Mike’s SE Presentation at HH09

Mike Murray’s talk on Social Engineering from this year’s Hacker Halted.



Hacker Halted Redux

Good stuff, Mike!

pixelstats trackingpixel
January 21st, 2010 | Tags: , | Category: Information Security | 2 comments

New Nettiqute: A simple guide to communicating with your favorite geeks.

It’s been quite a while since I’ve seen an updated guide on email etiquette or netiquette in general.

This may be because there is about 300 guides written by out of work journalists whose’ exposure to technology was having played with an iPhone for about 5 minutes. I believe that they’re in the same place in my brain where banner ads and sponsored links land and are thus culled and ignored almost immediately. Ask the big geeks you know, and you will find that they have brain-based adblock enabled as well.

(I just spent 5 minutes trying to figure out if I should put an apostrophe there and where it would correctly belong in that sentence. I think I know too many grammar nazis.)

Oh.  Okay.  Thanks.  Fixed.

So really, what I mean to say is that there doesn’t seem to be one of worth lately, though I’m sure someone will add some in the comments to this posting eventually. The things like social networks and twitter, the places where one is really needed, are the places where a bunch of people write 500 horrible guides.

Here’s where nettiqute was when this whole internet thing happened. Notice how a lot of people you know don’t not-do these things. Notice how Eternal September will never end. This is why a lot of old school types have quit irc or have retreated to backwater +i or +k channels.

Here’s ten four things to keep in mind

1) If it is important, it’s not something that should be sent in a text message. Text messaging is for 14 year old girls and introverts who don’t mind taking 5 minutes to communicate what they could have talked about in 30 seconds. Perhaps what they really need to make is a subvocalizing phone. Then like one half of the female population will be on confs with each other most of the waking day.

On second thought, please don’t. Please do not make those.

(Did you know that Google Voice already had confs built in?)

2) If you are having an issue with your computer or technology and want to talk to me about it, send it from an IM client that can screen share so that you can demonstrate it and I can fix it. [Only close family and intimates eligible. Offer void when I am busy or already frustrated.]

So anyway.

3) Twitter. If you can avoid it, do. If you find that you have to use it, is painful enough already without having to look at stuff like this:

FirefoxScreenSnapz076.jpg

But he’s not like that all day and night, right?

FirefoxScreenSnapz077.jpg

Wrong.

I hear you’re cool and all in person, but I can’t do this anymore, Chris! Argh!

This came in while I was writing this:

TweetDeckScreenSnapz002.jpg

Quoting fictional characters? Picard is someone’s role model? Gah. It’s like this all over Twitter. It’s horrible.

Additionally: No Mom, I will not teach you to use Twitter. It was bad enough an idea when I taught you to text message. I learned my lesson.

4) Don’t touch my phone. I’m serious.

severed-hand.jpg

pixelstats trackingpixel
January 20th, 2010 | Tags: , , , , | Category: Internet | 4 comments

Another Week, Another GSM Cipher Bites the Dust

Orr Dunkelman, Nathan Keller, and Adi Shamir have released a paper showing that they’ve broken KASUMI, the cipher used in encrypting 3G GSM communications. KASUMI is also known as A5/3, which is confusing because it’s only been a week since breaks on A5/1, a completely different cipher, were publicized. So if you’re wondering if this is last week’s news, it isn’t. It’s next week’s news.

[T]he attack here is completely practical. Here is a quote from the abstract:

In this paper we describe a new type of attack called a sandwich attack, and use it to construct a simple distinguisher for 7 of the 8 rounds of KASUMI with an amazingly high probability of 2−14. By using this distinguisher and analyzing the single remaining round, we can derive the complete 128 bit key of the full KASUMI by using only 4 related keys, 226 data, 230 bytes of memory, and 232 time. These complexities are so small that we have actually simulated the attack in less than two hours on a single PC, and experimentally verified its correctness and complexity. Interestingly, neither our technique nor any other published attack can break MISTY in less than the 2128 complexity of exhaustive search, which indicates that the changes made by the GSM Association in moving from MISTY to KASUMI resulted in a much weaker cryptosystem.

via emergentchaos.com

If breaking 80%+ of the worlds GSM networks wasn’t enough for last week, I guess they’re breaking the rest this week.

Posted via web from Bad Penosterous

pixelstats trackingpixel
January 11th, 2010 | Tags: , | Category: Information Security, Technology | Leave a comment

Best of 26c3

FirefoxScreenSnapz073.jpgHere is my list of the most important talks of the 26th Chaos Communication Congress [26C3] held in Berlin, Germany that was held last week.

