VOGH- VOICE OF GREYHAT| Leading Resource of Cyber Updates & Hacker News: Search results for HP

Showing posts sorted by date for query HP. Sort by relevance Show all posts

GFI LanGuard 2012 One Solution For vulnerability Scanning, Patch Management, Network & Software Audit

Posted by Avik Sarkar On 5/09/2013 04:28:00 pm

GFI LanGuard 2012 One Solution For Vulnerability Scanning, Patch Management, Network & Software Auditing

Earlier we have talked about GFI LanGuard, but while looking at the rising cyber threats, security researcher continue to identify new, sophisticated malware threats, vulnerability and patch management are more critical than ever as a key component of a layered security approach. To get rid of all those security challenges, GFI Software announced the availability of GFI LanGuard 2012, in which the manufacturer claimed to provide network and system administrators with the ability to manage 100 percent of their patching needs through a single, intuitive and easy-to-use interface, without the need for other update tools. So lets take a roam of this fine product of GFI Software-

Enhanced Features of GFI LanGuard 2012 include:

Comprehensive Patch Management – Administrators can now manage 100 percent of their patching needs – both security and non-security updates – from a centralized console. No other update tools are necessary.
Strong Vulnerability Assessment for Network Devices – Network devices such as printers, routers and switches from manufacturers such as HP and Cisco, can now be detected and scanned for vulnerabilities. GFI LanGuard 2012 performs over 50,000 checks against operating systems, installed applications and device firmware for security flaws and misconfigurations. It also runs network audits that now detect mobile devices running iOS and Android operating systems.
Improved Scan and Remediation Performance – New Relay Agents receive patches and definition files directly from the GFI LanGuard server and distribute as appropriate – helping IT resources save time, manage network bandwidth and increase the number of devices that can be accommodated. This is particularly effective in multi-site and large networks.

GFI LanGuard 2012 combines vulnerability scanning, patch management, and network and software auditing into one solution that enables IT professionals to scan, detect, assess and correct potential security risks on their networks with minimal administrative effort. GFI LanGuard also enables administrators to inventory devices attached to their networks; receive change alerts, such as notification when a new application is installed; ensure antivirus applications are current and enabled; and strengthen compliance with industry regulations through automated patch management that defends against potential network vulnerabilities. With GFI LanGuard, IT administrators can manage more than 2,500 machines from a single console, it integrates with more than 1,500 security applications and includes keyword search functionality.

After going through the above brief description, many of you must be excited about this new product. For the kind information of our readers, yes indeed GFI LanGuard 2012 is one of the finest tool ever released in this domain. Detailed information LanGuard 2012 can be found here. Also a 30 day trail pack of GFI LanGuard 2012 has been made available for download.

SHARE OUR NEWS DIRECTLY ON SOCIAL NETWORKS:-

<a href=">GFI LanGuard 2012 One Solution For vulnerability Scanning, Patch Management, Network & Software Audit"https://www.voiceofgreyhat.com/2013/05/GFI-LanGuard-2012-released-for-download.html</a>

Pwn2Own 2013 Result: Chrome, Firefox, IE, Adobe Reader, Flash & Java Owned

Posted by Avik Sarkar On 3/11/2013 02:55:00 am

Pwn2Own 2013 Result: Chrome, Firefox, IE, Adobe Reader, Flash & Java Owned Only Safari Survived

Couple of months ago we have talked about 'Pwn2Own 2013' hacking contest sponsored by HP TippingPoint, ZDI and Google where the most famous and widely used browsers have to face challenges. Now the result of this long awaited security competition has came which is showing that the entire browser security landscape can change in a single day, as browsers thought to be secure are proven to be otherwise. Of the Big Four browsers, only Apple's Safari has so far survived the onslaught of the browser-breakers where Chrome, Internet Explorer 10 and Firefox all fell to the mercy of the hackers. Not only browsers but also three other popular applications that is Adobe Reader, Flash Player and yet again Java fallen victim to hackers at 'Pwn2Own'. And for Java it was a true disaster as Java fell three times, though under the contest rules, only the first attacker was due to win the $20,000 prize. Vupen, a renowned security research firm based in France, cracked both Firefox and Internet Explorer. It roughly explained the attack in a tweet, “We’ve pwned Firefox using a use-after-free and a brand new technique to bypass ASLR/DEP on Win7 without the need of any ROP.” This bug hint leads them winning $100,000 for finding a huge hole. Again in a tweet, Security firm Vupen explained “We’ve pwned MS Surface Pro with two IE10 zero-days to achieve a full Windows 8 compromise with sandbox bypass.” Lastly, U.K.-based security firm MWR Labs cracked Chrome and also gained full control of the operating system, this time Windows 7. It also “demonstrated a full sandbox bypass exploit.” The company explained in a blog post that it found a zero-day in Chrome “running on a modern Windows-based laptop.” It was able to exploit the vulnerability by performing a very similar attack to what took down Facebook, Microsoft, and a number of other well-known companies: It had the laptop visit a malicious website.

