By Sven Olensky,on February 7th,2012 BBC reports, Feeds from thousands of Trendnet home security cameras have been breached,allowing any web user to access live footage without needing a password. Internet addresses which link to the video streams have been posted to a variety of popular messageboard sites. Users have expressed concern after finding they could view children’s bedrooms,among other locations. [...] The author discovered that after setting up one of the cameras with a password,its video stream became accessible to anyone who typed in the correct net address. Trendnet says it is in the process of releasing firmware updates for its devices In each case,this consisted of the user’s IP address followed by an identical sequence of 15 characters. The writer then showed how the Shodan search engine –which specialises in finding online devices –could be used to discover cameras vulnerable to the flaw. [...] Mr Wood added that the California-based firm estimated that “fewer than 1,000 units”might be open to this threat in the UK,but could not immediately provide an exact global tally beyond saying that it was “most likely less than 50,000″.
Trendnet released patches to be applied to fix this issue. I would recommend you apply them ASAP,unless you want the insides of your homes displayed on the Internet. By Sven Olensky,on February 3rd,2012 Many outlets,amongst them the Wall Street Journal report today that the Anonymous hacker group ‘intercepted’a conference call held by the FBI and Scotland Yard. They report, WASHINGTON—The Federal Bureau of Investigation said cybercriminals hacked into a cybercrime conference call between its agents and law enforcement officials overseas. [...]The FBI said the breach wasn’t made on the agency’s secure email or other computer systems. Instead it appeared to be result of a law enforcement officer overseas who was invited to be on the FBI call and who forwarded the information to his private email account,which was compromised by hackers.
So,the meeting invite was in an email,containing conference call number and access code,and it was sent to a private email account outside of the agency networks. Lesson:don’t forward internal/sensitive/not-for-the-public-eye-classified information outside of your company/agency/internal network. This is a classic case of DLP –Data Loss Prevention. By Sven Olensky,on February 2nd,2012 Verisign’s DNS service was hacked a number of times,as they recently admitted in their SEC filing,InfoWorld reports: In October 2011,Internet infrastructure firm VeriSign released its usual quarterly report. Buried in the 50-page filing to the SEC was the revelation that the company had been breached multiple times the previous year. The incidents . . . →Read More:Verisign hacked several times in 2010,didn’t disclose until now By Sven Olensky,on August 28th,2011 UPDATE 08/29/2011 09:30PM EDT: GANSEC analysis:It looks like that this worm is pretty basic,the only change being the usage of the RDP-login-mechanism. It uses a dictionary based password attack against the Administrator account,using a very limited list. To us,this looks more like a trial run or experiment than a full . . . →Read More:Morto –Windows Worm spreading via RDP –Remote Desktop Connections By Sven Olensky,on August 28th,2011 A couple of days ago a script was published on the Full Disclosure mailing list:“Apache Killer”. It exploits a denial of service vulnerability in any recent Apache web server installations and it has been confirmed working. Any web server running current versions of Apache (and older) can be affected by it. So far,no . . . →Read More:Apache-Killer –Denial of Service against your web server –exploit in the wild By Sven Olensky,on June 9th,2011 If you are a small-to midsize business,you may think that if you become the victim of an attack resulting in loss of money,you are protected by your bank,just like you would be if your personal credit card would get charged fraudulently. Well,you may be wrong. You may be on the hook . . . →Read More:As a business,you may be responsible for fraudulent charges,not your bank By Sven Olensky,on June 7th,2011 Too little,too late —they could have admitted that when it first went public –RSA finally admitted that SecurID tokens have been compromised. How many? All of them. HelpNetSecurity reports: The admission comes in the wake of cyber intrusions into the networks of three US military contractors –one of them confirmed by . . . →Read More:RSA finally admits that SecurID tokens have been compromised By Sven Olensky,on May 28th,2011 Looks like hackers broke into networks owned by Lockheed Martin and other Department of Defense contractors. Reuters reports, They breached security systems designed to keep out intruders by creating duplicates to “SecurID”electronic keys from EMC Corp’s (EMC.N) RSA security division,said the person who was not authorized to publicly discuss the matter. It was . . . →Read More:Lockheed Martin and other DoD contractors breached By Sven Olensky,on May 18th,2011 If you have an Android and you connect to an open wireless network hotspot,you are at risk of getting your authentication tokens stolen (i.e.,your login credentials to certain web sites and application may be stolen). Depending on the news site you frequent,the intensity of the reports range from ‘HACKERS STEAL YOUR CREDENTIALS’ . . . →Read More:Android phones open to authentication theft in open wireless networks By Sven Olensky,on April 27th,2011 Well,after 6 days of downtime Sony finally released some information about the Playstation Network Intrusion:personal data of users may have been stolen.. As Kotaku reports, Among the possible information stolen: Name Address (city,state,zip) Country Email address Birthdate PlayStation Network/Qriocity password and login and handle/PSN online ID. “While there is no evidence . . . →Read More:Playstation Network Hack –Personal Data Stolen | | |
