Securit13 Podcast
Первый украинский подкаст об информационной безопасности

Intro / Outro Андрій Хливнюк "Спи собі сама" https://www.youtube.com/watch?v=dGIefvnHfEc

Kaspersky Finds New Nation-State Attack—In Its Own Network http://goo.gl/nA9Mlw

Threatbutt http://threatbutt.com

Stuxnet spawn infected Kaspersky using stolen Foxconn digital certificates http://goo.gl/yPhJi0

China might be building vast database of federal worker info, experts say http://goo.gl/P8HnWG

TV5 Monde attack 'by Russia-based hackers' http://goo.gl/1DOu5P

Serious iOS bug lets hackers create fake login screens to steal Apple credentials http://goo.gl/tNSMR0

LastPass Security Notice https://goo.gl/aaYL1p

Tesla Motors начала платить за найденные уязвимости https://bugcrowd.com/tesla

Assume your GitHub account is hacked, users with weak crypto keys told http://goo.gl/EvGHJ5

You Can Be Prosecuted for Clearing Your Browser History http://goo.gl/alSB8y

Sourceforge Hijacks the Nmap Sourceforge Account http://seclists.org/nmap-dev/2015/q2/194

This Hacked Kids' Toy Opens Garage Doors in Seconds http://goo.gl/hSBOU0

Edward Snowden: “I should have come forward sooner.” https://goo.gl/j0FxzC

Сноуден обвинил Россию в нарушении неприкосновенности частной жизни http://snob.ru/selected/entry/93509

Украинец убедил нигерийского спамера выслать ему 600 долларов https://goo.gl/0xsgWg

Держспецзв’язку видала позитивний експертний висновок на Симетричний блоковий шифр AES http://goo.gl/A1T4oq

The Senate Finally Passes NSA Surveillance Reform http://goo.gl/Z1Gq6W

Интернет-вруны: В сети появился список кремлевских троллей и пропутинских организаций https://goo.gl/ceVuTs

У Бельгії комісія подала до суду на Facebook http://goo.gl/y968ib

Report: Hack of government employee records discovered by product demo http://goo.gl/mk5e6s

Технологический практикум «Облака без лишних слов» http://4partners.com.ua/clouds2015

Вебинары Positive Technologies: образовательная программа "Практическая безопасность" http://www.ptsecurity.ru/lab/webinars/

Yahoo to face class action lawsuit over email spying claims https://goo.gl/OAdyIJ

Facebook will encrypt the emails it sends to you with PGP http://goo.gl/hlq9nx

Microsoft Plans to Add Secure Shell (SSH) to Windows http://goo.gl/f4hPps

 

Direct download: 36.mp3
Category:Technology -- posted at: 9:00pm CET
Comments[0]

Intro/outro - Фантом 2 - Двоє https://www.youtube.com/watch?v=7qWDckvlFp0

The Complete Guide for Hidden Services And Staying Anonymous http://wp.me/p3Y90y-3p

Risky Business #367 -- Tor Project lead Roger Dingledine http://risky.biz/RB367

Astoria — Advanced Tor Client Designed to Avoid NSA Attacks http://bit.ly/1KuKipo

Anonymous peer-to-peer instant messaging https://ricochet.im/

Top encryption researcher moves to Switzerland to escape government interference http://bit.ly/1dtuNRe

HideMyAss story: How misbehaving at school made one man a multimillionaire http://bbc.in/1KuJzo5

Russia warns Google, Twitter and Facebook on law violations http://reut.rs/1KuKIvW

Президент РФ подписал указ о создании государственного сегмента интернета http://bit.ly/1KuLtoX

Some notes about Wassenaar http://bit.ly/1Atxah3

Cisco Systems поставляла оборудование для Минобороны РФ, ФСБ и Роскомоса в обход санкций http://goo.gl/wc6XjX

Билеты на финал Лиги Европы от Приватбанка

The founder of the Silk Road drug marketplace has been sentenced to life in prison without parole http://goo.gl/6eU24u

Aaron Swartz stood up for freedom and fairness http://goo.gl/JFcPx9

Верховный суд обязал банки возвращать клиентам украденные с карточек деньги http://news.finance.ua/ru/news/~/351321

