United Arab Emirate's site for security news, latest security blog posts, security podcasts, hardware hacks and security related links.

Sunday, March 16, 2008

McAfee Avert Labs Mass Hack Demo

This is huge. In the matter of days more than 200,000 sites were effected by these mass hacks. Some with JS while others with ASP! Some of the attacks were on the popular phpBB. Even Trend Micro fell victim to the web hack!

Here is a video demo:


March 2008 - Mass Hack Demo from Schmooog on Vimeo.


For More information please visit:
Computer Security Research - McAfee Avert Labs Blog

RFID Cloning Hack Opens 2 Billion Doors!

The hack attacks the weak encryption in the MiFare Classic, an RFID chip manufactured by NXP Semiconductors. All you need is a laptop, a scanner and a few minutes to decrypt the key to an RFID door lock and create a duplicate card to open it at will! Read More below:

RFID hack could crack open 2 billion smart cards

I know you guys like videos so here you go :) This is a demo of a similar attack:



Here Bruce's take on this:
http://www.schneier.com/blog/archives/2008/03/london_tube_sma.html

News video of a similar hack:

Windows hacking through Firewire

The hack was first demonstrated in Sydney in 2006 but the code was only made available lately.

The hack involves the following:
Python Exploit Code + Access to a Windows Machine via Firewire = Ownage of the Windows machine! See the video below for a demonstration:



Hi-Res video can be found on youtube:
http://www.youtube.com/watch?v=5N-C5s_07Ts&fmt=18

Still don't get it? Then visit:
http://storm.net.nz/projects/16

For an interview with the coder (Adam Boileau) please visit:
http://www.itradio.com.au/security/

Tuesday, March 4, 2008

MAKE: Hack-a-Day Style Projects

The MAKE Blog teaches you how to build things over the weekend or hack your existing devices.

Monday, March 3, 2008

RAM Freezing and Recovery of Encryption Keys

If you don't already know about this then watch the youtube video:



Then visit the page below and read the paper:

Lest We Remember: Cold Boot Attacks on Encryption Keys

Read about the people who are considering this hack to be over hyped:

http://searchsecurity.techtarget.com.au/topics/article.asp?DocID=6101214

and finally read Microsoft's take on this:

http://www.channelregister.co.uk/2008/02/27/bitlocker_hack_prevention/

Gulfnews: Middle East websites are more vulnerable

Gulfnews: Middle East websites are more vulnerable to web virus threats and botnets.

Are your FTP accounts Hacked? New FTP hacking toolkit spreads on black market

It is true and varified by Finjan, a security company whcih announced that it uncovered a database containing more than 8,700 harvested FTP account credentials, including usernames, passwords and server addresses! Find out more about this here.

NEWS FEEDS:

SecurityStreet:

PandaLabs Blog

Webroot Threat Blog

Daily Infosec News

HITBSecNews

Naked Security - Sophos

Taddong

Zone-H.org News

CGISecurity

ArsTechnica:

HACK A DAY

Help Net Sec

The Spanner

Middle East Technology News

Selil Blog

HACKING IN THE NEWS

Special Defacements

The Certified Geek

DoS Files ≈ Packet Storm

E Hacking News

Banned in UAE:

The following websites are blocked by ISPs in UAE.

News ≈ Packet Storm

DARKNET

MySecured.com

Copyright © 2008-2009 UAE Hackers.com .
All rights reserved.