Reboot It! Episode 69 with Bill Gardner, Mike Baker, Dale Luke, Benny Karnes, Mark Boltz-Robinson, Scott Lyons, and Joshua Marpet


 

Upcoming Conferences

 

InfoSec World 2017

April 3-5 Omni Orlando Resort at Champion’s Gate

http://infosecworld.misti.com/

 

AIDE 2017 (Mark Boltz-Robinson keynote speaker)

April 3-7, Information Security Program will be on the Thursday, April 6 and and Friday, April 7

Marshall University Forensic Science Center

1401 Forensic Science Dr

Huntington, WV

http://appyide.org

 

BSidesNash (w/Amanda Berlin as keynote!)

https://bsidesnash.org

April 22, 2017

SOLDOUT

There's a waitlist

 

BSidesCharm

http://www.bsidescharm.com

April 29-30, 2017

Baltimore Convention Center

Baltimore, MD

SOLDOUT

There's a waitlist

 

Th0tcon 0x8 (Chicagoland con)

May 4-5, 2017

http://thotcon.org

SOLDOUT

 

HackMiami

May 19-21, 2017

https://www.hackmiami.com

 

BSides London

June 7

London

CFP is open

Call for Workshops is open

CFP and Call for Workshops closes on 3/27

https://www.securitybsides.org.uk/

 

DerbyCon 7.0  “Legacy”

Call for Trainers will open March 6th, 2017 and close on April 14th, 2017.

Sponsorships open to public March 7th, 2017 (contact info [at] derbycon.com if interested).

Training Tickets will go on sale May 1st, 2017.

Tickets will go on sale for general admission May 6th (Derby Day) 2017.

Call for Papers will open April 1st 2017 and close July 1st, 2017.

DerbyCon training is on September 20th and 21st, 2017.

DerbyCon the conference runs from September 22nd to the 24th, 2017.

https://www.derbycon.com

 

Hack3rCon 8

The “Ocho”

Nov. 17 – 19, 2017

South Charleston, WV

CFP opens on June 1, 2017

http://securewv.com/


 

Stories

 

Russian bank claims effort to frame it for connections to Trump Organization

http://www.cnn.com/2017/03/17/politics/alfa-bank-trump-dns-hack/index.html

 

THE CYBERSECURITY INDUSTRY HAS FAILED CONSUMERS: TIME TO GET SMART ABOUT 'DUMB' HOMES

http://www.newsweek.com/cybersecurity-industry-failed-threat-572949

 

SHUT THE BACKDOOR! MORE IOT CYBERSECURITY PROBLEMS

http://hackaday.com/2017/03/22/shut-the-backdoor-more-iot-cybersecurity/

 

Four Men Charged With Hacking 500M Yahoo Accounts

https://krebsonsecurity.com/2017/03/four-men-charged-with-hacking-500m-yahoo-accounts/

 

Was Yahoo a sanctioned FSB operation or a rogue operation?

https://medium.com/@jeffreycarr/was-yahoo-a-sanctioned-fsb-operation-or-a-rogue-operation-b8826b7f4c92#.6hxptho1c

 

McDonald’s Says Account Was Compromised Before Anti-Trump Tweet

https://www.bloomberg.com/news/articles/2017-03-16/mcdonald-s-says-account-was-compromised-before-anti-trump-tweet

 

VM Escape Earns Hackers $105K at Pwn2Own

https://threatpost.com/vm-escape-earns-hackers-105k-at-pwn2own/124397/

 

LastPass: websiteConnector.js content script allows proxying internal RPC commands

https://bugs.chromium.org/p/project-zero/issues/detail?id=1209

 

Cisco Vault 7 Leak - 0 day with 318 Products - because, telnet

https://www.bleepingcomputer.com/news/security/ciscos-investigation-into-vault-7-leak-uncovers-0-day-affecting-318-products/

 

Hackers Threaten to Remotely Wipe 300 Million iPhones Unless Apple Pays Ransom

http://thehackernews.com/2017/03/hacking-apple-icloud-account.html

 

The Senate just voted to undo landmark rules covering your Internet privacy

https://www.washingtonpost.com/news/the-switch/wp/2017/03/23/congress-is-poised-to-undo-landmark-rules-covering-your-internet-privacy/?utm_term=.98dc3656acd9

 

Mike Baker’s Talk - How to hack all the bug bounty things automagically & reap the rewards (profit)!

https://www.irongeek.com/i.php?page=videos/securewv-hack3rcon2016/117-how-to-hack-all-the-bug-bounty-things-automagically-reap-the-rewards-profit-mike-baker

 

Windows 'DoubleAgent' Attack Turns AV Tools into Malware

http://www.darkreading.com/threat-intelligence/windows-doubleagent-attack-turns-av-tools-into-malware-/d/d-id/1328462?

 

Source Code:  https://github.com/Cybellum/DoubleAgent