Активисты раскрыли способ "накрутки" голосов при отборе в общественный совет НАБ http://bit.ly/1dxbiqO

NSA (doesn’t) shut down surveillance program http://thehill.com/node/242774

Senate blocks the bill: Senate blocks NSA surveillance reform bill http://bit.ly/1KuK55J

Китайцы придумали, как отслеживать людей в метро через акселерометры смартфонов http://geektimes.ru/post/251018/

Official Kali Linux Docker Images https://www.kali.org/?p=1224

ООН причислил шифрование и анонимность в интернете к правам человека http://geektimes.ru/post/251202/

Anatomy of a LOGJAM - another TLS vulnerability, and what to do about it http://wp.me/p120rT-1ddb

Infosec Hype Tracker https://twitter.com/InfosecHype

pcre -- multiple vulnerabilities http://t.co/QActfSVase

Malicious Minecraft apps affect 600,000 Android Users http://bit.ly/1FT08sL

Annoying bug causes iPhone Messages to crash http://dailym.ai/1PMOswq

Hola VPN turns 10M users into exit nodes https://t.co/FwK3NMtoRa

These two Diablo III players stole virtual armor and gold — and got prosecuted IRL http://fus.in/1edYyWi

Real-world, physical crypto-lockers http://on.fb.me/1KuJIYA

Security Firm Redefines APT: African Phishing Threat http://krebsonsecurity.com/?p=30967

Direct download: 35.mp3
Category:Technology -- posted at: 9:17am CET
Comments[0]

Intro / outro - Christian Kane - LA Song

https://www.youtube.com/watch?v=IGQVn2sxCuI

Интервью с Тарасом Бобало

Связаться с Тарасом можно с помощью email madspeedy@gmail.com и skype madspeedy

Virtualized Environment Neglected Operations Manipulation (VENOM) http://venom.crowdstrike.com/

Heartbleed, eat your heart out: VENOM vuln poisons countless VMs http://www.theregister.co.uk/2015/05/13/heartbleed_eat_your_heart_out_venom_vuln_poisons_countless_vms/

PCI DSS 3.1 (pdf) https://www.pcisecuritystandards.org/documents/PCI_DSS_v3-1.pdf

UISGCON 10 CTF https://ctf.uisgcon.org/

HTTP/2 http://www.rfc-editor.org/rfc/rfc7540.txt

Patch Tuesday Facelift End of an Era https://threatpost.com/patch-tuesday-facelift-end-of-an-era/112640

GAUNTLT http://gauntlt.org/

Премьер-министр Сингапура написал решатель Судоку на C++ и выложил исходный код программы в открытый доступ http://itc.ua/news/premer-ministr-singapura-napisal-reshatel-sudoku-na-c-vyilozhil-ishodnyiy-kod-programmyi-v-otkryityiy-dostup/

Super secretive malware wipes hard drive to prevent analysis http://arstechnica.com/security/2015/05/super-secretive-malware-wipes-hard-drive-to-prevent-analysis/ 

WordPress Vulnerability Puts Millions of Websites At Risk http://thehackernews.com/2015/05/wordPress-vulnerability.html

 Киевский трамвай наехал на Google-мобиль http://kiev.unian.net/1076877-kievskiy-tramvay-naehal-na-google-mobil-foto.html

Self-Driving Trucks Are Going to Hit Us Like a Human-Driven Truck https://medium.com/basic-income/self-driving-trucks-are-going-to-hit-us-like-a-human-driven-truck-b8507d9c5961

Security Product Liability Protections Emerge http://www.darkreading.com/vulnerabilities---threats/security-product-liability-protections-emerge/d/d-id/1320274

France passes new surveillance law in wake of Charlie Hebdo attack http://www.theguardian.com/world/2015/may/05/france-passes-new-surveillance-law-in-wake-of-charlie-hebdo-attack

Microsoft Launches Visual Studio Code, A Free Cross-Platform Code Editor For OS X, Linux And Windows http://techcrunch.com/2015/04/29/microsoft-shocks-the-world-with-visual-studio-code-a-free-code-editor-for-os-x-linux-and-windows/#.97r8gf:47VB

Sublime Text https://www.sublimetext.com/

Mad Max: Fury Road https://www.youtube.com/watch?v=hEJnMQG9ev8

Goodbye! We'll be back!

