Next Page >>
social engineering
equal in front of a computer. Maybe skills appart that is ;)
HES is also an open big party, by the hacking community and for the
hacking community, with people coming literally from around the world.
If you'd like to not only come, but be part of HES by organising a
workshop (lockpickers and organisers of a social engineering contest
wanted !) or contest : please do and refer the relevant section below.
--[ Quality:
Actually, on that same note, I recently did an analysis of the last
three years of published Windows vulnerabilities.
86% required local end-user interaction (i.e. social engineering) to be
pulled off.
http://www.infoworld.com/article/07/10/19/42OPsecadvise-insider-threats_
1.html
I didn't analyze Linux or BSD threats, but my gut feeling puts them at
the same level or even higher.
> Subject: RE: mac trojan in-the-wild
>
> Actually, on that same note, I recently did an analysis of the last
> three years of published Windows vulnerabilities.
>
> 86% required local end-user interaction (i.e. social engineering) to
be
> pulled off.
> http://www.infoworld.com/article/07/10/19/42OPsecadvise-insider-
> threats_
> 1.html
NOTE: Resending this was blocked last time.
Profit-driven malware has gotten very good at using Social Engineering
(backed up with Exploits) to spread itself. Zlob and it Codecs are one
particular example that has worked very well on Windows, even by
simply getting the user to install the software willingly. The
Storm/Zhelatin/Russian Business Network group however are by far the
best at this. They have shown time and time the power of simple Social
Engineering in order to infect victims machines. Zlob may have been
the first for profit malware to make the jump, but if it proves
* DataBase Security
* "the" Cloud
* Cryptography
* System Weaknesses
* Infrastructure and Critical Systems
* Social Engineering
* Reverse Engineering
* Social Reverse Engineering
* Reversing Social Engineering
* Caipirinha and Feijoada Hacks
* and everything else information security related that our attendees
> Subject: RE: mac trojan in-the-wild
>
> Actually, on that same note, I recently did an analysis of the last
> three years of published Windows vulnerabilities.
>
> 86% required local end-user interaction (i.e. social engineering) to
be
> pulled off.
> http://www.infoworld.com/article/07/10/19/42OPsecadvise-insider-
> threats_
> 1.html
Please visit our updated website for more details about the venue, the
schedule and information about our past conferences:
https://deepsec.net/
The DeepSec offers a mix of different topics and aspects like current
threats and vulnerabilities, social engineering and psychological
aspects as well as security management and philosophy. Our speakers and
trainers traditionally come from the security community, companies,
hacker spaces and academic organisations.
You can submit content for three categories:
Description:
CamFrog Video Chat 5.0 and Camfrog Pro 5.2 suffers from a Local password disclosure vulnerability due to the leak of proper encryption of credentials in the process level .In fact,the credentials can be extracted in clear text by dumping process memory of the live camfrog process when a connection is established.
Note : This vulnerability can be exploited by Social Engineering tricks such as fooling the user to execute malicious code wich would dump the memory of the process.
Proof of Concept:
http://nullarea.net/sploits/c/camfrog/poc.pdf
- Network Protocols
- Operating Systems
- Patch & Upgrade Management
- Secure Software Development
- Security Management
- Social Engineering
- Virtualisation
- VoIP Technology
- Web Security
- Wireless Technology
o Embedded Device Security
o Web Application Security
o Network Traffic Analysis
o Wireless Network Security
o Cryptography and Cryptanalysis
o Social Engineering
o Law Enforcement Activities
o Telecommunications Security (SS7, 3G/4G, GSM, VOIP, etc)
* Submissions
- Network Protocols
- Operating Systems
- Patch & Upgrade Management
- Secure Software Development
- Security Management
- Social Engineering
- Virtualisation
- VoIP Technology
- Web Security
- Wireless Technology
- Messaging Technologies
- Network Protocols
- Operating Systems
- Secure Software Development
- Security Management
- Social Engineering
- Virtualisation
- VoIP Technology
- Web Security
- Wireless Technology
available for FRHACK 2009.
# Selected speakers #
Social Engineering, Hacking brains
- Bruno Kerouanton (Switzerland)
Reverse engineering and cryptographic errors
- Philippe Oechslin (Switzerland)
o Embedded Device Security
o Web Application Security
o Network Traffic Analysis
o Wireless Network Security
o Cryptography and Cryptanalysis
o Social Engineering
o Law Enforcement Activities
o Telecommunications Security (SS7, 3G/4G, GSM, VOIP, etc)
Submissions should thoroughly outline your desired presentation subject. Accompanying your submission should be the slides you intend to use or a detailed paper explaining your subject.
o Embedded Device Security
o Web Application Security
o Network Traffic Analysis
o Wireless Network Security
o Cryptography and Cryptanalysis
o Social Engineering
o Law Enforcement Activities
o Telecommunications Security (SS7, 3G/4G, GSM, VOIP, etc)
Submissions should thoroughly outline your desired presentation subject.
1. Mobile devices exploitation, vulnerabilities, malware, VOIP and Telecom
2. Virtualization security, hacking VMs
3. Information Warfare
4. Forensics and Anti-Forensics
5. Social Engineering
ClubHack Magazine has as different sections:
1.Tech Gyan - Main article of the magazine. Covers various technical aspects in security, latest hacking trends and techniques.
