Risky Business #345 -- Advanced sock puppetry and news website manipulation

How you can make cupcake recipes more popular than Obama...
13 Nov 2014 » Risky Business

On this week's show we're taking a look at how you -- YES YOU -- can game online media. Find out how you can make comments on major news sites just disappear with one line of bash! Find out how you can drive a cupcake recipe into the "most popular" stories box on the world's major news sites!

That's a chat with Azhar Desai of Thinkst and it's this week's feature.

This week's show is brought to you be Tenable Network Security, thanks to them. And in this week's sponsor interview we're speaking with Tenable strategist Jack Daniel about his latest project Shoulders of Infosec. It's essentially a history project that seeks to record the achievements of infosec discipline pioneers.

Adam Boileau, as always, joins the show to talk about the week's infosec news.

Show notes

Silk Road, other Tor "darknet" sites may have been "decloaked" through DDoS [Updated] | Ars Technica
http://arstechnica.com/security/2014/11/silk-road-other-tor-darknet-site...

How Did The FBI Break Tor?
http://www.forbes.com/sites/kashmirhill/2014/11/07/how-did-law-enforceme...

So Far Feds Have Only Confirmed Seizing 27 "Dark Market" Sites In Operation Onymous - Forbes
http://www.forbes.com/sites/katevinton/2014/11/07/operation-onymous-dark...

the grugq on Twitter: "http://t.co/mLVVT9NHzF"
https://twitter.com/thegrugq/status/530411690676875264

129 Of the Seized ".Onion" Domains Were at a Single Bulgarian Hosting - Deep Dot Web
http://www.deepdotweb.com/2014/11/08/129-seized-onion-domains-single-bul...

Law enforcement seized Tor nodes and may have run some of its own | Ars Technica
http://arstechnica.com/security/2014/11/law-enforcement-seized-tor-nodes...

TORpedo'd dev dumps Doxbin files after police raids \u2022 The Register
http://www.theregister.co.uk/2014/11/09/torpedod_dev_dumps_doxbin_files_...

Supporting Anonymous Use of Facebook in Tor - DigiCert Blog
https://blog.digicert.com/anonymous-facebook-via-tor/

New Mozilla Privacy Initiative to Include High-Capacity Tor Relays | Threatpost | The first stop for security news
http://threatpost.com/new-mozilla-privacy-initiative-to-include-high-cap...

Did the government hack a CBS journalist? Maybe. [Updated] | Ars Technica
http://arstechnica.com/tech-policy/2014/11/did-the-government-hack-a-cbs...

Sharyl Attkisson Changes Hacking Story Again: Now She Doesn't Know Who Did It | Blog | Media Matters for America
http://mediamatters.org/blog/2014/11/05/sharyl-attkisson-changes-hacking...

Australian Federal Police methods under question after 'LulzSec hacker' claims he was wrongly accused - ABC News (Australian Broadcasting Corporation)
http://mobile.abc.net.au/news/2014-11-10/afp-methods-questioned-as-hacke...

Hacker Emails Testing Service BrowserStack's Customers, Says Company Lied About Security | TechCrunch
http://techcrunch.com/2014/11/10/hacker-emails-testing-service-browserst...

gist:9b16e436e035f90ec35f
https://gist.github.com/simonsarris/9b16e436e035f90ec35f

Masque Attack: All Your iOS Apps Belong to Us | FireEye Blog
http://www.fireeye.com/blog/technical/cyber-exploits/2014/11/masque-atta...

DarkHotel: A Sophisticated New Hacking Attack Targets High-Profile Hotel Guests | WIRED
http://www.wired.com/2014/11/darkhotel-malware/

FBI defends "ruse" of undercover agents posing as hotel cable guys | Ars Technica
http://arstechnica.com/tech-policy/2014/11/fbi-defends-ruse-of-undercove...

Only Half of USB Devices Have an Unpatchable Flaw, But No One Knows Which Half | WIRED
http://www.wired.com/2014/11/badusb-only-affects-half-of-usbs/

Chinese hack U.S. weather systems, satellite network - The Washington Post
http://www.washingtonpost.com/local/chinese-hack-us-weather-systems-sate...

All US Postal Service employees' personal data exposed by hackers | Ars Technica
http://arstechnica.com/security/2014/11/all-us-postal-service-employees-...

Countdown to Zero Day: Stuxnet and the Launch of the World's First Digital Weapon: Kim Zetter: 9780770436179: Amazon.com: Books
http://www.amazon.com/Countdown-Zero-Day-Stuxnet-Digital/dp/077043617X/r...

Lonely Planet 2001 Out to Eat San Francisco (Out to Eat Series): Kim Zetter, Andrew Dean Nystrom: 9781864500844: Amazon.com: Books
http://www.amazon.com/Lonely-Planet-2001-Francisco-Series/dp/1864500840

Stuxnet worm infected high-profile targets before hitting Iran nukes | Ars Technica
http://arstechnica.com/security/2014/11/stuxnet-worm-infected-high-profi...

iPhone, Galaxy S5, Nexus 5, and Fire Phone fall like dominoes at Pwn2Own | Ars Technica
http://arstechnica.com/security/2014/11/iphone-galaxy-s5-nexus-5-and-fir...

Don't blame Obama, but DDoS attacks are now using his press releases | Ars Technica
http://arstechnica.com/security/2014/11/dont-blame-obama-but-ddos-attack...

WTF, Russia's domestic Internet traffic mysteriously passes through Chinese routers | Ars Technica
http://arstechnica.com/security/2014/11/wtf-russias-domestic-internet-tr...

Emoticons blast three security holes in Pidgin :-( \u2022 The Register
http://www.theregister.co.uk/2014/11/10/cisco_security_bods_hunt_pidgin/

Potentially catastrophic bug bites all versions of Windows. Patch now | Ars Technica
http://arstechnica.com/security/2014/11/potentially-catastrophic-bug-bit...

Adobe, Microsoft Issue Critical Security Fixes - Krebs on Security
http://krebsonsecurity.com/2014/11/adobe-microsoft-issue-critical-securi...

thinkst.com/stuff/hitb2014/HITB_Thinkst_2014_No_notes.pdf
http://thinkst.com/stuff/hitb2014/HITB_Thinkst_2014_No_notes.pdf

LABJACD | Unearthed
https://www.triplejunearthed.com/artist/labjacd

shouldersofinfosec [licensed for non-commercial use only] / The Shoulders of InfoSec Project
http://shouldersofinfosec.pbworks.com/w/page/85415119/The%20Shoulders%20...

SUBSCRIBE NOW:
Risky Business main podcast feed:
Listen on Apple Podcasts Listen on Overcast Listen on Pocket Casts Listen on Spotify Subscribe with RSS
Our extra podcasts feed:
Listen on Apple Podcasts Listen on Overcast Listen on Pocket Casts Listen on Spotify Subscribe with RSS
Subscribe to our newsletters: