Analyzing PDF files and Shellcode

Posted by jeremy on November 11th, 2008 from Sudosecure.net


Read more...

Starbucks sued after laptop data breach

The lawsuit was filed Thursday in federal court in Seattle. Starbucks has offered employees one-year's free credit monitoring and protection, but Krottner is asking the court to extend that to five years. She is also seeking unspecified damages and asking that Starbucks be ordered to submit to periodic security audits of its computer systems. Read More...

Conficker B++?

"From late November through December 2008 we recorded more than 13,000 Conficker infections within our honeynet, and surveyed more than 1.5 million infected IP addresses from 206 countries. More recently, our cumulative census of Conficker.A indicates that it has affected more than 4.7 million IP addresses, while its successor, Conficker.B, has affected 6.7M IP addresses"

Read more on SRI's Analysis Report

IPhone Jailbreak hack Violates Law

February 13, 2009 (Computerworld) Hacking an iPhone is against the law, Apple Inc. has argued in comments filed with the U.S. Copyright Office.

According to the Electronic Frontier Foundation (EFF), a freedom-of-speech advocacy organization, this is the first public statement from Apple about its legal position on "jailbreaking," the term used to describe hacking an iPhone to install third-party applications not sold via Apple's own App Store. Read more...

Heartland Data Breach

February 11, 2009 (Computerworld) The number of financial institutions that have said they were affected by the data breach disclosed last month by Heartland Payment Systems Inc. is growing longer by the day and now includes banks in 40 states as well as Canada, Bermuda and Guam, according to the BankInfoSecurity.com news portal. Read more...

New Vulnerability Found in Blackberry's

Feb 11, 2009 | 05:29 PM

By Tim Wilson
DarkReading

Just a few weeks after President Obama won his fight to keep his BlackBerry, the handheld's security is causing concern again.

BlackBerry maker Research In Motion this week is warning users about a newly discovered vulnerability that could potentially enable an attacker to gain remote control of the device or crash its browser.Read More...

Work around and Fixes

http://www.blackberry.com/btsc/search.do?cmd=displayKC&docType=kc&externalId=KB16248

FAA files hacked... again

Hackers have once again gained entry to the US Federal Aviation Administration's (FAA's) computers.

Tom Waters, president of union Local 3290, and an FAA contract attorney, revealed that FAA officials told union leaders that hackers had gained entry to 48 files. Two of them may have provided the bad guys with names and social security numbers of 45,000 employees and retirees. However, another file they got their hands on, which contained medical information, was encrypted. Read more...

ShmooCon '09

It was definitely another great ScmooCon!!! Kudos to all the organizers, staff, and presenters. For those of you who missed it, it was a blast. Great speakers, number of attendees grew, and of course the cool giveaways. Tons of fun!!!!

Read more...

Federal Workers Notified After SRA Virus Breach

February 03, 2009 — IDG News Service — Employees at federal security agencies are being notified that their personal information may have been compromised after hackers planted a virus on computer networks of government contractor SRA International.

SRA began notifying employees and all of its customers after discovering the breach recently, company spokeswoman Sheila Blackwell said Tuesday. The malicious software may have allowed hackers to get access to data maintained by SRA, including "employee names, addresses, Social Security numbers, dates of birth and health care provider information," the company said in a notification posted at the Maryland Attorney General's Web site. Read more...

Symbian trojan steals money from mobile accounts

According to media reports, Kaspersky is trying hard to damp down the effects of a warning about a new trojan for Symbian-based smart phones. Earlier this week, Kaspersky warned of a trojan which was able to transfer small sums, of between 45 and 90 cents, by texting. To do so, it makes use of a prepaid service from an Indonesian mobile phone provider. The malware, which has been christened SMS.Python.Flocker, spreads via Bluetooth and is written in Python. Read more...