It seems like it's been forever, but there's finally a new stable release of Kismet available. Many of the changes are relatively minor, since the main purpose of the release is just to snapshot the kismet-devel CVS branch. One of the potentially biggest changes, though, is the addition of Centrino support.
Thursday, October 28, 2004
Friday, October 15, 2004
- The FAA certifies the security of computers systems as tested by their lab, not as deployed in the field.
- Vulnerability assessment is performed only on servers, leaving "tens of thousands" of vulnerable targets
- The FAA's IT security sucks
Ok, you probably guessed that I added that last item myself, but it's a pretty accurate summary of the article.
Posted by David Bianco at 8:12 AM
Friday, October 08, 2004
A case of "television commercial imitates life". SecurityFocus has an article talking about how manufacturing machines on factory floors often have abysmal cybersecurity, because they've grafted ancient protocols meant for dedicated serial communication onto modern LAN hardware. My favorite part is the hardcoded default passed "hihihi".
Posted by David Bianco at 9:39 AM
Thursday, October 07, 2004
I don't know whether to laugh or cry: The Arizona Republic reports that some Scottsdale residents are becoming concerned about the level of wardriving in their area. Apparently they've been noticing more and more people leeching free Internet access via home access points, and are concerned that this could lead to a higher level of identity theft.
Leeching access and poking around on other peoples' networks are the kind of things that give legal wardriving a bad name. I only hope the Scottsdale police department (who will be creating a cybercrime unit "next year") can tell the difference between a crook and a hobbyist.
Posted by David Bianco at 8:01 AM
Wednesday, October 06, 2004
I'll keep this brief, since I don't like promoting my own work in this blog. I just got a new Zaurus, intending to use it for wireless security auditing. None of the commercially-available CompactFlash WiFi cards offer external antenna jacks, which is a problem. So I've created a HOWTO for using a more powerful 200mW PCMCIA card with antenna hookups. I've also created an installable package for nmap v3.70. Interested? See my Zaurus page.
Posted by David Bianco at 9:16 PM
Tuesday, October 05, 2004
I don't know if this is true or not, but the Financial Times is reporting that North Korea has trained a force of 600 information warriors. Personally, I find it plausible, even credible. It wouldn't take much for any nation-state to produce a crop of skilled attackers, and although this would only be a small part of a coordinated intelligence or offensive campaign, it could be quite a useful one indeed.
On a related note: I can't quite put my finger on why, but this North Korea story somehow puts me in mind of an earlier story about Singapore.
Posted by David Bianco at 8:15 AM