Direct download: 34.mp3
Category:Technology -- posted at: 8:51am CET
Comments[0]

44Con http://44con.com/

Dai Davis http://www.chambersandpartners.com/uk/person/356834/dai-davis

Jerry Gamblin http://jerrygamblin.com/

Kevin Williams http://44con.com/cybersecurity/speakers/2015/kevin-williams.html

https://www.cyberstreetwise.com/

https://www.getsafeonline.org/

https://www.gov.uk/

Leslie Forbes https://www.linkedin.com/in/forbes

 

Direct download: 44Con.mp3
Category:Technology -- posted at: 1:02am CET
Comments[0]

Intro / Outro The Guild: I'm the One That's Cool https://www.youtube.com/watch?v=jFhgupR565Q

Интервью с Евгением Цигикало, специалистом по сигнализации в сетях связи

Б.Гольтдштейн Сигнализация в сетях связи http://www.ozon.ru/context/detail/id/4760814/

http://www.3gpp.org/

44con http://44con.com/

BE SECURE http://besecure.com.ua/

Hackers Could Commandeer New Planes Through Passenger Wi-Fi http://www.wired.com/2015/04/hackers-commandeer-new-planes-passenger-wi-fi/

RSA Conference 2015 http://www.rsaconference.com/

How Kaspersky makes you vulnerable to the FREAK attack and other ways Antivirus software lowers your HTTPS security https://blog.hboeck.de/archives/869-How-Kaspersky-makes-you-vulnerable-to-the-FREAK-attack-and-other-ways-Antivirus-software-lowers-your-HTTPS-security.html

Hacker Implants NFC Chip In His Hand To Hack Android Phones http://thehackernews.com/2015/04/nfc-chip-hack-android.html?utm_source=dlvr.it&utm_medium=twitter

CCSP https://www.isc2.org/ccsp-faqs/default.aspx

Twitter перевёл неамериканские аккаунты в ирландский дата-центр https://support.twitter.com/articles/20172527

Wi-Fi software security bug could leave Android, Windows, Linux open to attack http://arstechnica.com/security/2015/04/22/wi-fi-software-security-bug-could-leave-android-windows-linux-open-to-attack/

iOS bug sends iPhones into endless crash cycle when exposed to rogue Wi-Fi https://docs.google.com/document/d/1kL2T2Z0AOMeX-jXKy7Q_1m-bHfunIY8wYyh6XSauhk0/edit

Fukushima nuke plant owner told to upgrade from Windows XP http://www.theregister.co.uk/2015/04/23/fukushima_nuke_plant_owner_told_to_upgrade_from_windows_xp/

Hackers used a surprisingly simple method to access Tesla's website and Twitter account http://www.businessinsider.com/how-the-tesla-hack-happened-2015-4

«ПриватБанк» и «Ощадбанк» запускают в Украине BankID — систему верификации пользователя на госсайтах http://ain.ua/2015/04/20/576138

Direct download: 33.mp3
Category:Technology -- posted at: 12:50am CET
Comments[0]

Intro / Outro Skylar Grey - White Suburban

FORTINET Security Day 2015 http://www.pcweek.ua/themes/detail.php?ID=149082

iForum http://2015.iforum.ua/

Introducing CSX skills-based CYBERsecurity training and performance-baced certifications http://goo.gl/nB0GHu

СТАЛЕВИЙ БУБЕН - IX (2015-04-04) http://www.steeldrum.org.ua/ua/fotolalereji/stalevyj-buben-ix-20140404.html#prettyPhoto

С Днем рождения, Владимир!

