinals, one of the most successful teams in baseball over the past two decades, hacked into internal networks of a rival team to steal closely guarded information about player personnel. Continue reading

VN:F [1.9.22_1171]
Rating: 5.0/5 (1 vote cast)

LastPass Hacked!

imgres

For those using LastPass, its time to change your master password. The warning note from LassPass is found below and HERE. According to LastPass, the authentication hashes should be sufficiently encrypted to prevent anyone from using them to access your account. However, the company is still prompting all users to update their master password that they use to log in to their LastPass account. Here is the post from LastPass. Continue reading

VN:F [1.9.22_1171]
Rating: 0.0/5 (0 votes cast)

Rise of the ambulance drones

ambulance-drone_inuse-1940x1212-520x325

Thenextweb.com wrote a really cool post on a new breed of drones designed to save lives. The concept is these drones can deliver critical medical supplies such as a defibrillator, EpiPens and Poison antidotes much faster than an ambulance since they don’t have to deal with traffic patterns. They claim they can increase the chance of saving lives from .08% to 80% based on a much greater chance to deliver the necessary treatment much faster. The original post can be found HERE. Make sure to watch the video that includes a demo of the ambulance drone in action.

In December 2013, Amazon CEO Jeff Bezos caused quite a stir with the announcement of his company’s plans to offer 30-minute product deliveries via unmanned aerial vehicles (more commonly referred to as “drones”). Continue reading

VN:F [1.9.22_1171]
Rating: 0.0/5 (0 votes cast)