Secure Surfing

How To DDOS A Cellphone, or How To Be A Complete Douchebag

A Day in the Life of an Information Security Investigator — Mon, 16 Aug 2010 15:34:42 +0000

Want to know how to DDOS someone’s cellphone in a matter of minutes? Just post their number to Twitter and have 4 million followers.

Justin Bieber, the 13-year old singer in dire need of a haircut, decided to take revenge out on a friend in Detroit by posting the friend’s phone number to twitter… and then erasing the tweet minutes later.

BlackHat 2010 Presentations & Materials

A Day in the Life of an Information Security Investigator — Tue, 03 Aug 2010 10:01:50 +0000

Here’s a complete list of all of the materials from BlackHat that are now online.

https://media.blackhat.com/bh-us-10/whitepapers/Anh/BlackHat-USA-2010-Anh-Virt-ICE-wp.pdf

https://media.blackhat.com/bh-us-1

DefCon 18 Day 2

A Day in the Life of an Information Security Investigator — Mon, 02 Aug 2010 12:58:17 +0000

Day 2 of DefCon 18 has started with a… well, a wait. The lines for tracks are INSANE. Lots of angry, sweaty nerds lamenting decisions to attend talks. I really hope they move the Con soon, because we’ve outgrown the Riviera (hell, we outgrew it yea…

DefCon 18 Day 1

A Day in the Life of an Information Security Investigator — Fri, 30 Jul 2010 14:06:25 +0000

Stay tuned to this post for DefCon 18 notes. Lots and lots of madness going on today… pure nerd insanity.
Some shirt photos by request:

BlackHat Briefings 2010: Day 2 LiveBlog

A Day in the Life of an Information Security Investigator — Thu, 29 Jul 2010 12:18:11 +0000

Day 2 is at hand. Today will be a short day - 1/2 at Blackhat and the other 1/2 at DefCon coordinating things for this weekend. Stay Tuned!

KeyNote: General Michael Hayden (Ret.) on “Cyber War… Are We At War?”

He’s killing during this keynote. Lots of anecdotes from his experience, and jokes about Poland. What could be better? (No offense, my Polish readers.)

Lots of valid points, and he keeps hammering that tools in the physical domain don’t translate well to the cyber domain. (H

BlackHat 2010 Video! The ATM Hack and Jackpot

A Day in the Life of an Information Security Investigator — Wed, 28 Jul 2010 18:10:30 +0000

Here it is guys… video from yours truly of Barnaby Jack’s remote ATM hack - watch that thing spit out money to the delight of the crowd.

BlackHat Briefings 2010: Day 1 LiveBlog

A Day in the Life of an Information Security Investigator — Wed, 28 Jul 2010 13:43:13 +0000

FOLLOW ME ON TWITTER @Chiefmonkey !
BlackHat Briefings 2010 Day #1

Pre-keynote Jeff Moss takes the stage. We have attendees from Iran and Mongolia cool!

Jeff asks What fundamental security problems have we solved? Nothing.

He then addresses …

BlackHat and DefCon Tips: 2010/N00b Edition

A Day in the Life of an Information Security Investigator — Fri, 23 Jul 2010 15:03:58 +0000

So, you’re planning on attending Blackhat and/or DefCon next week in Las Vegas? Excellent! Prepare for an immersive security experience like you’ve never had before.
Every year I post tips that I hope will help regular attendees and newbies alike. Th…

Did You Leave Your Video Tape In the VCR?

A Day in the Life of an Information Security Investigator — Tue, 13 Jul 2010 18:59:24 +0000

Maybe not, but I think you left something “else” mounted on your computer:

Remember folks… DISMOUNT, and then walk away from the computer. Until then, your hidden goods are still mounted and accessible to anyone… even a certain investigator…

Chief

Spies, Lies and Damned Help Desks

A Day in the Life of an Information Security Investigator — Wed, 30 Jun 2010 20:46:56 +0000

By now everyone has heard about the alleged secret agents arrested in the USA. If you haven’t had a chance to read the criminal complaint against them, you’re missing out on some interesting revelations.

Revelation 1: Mission Completely Possible

Unlike James Bond (or, heck… Austin Powers), these alleged spies had a mission with boatloads of promise. Were they scoping out weapons programs? Stealing military sec