2015 Data Breach Investigations Report (pdf) http://www.verizonenterprise.com/resources/reports/rp_data-breach-investigation-report-2015-insider_en_xg.pdf

Risky Business #362 http://risky.biz/RB362

IBM to release 20 years worth of cyberthreat data http://www.rcrwireless.com/20150416/big-data-analytics/ibm-to-release-20-years-worth-of-cyber-threat-data 

IBM® X-Force Exchange https://exchange.xforce.ibmcloud.com/ 

Wikileaks Publishes Hacked Sony Emails, Documents http://yro.slashdot.org/story/15/04/17/0246219/wikileaks-publishes-hacked-sony-emails-documents?utm_source=slashdot&utm_medium=twitter

VeraCrypt 1.0f-2 http://www.opennet.ru/opennews/art.shtml?num=41996

French TV station TV5Monde hit by Islamic State hack http://news.yahoo.com/french-tv5monde-hit-pro-islamic-state-hackers-222158856.html

The 4 stages of crypto ransomware http://www.slideshare.net/slideshow/embed_code/47068990

Find it in twitter https://twitter.com/recover_service

Полиция Массачусетса заплатила выкуп в биткоинах, чтобы вернуть свои файлы http://geektimes.ru/post/248706/

Q&A about malicious ransomware software https://au.finance.yahoo.com/news/q-malicious-ransomware-software-040108255.html

How the U.S. thinks Russians hacked the White House http://edition.cnn.com/2015/04/07/politics/how-russians-hacked-the-wh/index.html

66% devices patched Heartbleed https://twitter.com/achillean/status/585898269605101568 but Most top corporates still Heartbleeding over the internet http://www.theregister.co.uk/2015/04/08/still_bleeding_one_year_laterheartbleed_2015_research/

YUBIKEY, YUBIHSM: SECRET WEAPONS TO GUARD SECRETS https://www.yubico.com/2015/04/yubikeyyubihsm-secret-weapons-to-guard-secrets/

What Your Passwords Say About Your Psychology http://www.worldcrunch.com/tech-science/what-your-passwords-say-about-your-psychology/computer-security-psychology-cigarette-secret-/c4s18560/#.VTE6fXV7h5R

Direct download: 32.mp3
Category:Technology -- posted at: 4:23am CET
Comments[0]

Intro / Outro Origa - Inner Universe https://www.youtube.com/watch?v=He2ggnGA53c

С Днем рождения, Сергей Борисович!

С Днем рождения, Алиса и Боб! https://en.wikipedia.org/wiki/Alice_and_Bob

Интервью с Виктором Жорой

Контакты: 

http://infosafe.ua/

https://www.facebook.com/infosafe

https://www.linkedin.com/company/infosafe-llc

Рекомендованные книги:

Момент истины

Крестный отец

Сталевий бубен http://www.steeldrum.org.ua/ua/

Fortinet Security Day 2015 http://4partners.com.ua/fortinet-security-day-2015

Information Security Day 2015 доклады

44Con http://44con.com/

Call for paper R0-Conf #3 https://forum.reverse4you.org/showthread.php?t=1949

PCI Recognizes PTES as a reference framework for Conducting Penetration Tests! (pdf) https://www.pcisecuritystandards.org/documents/Penetration_Testing_Guidance_March_2015.pdf

Курс з основ інформаційної безпеки http://edx.prometheus.org.ua/courses/KPI/IS101/2014_T1/about

2015 Social Security Blogger Awards https://www.surveymonkey.com/s/securitybloggers

Cyberbullying Resource Center : For parents http://kids.kaspersky.com/cyberbullying/parents/home/

Все, що ви написали у "Фейсбук", залишається там – Влодимир Стиран http://openukraine.org/ua/news/990-vse-shho-vi-napisali-u-fejsbuk-zalishajetysya-tam--vlodimir-stiran

TrueCrypt Security Audit (pdf) https://opencryptoaudit.org/reports/TrueCrypt_Phase_II_NCC_OCAP_final.pdf

This 'Killer USB' can make your Computer explode http://thehackernews.com/2015/03/killer-usb-explode-computer.html

Is your VirtualBox reading your E-Mail? https://hsmr.cc/palinopsia/

Rooting SIM cards https://srlabs.de/rooting-sim-cards/

Кабмин разрешил НКРСИ проверить 4 телекомоператора, в том числе "МТС Украина" и "Киевстар" http://interfax.com.ua/news/economic/257802.html