Now lets take look at the final score board of Pwn2Own 2013:

Wednesday:
1:30 - Java (James Forshaw) PWNED
2:30 - Java (Joshua Drake) PWNED
3:30 - IE 10 (VUPEN Security) PWNED
4:30 - Chrome (Nils & Jon) PWNED
5:30 - Firefox (VUPEN Security) PWNED
5:31 - Java (VUPEN Security) PWNED

Thursday:
12pm - Flash (VUPEN Security) PWNED
1pm - Adobe Reader (George Hotz) PWNED
2pm - Java (Ben Murphy via proxy) PWNED

The total damage to the prize fund comes out at a whopping $480k. With HP's announcement that everyone will get paid for each attack, the prize monies will be divvied up as follows:-

James Forshaw: Java = $20K
Joshua Drake: Java = $20k
VUPEN Security: IE10 + Firefox + Java + Flash = $250k
Nils & Jon: Chrome = $100k
George Hotz: Adobe Reader = $70k
Ben Murphy: Java = $20k

As you all know that the main motive of these contest is to make applications, software more safe and secure while figuring out hidden vulnerabilities Here also for Pwn2Own the security holes figured out by the above experts have already been submitted and taken carefully by those organization along with that, the expected patch for the browsers have already been released. Those who are still using the older version of those above applications are requested to update their system. So, stay tuned with VOGH and be safe on the Internet.

-Source (HP, Naked Security)

SHARE OUR NEWS DIRECTLY ON SOCIAL NETWORKS:-

<a href=">Pwn2Own 2013 Result: Chrome, Firefox, IE, Adobe Reader, Flash & Java Owned"https://www.voiceofgreyhat.com/2013/03/Pwn2Own-2013-Result.html</a>

Ambedkar Institute of Telecom Training India (BRBRAITT) Hacked By Hitcher

Posted by Avik Sarkar On 2/20/2013 06:52:00 pm

Ambedkar Institute of Telecom Training India (BRBRAITT)Hacked By Hitcher

He was noiseless since his last massive attack against Israel, with the banner of #OpIsrael for Muslim Liberation Army. He was mum but not passive, and it shows when well known Pakistani hacker going by the name of "Hitcher" come back again. The name of Hitcher is common to us for defacing high profile websites, his last few high profile hack was HP Training Center, Bank of Punjab, Kingfisher Airlines, Central Statistical Agency of Ethiopia & 100+ Chinese Govt Websites, again ensue the same path. This time the target was the official website of Bharat Ratna Bhim Rao Ambedkar Institute of Telecom Training India (BRBRAITT) also known as India Premier National Level Telecommunication Training Center. As per sources the hacker managed to breach the server security and get administrative access into the BBBRAITT system. He not only hacked and defaced the index page, but also stolen sensitive data like employ details, course curriculum, student details, several ongoing project information, and few more confidential tidings. Immediately after the hack, webmaster of BBBRAITT noticed the issue and patched those security holes and back doors from which the hacker get in. Also he restored the site to its normal format. But still the deface mirror can be found on an archiving site called Th3Mirror.com, though the reason of this hack is still a mystery.

Brief About BRBRAITT:-

BRBRAITT is one of the premier institutes of BSNL India, imparting training in various fields like latest technologies in field of telecommunications, computer networking, accounting, management, providing competency and skills to meet the ever changing needs of esteemed customers.

