Black Hat DC 2009 Briefings

Audio and Video of Black Hat DC 2009 is now live on

###############

.HERE..

###############

Speakers and Topics

capitol dome at night
Ryan C. Barnett
WAF Virtual Patching Challenge: Securing WebGoat with ModSecurity

.

Cesar Cerrudo
SQL Server Anti-Forensics

.

Matthew Flick
XSS Anonymous Browser

.

Xinwen Fu
One Cell is Enough to Break Tor’s Anonymity

.

Travis Goodspeed
Reversing and Exploiting Wireless Sensors

.

Vincenzo Iozzo
Let Your Mach-O Fly

Prajakta Jagdale
Blinded by Flash: Widespread Security Risks Flash [...]

Windows 7 Gets Its First Bug

In an inauspicious beginning to the week, the first zero-day bug for Windows 7 has emerged.

The bug touches on Microsoft’s Server Message Block (SMB) program — specifically, SMBv1 and SMBv2 on Windows 7 and Windows Server 2008 R2. Microsoft has issued a security advisory describing workarounds, but says most users would be protected from attacks by [...]

Ubuntu team is announce the R C for Ubuntu 9.10

The Ubuntu team is pleased to announce the Release Candidate for Ubuntu 9.10 Desktop and Server editions, Ubuntu 9.10 Server for UEC and EC2, and the Ubuntu Netbook Remix. Codenamed “Karmic Koala”, 9.10 continues Ubuntu’s proud tradition of integrating the latest and greatest open source technologies into a high-quality, easy-to-use Linux distribution.

We consider this release candidate [...]

Botnet Unleashes Variety Of New Phishing Attacks

The massive Zbot botnet that spreads the treacherous Zeus banking Trojan has been launching a wave of relatively convincing phishing attacks during the past few days — the most recent of which is a phony warning of a mass Conficker infection from Microsoft that comes with a free “cleanup tool.”

The wave of attacks began early last [...]

BlackBerry Storm 2 blows to Vodafone

Wi-Fi is finally en route to the BlackBerry Storm, following Vodafone’s confirmation that the Storm 2 will hit in its stores later this month.

Details of the Storm 2 – aka the BlackBerry 9520 — have been floating around for months. But the handset’s manufacturer, Research in Motion, and Vodafone today confirmed to Register Hardware that the [...]

Google Targets E-Readers With Web-Based ‘Editions’

FRANKFURT (Reuters) – Google plans to launch an online store to deliver electronic books to any device with a Web browser, threatening to upset a burgeoning market for dedicated e-readers dominated by Amazon’s Kindle.

The Web search giant said Thursday it would launch Google Editions in the first half of next year, initially offering about half a [...]

Over half of U.S. workplaces block social networks

A majority of U.S. workplaces block access to social-networking sites like Facebook and Twitter, new survey results commissioned by consulting firm Robert Half Technology indicate. Fifty-four percent block social networks “completely,” while another 19 percent only permit it “for business purposes.”

Only 10 percent of companies surveyed permit social-network use on the job for any kind of [...]

The three-application limit is out, Windows 7 Starter on netbooks is back in

As you may recall, in a recent blog, Is Microsoft Shooting Its Other Foot with Windows 7 on Netbooks? I was reminiscing about my 1995 HP Jornada and looking forward to getting a netbook with Windows 7 on it. I haven’t been ready to jump to Linux yet, and the thought of buying a 2009 computer [...]

Microsoft proposes launching an IE-free Windows 7 'E' in Europe

Microsoft is stepping up its campaign to try to appease European Commission (EC) regulators who are mulling possible remedies in the ongoing Opera-Microsoft browser-bundling case in the European Union.

According to News.com, Microsoft’s newest proposal is to offer a version of Windows 7 which strips out Internet Explorer (IE) 8. Not hides it — like is currently [...]

Cisco Introduces New Certification Option for CCNA Voice

On June 24th, 2009, Learning@Cisco will implement program changes to the CCNA Voice certification.   There will now be two options available for candidates wishing to achieve their CCNA Voice certification: A commercial option and an enterprise option.

The new CCNA Voice Certification enterprise option assesses skills/knowledge related to the Cisco Unified Communications Manager 6.0 (CUCM 6.0). It [...]