China's attack against GitHub http://www.netresec.com/?page=Blog&month=2015-03&post=China%27s-Man-on-the-Side-Attack-on-GitHub

App Submissions On Google Play Now Reviewed By Staff, Will Include Age-Based Ratings http://techcrunch.com/2015/03/17/app-submissions-on-google-play-now-reviewed-by-staff-will-include-age-based-ratings/

Cisco recommends Adblock & Ghostery to combat malvertising http://www.cbronline.com/news/cybersecurity/data/cisco-recommends-adblock-ghostery-to-combat-malvertising-4539903

Cisco IP Phones Vulnerable To Remote Eavesdropping http://thehackernews.com/2015/03/cisco-ip-phones-hacking.html

How Hackers Could Delete Any YouTube Video With Just One Click http://thehackernews.com/2015/04/hack-delete-youtube-video.html

Federal Agents Accused of Stealing Bitcoins During Silk Road Investigation http://www.nbcnews.com/tech/tech-news/dea-agents-charged-stealing-bitcoins-selling-info-silk-road-leaders-n332681

OSINT Tools … Recommendations List http://www.subliminalhacking.net/2012/12/27/osint-tools-recommendations-list/

Stop using tail -f (mostly) http://www.brianstorti.com/stop-using-tail/?utm_content=buffer13c97&utm_medium=social&utm_source=twitter.com&utm_campaign=buffer

Direct download: 31.mp3
Category:Technology -- posted at: 3:17pm CET
Comments[0]

Intro: Кар - Мэн - Лондон гуд-бай https://www.youtube.com/watch?v=Uyisn3MTmJQ

The Company Securing Your Internet Has Close Ties to Russian Spies http://www.bloomberg.com/news/articles/2015-03-19/cybersecurity-kaspersky-has-close-ties-to-russian-spies

A practical guide to making up a sensation https://eugene.kaspersky.com/2015/03/20/a-practical-guide-to-making-up-a-sensation/

H4cked off: Is Eugene Kaspersky 'in bed' (or the sauna) with the Russian government? Derr, of course he is http://www.computing.co.uk/ctg/feature/2400777/is-eugene-kaspersky-in-bed-or-the-sauna-with-the-russian-government-derr-of-course-he-is

Exploiting the DRAM rowhammer bug to gain kernel privileges http://googleprojectzero.blogspot.ru/2015/03/exploiting-dram-rowhammer-bug-to-gain.html

The Rowhammer Bug http://www.rowhammer.com/

Risky Business #357 -- Mark Dowd talks Rowhammer http://risky.biz/RB357

Black Box Can Brute Force Crack iPhone PIN Passcodes  http://www.forbes.com/sites/thomasbrewster/2015/03/16/300-device-can-pop-open-old-iphones-with-ease/

New BIOS implant, vulnerability discovery tool to debut at CanSecWest https://threatpost.com/new-bios-implant-vulnerability-discovery-tool-to-debut-at-cansecwest/111710

Mobile Android, iOS apps still vulnerable to FREAK attacks https://threatpost.com/mobile-android-ios-apps-still-vulnerable-to-freak-attacks/111695

RC4 must die http://www.isg.rhul.ac.uk/tls/RC4mustdie.html

uTorrent Installs Bitcoin Miner http://anonhq.com/utorrent-installs-bitcoin-miner-bad-pc/

OpenSSL Audit https://cryptoservices.github.io/openssl/2015/03/09/openssl-audit.html

Webnic Registrar Blamed for Hijack of Lenovo http://krebsonsecurity.com/2015/02/webnic-registrar-blamed-for-hijack-of-lenovo-google-domains/

Bogus SSL certificate for Windows Live could allow man-in-the-middle hacks http://arstechnica.com/security/2015/03/bogus-ssl-certificate-for-windows-live-could-allow-man-in-the-middle-hacks/

Yahoo Mail launches on-demand passwords, end-to-end encryption coming by year's end http://www.techspot.com/news/60064-yahoo-mail-launches-demand-passwords-end-end-encryption.html