SHARE OUR NEWS DIRECTLY ON SOCIAL NETWORKS:-

<a href=">Ambedkar Institute of Telecom Training India (BRBRAITT) Hacked By Hitcher"https://www.voiceofgreyhat.com/2013/02/BRBRAITT-Hacked-By-Hitcher.html</a>

Pwn2Own 2013 -Hack Major Browser, Adobe Reader, Flash or Java & Earn in Million Dollars

Posted by Avik Sarkar On 1/24/2013 06:58:00 pm

Pwn2Own 2013 -Hack Major Web-browser, Adobe Reader, Flash or Java & Earn in Million Dollars

Since the last two years the Pwn2Own hacker contest has become an important fixture in the world of testing the security of software applications, operating systems and hardware devices. In last two years we have seen several hackers, security professionals have expressed their enthusiasm and joined Pwn2Own where four major and widely browser's security get compromised, in order to make applications, software more safe and secure. Last year we have reported how different hackers across the globe taken part in Pwn2Own and successfully hacked Google Chrome, IE & Firefox, and earned millions of dollars. But the contest of this year has some more twist than before as, HP TippingPoint and Google, sponsor of Pwn2Own, has made clear that it is expanding the focus of the competition beyond browsers. Also, Pwn2own 2013 will include $560,000 in prize money for demonstrations of exploits in the major web browsers, Adobe Reader, Adobe Flash or Oracle Java.

Contest Dates:-

The contest will take place the 6th, 7th, and 8th of March in Vancouver, British Columbia during the CanSecWest 2013 conference. DVLabs blog post will be updated as the contest plays out and get real-time updates by following either @thezdi or @Pwn2Own_Contest on Twitter or search for the hash tag #pwn2own.

Rules & Prizes:-

HP ZDI is offering more than half a million dollars (USD) in cash and prizes during the competition for vulnerabilities and exploitation techniques in the below categories. The first contestant to successfully compromise a selected target will win the prizes for the category.

Web Browser

Google Chrome on Windows 7 ($100,000)
Microsoft Internet Explorer, either

IE 10 on Windows 8 ($100,000), or
IE 9 on Windows 7 ($75,000)

Mozilla Firefox on Windows 7 ($60,000)
Apple Safari on OS X Mountain Lion ($65,000)

Web Browser Plug-ins using Internet Explorer 9 on Windows 7

Adobe Reader XI ($70,000)
Adobe Flash ($70,000)
Oracle Java ($20,000)

The targets will be running on the latest, fully patched version of the Windows 7, 8, and OS X Mountain Lion. All targets will be installed in their default configurations, as this is how a majority of users will have them configured. As always, the vulnerabilities utilized in the attack must be unknown and not previously reported to the vendor. If a sandbox is present, a full sandbox escape is required to win. A given vulnerability may only be used once across all categories.

Upon successful demonstration of the exploit, the contestant will provide HP ZDI a fully functioning exploit and all the details of the vulnerability used in the attack. In the case that multiple vulnerabilities were exploited to gain code execution, details about all the vulnerabilities (memory corruption, infoleaks, escalations, etc.) leveraged and the sequence in which they are used must be provided to receive the prize money. The initial vulnerability utilized in the attack must be in the registered category.

Along with prize money, the contestant will receive the compromised laptop and 20,000 ZDI reward points* which immediately qualifies them for Silver standing.

Full contest rules can be found at http://dvlabs.tippingpoint.com/Pwn2OwnContestRules.html, and may be changed at any time without notice.

Registration:-

Contestants are asked to pre-register by contacting ZDI via e-mail at zdi@hp.com. This will allow the organizer to ensure that they have the necessary resources in place to facilitate the attack. If more than one contestant registers for a given category, the order of the contestants will be drawn at random.

SHARE OUR NEWS DIRECTLY ON SOCIAL NETWORKS:-

<a href=">Pwn2Own 2013 -Hack Major Browser, Adobe Reader, Flash or Java & Earn in Million Dollars"https://www.voiceofgreyhat.com/2013/01/Pwn2Own-2013-Hack-and-Earn-in-Million.html</a>

Vulnerability Found in Samsung Printers Allowing Remote Hack

Posted by Avik Sarkar On 11/29/2012 06:02:00 pm

Vulnerability Found in Samsung Printers Allowing Remote Hack

Bad news for those who are using Samsung and Dell-branded printers, as in an advisory U.S. Computer Emergency Readiness Team (US CERT) issued an warning that a hard coded administrative account could allow remote attackers to take control of their device. According to the vulnerability note (VU#281284)- Samsung printers contain a hardcoded account that could allow a remote attacker to take control of an affected device. Samsung printers (as well as some Dell printers manufactured by Samsung) contain a hardcoded SNMP full read-write community string that remains active even when SNMP is disabled in the printer management utility. Manipulating the above vulnerability a remote, unauthenticated attacker could access an affected device with administrative privileges. Secondary impacts include: the ability to make changes to the device configuration, access to sensitive information (e.g., device and network information, credentials, and information passed to the printer), and the ability to leverage further attacks through arbitrary code execution.

