Monthly Archives: December 2014

20 Bucks Buys You 1,000 Node Bot Army

Posted on December 17, 2014 by Carmelo

According to the Dell SecureWorks report, for $20 you can purchase a small bot army of 1,000 computers. Findings in the deep web also include that the there is excellent customer service! Master those basics people and you will gain … Continue reading →

Posted in Security Blog | Tagged 2014, botnet, botnets, credit card, deep web, fullz, hackers, menu, Security Awareness, underground | Comments Off

It’s THAT Time of Year

Posted on December 16, 2014 by Carmelo

The year end is the time to start giving predictions of how next year will roll. Here are a few reports that have already been published (they all open in a new tab): WebSense Trend Micro Tech Republic CSO Online … Continue reading →

Posted in Security Blog | Tagged 2014, 2015 Security Predictions, Information Technology Security Awareness, NIST 800-34, NIST 800-61, Security Awareness | Comments Off

Honeywell Point-of-Sale Systems Buffer Overflow Vulnerability

Posted on December 16, 2014 by Carmelo

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Honeywell OPOS Suite. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific … Continue reading →

Posted in Security Blog | Tagged 2014, credit card, honeywell, overflow, point-of-sale, vulnerability | Comments Off

Iran vs. Las Vegas Sands

Posted on December 14, 2014 by Carmelo

You may have heard that Las Vegas Sands was hacked recently, but it happened nearly a year ago on February 10th of 2014. PCs and Servers were getting shut down and their hard drives started to erase. The phone lines … Continue reading →

Posted in Security Blog | Tagged 2014, billionaire Sheldon Adelson, hacked, hackers, Iran, Iran’s Supreme Leader Ayatollah Ali Khamenei, Sands Las Vegas | Comments Off

Hypercom of Scottsdale, Arizona’s Equinox Payments

Posted on December 12, 2014 by Carmelo

Equinox is working with customers, distributors, and channel partners to replace the certificates to return terminals to an operational state after all payment terminals bricked themselves. Why? Because cryptographic certificates used in the devices has expired en masse. Many merchants … Continue reading →

Posted in Security Blog | Tagged 2014, Arizona, Brian Krebs, business resiliency, certificate management, credit card, equinox, hypercom, Scottsdale | Comments Off

Iowa Might Go Walletless

Posted on December 11, 2014 by Carmelo

With Google Wallet and Apple Pay starting to take off, Geico putting your insurance on an app on your phone with digital ID cards, the only thing left for wallets is the driver’s license. Well, that too may go digital. … Continue reading →

Posted in Security Blog | Tagged 2014, digital drivers license, iowa, wallets | Comments Off

US Navy Laser Weapon System

Posted on December 11, 2014 by Carmelo

The Afloat Forward Staging Base (Interim) USS Ponce (ASB(I) 15) conducts an operational demonstration of the Office of Naval Research (ONR)-sponsored Laser Weapon System (LaWS) while deployed to the Arabian Gulf. The LaWS consists of a 30-kilowatt solid-state infrared laser, … Continue reading →

Posted in Security Blog | Tagged 2014, Lasers, military, Navy, pen test, vulnerability scan, Weapons | Comments Off

POODLE attack through TLS

Posted on December 11, 2014 by Carmelo

POODLE = Padding Oracle On Downgraded Legacy Encryption Once upon a time, in October, I wrote about SSL POODLE, a flaw in how browsers handle encryption; by negotiating down to SSL 3.0, attackers can alter padding data at the end … Continue reading →

Posted in Security Blog | Tagged 2014, eavesdropping, man-in-the-middle, mitm, Padding Oracle On Downgraded Legacy Encryption, POODLE, ssl, tls | Comments Off

Smartwatch to Smartphone Data Interception

Posted on December 11, 2014 by Carmelo

Data sent between a Smartwatch and an Android smartphone could be a subject to brute force hacks to intercept and decode users’ data, including everything from text messages to Google Hangout chats and Facebook conversations. Liviu Arsene explains. Read more … Continue reading →

Posted in Security Blog | Tagged 2014, android, bluetooth, cyber risk, Google, nfc, risk, smart-watch, sniffing, video tutorial, wearables | Comments Off

Robocops is Now

Posted on December 5, 2014 by Carmelo

Robotics firm Knightscope has announced its plans to deploy autonomous guards for hire in Silicon Valley. You can rent some too, starting as low as $6.25/hour with at least a year contract on a MaaS (Machine-as-a-Service) rental basis. The robots … Continue reading →

Posted in Security Blog | Tagged 2014, botnet, botnets, killer robots, MaaS, Robocop, robot, robots | Comments Off

S	M	T	W	T	F	S
	1	2	3	4	5	6
7	8	9	10	11	12	13
14	15	16	17	18	19	20
21	22	23	24	25	26	27
28	29	30	31

Monthly Archives: December 2014

Share

Share

Share

Share

Share

Share

Share

Share

Share

Share

Blog Stats