On this week's show we're taking a look at Windows 8 with Alex Ionescu. Alex works for Crowdstrike, he's a genuine expert in Windows internals and he says exploit writing and persistence when it comes to owning windows boxes is about to get a whole lot harder. That's after the news.
This week's show is brought to you by Insomnia Security. Insomnia is a New Zealand-based consultancy founded by Brett Moore. But these days Insomnia is much bigger than Brett. It has six full timers and they're all very clever chaps. Adam Boileau works there, as does this week's sponsor guest Mark Piper! We're chatting to Mark about what "typical" APT attackers get up to. What does the run of the mill APT MO actually look like?
Show notes
Hackers Breached Adobe Server in Order to Sign Their Malware | Threat Level | Wired.com
http://www.wired.com/threatlevel/2012/09/adobe-digital-cert-hacked/
Adobe to revoke code signing certificate | Security & Privacy - CNET News
http://news.cnet.com/8301-1009_3-57521794-83/adobe-to-revoke-code-signin...
White House confirms 'spearphishing' intrusion | Security & Privacy - CNET News
http://news.cnet.com/8301-1009_3-57523621-83/white-house-confirms-spearp...
Chinese Hackers Blamed for Intrusion at Energy Industry Giant Telvent - Krebs on Security
https://krebsonsecurity.com/2012/09/chinese-hackers-blamed-for-intrusion...
Regulators shut down global PC 'tech support' scam | Security & Privacy - CNET News
http://news.cnet.com/8301-1009_3-57525250-83/regulators-shut-down-global...
Australia Post customers exposed in direct object reference flaw - Web/client - SC Magazine Australia
http://www.scmagazine.com.au/News/317651,australia-post-customers-expose...
FTC Takes On Scareware Marketers, Court Imposes $163M Judgment | threatpost
http://threatpost.com/en_us/blogs/ftc-takes-scareware-marketers-court-im...
Web security protocol HSTS wins proposed standard status | Security & Privacy - CNET News
http://news.cnet.com/8301-1009_3-57524915-83/web-security-protocol-hsts-...
SHA-3 Winner Chosen, But It May Be Years Before Keccak Has an Effect | threatpost
http://threatpost.com/en_us/blogs/sha-3-winner-chosen-it-may-be-years-ke...
Authentication Implications in Uniquely Identifiable Graphics Cards | threatpost
http://threatpost.com/en_us/blogs/authentication-implications-uniquely-i...
Microsoft Reaches Settlement with Site Linked to Nitol Botnet | threatpost
http://threatpost.com/en_us/blogs/microsoft-reaches-settlement-site-link...
Mozilla's Persona Web Authentication System Moves into Beta | threatpost
http://threatpost.com/en_us/blogs/mozillas-persona-web-authentication-sy...
DHS Issued False 'Water Pump Hack' Report; Called It a 'Success' | Threat Level | Wired.com
http://www.wired.com/threatlevel/2012/10/dhs-false-water-pump-hack/
Cisco Patches Numerous Bugs in IOS, UCM | threatpost
http://threatpost.com/en_us/blogs/cisco-patches-numerous-bugs-ios-ucm-09...
City of Tulsa website not hacked after all | Tulsa World
http://www.tulsaworld.com/news/article.aspx?subjectid=334&articleid=2012...
IBM - My notifications
http://www14.software.ibm.com/webapp/set2/subscriptions/pqvcmjd?mode=18&...
Nmap Development: Re: Hakin9's new Nmap Guide
http://seclists.org/nmap-dev/2012/q4/18
Breakpoint 2012 Speakers List
http://www.ruxconbreakpoint.com/speakers/#Alex Ionescu
Insomnia Security, New Zealand
http://www.insomniasec.com/
Breakpoint 2012 Training List
http://www.ruxconbreakpoint.com/training/
Bag Raiders - So Demanding - YouTube
http://www.youtube.com/watch?v=_Q0VERQxy_w
The signing certificate has been pretty good so far. That is really good if we need to do that. - Flemings Ultimate Garage