Solution:-
Samsung and Dell have stated that models released after October 31, 2012 are not affected by this vulnerability. Samsung and Dell have also indicated that they will be releasing a patch tool later this year to address vulnerable devices.
Block Port 1118/udp
The reporter has stated that blocking the custom SNMP trap port of 1118/udp will help mitigate the risks.

Restrict Access:
As a general good security practice, only allow connections from trusted hosts and networks. Restricting access would prevent an attacker from accessing an SNMP interface using the affected credentials from a blocked network location.

While talking about vulnerabilities in Printer, then we would like to remind you that late in last year Columbia University Researchers have discovered a vulnerability in some Hewlett-Packard (HP) LaserJet printer lines that could allow attackers to install a modified firmware to steal information, run attacks from within a network or cause physical damage to the printer. Later HP issued firmware to fix those security hole.

SHARE OUR NEWS DIRECTLY ON SOCIAL NETWORKS:-

<a href=">Vulnerability Found in Samsung Printers Allowing Remote Hack "https://www.voiceofgreyhat.com/2012/11/Samsung-Printers-Allowing-Remote-Hack.html</a>

Google Pakistan Hacked & Defaced By Turkish Hacker

Posted by Avik Sarkar On 11/24/2012 07:05:00 pm

Google Pakistan Along With Microsoft HP, HSBC, Apple, PayPal, Blogspot Hacked & Defaced By Turkish Hacker

Today was most probably the worst day in the history of Pakistan cyber space. Ten big domains of Pakistan has been stroked very badly. Many of you are guessing that it was Indian hackers who cost this damage. But in reality the attack was not generated from India, Bangladesh or such any other native countries, but it was a Turkish hacker who have reportedly taken down the home and search page of Google Pakistan while leaving an image of two penguins walking across a bridge for million of users. I think now you got that, yes it was Google Pakistan which has been hacked and defaced by a Turkey hacker code named "KriptekS". In the deface page the hacker left several messages in Turkish language, the translation of the text, written on the website, is: "eboz. My homies in a friend always there for me. Have not shot by me with every breath." Also the hacker left a message saying "Pakistan Downed" which is indicating that the home page of Google Pakistan is indeed take down. According to deface mirror on Zone-H, the attack took place around 02:17 in the afternoon, but still, when I am writing this article, the home page of Google Pakistan is still offline.

May be you are thinking that the story is over, but no; as I told earlier it was the worst day for Pakistani cyber fence, trust me indeed it was. As along with Google, KriptekS, the Turkish hacker also targeted Pakistani domain of Blogger, HSBC, Coca-Cola, Fanta, Paypal, Microsoft, HP & Apple. Also it has been reported that Pakistani domain of Sony, Yahoo & Windows has also been allegedly hacked. And all those hacked domains are still offline.

List of Hacked Sites:-

SHARE OUR NEWS DIRECTLY ON SOCIAL NETWORKS:-

<a href=">Google Pakistan Hacked & Defaced By Turkish Hacker"https://www.voiceofgreyhat.com/2012/11/Google-Pakistan-Hacked-Defaced-By-Turkish-Hacker.html</a>

NASSCOM-Data Security Council of India Announces Annual Information Security Summit 2012

Posted by Avik Sarkar On 10/28/2012 04:38:00 am

NASSCOM-Data Security Council of India Announces Annual Information Security Summit 2012

NASSCOM-Data Security Council of India (DSCI) announced that the Annual Information Security Summit 2012 will be held on 11-12 December at Taj Lands End, Mumbai. The NASSCOM-DSCI Annual Information Security Summit this year will focus on the national cyber security elements- Framework, Machinery, Responsibility & Operations for all the critical information sectors like power, energy and finance where deliberation will take place on operating technologies like smart grid and industrial control system; the security and privacy imperatives of eCommerce, mCommerce and eGovernance application and platforms. The Summit will provide an opportunity to have focused discussions with government leaders along with global experts who will talk about the security ramifications at the global level. Special features such as celebrating the success of women leaders in the field of security, Workshop on IT Act and release of DSCI assessment frameworks will also be part of the annual summit. The addition of DSCIExcellence Awards 2012 to Corporate and LEAs this year along with Annual summit will truly make this as a platform where India Meets for Security.

