Risky Business #262 -- Side channel VM crypto attacks are badass

Peter Gutmann discusses a particularly sophisticated attack...
08 Nov 2012 » Risky Business

On this week's show we're chatting with renowned megabrain Peter Gutmann about a paper on side channel attacks against crypto keys in virtualised environments. It's really complicated stuff, but very, very interesting.

Peter didn't do this research or write the paper, but I always like getting his take on this stuff because... well... he's really smart and he doesn't overhype stuff. That's after the news.

This week's show is brought to you by a new sponsor! NCC Group! Yay!

These guys have been the acquisition monster over the last couple of years, picking up NGS Security, iSec Partners and Matasano, among others. They're a large infosec company these days with a lot of extremely clever people working for them.

Joining us in this week's sponsor interview is Wade Alcorn, the Australia country manager for NCC Group... he's also the founder of the BeEF project and a very smart guy. He's joining us to have a chat about some interesting developments in Japan where a bunch of people have been arrested and charged with criminal offences for writing grey-market and downright illegal mobile apps.

Show notes

Experts Warn of Zero-Day Exploit for Adobe Reader - Krebs on Security
http://krebsonsecurity.com/2012/11/experts-warn-of-zero-day-exploit-for-...

Adobe Patches Critical Memory Vulnerabilities in Flash Player, AIR | threatpost
http://threatpost.com/en_us/blogs/adobe-patches-critical-memory-vulnerab...

COLUMBIA, S.C. - Lawsuit over SC Revenue security breach expanded - State & Regional - TheState.com
http://www.thestate.com/2012/11/05/2508579/lawsuit-over-sc-revenue-secur...

PixSteal-A Trojan Steals Images, Uploads to Iraqi FTP Server | threatpost
http://threatpost.com/en_us/blogs/pixsteal-trojan-steals-images-uploads-...

M3AAWG Recommends New DKIM Best Practices | threatpost
http://threatpost.com/en_us/blogs/m3aawg-recommends-new-dkim-best-practi...

Google Adds Malware Scanner to Jelly Bean 4.2 | threatpost
http://threatpost.com/en_us/blogs/google-adds-malware-scanner-jelly-bean...

Android Smishing Vulnerability Found in Android Open Source Project Firmware | threatpost
http://threatpost.com/en_us/blogs/android-smishing-vulnerability-found-a...

Coke Gets Hacked And Doesn't Tell Anyone - Businessweek
http://www.businessweek.com/news/2012-11-04/coke-hacked-and-doesn-t-tell

More VMware ESX Source Code Posted Online | threatpost
http://threatpost.com/en_us/blogs/more-vmware-esx-source-code-posted-onl...

Team Ghostshell Allegedly Spills 2.5 M Russian Records | threatpost
http://threatpost.com/en_us/blogs/team-ghostshell-allegedly-spills-25-m-...

Apple Patches Kernel, Passcode Lock and WebKit Flaws in iOS 6.0.1 | threatpost
http://threatpost.com/en_us/blogs/apple-patches-kernel-passcode-lock-and...

Apache Server-Status Publicly Viewable on Top Sites | threatpost
http://threatpost.com/en_us/blogs/apache-server-status-publicly-viewable...

China Most Threatening Cyberspace Force, U.S. Panel Says - Bloomberg
http://www.bloomberg.com/news/2012-11-05/china-most-threatening-cyberspa...

Facebook password-bypass flaw fixed | Security & Privacy - CNET News
http://news.cnet.com/8301-1009_3-57544933-83/facebook-password-bypass-fl...

Hotmail Takes on Election Duties as Servers in New Jersey Crash | Threat Level | Wired.com
http://www.wired.com/threatlevel/2012/11/new-jersey-email-fai/

Hackers expose British Navy email logins - Hackers - SC Magazine Australia - Secure Business Intelligence
http://www.scmagazine.com.au/News/322232,hackers-expose-british-navy-ema...

Fraudsters launder cash though grants startup - Risk - SC Magazine Australia - Secure Business Intelligence
http://www.scmagazine.com.au/News/322118,fraudsters-launder-cash-though-...

www.cs.unc.edu/~reiter/papers/2012/CCS.pdf
http://www.cs.unc.edu/~reiter/papers/2012/CCS.pdf

Japanese Android developers arrested for infecting 10 million users - Hacker News , Security updates
http://thehackernews.com/2012/10/japanese-android-developers-arrested.ht...

,

The critical memory it has is really something. We need to get ourselves busy with that one. - Flemings Ultimate Garage

,

Link to Sophail: Applied attacks against Sophos Antivirus
https://lock.cmpxchg8b.com/sophailv2.pdf