General
NIST Seeks Feedback on Wireless Security Guides
November 07, 2011 Added by:Headlines
The NIST has issued two new guides addressing issues with wireless security. The first guide focuses on Bluetooth security, while the second looks at wireless local area networks. The NIST is seeking public comment on the guides via email with a November 10th cutoff for submissions...
Comments (0)
The Impact of Mobility on the SMB Workforce
November 04, 2011 Added by:Bill Gerneglia
Small and medium businesses are increasingly more mobile as their employees are demanding increased access from both the home and the road like never before. SMBs face a wide range of challenges when it comes to providing this access for these mobile workforces...
Comments (0)
Penetration Testing Tools Update: New Version of EAPeak Released
October 15, 2011 Added by:Spencer McIntyre
EAPeak is a suite of open source tools to facilitate auditing of wireless networks that utilize the Extensible Authentication Protocol framework for authentication. It provides useful information relating to the security of these networks for PenTesters to use in searching for vulnerabilities...
Comments (0)
Abusing Windows Virtual Wireless NIC Feature
October 09, 2011 Added by:Kyle Young
If the victim computers are part of a Windows domain and have wireless NICs, by automating Metasploit with a pass-the-hash attack and using my script, one could essentially automate deploying a series of rogue ap points throughout a domain. This would be kind of like a network worm...
Comments (1)
Coalition Petitions Court on Domestic GPS Surveillance
October 06, 2011 Added by:Headlines
"The government can use location information over time to learn where you go to church, what sort of doctors you go to, what meetings and activities you participate in, and much more. Police should not have blanket permission to install GPS devices and collect detailed information..."
Comments (0)
Supreme Court: Warrantless GPS Tracking and the 4th Amendment
September 12, 2011 Added by:Stephen Gantz
A recent New York Times article calls United States v. Jones "the most important 4th Amendment case in a decade" and invokes comparisons of the government's efforts to use comprehensive surveillance technologies to the "Big Brother" state described in George Orwell's 1984...
Comments (0)
Microsoft's Addiction to Collecting Tracking Data
September 01, 2011 Added by:Headlines
"The Windows Mobile operating system is clearly sending information that can lead to accurate location information of the mobile device regardless of whether the user allowed it," said Kamkar, who provided the analysis of the tracking methods for Lawyers seeking to establish a class action lawsuit...
Comments (0)
Man Gets Eighteen Years for Hacking Neighbors
August 12, 2011 Added by:Robert Siciliano
In Minnesota prosecutors put away a “depraved criminal” for 18 years as a result of virtually torturing his neighbors via their Wi-Fi connection. After a brief encounter with his new neighbors he began “a calculated campaign to terrorize his neighbors”...
Comments (1)
Homemade Spy Drone Cracks WiFi and GSM Networks
August 01, 2011 Added by:Headlines
"WASP is equipped with the tools to crack Wi-Fi network passwords made possible by an on-board VIA EPIA Pico-ITX PC running BackTrack Linux equipped with 32GB of storage to record information. WASP can also act as a GSM network antenna meaning it will be able to eavesdrop on calls/text messages..."
Comments (6)
Hacking the WPA Airwaves
May 16, 2011 Added by:Mark Bennett
Many people believe that their wireless is secure because they are using WPA. Well we did a test recently and were able to basically password guess our way with a dictionary attack using either a straight dictionary or a rainbow table. Using linux this is how it is done...
Comments (1)
Report: Public Wi-Fi Leaves Smartphone Data Vulnerable
April 26, 2011 Added by:Headlines
"This is all very alarming. It means that literally millions of people who use Wi-Fi in public could be at risk. If criminals are able to harvest the usernames and passwords of all the websites you visit, they could do significant damage in terms of identity theft and fraud..."
Comments (0)
Feds Want Supreme Court to Allow Warrantless GPS Tracking
April 20, 2011 Added by:Headlines
The court of appeals’ decision seriously impedes the government’s use of GPS devices at the beginning of an investigation when officers are gathering evidence to establish probable cause and provides no guidance on the circumstances under which officers must obtain a warrant...
Comments (0)
Court Upholds Warrantless Searches of Electronic Devices
April 07, 2011 Added by:Headlines
The U.S. Court of Appeals for the Ninth Circuit has ruled that electronic devices may be seized at the border, confiscated, searched, and even transported to a separate facility for forensic examination - all without need for a warrant demonstrating of due cause...
Comments (0)
How Secure is Your Voice Mail?
April 06, 2011 Added by:Wayde York
I was playing with an application to spoof incoming caller ids on my Android-based phone and was attempting to fool my nephew with a crank call. Turns out, when I called his phone with his own number as the spoofed caller id, it went straight into his voice mail controls...
Comments (0)
Wireless Security – Choosing the Best Wi-Fi Password
April 06, 2011 Added by:Dan Dieterle
WPA2 Enterprise is the best if your organization supports it, but WPA2 Personal is great for home and small offices. Do not use WEP. It was cracked a long time ago, and an attacker does not even have to crack it, as the WEP key can be passed just like NTLM passwords...
Comments (0)
Senator Proposes Geolocation Privacy Legislation
March 22, 2011 Added by:Headlines
"It's a smart proposal. The federal wiretap law should be updated to take account of new transactional data. There is clearly a privacy interest in locational data and there is also a need for greater clarity," says the director of the Electronic Privacy Information Center, Marc Rotenberg...
Comments (0)
- Managing My Company’s Security is a Nightmare
- Bridging the Cybersecurity Divide, Why Security Innovation Must Lead the Way
- The Evolution of Industrial Control System Information Sharing
- ATM Security (And Really Learning from the Past)
- Complimentary IT Security Resources [May 13, 2013]
- Steps Toward Weaponizing the Android Platform
- Mobile Security Processes Could Be Applied to Medical Devices: Bluebox
- The Emperor Is Naked!
- Infographic: Keeping Web Applications Safe
- Do You Have a Vendor Security Check List? You Should!