Who Should Attend:-

Organizations:

User Organization – Banks, Finance, Telecom, Manufacturing, Energy
Government & PSUs
Technology & Service Providers
Security Product/ Services Companies
Academia

Individuals:

Business Leaders
IT Leadership
Security & Privacy Leadership
Security Professionals
Security Implementer | Administrator | Officer

Participation benefits:

Learn about new challenges, threats and vulnerabilities
Gain Strategic direction & practical guidance
Explore new approaches, practices, technologies and services
Discover market developments and get a feel of technology products
Discuss on public policies for cyber security and privacy
Interact with national, government and global leadership

Agenda:-

Tentative Agenda Topics for Annual Information Security Summit’12 : Day 1
Time	Session
0930 to 1015	Inaugural + Key Note
1015 to 1115	National Imperatives of Securing Operational Technologies … Smart Grids, Oil & Gas, & Public Utilities
1115 to 1140	Tea Break
1140 to 1200	Platinum Session 1 by Verizon
1200 to 1250	Protecting Key Economic Assets, Securing Financial Backbone …. Stock Exchange, Payment Infrastructures & Financial Switches
1250 to 1310	Platinum Session 2 by TCG
1310 to 1415	Lunch Break
1415 to 1430	Special feature
1430 to 1520	Architecting Security for New Age Banking … Business Models, Technology Transformations & Channel Revolutions in the midst of Organized, Focused, Advanced & Persistent Cyber Threats
1520 to 1540	Special feature by HP
1540 to 1640	Revolution named Clobile, Nightmare for Security? … Enterprise Mobility, Mobile Apps and Cloud Enablement Data driven Businesses
1640 to 1700	Tea Break
1700 to 1800	Data driven Businesses – Data reason for Empowerment and Concern … Big Data, Context Computing & Social Media Computing
1800 to 1900	Networking and Exhibition
1900 to 2030	DSCI Excellence Awards 2012 Corporate Law Enforcement
2030 Onwards	Cocktail Dinner
Day 2
Time	Session
0930 to 1030	Cyber Security, from National Responsibility to Global Accountability … Cyber diplomacy, converging national and international interests
1030 to 1100	Special Feature by CISCO
1100 to 1130	Tea Break
1130 to 1230	Securing Technology Transformation of Governance … eGovernance projects, Security Challenges & Solutions
1230 to 1315	Rendezvous with Women Security Leaders: Special Interaction …. Security, Challenges and Opportunities for Women
1315 to 1415	Lunch Break
1415 to 1515	Security Enablement of Growing Electronic & Mobile Commerce … Rising Volume & Growth of Commerce, Security as Enabler
1515 to 1600	Securing core, edge, access & connect: reappearance of network on agenda of security … Finding the role of network security: Infrastructure Core, Hyer-extensive organizations, Access complexities, Mobility & External exposures
1600 to 1630	Tea Break
1630 to 1730	Consumer Behaviors and Business Responsibilities In the Information Age … Responsible Behaviors, Fair Business Practices & Enabling Technologies

To Get Yourself Registrar For the Event Click Here

SHARE OUR NEWS DIRECTLY ON SOCIAL NETWORKS:-

<a href=">NASSCOM-Data Security Council of India Announces Annual Information Security Summit 2012"https://www.voiceofgreyhat.com/2012/10/NASSCOM-DSCI-Annual-Information-Security-Summit.html</a>

