cyber crime
Call for Papers @ Swiss Cyber Storm 3 Sec Conf
===============================================
* Rapperswil, Switzerland (near Zurich)
* May 12-15, 2011
* 3 parallel tracks
* Track1: Cyber Crime
* Track2: Exploits & Defense
* Track3: OWASP
===============================================
Rapperswil, Switzerland -- The Call for Papers for the third Swiss Cyber
- Tools for acquisition, collection, and storage of digital evidence
- Tools for identification, authentication, integrity preservation
of digital evidence
- FLOSS tools for Analysis and Identification of Evidence
- Tools for the analysis and search of digital evidence
- Tools for cybercrime scenarios reconstruction, correlation and
data mining applied to digital forensics
- Tools for analysis of embedded or non-traditional devices such
as cellphones, cameras...
- FLOSS tools for analysis of cybercrime
- Data mining systems for cyber-crime strategy analysis and modeling
- Tools for acquisition, collection, and storage of digital evidence
- Tools for identification, authentication, integrity preservation
of digital evidence
- FLOSS tools for Analysis and Identification of Evidence
- Tools for the analysis and search of digital evidence
- Tools for cybercrime scenarios reconstruction, correlation and
data mining applied to digital forensics
- Tools for analysis of embedded or non-traditional devices such
as cellphones, cameras...
- FLOSS tools for analysis of cybercrime
- Data mining systems for cyber-crime strategy analysis and modeling
- Tools for acquisition, collection, and storage of digital evidence
- Tools for identification, authentication, integrity preservation
of digital evidence
- FLOSS tools for Analysis and Identification of Evidence
- Tools for the analysis and search of digital evidence
- Tools for cybercrime scenarios reconstruction, correlation and
data mining applied to digital forensics
- Tools for analysis of embedded or non-traditional devices such
as cellphones, cameras...
- FLOSS tools for analysis of cybercrime
- Data mining systems for cyber-crime strategy analysis and modeling
-----Original Message-----
From: Scotty [mailto:scott.nielsen@usu.edu]
Sent: Monday, July 27, 2009 2:35 PM
To: McDonnell, Michael
Cc: Choon Ming; bugtraq@securityfocus.com; full-disclosure-bounces@lists.grok.org.uk
Subject: Re: computer crime statistics
Try the Verizon Business Data Breach investigations report. I think it
has some statistics you are looking for.
http://www.verizonbusiness.com/products/security/risk/databreach/
--- About Goatse Security ---
We are people that do shit. You may not like what we do, but we get shit done.
http://www.people.com/people/article/0,,20351567,00.html
"Spencer Pratt Leaves The Hills to Fight Cyber Crime"
This is who you're going to be working with. Inane, whitepaper-writing idiots
who have the intelligence and depth of a reality TV show star. Go back to work.
Sit at your desk. Breathe the stale air under the pale glow of the flourescent
lights and remember: you're on the same side as Speidi.
f. Virus and Worms
g. WLAN and Bluetooth Security
h. Analysis of malicious code
i. Cryptography and Cryptanalysis
j. Computer forensics
k. Cyber Crime & law
.....
8. How can I help?
# Data Recovery and Incident Response
# WLAN and Bluetooth Security
# Cryptography and Cryptanalysis
# Computer forensics
# Open source hacking toolkit
# Cyber Crime & law
:: Exclusion ::
# Sales Pitch
• Botnet Detection and Prevention
• Information Security Risk Management
• Economics of Information Security
• Computer & Network Forensics
• Network Security and Intrusion Detection
• Computer Crime and Digital Forensics
• Security in the Cloud / Distributed Systems
• Forensic Accounting and Fraud Detection
• Curriculum Development in Information Security
• Digital Rights Management
• Privacy & Security
# Analysis of malicious code
# Cryptography and Cryptanalysis
# Computer forensics
# Cyber warfare
# Open source hacking toolkit
# Cyber Crime & law
# Hardware mods
:: Exclusion ::
Sales Pitch
From: Scotty [mailto:scott.nielsen@usu.edu]
Sent: Monday, July 27, 2009 4:35 PM
To: McDonnell, Michael
Cc: Choon Ming; bugtraq@securityfocus.com;
full-disclosure-bounces@lists.grok.org.uk
Subject: Re: computer crime statistics
Try the Verizon Business Data Breach investigations report. I think it
has some statistics you are looking for.
