Reboot It! Episode 70 with Bill Gardner, David Vaughn, Mark Boltz-Robinson, Evan Booth, Scott Lyons, and Joshua Marpet

 

Upcoming Conferences

 

InfoSec World 2017

April 3-5 Omni Orlando Resort at Champion’s Gate

http://infosecworld.misti.com/

 

AIDE 2017 (Mark Boltz-Robinson keynote speaker)

April 3-7, Information Security Program will be on the Thursday, April 6 and and Friday, April 7

Marshall University Forensic Science Center

1401 Forensic Science Dr

Huntington, WV

http://appyide.org

 

BSidesNash (w/Amanda Berlin as keynote!)

https://bsidesnash.org

April 22, 2017

SOLDOUT

There's a waitlist

 

BSidesCharm

http://www.bsidescharm.com

April 29-30, 2017

Baltimore Convention Center

Baltimore, MD

SOLDOUT

There's a waitlist

 

Th0tcon 0x8 (Chicagoland con)

May 4-5, 2017

http://thotcon.org

SOLDOUT

 

HackMiami

May 19-21, 2017

https://www.hackmiami.com

 

CarolinaCon (Raleigh)

May 19-21, 2017

http://carolinacon.org

 

BSides London

June 7

London

 

https://www.securitybsides.org.uk/

What did he say? Don’t screw with the show notes?!!!?!!!!?!!!!

I dont know….re you doing that?!!?!?!?!?!?!

Scott, why a

 

Cyber Security World

June 28-29, 2017

Magnolia Hotel Denver

Denver, CO

http://cybersecurityworld.misti.com/

 

BSidesLV – Get ready for the Next Big Thing

End of July in Las Vegas, NV, United States, North America, Planet Earth, Milky way galaxy, sort of the thin area out towards the end of that spiral arm over there.

https://www.bsideslv.org


 

DEFCON 25

End of July in Las Vegas

CANCELLED - bring your towel. No, bring deoderant, please. And use it.

27-30 JUL 2017

Defcon.org

 

DerbyCon 7.0  “Legacy”

Call for Trainers will open March 6th, 2017 and close on April 14th, 2017.

Sponsorships open to public March 7th, 2017 (contact info [at] derbycon.com if interested).

Training Tickets will go on sale May 1st, 2017.

Tickets will go on sale for general admission May 6th (Derby Day) 2017.

Call for Papers will open April 1st 2017 and close July 1st, 2017.

DerbyCon training is on September 20th and 21st, 2017.

DerbyCon the conference runs from September 22nd to the 24th, 2017.

https://www.derbycon.com

 

Hack3rCon 8

The “Ocho”

Nov. 17 – 19, 2017

South Charleston, WV

CFP opens on June 1, 2017

http://securewv.com/



 

Interview with David

 

5 lightning questions:

  1. If you were a Star Trek® or Star Wars® character, which one would it be?

  2. What's the most important part of the sandwich?

  3. If You Could Take Only Three Items With You To A Deserted Island, What Would They Be?

  4. Name 2 people, past or present, that you would like to see square off in a MMA ring.

  5. What is your favorite Linux command?



 

Stories

 

Tor and VPN users labeled as criminals will be hacked and spied by FBI under new law

https://www.techworm.net/2016/05/tor-vpn-users-labeled-criminals-hacked-spied-fbi-new-law.html

https://www.documentcloud.org/documents/1347875-fbi-proposed-amendment-rule-41-1.html

 

Related: As Congress Repeals Internet Privacy Rules, Putting Your Options In Perspective

http://www.npr.org/sections/alltechconsidered/2017/03/28/521813464/as-congress-repeals-internet-privacy-rules-putting-your-options-in-perspective

 

Phishers target World of Warcraft users with fake in-game pet offer

https://www.grahamcluley.com/phishers-target-world-warcraft-users-fake-game-pet-offer/

 

Dishwasher has directory traversal bug

https://www.theregister.co.uk/2017/03/26/miele_joins_internetofst_hall_of_shame/

 

UW professor: The information war is real, and we’re losing it

http://www.seattletimes.com/seattle-news/politics/uw-professor-the-information-war-is-real-and-were-losing-it/

 

Examining the Alternative Media Ecosystem through the Production of

Alternative Narratives of Mass Shooting Events on Twitter

http://faculty.washington.edu/kstarbi/Alt_Narratives_ICWSM17-CameraReady.pdf

 

How police unmasked suspect accused of sending seizure-inducing tweet

https://arstechnica.com/tech-policy/2017/03/how-police-unmasked-suspect-accused-of-sending-seizure-inducing-tweet/


 

Judge OKs warrant to reveal who searched a crime victim’s name on Google

https://arstechnica.com/tech-policy/2017/03/judge-oks-warrant-to-reveal-who-searched-a-fraud-victims-name-on-google/


 

Man jailed indefinitely for refusing to decrypt hard drives loses appeal

https://arstechnica.com/tech-policy/2017/03/man-jailed-indefinitely-for-refusing-to-decrypt-hard-drives-loses-appeal/

 

How I Let Disney Track My Every Move

https://gizmodo.com/how-i-let-disney-track-my-every-move-1792875386

 

Alabama House bill would require Internet porn filters

http://abc3340.com/news/local/house-bill-would-put-porn-filters-on-cellphones

 

Facebook launches Stories in the main Facebook app

https://techcrunch.com/2017/03/28/facebook-launches-stories-in-the-main-facebook-app/

 

Buffer overflow in the ScStoragePathFromUrl function in the WebDAV service in Internet Information Services (IIS) 6.0 in Microsoft Windows Server 2003 R2 allows remote attackers to execute arbitrary code via a long header beginning with "If: <http://" in a PROPFIND request, as exploited in the wild in July or August 2016.

https://github.com/edwardz246003/IIS_exploit

 

Venezuelans Using ‘Rare Pepes’ and Bitcoin As Currency

http://www.breitbart.com/tech/2017/03/27/venezuelans-using-rare-pepes-bitcoin-currency/

 

https://www.google.com/webhp?sourceid=chrome-instant&ion=1&espv=2&ie=UTF-8#q=pepe+venezuela&*