2. Tool Gyan - Covers various hacking and security tools.
- Messaging Technologies
- Network Protocols
- Operating Systems
- Secure Software Development
- Security Management
- Social Engineering
- Virtualisation
Please note, that we are a non-product, non-vendor biased security
conference and do not welcome vendor pitches in the conference talks or
trainings. We will provide an opportunity for vendor self presentation
Please visit our updated website for more details about the venue, the
schedule and information about our past conferences:
https://deepsec.net/
The DeepSec offers a mix of different topics and aspects like current
threats and vulnerabilities, social engineering and psychological
aspects
as well as security management and philosophy. Our speakers and trainers
traditionally come from the security community, companies, hacker
spaces,
journalism and academic organisations.
v10.0.6854' and the DLL is 'mso.dll v10.0.6845'
Likely attack vectors include:
. Targeted attacks involving e-mailed malicious files combined with
social engineering to entice the user to open the malicious attachment.
. Targeted attacks involving malicious files hosted on a remote web
site combined with social engineering to entice the user to open the
malicious attachment.
The root cause description of the vulnerability is that there is no
http://jobs.nullcon.net
----------------------------
nullcon Dwitiya presents you great cool topics from
Anurag Dhanda :: Hacking the Parliament – A classic Social Engineering attack
Assaf Nativ :: Memory analysis – Looking into the eye of the bits
Rahul Sasi :: Penetration Testing a Biometric System
o Embedded Device Security
o Web Application Security
o Network Traffic Analysis
o Wireless Network Security
o Cryptography and Cryptanalysis
o Social Engineering
o Law Enforcement Activities
o Telecommunications Security (SS7, 3G/4G, GSM, VOIP, etc)
Submissions should thoroughly outline your desired presentation subject.
* Embedded Device Security
* Web Application Security
* Network Traffic Analysis
* Wireless Network Security
* Cryptography and Cryptanalysis
* Social Engineering
* Law Enforcement Activities
* Telecommunications Security (SS7, 3G/4G, GSM, VOIP, etc)
Submissions should thoroughly outline your desired presentation subject. Accompanying your submission should be the slides you intend to use or a detailed paper explaining your subject.
Please visit our updated website for more details about the venue, the
schedule and information about our past conferences:
https://deepsec.net/
The DeepSec offers a mix of different topics and aspects like current
threats and vulnerabilities, social engineering and psychological
aspects as well as security management and philosophy. Our speakers and
trainers traditionally come from the security community, companies,
hacker spaces and academic organisations.
You can submit content for three categories:
will address the Infocalypse (a follow-up to Morgan's talk about Digital
Armageddon).
Workshops:
- Social Engineering Training for IT Security Professionals
- Attacks on GSM & GPRS Networks
- SAP Security In-Depth
- 360 Degree Security Management using BMIS
- Web Hacking - Attacks, Exploits and Defense
- Hacking IPv6 Networks
III. ANALYSIS
Exploitation allows an attacker to execute arbitrary code with the
privileges of the current user. Exploitation would require convincing a
targeted user to visit a malicious URL through some form of social
engineering.
This vulnerability can also be triggered through e-mail. If the e-mail
client automatically displays images embedded in the e-mail, the user
only needs to open the e-mail to trigger the vulnerability.
an attacker can cause her malicious EXE [1] to be loaded and executed from
local drives, remote Windows shares, and even shares located on Internet.
What a remote attacker has to do is plant a malicious explorer.exe on a
network share and get the user to open an HTML file from this network
location with Safari - which should require minimal social engineering.
Then, when the user tries to open one of his downloaded files in the
containing folder (e.g., menu: Window -> Downloads -> right-click on a
file -> Show Containing Folder), the malicious explorer.exe is launched
instead of the legitimate one.
on Internet.
All a remote attacker has to do is plant a malicious DLL with a specific
name on a network share and get the user to open a specially crafted file
from this network location - which should require minimal social
engineering. Since Windows systems by default have the Web Client service
running - which makes remote network shares accessible via WebDAV -, the
malicious DLL can also be deployed from an Internet-based network share as
long as the intermediate firewalls allow outbound HTTP traffic to the
Internet.
A remote attacker might entice a user to open a specially crafted PDF
file, possibly resulting in the execution of arbitrary code with the
privileges of the user running the application, Denial of Service, the
creation of arbitrary files on the victim's system, "Trust Manager"
bypass, or social engineering attacks.
Workaround
==========
There is no known workaround at this time.
Vendor: Alienvault (www.alienvault.com)
Fixed: Yes (3/30/2010)
============= Technical Details =============
1. An attacker can redirect a victim to a malicious website by giving him a malicious URL, by social engineering or by phishing:
Example:
- http://ossim-server/ossim/nagios/index.php?sensor=www.attacker.com
improvements from using a trust model based on fact over risk models.
OSSTMM 3 (www.osstmm.org) outlines much of this already and I am
beginning to address this at various conferences.
Mastering trust has many benefits for security testing including
improved social engineering, improved attack trees, and improved
competitive intelligence gathering. Additionally, mastering the
ability to see through phishing, scams, PR smoke screens, lies, and
other deceptive practices also has the inverse of teaching how to
improve stealth, cons, and fraud for your security tests.
Next Page>>
|
