POV fan EEPROM hack

October 9, 2009 By 3 Comments

pov_fan_eeprom_hacking

Hacking with Gum got their hands on one of the persistence of vision display fans that Cenzic was giving away at Blackhat this year. It’s not the biggest fan-based POV display we’ve seen but it’s still a fun device to tinker with. They hacked into the EEPROM on the device in order to change the message the fan displayed.

This … Read the rest

Filed Under: led hacks, security hacks Tagged With: , , , , , , , ,

Clickjacking webcast tomorrow

November 19, 2008 By 2 Comments

[Jeremiah Grossman] and [Eric Lawrence] will be presenting on clickjacking and browser security in an online seminar tomorrow. Clickjacking allows an attacker to transparently place links exactly where a user would be clicking, essentially forcing the user to perform actions without their knowledge. This method of attack has been known for a few years, but researchers have focused their … Read the rest

Filed Under: news, security hacks Tagged With: , , , , ,

Dan Kaminsky’s DNS Black Hat video

August 25, 2008 By 2 Comments


Black Hat has published the media from Dan Kaminsky’s infamous DNS vulnerability talk. You can get the full video (101MB) or just the audio.

The full archive of slides and white papers from this year has been posted too.… Read the rest

Filed Under: downloads hacks, security hacks Tagged With: , , , , , ,

Black Hat 2008: NIC based rootkit

August 13, 2008 By 11 Comments


While Black Hat and Defcon have both concluded, we’re going to post a few more talks that we think deserve attention. [Sherri Sparks] and [Shawn Embleton] from Clear Hat presented Deeper Door, exploiting the NIC chipset. Windows machines use NDIS, the Network Driver Interface Specification, to communicate between the OS and the actual NIC. NDIS is an API that … Read the rest

Filed Under: cons, security hacks Tagged With: , , , , , , , , , , , , ,

Black Hat 2008: Google Gadgets insecurity

August 9, 2008 By 2 Comments


Black Hat presenters [Robert "RSnake" Hansen], CEO of SecTheory, and [Tom Stracener], security analyst at Cenzic, criticized Google in their presentation “Xploiting Google Gadgets”. [Hansen] and [Stracener] say that there’s currently no way for Google to confirm whether Google Gadget creations contain malicious content or not; this leaves the application vulnerable to a wide range of hacking ugliness … Read the rest

Filed Under: news Tagged With: , , , , , , ,

Black Hat 2008: What’s next for Firefox security

August 8, 2008 By 23 Comments

Mozilla security chief [Window Snyder] made some surprising announcements about Firefox Next, Mozilla’s next major browser overhaul. In her chat at the Black Hat security conference, she introduced three new initiatives that focused on threat modeling, training, and vulnerability metrics. For the threat modeling initiative, she’s hired Matasano Security consultants to review Firefox’s code for weaknesses and recommend mitigation

Read the rest

Filed Under: firefox hacks, news, security hacks Tagged With: , , , , , , ,

Black Hat 2008: Pwnie Award Ceremony

August 6, 2008 By 9 Comments


The first night of Black Hat briefings concluded with the Pwnie Award Ceremony. The awards reward achievements in security… but mostly failures. Notably, this was the first year anyone accepted an award in person. Hack a Day took home an early victory by producing a MacBook mini-DVI to VGA adapter (pictured above). The ceremony was fairly straight forward after … Read the rest

Filed Under: cons, security hacks Tagged With: , , , , , ,
« Older Posts