Next Page >>
Social Engineering
Actually, on that same note, I recently did an analysis of the last
three years of published Windows vulnerabilities.
86% required local end-user interaction (i.e. social engineering) to be
pulled off.
http://www.infoworld.com/article/07/10/19/42OPsecadvise-insider-threats_
1.html
I didn't analyze Linux or BSD threats, but my gut feeling puts them at
the same level or even higher.
NOTE: Resending this was blocked last time.
Profit-driven malware has gotten very good at using Social Engineering
(backed up with Exploits) to spread itself. Zlob and it Codecs are one
particular example that has worked very well on Windows, even by
simply getting the user to install the software willingly. The
Storm/Zhelatin/Russian Business Network group however are by far the
best at this. They have shown time and time the power of simple Social
Engineering in order to infect victims machines. Zlob may have been
the first for profit malware to make the jump, but if it proves
* DataBase Security
* "the" Cloud
* Cryptography
* System Weaknesses
* Infrastructure and Critical Systems
* Social Engineering
* Reverse Engineering
* Social Reverse Engineering
* Reversing Social Engineering
* Caipirinha and Feijoada Hacks
* and everything else information security related that our attendees
> Subject: RE: mac trojan in-the-wild
>
> Actually, on that same note, I recently did an analysis of the last
> three years of published Windows vulnerabilities.
>
> 86% required local end-user interaction (i.e. social engineering) to
be
> pulled off.
> http://www.infoworld.com/article/07/10/19/42OPsecadvise-insider-
> threats_
> 1.html
> Subject: RE: mac trojan in-the-wild
>
> Actually, on that same note, I recently did an analysis of the last
> three years of published Windows vulnerabilities.
>
> 86% required local end-user interaction (i.e. social engineering) to
be
> pulled off.
> http://www.infoworld.com/article/07/10/19/42OPsecadvise-insider-
> threats_
> 1.html
http://jobs.nullcon.net
----------------------------
nullcon Dwitiya presents you great cool topics from
Anurag Dhanda :: Hacking the Parliament – A classic Social Engineering attack
Assaf Nativ :: Memory analysis – Looking into the eye of the bits
Rahul Sasi :: Penetration Testing a Biometric System
available for FRHACK 2009.
# Selected speakers #
Social Engineering, Hacking brains
- Bruno Kerouanton (Switzerland)
Reverse engineering and cryptographic errors
- Philippe Oechslin (Switzerland)
o Embedded Device Security
o Web Application Security
o Network Traffic Analysis
o Wireless Network Security
o Cryptography and Cryptanalysis
o Social Engineering
o Law Enforcement Activities
o Telecommunications Security (SS7, 3G/4G, GSM, VOIP, etc)
Submissions should thoroughly outline your desired presentation subject.
* Embedded Device Security
* Web Application Security
* Network Traffic Analysis
* Wireless Network Security
* Cryptography and Cryptanalysis
* Social Engineering
* Law Enforcement Activities
* Telecommunications Security (SS7, 3G/4G, GSM, VOIP, etc)
Submissions should thoroughly outline your desired presentation subject. Accompanying your submission should be the slides you intend to use or a detailed paper explaining your subject.
1. Mobile devices exploitation, vulnerabilities, malware, VOIP and Telecom
2. Virtualization security, hacking VMs
3. Information Warfare
4. Forensics and Anti-Forensics
5. Social Engineering
ClubHack Magazine has as different sections:
1.Tech Gyan - Main article of the magazine. Covers various technical aspects in security, latest hacking trends and techniques.
2. Tool Gyan - Covers various hacking and security tools.
o Embedded Device Security
o Web Application Security
o Network Traffic Analysis
o Wireless Network Security
o Cryptography and Cryptanalysis
o Social Engineering
o Law Enforcement Activities
o Telecommunications Security (SS7, 3G/4G, GSM, VOIP, etc)
Submissions should thoroughly outline your desired presentation subject.
- Network Protocols
- Operating Systems
- Patch & Upgrade Management
- Secure Software Development
- Security Management
- Social Engineering
- Virtualisation
- VoIP Technology
- Web Security
- Wireless Technology
- Messaging Technologies
- Network Protocols
- Operating Systems
- Secure Software Development
- Security Management
- Social Engineering
- Virtualisation
- VoIP Technology
- Web Security
- Wireless Technology
- Network Protocols
- Operating Systems
- Patch & Upgrade Management
- Secure Software Development
- Security Management
- Social Engineering
- Virtualisation
- VoIP Technology
- Web Security
- Wireless Technology
o Embedded Device Security
o Web Application Security
o Network Traffic Analysis
o Wireless Network Security
o Cryptography and Cryptanalysis
o Social Engineering
o Law Enforcement Activities
o Telecommunications Security (SS7, 3G/4G, GSM, VOIP, etc)
Submissions should thoroughly outline your desired presentation subject. Accompanying your submission should be the slides you intend to use or a detailed paper explaining your subject.
Please visit our updated website for more details about the venue, the
schedule and information about our past conferences:
https://deepsec.net/
The DeepSec offers a mix of different topics and aspects like current
threats and vulnerabilities, social engineering and psychological
aspects as well as security management and philosophy. Our speakers and
trainers traditionally come from the security community, companies,
hacker spaces and academic organisations.
You can submit content for three categories:
v10.0.6854' and the DLL is 'mso.dll v10.0.6845'
Likely attack vectors include:
. Targeted attacks involving e-mailed malicious files combined with
social engineering to entice the user to open the malicious attachment.
. Targeted attacks involving malicious files hosted on a remote web
site combined with social engineering to entice the user to open the
malicious attachment.