http://www.verizonbusiness.com/products/security/risk/databreach/
http://www.hotelsolamar.com
FRIDAY - 75 minute talks
James O'Gorman & Matthew Churchill - Digital Forensics - Footsteps in the Snow
Travis Goodspeed - Repurposing the TI EZ430 Development Tool
Ryan Sherstobitoff - The Evolution of Cyber Crime
Jared DeMott - AppSec A-Z: Reverse Engineering, Source Code Auditing, Fuzzing, and Exploitation
[*] WORKSHOP & SEMINAR
Lilian Edwards, Russell Buchan, Sheffield University
Maeve Dion, George Mason University
Marco Gercke, Cybercrime Research Institute
Bryan Krekel, Northrop Grumman
Mlanie Bernier and Joanne Truerniet, Department of National Defence, Canada
venue: Langham Place Hotel, Hong Kong
Program:
Attacking Telco Core Network - Philippe Langlois (TSTF)
Real World Kernel Pool Exploitation - Kostya Kortchinsky (Immunity)
Cyber Crime: Follow the Money - Pedro Bueno (McAfee)
The Powerful Evil on Mobile Phone - Nanik (COSEINC)
Securing Your Web Application Codes - Kurt Grutzmacher (Pacific Gas)
Hacking RFiD Devices: Octopus Card?? - Adam Laurie (RFIDI0T.org)
Attacking Anti-Virus - Sowhat (Nevis Lab)
Anti-Forensic: Leaving the Police No Trails (the Grugq)
the vetted operational communities, or contact us directly for special
consideration.
CFP information:
The topics for the CFP include operational nsp security, Internet
incident response, Internet fraud, cyber crime investigations and general
case studies.
You can email your suggestions, including a title, short abstract and
prefered day and time to me personally up to the 28th of July. Late
submissions for turbo-talks is possible.
> -----Original Message-----
> From: Choon Ming [mailto:choonming2002@gmail.com]
> Sent: Sunday, July 26, 2009 8:11 AM
> To: bugtraq@securityfocus.com; full-disclosure-
> bounces@lists.grok.org.uk
> Subject: computer crime statistics
>
> Good day to all of you,
>
> I'm having loads of troubles finding computer crimes' statistics
> (crimes
but are not limited to OSX security, hardware hacking, SAP exploiting,
web 2.0 threats and malware analysis.
Aside from highly technical presentations we are pleased to have a
roundtable and a number of talks focusing on the economic aspect of
cybersecurity, brought to you by well known cybersecurity and cybercrime
experts. To read the full line-up of speakers please see:
http://www.seacure.it/speakers.htm
The conference will be concluded by a networking event with a full
typical Milanese "aperitivo".
possible. The unfortunate truth however is that the lawmakers simply
didn't care what the experts had to say, mostly out of sheer
stubbornness and the attitude that if a law is lacking in any way,
jurisdiction will fix it in the long run. As many of you probably know,
these laws are the German national implementation of the so-called
European Cybercrime Convention. The convention however - in contrast to
our national law - does contain explicit exceptions for researchers and
professionals. As of the reasons why these are missing here, one can
only speculate (a task that I better leave to Fefe, he's much better at
it :P ).
