Well a small post goes in here decribing the triggerfish tecnlogy and why it has created a buzz this summer.
Triggerfish, also known as cell-site simulators or digital analyzers, are nothing new: the technology was used in the 1990s to hunt down renowned hacker Kevin Mitnick. By posing as a cell tower, triggerfish trick nearby cell phones into transmitting their serial numbers, phone numbers, and other data to law enforcement. Most previous descriptions of the technology, however, suggested that because of range limitations, triggerfish were only useful for zeroing in on a phone’s precise location once cooperative cell providers had given a general location.
Read more »
It is now a common thing that researchers report to websites about the flaw in their product or web-site. These researchers are termed as “Gray Hats”. However care should be taken that while informing vendor about the flaw can lead to legal consequences which the hacker may have to pay for the good. An article gives a brief guideliness what the researcher can follow while reporting any bug to the vendor.
A resercher may have violet the law in the course of finding the flaw. Hence he may face legal actions (mostly from vendors who panic a lot). In such cases he should take proper care before contacting the vendor. He must note the following things : Read more »
An article at Microsoft gives technical details of Worm:Win32/Conficker.A which is supposed to be in wild.
The details can be briefed as follows:
Read more »
I have been hearing a lot about the recent terrorost attack in India and all over the world. Yesterday’s News channel all flashed news about terrorists opening fire and bomb blasts at several places in Mumbai, India.
Read more »
HTTP errors like 404 -Page not found and 500 – Server error are well known. I came across this site where they are well-explainied few HTTP errors using pictures.
Nice work Dude!!
Well I thought of taking some break from daily security posts and thought of posting something interesting. I came across this stuff and found it very interesting.
Source: Geeksaresexy
Read more »
I came across this neat cheat sheet at SANS site. It provides a neat need-to-do list of what steps need to be taken if you are hacked. It has two cheat sheets seperatly prepared for
Read more »
Well as the long name goes, Microsoft has released an article that will help users understand their Exploitability Index. The article briefly explains how to priotize applying released patched in enterprise environment. Depending on the criticality of released patches and their likelyhood of being exploited, application of patches can be accordingly priotized.
Nicely explained with examples, it will be handy for customers.
Well after a long wait, Metasploit 3.2 has been released with more evil deeds. The evil deeds integrated into the new framework can be briefed as below:
Version 3.2 includes exploit modules for recent Microsoft flaws, such as MS08-041, MS08-053, MS08-059, MS08-067, MS08-068, and many more.
Read more »
Firewalls block hackers from directly connecting to your network shares. Windows administrators keep their systems up-to-date with the latest software patches to thwart worms such as Nimda and Code Red. And user passwords are stronger than ever. But are we secure yet? While the situation is much better than it was just a couple years ago, many companies are still quite vulnerable to a number of attacks. Blocking ports and installing patches has not stopped hackers, it has just forced them to find new ways to break in. And chances are, the first place they are going to look is your Web application.
Read more »
Information Security, Information Technology | w0lf | November 30, 2008 | 
Comments (1) 