Since my German language skills have eroded into near-worthlessness, I’m only going to mention presentations available in the English language.

Many videos are not yet up, but of those that are, these are my picks in order of interest and significance.

It is really great that there are videos up so quickly and without all of the capitalist headaches that we see here in the US. Yes, selling things is important, but kicking out some video to your community is a great thing. Information is supposed to be free, right hacker conferences? Eat your own dogfood, guys.

A Part Time Scientists’ Perspective of Getting to the Moon

We want to use the opportunity the 26C3 presents as a venue to introduce our team. The Part-Time-Scientists are the first German team participating in the Google Lunar X PRIZE. Our presentation would kick off with a quick explanation of what the X PRIZE is, the challenges and gains.

The main part of the presentation will then focus on our progress. That includes a showcase of some hard- and software we’re using. Additionally pictures and videos specifically created for the 26C3. And a brief overview of the GoogleLunarXPrize and it’s overall progress.

They Skype’d in one of the members of the Apollo program, presented a working model of their moon rover, their communication model with Earth from the moon in an open architecture of configured satellite receivers that anyone can use.

Amazing!

HTTP / Torrent

GSM: SRSLY

From the total lack of network to handset authentication, to the “Of course I’ll give you my IMSI” message, to the iPhone that really wanted to talk to us. It all came as a surprise – stunning to see what $1500 of USRP can do. Add a weak cipher trivially breakable after a few months of distributed table generation and you get the most widely deployed privacy threat on the planet.

Cloning, spoofing, man-in-the-middle, decrypting, sniffing, crashing, DoS’ing, or just plain having fun. If you can work a BitTorrent client and a standard GNU build process then you can do it all, too. Prepare to change the way you look at your cell phone, forever.

“A more wholesome discussion is needed for the security standard that 4 billion people deserve”

There has been a variety of inaccurate press coverage over this talk, so I advise people to watch it for themselves. Something like ~85% of the worlds mobile phones are vulnerable to this proof of concept. Cracking GSM conversations is not new, but this is comprehensive and undeniable.

Cryptome put up a variety of A5 files related to this topic.

HTTP / Torrent

Tor and censorship: lessons learned

The perennial TOR talk from Roger Dingledine. This time, he had some new data about China using TOR bridges. Plenty of metrics about usage. Additionally and surprisingly, a call for corporate espionage from Tor users and sympathizers.

I’ll say that last bit again since it kind of blew me away. Roger is looking for people to give the TOR project state secrets and corporate insider implementation details.

I hope you guys like attention.

HTTP / Torrent

WikiLeaks Release 1.0

During the last 12 months WikiLeaks representatives have been talking at numerous conferences, from technology via human rights to media focused, in an effort to introduce WikiLeaks to the world. WikiLeaks has had major document releases that have spawned attention in all major newspapers by now, it has triggered important reform and has established itself as part of the accepted media reality.

The WikiLeaks people give an update on their accomplishments, propose that Iceland become a tax/data haven, and give hints about giving out future WikiLeaks awards to people who contribute to stuff-doing.

HTTP / Torrent

SCCP hacking, attacking the SS7

Quite a comprehensive basics and beyond format of talk busting on SS7.

SS7 is like TCP/IP in the 1990s. It used to be quite a secure network because nobody outside the organizations (here, the mobile operators and telecom companies) were connected to it. Now it’s getting interconnected to new actors which are not that trustworthy. Somehow, hackerdom made SS7 come into existence thanks to the massive use of Blue Boxes. Now, hackerdom is getting its toy back! SS7 is nowaday more and more accessible, and as such increasingly vulnerable. So we’re getting exposed to a totally new set of protocols, as secure as TCP/IP in the 1980s. This looks like the Blue Box is coming back to life, in a very different form.

Good stuff. Perfect for anyone who watched the GSM talk or wants to set up Asterisk.

HTTP / Torrent

Layer 8 based IP Address hijacking in the end of the days of IPv4

A good primer about ASN and IP block allocation and current hijinks.

In times of the omnipresent scare of IPv4 address shortage and price tags on Internet resources that are raised on a yearly basis some people look for creative means of securing themselves parts of “pre-owned” IP space. This space comes from the various early birds on the net. From major corporations to the US Military: Nobody is safe of getting his unused IP assets nicked. This talk will explain the ways IP assignments are made and how clever and not so clever, greedy and not so greedy IP thieves can get into the possession of valuable IP assets.

It is the end of days for IPv4 (how many times have you heard this before) and I, for one, we welcome our new IPv6 overlords.

