February 2008 - Posts

Hypervisor based rootkit detection?
Time marches on . . . http://northsecuritylabs.com/ Read More...
Posted 25 February 08 10:58 by Robert_Hensing | 0 Comments   
The fragility of the Internets - as demonstrated by Pakistan / Youtube
I love how fragile the Internet really is. This is demonstrated from time to time and when it is - I'm drawn to it like a police chase on live TV . . . sometimes the root name servers come under attack or someone figures out a neat way to poison DNS caches, Read More...
Posted 25 February 08 12:55 by Robert_Hensing | 1 Comments   
Practical application of the concept behind photon sails / laser elevators
Hilarious: http://blag.xkcd.com/2008/02/15/the-laser-elevator/ Read More...
Posted 25 February 08 12:06 by Robert_Hensing | 0 Comments   
Cold boot attacks on encryption keys
UPDATE 2/27/2008: Douglas MacIver wrote an excellent and very authoritative blog post here on this topic - I highly recommend reading his blog post instead of mine. :) http://blogs.msdn.com/si_team/archive/2008/02/25/protecting-bitLocker-from-cold-attacks-and-other-threats.aspx Read More...
Posted 25 February 08 10:21 by Robert_Hensing | 1 Comments   
SWI Defense in the news
My boss is apparently allowed to speak to the press. :) http://www.eweek.com/c/a/Security/Behind-the-Scenes-at-Microsofts-Secure-Windows-Initiative/ Read More...
Posted 21 February 08 06:52 by Robert_Hensing | 0 Comments   
Blackhat Day 4 - DTrace and PINK
This morning I attended a session on DTrace which is a sort of tracing capability created by Sun for Solaris 10 that can be ported to other OS's. Some engineers from SAIC have figured out how to make this useful for reverse engineering, vuln discovery Read More...
Posted 21 February 08 06:21 by Robert_Hensing | 0 Comments   
Blackhat Federal - Notes from Days 1-3
So I'm at Blackhat Federal this week - doing the training thing (IDA class with Chris Eagle - fairly good / broad intro to IDA and it's capabilities) and today was the first day of the sessions. It's been a great con so far . . . Monday and Tuesday I Read More...
Posted 20 February 08 05:45 by Robert_Hensing | 1 Comments   
Asus / Apple / Wii pwnage & The press starts to wonder if maybe it's time to consider 3rd party apps dangerous?
Asus Eee PC owned out of the box (hint runs Linux): http://www.risesecurity.org/blog/entry/6/ Yet another Apple Quicktime 0-day posted 2 days ago: http://seclists.org/fulldisclosure/2008/Feb/0304.html The Wii has been pwn3d via a stack smash to run homebrew Read More...
Posted 14 February 08 10:20 by Robert_Hensing | 1 Comments   
SecureWorks / Team Cymru solve the mystery of the Mega-D Trojan
Joe Stewart is the man . . . I have a ton of respect for him and everyone at Team Cymru. They teamed up to find the C&C for the Mega-D trojan and Joe has done another one of his excellent write-ups here: http://www.secureworks.com/research/threats/ozdok/?threat=ozdok Read More...
Posted 13 February 08 10:20 by Robert_Hensing | 1 Comments   
New measure of code quality
http://www.veracode.com/blog/?p=77 Hilarious . . . I can finally explain what my team does to my less technical friends / family with that simple drawing. Read More...
Posted 05 February 08 12:00 by Robert_Hensing | 2 Comments   
The Stig
I would not be surprised at all if it were Hamilton - but alas - given his hectic travel schedule during F1 season - I doubt that it is: http://www.autoblog.com/2008/02/04/the-stig-some-say-hes-lewis-hamilton/ Top Gear - my favorite show on TV next to Read More...
Posted 05 February 08 10:51 by Robert_Hensing | 0 Comments   

Search

This Blog

Tags

No tags have been created or used yet.

Syndication

Page view tracker