HP Training Center Official Website Hacked & Defaced

Posted by Avik Sarkar On 8/12/2012 11:40:00 pm

HP Training Center Official Website Hacked & Defaced

Official website of Hewlett Packard Training center also known as HP training center get hacked. Here again well-known Pakistani hacker known to as 'Hitcher' from a hacker collective group named Pak Cyber Force (PCF) took responsibility of this hack. His last hack take down the official website of NIOS, and here also he followed the same mechanism & that is in-spite of having full privilege on the HP server, the hacker did not harm the main index. He just uploaded his deface page as shown in the above picture. This hack also compromised three sub-domain of HP among them there are Designjet - Sales Training and Development Center, HP Indigo Training Center & one more. As expected Hitcher has also created deface mirror on Zone-Hack. This cyber attack took place yesterday & still the deface page uploaded by the hacker exist on the web-server. Such kind of carelessness or irresponsibility is not at all expected from a company like HP. Hitcher is widely known for defacing high profile websites, his last few high profile hack was Bank of Punjab, Kingfisher Airlines, Central Statistical Agency of Ethiopia & 100+ Chinese Govt Websites. The hacker's message on the deface page is clearly indicating that the hack was motivated due the cause of Palestine. Though it is not clear that why he targeted HP, because there is no relation between HP and the inhuman torture in Palestine.

Message of the Hacker:-

"Free Palestine . . . We will not go down..Freedom is our goal. .// End the Occupation. . . . .

You the Zionist Government of Israel have been murdering thousands and thousands of innocent Palestinian people for years and enough is enough! The land you call Israel is occupied illegally and is not and will never be yours and the fight to free the Palestinian people and their land from your evil clutches will continue! You continue to try and play the victim in all this bloodshed, yet we have all seen and know you are the murderers, suppressors, rapists and terrorists in this bloody war!

You have NO Israeli culture, NO history in Gaza, nor in the West Bank or in Great Palestine. The only history you the Zionist Terrorist Israel are leaving for your future children is of BLOODSHED, TEARS and LOSS OF LIFE and that is not something to be proud of. To call the land you illegally occupy "Israel" is not only misguided, it is tragic and leaves a very foul taste in the mouths of millions of people who stand against you.

Israel your idea of the peace process is surrender or war and we will not surrender! This is not a war against race, religion nor sex, but a fight against the suppression, murders, and rapes of millions of Palestinians that occurs on a daily basis by you the Zionists.

To the people of Palestine we have not forgotten you, nor will we ever forget you and as long as we are still breathing we will continue to grow stronger and will fight for your freedom!

LONG LIVE PALESTINE.."

SHARE OUR NEWS DIRECTLY ON SOCIAL NETWORKS:-

<a href=">HP Training Center Official Website Hacked & Defaced"https://www.voiceofgreyhat.com/2012/08/HP-Training-Center-Official-Website-Hacked.html</a>

Zero-Day Vulnerability Found in The Server Monitoring Software of HP

Posted by Avik Sarkar On 7/10/2012 11:03:00 pm

Zero-Day Vulnerability Found in The Server Monitoring Software of HP

After the massacre of HP LaserJet Printers yet again another product of HP (server monitoring software) has been infected with zero-day vulnerability. Hewlett-Packard have already issued a security warning to its customers about two security vulnerabilities in its Operations Agent server monitoring software. The vulnerabilities were reported to HP by Luigi Auriemma via TippingPoint's Zero Day Initiative (ZDI). According to the company, unspecified errors in the enterprise software for AIX, HP-UX, Linux, Solaris and Windows can be exploited by a remote attacker to compromise a vulnerable system and execute arbitrary code. Both of these errors have a CVSS 2.0 (Common Vulnerability Scoring System) base score of 10.0, the highest.

Versions prior to 11.03.12 on all supported platforms are affected; upgrading to 11.03.12 corrects the problems. A full list of affected versions, and patch download information can be found in the company's security advisory. HP advises all administrators to install the patches as soon as possible.

SHARE OUR NEWS DIRECTLY ON SOCIAL NETWORKS:-

<a href=">Zero-Day Vulnerability Found in The Server Monitoring Software of HP"https://www.voiceofgreyhat.com/2012/07/zero-day-vulnerability-found-in-server.html</a>

Jonathan Millican - 19 Years Old U.K. Student Won GCHQ "Cyber Security Champion” Award

Posted by Avik Sarkar On 3/13/2012 11:51:00 pm

Jonathan Millican - 19 Years Old U.K. Student Won GCHQ "Cyber Security Champion” Award