HTTP / Torrent

Peanut Butter and Plastic: Industrial Revolution

The future of manufacturing will purring next to your computer and plasticizing digital designs into 3D objects. We’re at the dawn of the diamond age with portable 3D printers, decentralized manufacturing, digital design and the rise of personal fabrication.

Bre Pettis talking about his Makerbot stuff. If you haven’t seen it before, it is worth a watch. People like their Makerbots.

HTTP / Torrent

Tesla technology; wireless power transfer

Wireless power is a most wanted technology. It has already been invented by Nikola Tesla in 1888. The speaker read the papers, reproduced the theoretical and practical results. The theoretical idea to get highly efficient wireless power transmission is to separate the electric from the magnetic field, because magnetic field lines are closed curves near the device, while the electric field lines reach to infinity and receiver only needs common ground (the earth). This is done by special requirements to the sender and receiver antennas (form of the coil). The antenna form has been modeled in the software nec2 (variant xnec2c on debian). A lowcost PET bottle serves as the hull of the coil. Around 200 windings of insulated copper wire are manually applied to the bottle. A transmission in the range of 10 meters was reached, the power used is 100mW, from signal generator amplitude 10V and 1 MHz frequency. This will be shown.

These are exactly the kind of people who are largely missing from American hacker conferences (with the exception of the quantum crypto people who are very cool indeed); [mad] scientists.

HTTP / Torrent

Defending the Poor

FX brings us up to speed on the Flash family of exploits using colorful metaphors and straight talk.

The talk will discuss a class of in-the-wild malware and exploits, reasons for it’s success as well as reasons why protecting against it in common ways is not effective. This will be done by examining the internals of the attacked subject. Following this, the second part of the talk will present an alternative protection mechanism, which the presenter believes prevents large parts of this class of attacks. The mechanisms and code to do this will be presented and released.

HTTP / Torrent

Their lightning talks were also really dense with good new stuff. If you’re looking for something in particular, the lightning talk schedule is found here. Lightning talk summaries and links after the jump.

Continue reading Best of 26c3

pixelstats trackingpixel
January 4th, 2010 | Tags: , , , , , , , | Category: Information Security, Internet, Technology | Leave a comment

EEE PC Redux

My EEE PC 901 was great. The only problem was that I couldn’t stand the keyboard and so our romance ended abruptly.

always have paris.jpgThis made me sad, so it was banished to the back of my workspace. It stayed there until I realized that I was never going to love it the way it deserved to be loved, so I sold it cheap to a friend. Goodbye 901. We’ll always have Paris.

The next day, my new sweetheart, the EEE PC 1005HA arrived.

(If you want some unboxing pr0n and comparative, check out the engadget article)

Naturally due to the weird nature of my work and interests, this laptop has to be a tri-boot between Windows, Linux, and OSX.

The details on installing Windows (if you don’t like the pre-installed version) are well documented elsewhere, but there always seems to be a lot of bad advice surrounding Linux. The Linux community is a continually devolving process which is pretty ugly to watch. Things that work great get abandoned so that someone else can get their name on something new that does the same thing. Distributions (and open source projects in general) can fork and fork again until they some have a small userbase and do not have enough volunteers to support its efforts well.

This is the sad state of Linux-affairs that leaves most users confused and asking questions like “what is the best?” in areas where the clueless post links to huge lists of distributions and leave them to figure it out.

It isn’t any huge surprise that many just forget about it altogether, get a Apple product, install MacPorts/Fink and Xcode, and run their open source software.

im_a_pc_mac_linux_bsd_tronguy_hippie.jpg

Historically, my own timeline with open source operating systems (not UNIX, remember) at work is as follows:

  • Early 90s: Slackware, RedHat (moving to mostly FreeBSD for servers in late 90s and beyond)
  • Post-2000: Gentoo (on desktops) and Fedora on laptops (even during Windows consulting gigs)
  • Middle naughts: OSX, FreeBSD (still), Linux and Windows largely in VMs or on special purpose machines.
  • 2010: We’ll see. A chassis/desktop/laptop/netbook/palmtop hierarchy seems to be taking shape.

Anyway, back to the 1005HA. A 10.5 hour battery. Seriously.

angle-shiny.jpg

Also a winning keyboard this time.

006.jpg

Wimax + Netbook = Awesome and portable. Perfect for taking notes, a quick update to something, and social networks or email.

As I went into at length before, the array.org kernel and system-specific tweaking work was some of the best. Thankfully, it is still alive and absorbed into a more polished effort: Eeebuntu.

pixelstats trackingpixel
December 31st, 2009 | Tags: , , , , | Category: Technology | 2 comments
« Newer Entries  
  Older Entries »