Guest Speaker on Dr Chaos Security Podcast – Exploit Kits

podcastI was invited as a guest speakers on Dr. Chaos’s Security Podcast focused on the topic of Exploit Kits. For those unfamiliar with exploit kits, I posted a Exploit Kits 101 article HERE. In summary, exploit kits are tools attackers use to compromise and control systems. They are used to distribute malware such as remote access toolkits (RATs) and Ransomware. Below is a link to the youtube recording of the podcast. You can also find it on drchaos.com HERE. Continue reading

VN:F [1.9.22_1171]
Rating: 3.7/5 (3 votes cast)

Understanding Rainbow Tables

rainbow_tableMy buddy Aamir aka DrChaos.com wrote a interesting post defining what a Rainbow table is, when they are used and why salting passwords makes it hard to use Rainbow tables. The original post can be found HERE.

On the topic of breaking passwords, I often hear security professionals and a few other folks mention Rainbow Tables. I used to think a Rainbow Table was a set of pre-computed (pre-calculated) hashes from passwords…essentially a lookup table where a plaintext’s unencrypted password corresponds to a known hash.

However, this is not a totally accurate definition of a Rainbow Table. In reality, a reverse lookup table allows you create a second table consisting of the password hash of user accounts. Then you use a Rainbow Table consisting of hashes and guessed passwords to compare the two. You can see if the hashed password of compromised user account matches a hashed password in lookup table. Continue reading

VN:F [1.9.22_1171]
Rating: 5.0/5 (2 votes cast)

Fitbit hacked from 10 feet away, security firm says

fitbit1My buddy Aamir aka dr chaos was featured on multiple websites for research his team was involved with regarding a vulnerbility with the Fitbit tracker. The original story from USA today can be found HERE.

Corrections & Clarifications: A previous version of this story said that a Fitbit was hacked with malware. Instead, the code the Fortinet researcher was able to inject into a Fitbit Flex via Bluetooth was placeholder code. Continue reading

VN:F [1.9.22_1171]
Rating: 0.0/5 (0 votes cast)

Ashley Madison Password Analysis – Most Common Weak Passwords

AshleyMPasswordMy buddy Aamir Lakhani and Keith Rayle wrote a funny post about research they did on decrypting Ashley Madison user passwords (original post found HERE). In summary, they took all the passwords that were released, decrypted the weak passwords and tallied up the top weak passwords used by Ashley Madison users. The results are pretty damn funny. Continue reading

VN:F [1.9.22_1171]
Rating: 5.0/5 (1 vote cast)

LAN Turtle By Hak5 First Look – How To Setup Auto SSH + Cloud Fileshare

Turtleimage1

I have been a fan of the gadgets produced by Hak5. For example, you can find a post I wrote on the WIFI Pineapple HERE. I picked up the latest tool from Hak5 known as the LAN Turtle from DEFCON23 and have configured it to auto SSH to a server hosted in the cloud (thanks to Aamir aka DrChaos for the server). This post will cover an overview of the LAN Turtle and how to setup an auto SSH to remotely access the LAN Turtle as well as cloud folder to easily remove data from a target network. Continue reading

VN:F [1.9.22_1171]
Rating: 5.0/5 (2 votes cast)

Ashley Madison Data Leak Analysis from Dr. Chaos – Deadline Has Passed

romney_ashley_madison

I posted about the Ashley Madison breach HERE. For those that are not following this, Ashley Madison, the popular affair website was breached by a group calling themselves The Impact Team. They threaten to leak customer records if Ashley Madison didn’t shutdown their website. Ashley Madison is still up and the deadline has passed so The Impact Team posted access to all 30 million customer records. My buddy Aamir aka Dr Chaos summed up the current state of this situation. His post can be found HERE.

Hackers attacked Ashley Madison (known as AM by its users), the dating site for married couples that promotes infidelity. They walked away with 30 million records containing site user information. While the initial ramifications seem obvious, the story continues to unfold with recent news that email addresses were discovered that originated from government agencies, high level politicians, and certain celebrities. The data represents a treasure trove of sensitive and extremely private data that has a high potential for causing damage to individuals. Continue reading

VN:F [1.9.22_1171]
Rating: 0.0/5 (0 votes cast)

Securing Black Hat From Black Hat

attendees-at-bH

My good buddy Aamir Lakhani arrived days before everybody else for the Blackhat conference to help setup the network for attendees. He was interviewed by Darkreading.com and spoke about his experience standing up and securing a network for security professionals as well as potential hackers. The original post can be found HERE.

‘Dr. Chaos’ shares the inside scoop on the challenges and rewards of protecting one of the ‘most hostile networks on the planet.’

BLACK HAT USA — Las Vegas — Securing Black Hat from Black Hat sounds like a great tagline, but it’s something volunteers at the Black Hat Network Operations Center (NOC) took very seriously last week when we were tasked to help secure one of the most hostile networks on the planet.    Continue reading

VN:F [1.9.22_1171]
Rating: 0.0/5 (0 votes cast)

Distributing malware inside Adobe PDF documents

adobe-flaws

My buddy Aamir Lakahi from drchaos.com wrote a cool post on how to hide malware inside Adobe PDF files. The original post can be found HERE.

Distributing malware inside Adobe PDF documents is a popular method for attackers to compromise systems. Within the latest versions of Reader, Adobe has added multiple updates to address vulnerabilities. Additionally, Adobe has added a robust software sandbox capability to Reader, which activates if attackers use PDF vulnerabilities to attempt exploit of a system. Due to this sandbox addition, attackers are left with extremely limited and temporary access, restricting what can be accomplished. Continue reading

VN:F [1.9.22_1171]
Rating: 0.0/5 (0 votes cast)