Panda Security Software Local Privilege Escalation
BACKGROUND
Panda Security is a global leading provider of IT security solutions, with millions of clients in more than 200 countries and products available in 23 languages. Our mission is to develop and supply global security solutions to keep our clients' IT resources safe from the damage inflicted by viruses, intruders and other Internet threats at the lowest possible Total Cost of Ownership. Panda Security proposes a new security model, specially designed to firmly combat new types of cyber-crime. This results in technologies and products with much greater detection and efficiency rates than the market average, providing a higher level of security to our users.
Source: http://www.pandasecurity.com
VULNERABLE PRODUCTS
>> -----Original Message-----
>> From: Choon Ming [mailto:choonming2002@gmail.com]
>> Sent: Sunday, July 26, 2009 8:11 AM
>> To: bugtraq@securityfocus.com; full-disclosure-
>> bounces@lists.grok.org.uk
>> Subject: computer crime statistics
>>
>> Good day to all of you,
>>
>> I'm having loads of troubles finding computer crimes' statistics
>> (crimes
>
> /QUOTED:
> In February, the Sret du Qubec used Microsoft's botnet-buster to
> break up a network that had infected nearly 500,000 computers in 110
> countries, according to Captain Frederick Gaudreau, who heads up the
> provincial police force's cybercrime unit.
> / END QUOTE
>
> Missing the part? Its black and white. If MS wasn't using information
> (flawed
> since it's relying on IP) then how did they correlate IP information
containing the DRAC4 cards are in productive use and I don't want to
enlarge downtimes. As in the advisory already described, the vendor seems
to be able to reproduce the issue.
I'm sorry, but for the moment I'm unable to do so anyway, because of the
new paragraph/law of combat of computer crime rate here in Germany. First
I would have to contact a lawyer to make sure, that these actions aren't
criminal at all.
With kind regards
#########################################################################################################
# wmtrssreader joomla component 1.0 Remote File Include Vulnerability
Component : com_wmtrssreader version 1.0
Download script : http://www.webmaster-tips.net/flash-rss-reader.html (you must register)
Dicovered by : Cyber-Crime
Contact : cyber-crime@hotmail.com
Orginal : http://www.sibersavascilar.com/category/security
==================================================================================================================================
Good day to all of you,
I'm having loads of troubles finding computer crimes' statistics (crimes
that are related to physical security - eg. Login, root access, ntlm/sam,
etc). I did some search on google and many other websites. But I've yet to
encounter a statistics or survey for the mentioned above computer crime.
Does anyone have any idea where I can get them?
Thank you.
So you argue... "Reporting is optional..." It sure is, but what do
you think the response would be from MS users if MS stated "We will
send your information to Law Enforcement agents anywhere..."
/QUOTED:
In February, the Sret du Qubec used Microsoft's botnet-buster to break up a network that had infected nearly 500,000 computers in 110 countries, according to Captain Frederick Gaudreau, who heads up the provincial police force's cybercrime unit.
/ END QUOTE
Missing the part? Its black and white. If MS wasn't using information (flawed
since it's relying on IP) then how did they correlate IP information
back to law enforcement... OUTSIDE the United States...
- ----------
7. About Cert-Lexsi
- ----------
Cert-Lexsi, Division of LEXSI, is an international team dedicated to
cybercrime mitigation, vulnerability management and incident response
handling.
Cert-Lexsi employs researchers, developers, analysts and consultants
working 24/7 from Montreal, Paris, Geneva and Singapore.
More information:
Copyright © 2007 ETES GmbH <http://www.etes.de>, referenced text belongs to
its owner(s).
All actions regarding the use of in Germany so-called "hacker tools" like
ping, nmap, telnet, ssh etc. have been done before taking effect of the new
paragraph/law of combat of computer crime rate (Strafvorschriften zur
"Bekmpfung der Computerkriminalitt"; have a look to the PDF for further
information: http://www.bgblportal.de/BGBL/bgbl1f/bgbl107s1786.pdf).
Disclaimer: The information in the advisory is believed to be accurate
at the time of publishing based on currently available information. Use
|