Yahoo exec goes mano a mano with NSA director over crypto backdoors http://arstechnica.com/tech-policy/2015/02/yahoo-exec-goes-mano-a-mano-with-nsa-director-over-crypo-backdoors/

Adobe web services vulnerability disclosure program https://hackerone.com/adobe

Yahoo! pays $24,000 to Hacker for finding Security Vulnerabilities http://thehackernews.com/2015/03/yahoo-bug-bounty.html

Cyber terror test tasks hackers with saving London from hacked battleship http://m.v3.co.uk/v3-uk/news/2399541/cyber-terror-test-tasks-hackers-with-saving-london-from-hacked-battleship

Banning Tor unwise and infeasible, MPs told http://www.bbc.com/news/technology-31816410

Drupal Patches Critical Password-Reset Vulnerability http://thehackernews.com/2015/03/hacking-drupal-website.html

GPG Suite Beta 6 https://gpgtools.org/

Интервью с представителем департамента по борьбе с кибер. преступностью Украины Василием Гузием

Форма связи http://cybercrime.gov.ua/ua/feedback-ua

Outro: Петр Сказкив - Буревій https://youtu.be/DlvL1O9QFMc?t=1m54s

Direct download: 30.mp3
Category:Technology -- posted at: 12:22am CET
Comments[0]

Intro/Outro: Etherwood - Begin By Letting Go

'FREAK' in Android and iOS http://thehackernews.com/2015/03/freak-openssl-vulnerability.html

'FREAK' in Windows http://thehackernews.com/2015/03/freak-openssl-vulnerability_5.html

Вопрос от слушателя по мотивам очередного pre-load in Android http://thehackernews.com/2015/03/Xiaomi-Mi-4-malware.html

Cyber BINGO

Truecrypt audit http://blog.cryptographyengineering.com/2015/02/another-update-on-truecrypt-audit.html

Dropbox Accesses All The Files in Your PC (Not Just Sync Folder) and Steals Everything http://www.e-siber.com/guvenlik/dropbox-accesses-all-the-files-in-your-pc-not-just-sync-folder-and-steals-everything/?utm_content=bufferec71c&utm_medium=social&utm_source=linkedin.com&utm_campaign=buffer

Dropbox Is Probably Not Stealing All Your Files https://one.darrenpmeyer.com/blog/dropbox-is-problably-not-stealing-all-your-files.html

Seagate NAS Remote Code Execution Vulnerability https://beyondbinary.io/advisory/seagate-nas-rce/

How the NSA’s Firmware Hacking Works http://www.wired.com/2015/02/nsa-firmware-hacking/

Gemalto Confirms It Was Hacked But Insists the NSA Didn’t Get Its Crypto Keys http://www.wired.com/2015/02/gemalto-confirms-hacked-insists-nsa-didnt-get-crypto-keys/

How Hackers Abused Tor To Rob Blockchain, Steal Bitcoin, Target Private Email And Get Away With It http://www.forbes.com/sites/thomasbrewster/2015/02/24/blockchain-and-darknet-hacks-lead-to-epic-bitcoin-losses/

Github Hacking for fun and... sensitive data search! http://blog.conviso.com.br/2013/06/github-hacking-for-fun-and-sensitive.html

Hillary Rodham Clinton and her emails http://www.washingtonpost.com/politics/state-department-reviewing-whether-clinton-e-mail-violated-security-rules/2015/03/05/16d1547e-c378-11e4-9271-610273846239_story.html

Spies Just by Watching Your Phone’s Power Use http://www.wired.com/2015/02/powerspy-phone-tracking/

Lenovo.com has been hacked http://www.theverge.com/2015/2/25/8110201/lenovo-com-has-been-hacked-apparently-by-lizard-squad

Google is More Protected from Unwanted Software http://googleonlinesecurity.blogspot.com/2015/02/more-protection-from-unwanted-software.html

Cloud based web app security scanner released by GOOGLE http://www.latesthackingnews.com/2015/02/21/cloud-based-web-app-security-scanner-released-by-google/#

Most vulnerable operating systems and applications in 2014 http://www.gfi.com/blog/most-vulnerable-operating-systems-and-applications-in-2014/ 