The root cause description of the vulnerability is that there is no
Please visit our updated website for more details about the venue, the
schedule and information about our past conferences:
https://deepsec.net/
The DeepSec offers a mix of different topics and aspects like current
threats and vulnerabilities, social engineering and psychological
aspects as well as security management and philosophy. Our speakers and
trainers traditionally come from the security community, companies,
hacker spaces and academic organisations.
You can submit content for three categories:
Description:
CamFrog Video Chat 5.0 and Camfrog Pro 5.2 suffers from a Local password disclosure vulnerability due to the leak of proper encryption of credentials in the process level .In fact,the credentials can be extracted in clear text by dumping process memory of the live camfrog process when a connection is established.
Note : This vulnerability can be exploited by Social Engineering tricks such as fooling the user to execute malicious code wich would dump the memory of the process.
Proof of Concept:
http://nullarea.net/sploits/c/camfrog/poc.pdf
- Messaging Technologies
- Network Protocols
- Operating Systems
- Secure Software Development
- Security Management
- Social Engineering
- Virtualisation
Please note, that we are a non-product, non-vendor biased security
conference and do not welcome vendor pitches in the conference talks or
trainings. We will provide an opportunity for vendor self presentation
The helper application fails to properly validate the authenticity of
the downloaded Cisco AnyConnect Secure Mobility Client executable
when the client is deployed from the VPN headend. An attacker could
create a malicious web page that looks like the normal VPN web login
page and entice a user, through social engineering or exploitation of
other vulnerabilities, to visit it. This would allow the attacker to
supply an arbitrary executable that the helper application would
download and execute on the machine of the affected user. This
arbitrary executable would be executed with the same operating system
privileges under which the web browser was run.
Public Release Date: 4/01/2010
Vendor: Alienvault (www.alienvault.com)
============= Technical Details =============
The page /ossim/control_panel/alarm_console.php is vulnerable to a CSRF vulnerability. An attacker can send a malicious link to an authorized OSSIM user and, by social engineering, provoke the deletion of all the alarms:
/ossim/control_panel/alarm_console.php?delete_backlog=all
Nicolas Grandjean
1. Locate course ID and user ID of administrator user from public
profile. By default the admin's course ID is 1, and his user ID is 2.
2. Get administrator's email address (also included in public profile)
3. Send social engineering email to administrator in order to trick him
to visit the CSRF PoC URL while being logged in. The PoC URL simply
loads a form that submits automatically and changes the victim's profile
settings to include information chosen by the attacker. i.e.: attacker's
email address.
~ Example PoC URL:
From GFI's website:
"GFI WebMonitor offers web security features that allow you to control your
employees Internet access by monitoring what files employees are downloading, to
block file types such as MP3s and to scan all files for viruses, spyware and malware
using multiple antivirus engines. GFI WebMonitor lowers the risk of social engineering
by blocking access to phishing websites through the use of an auto-updatable database
of phishing urls. The web monitoring features also allow you to monitor and block
Live Messengenger (MSN) chat sessions and file transfers."
GFI's Website can be found at http://www.gfi.com
vulnerability is in the streaming component of Microsoft Windows,
attacks can be launched from a malicious website or any application
that delivers Web content. In Windows Explorer, if the Web View Content
is enabled, which is the default setting, a single click will open the
malicious file in the preview pane and trigger the vulnerability. An
attacker can host a malicious AVI file and use social engineering
techniques to trick a user into visiting the site or to deliver the
hostile code to a user via e-mail, for example.
IV. DETECTION
located on Internet.
All a remote attacker has to do is plant a malicious DLL with a specific
name on a network share and get the user to open a specially crafted file
from this network location - which should require minimal social
engineering. Since Windows systems by default have the Web Client service
running - which makes remote network shares accessible via WebDAV -, the
malicious DLL can also be deployed from an Internet-based network share as
long as the intermediate firewalls allow outbound HTTP traffic to the
Internet.
will address the Infocalypse (a follow-up to Morgan's talk about Digital
Armageddon).
Workshops:
- Social Engineering Training for IT Security Professionals
- Attacks on GSM & GPRS Networks
- SAP Security In-Depth
- 360 Degree Security Management using BMIS
- Web Hacking - Attacks, Exploits and Defense
- Hacking IPv6 Networks
shares, and even shares located on Internet.
All a remote attacker has to do is plant a malicious DLL with a specific
name (wab32res.dll) on a network share and get the user to open any .WAB,
.VCF or .CONTACT file from this network location - which should require
minimal social engineering. Once the user opens the file, wab.exe makes an
unsafe call to LoadLibrary("wab32res.dll"). As this DLL is not present on
the system, its malicious version gets loaded from the current working
directory.
Windows systems by default have the Web Client service running - which
fix presented vulnerabilities and is more exploitable than 3.0-1.
An attacker can steal UserID, Passcode, Domain code and Registration
code before they are sent back to the server itself and potentially
poison the navigation of the user and steal other sensitive informations
via social engineering (injecting additional fields in the form or
showing "additional functions" to the user) abusing user's trust.
Remediation consists in proper escaping the user controlled inputs.
[1] http://www.ush.it/2006/01/25/php5-globals-vulnerability/
Vendor: Alienvault (www.alienvault.com)
Fixed: Yes (3/30/2010)
============= Technical Details =============
1. An attacker can redirect a victim to a malicious website by giving him a malicious URL, by social engineering or by phishing:
Example:
- http://ossim-server/ossim/nagios/index.php?sensor=www.attacker.com
Next Page>>
|
