L0phtCrack, the venerable password cracking tool is being prepped for a return to the spotlight.
The original creators of L0phtCrack has reacquired the tool with plans to release a new version at next week’s SOURCE Boston conference.
L0phtCrack was a popular tool used to identify and remediate security vulnerabilities that result from the use of weak or easily guessed passwords. It was also used to recover Windows and Unix account passwords to access user and administrator accounts whose passwords are lost or to streamline migration of users to newer authentication systems.
I look forward to reading and seeing more on this new revision.
Tiversa, headquartered in Cranberry Township, Pa., reportedly discovered a security breach that led to the transfer of military information to an Iranian IP address, according to WPXI. The information is said to include planned engineering upgrades, avionic schematics, and computer network information.
The channel quoted the company’s CEO, Bob Boback, who said Tiversa found a file containing the entire blueprints and avionics package for Marine One.
“What appears to be a defense contractor in Bethesda, Md., had a file-sharing program on one of their systems that also contained highly sensitive blueprints for Marine One,” Boback told WPXI.
Tiversa makes products that monitor the sharing of files online. A representative for the company was not immediately available for comment.
Boback believes that the files probably were transferred through a peer-to-peer file-sharing network such as LimeWire or BearShare, then compromised.
* Source CNET News
So are you sure your company data isnt being accidently shared via P2P networks in your network, or when staff take laptops home.
Leyio have released a device that uses a new technology called “Ultra Wide Band (UWB)”
This new technology allows your to transfer 1GB in about 40 secs, allowing pictures and mp3′s to be transfered almost instataneously.
Currently the range is about four metres, so its perfect for mobile devices, such as phones, mp3 players and media devices. For now a 16GB Personal Sharing Device from Leyio is available.
I recently stumbled across the SNOsoft blog, where they detailed how Facebook can be utilised from a Hackers perspective.
The post is interesting, and focuses on the social engineering aspects, and the human tendancy / desire to trust each other. They then go one to detail how they selected an organisation as a victim, searched for profile information within Facebook, and the people associated with the organisation. This is all part of the very important reconisance phase.
They then build trust relationships with people in the organisation via Facebook, even though they have never been introduced or met in the real world. They then created a fake site detailing how a recent incident might have lead to passwords being compromised, and users should use the form to carry out a password reset.
This obviously lead to them getting various password, for them to then utilise these to initiate a direct attack on the organisation and gain access.
I think its good to carry out this sort of scenarios, I am sure many people dont just add any old Tom, Dick or Harry to any of the social networking sites they visit, but this is a prime example how the few that do cause a security risk.