Blogger porn content policy https://support.google.com/blogger/answer/6177281?hl=en

Internet is for PORN!! https://www.youtube.com/watch?v=eWEjvCRPrCo&feature=youtu.be

Direct download: 29.mp3
Category:Technology -- posted at: 3:15am CET
Comments[0]

Intro/Outro: La Fouine - Controle Abusif

CTF движение в Украине и мире – интервью с Николаем Ильиным @MykolaIlin

Рейтинги команд CTF https://ctftime.org и успехи dcua https://ctftime.org/team/762

Популярность CTF-соревнований в Украине и мире

Принципы проведения CTF http://captf.com/maxims.html

Типы соревнований, тактика и стратегия участия в CTF http://felicity.iiit.ac.in/contest/break_in/ http://ructf.org/e/2014/ http://ictf.cs.ucsb.edu/ http://www.phdays.com/ctf/king/ http://c2.cnews.ru/news/top/crc_opublikovany_rezultaty_onlajnkvesta https://ctftime.org/event/list/upcoming https://www.reddit.com/r/securityctf http://captf.com/calendar/ https://time.xctf.org.cn/ctfs/event/list/upcoming

Для связи с Николаем используйте Twitter или пишите на mykola.ilin@defcon.org.ua

Ten Million (Logins and) Passwords https://xato.net/passwords/ten-million-passwords/ https://www.reddit.com/r/10millionpasswords/comments/2w07mf/a_list_of_flaws_in_the_data_set/

Author: https://xato.net/about/#.VOioXELpb8F

Online Check: http://peersm.com/findmyass

Lenovo caught installing adware on new computers http://www.tripwire.com/state-of-security/security-data-protection/superfish-lenovo-adware-faq/ http://news.lenovo.com/article_display.cfm?article_id=1929 https://github.com/hannob/superfishy

Кража миллиардов из 100 финансовых организаций по всему миру http://www.kaspersky.ru/about/news/virus/2015/ugroza-na-milliard http://krebsonsecurity.com/2015/02/the-great-bank-heist-or-death-by-1000-cuts/

Anunak vs Carbanak FAQ https://www.fox-it.com/en/press-releases/anunak-aka-carbanak-update/

Microsoft Pushes Patches for Dozens of Flaws http://krebsonsecurity.com/2015/02/microsoft-pushes-patches-for-dozens-of-flaws/

Bypassing Windows Security by modifying 1 Bit Only http://thehackernews.com/2015/02/bypassing-windows-security.html

Universal XSS in IE 11 http://thehackernews.com/2015/02/internet-explorer-xss.html

NSA Planted Stuxnet-Type Malware Deep Within Hard Drive Firmware http://top.rbc.ru/politics/17/02/2015/54e257fe9a7947e06164f582

Решили как-то за блогерами следить http://jurliga.ligazakon.ua/news/2015/2/13/124332.htm

но потом передумали http://www.pravda.com.ua/rus/news/2015/02/16/7058739/

Рада ликвидировала Нацкомиссию по вопросам морали http://news.liga.net/news/politics/5053048-rada_likvidirovala_natskomissiyu_po_voprosam_morali.htm

Отчет об уязвимости моб.интернета от Positive Technologies (pdf) http://www.ptsecurity.com/download/Vulnerabilities_of_Mobile_Internet.pdf

The great SIM heist https://firstlook.org/theintercept/2015/02/19/great-sim-heist/

SSL is officially declared dead https://pciguru.wordpress.com/2015/02/07/ssl-is-officially-declared-dead/

GnuPG 2.1.2 released https://lists.gnupg.org/pipermail/gnupg-announce/2015q1/000361.html

Facebook SCAM Alert: Get FREE $200 Amazon Gift Card! http://www.hacker9.com/free-amazon-gift-card-facebook.html

Spat leads to partial leak of Rig Exploit Kit http://threatpost.com/spat-leads-to-partial-leak-of-rig-exploit-kit/111029

Forbes.com compromised by Chinese cyber spies targeting US firms http://www.net-security.org/secworld.php?id=17938

Direct download: 28.mp3
Category:Technology -- posted at: 1:54pm CET
Comments[0]