Jonathan Millican, a 19 years old U.K. student has won the "Cyber Security Champion” after winning a competition showcasing Internet security intelligence. He has been awarded after a six-month-long challenge designed to attract talented people to the cyber defense industry. Judges at the competition said Millican had demonstrated knowledge “years beyond his time” of the subject.
He won the competition after taking part in a final series of challenges hosted by HP Labs, which pitted six five-person teams against each other on Saturday.
During the competition, teams had to advise a start-up company on how to best protect itself from hackers, and then reconfigure a computer network during a 15-minute long simulated attack. Although Millican’s team was beaten by a rival, judges determined that he deserved the top prize.
“He showed great leadership, strong technical abilities and also demonstrated that he understood the impact what he was doing would have on a business,” Adam Thompson, the chief judge who works for Hewlett Packard’s security team, told Media.
The competition was sponsored by the intelligence agency GCHQ, as well as telecoms giant BT, defense firm Cassidian and security technology maker Qinetiq. Millican has been offered a paid follow-up masters degree at Royal Holloway, University of London. He has also been invited to visit communications intelligence agency GCHQ’s Cheltenham base. Baroness Pauline Neville-Jones, the competition’s patron and the Prime Minister’s special representative to business on cybersecurity, said she hopes events like this would encourage children to put their computer skills to constructive use. Millican said he was most interested in the challenges posed by complex cyber attacks, like the Stuxnet work that is notorious for attacking Iran’s nuclear systems.

-Source (RedOrbit)

SHARE OUR NEWS DIRECTLY ON SOCIAL NETWORKS:-

<a href=">Jonathan Millican - 19 Years Old U.K. Student Won GCHQ "Cyber Security Champion” Award"https://www.voiceofgreyhat.com/2012/03/jonathan-millican-19-years-old-uk.html</a>

Metasploit 4.2.0 Released With IPv6 Support & Virtualization Target Coverage

Posted by Avik Sarkar On 2/24/2012 10:32:00 pm

Metasploit 4.2.0 Released With IPv6 Support & Virtualization Target Coverage

Earlier we haev discussed many times about one of the most famous and widely used exploitation framework named Metasploit. Yet again the Rapid 7 released another updated version of Metasploit. This update brings Metasploit to version 4.2.0, adding IPv6 support and virtualization target coverage. You'll also notice a new Product News section and update notification for our weekly updates. Since the last major release (4.1.0), added 54 new exploits, 66 new auxiliary modules, 43 new post-exploitation modules, and 18 new payloads.

Brief About Metasploit:-

The Metasploit Framework is a penetration testing toolkit, exploit development platform, and research tool. The framework includes hundreds of working remote exploits for a variety of platforms. Payloads, encoders, and nop slide generators can be mixed and matched with exploit modules to solve almost any exploit-related task.

Module Changes:-

Novell eDirectory eMBox Unauthenticated File Access

JBoss Seam 2 Remote Command Execution

NAT-PMP Port Mapper

TFTP File Transfer Utility

VMWare Power Off Virtual Machine

VMWare Power On Virtual Machine

VMWare Tag Virtual Machine

VMWare Terminate ESX Login Sessions

John the Ripper AIX Password Cracker

7-Technologies IGSS 9 IGSSdataServer.exe DoS

Microsoft IIS FTP Server <= 7.0 LIST Stack Exhaustion

DNS and DNSSEC fuzzer

CheckPoint Firewall-1 SecuRemote Topology Service Hostname Disclosure

CorpWatch Company ID Information Search

CorpWatch Company Name Information Search

General Electric D20 Password Recovery

NAT-PMP External Address Scanner

Shodan Search

H.323 Version Scanner

Drupal Views Module Users Enumeration

Ektron CMS400.NET Default Password Scanner

Generic HTTP Directory Traversal Utility

Microsoft IIS HTTP Internal IP Disclosure

Outlook Web App (OWA) Brute Force Utility

Squiz Matrix User Enumeration Scanner

Sybase Easerver 6.3 Directory Traversal

Yaws Web Server Directory Traversal

OKI Printer Default Login Credential Scanner

MSSQL Schema Dump

MYSQL Schema Dump

NAT-PMP External Port Scanner

pcAnywhere TCP Service Discovery

pcAnywhere UDP Service Discovery

Postgres Schema Dump

SSH Public Key Acceptance Scanner

Telnet Service Encyption Key ID Overflow Detection

IpSwitch WhatsUp Gold TFTP Directory Traversal

VMWare ESX/ESXi Fingerprint Scanner

VMWare Authentication Daemon Login Scanner

VMWare Authentication Daemon Version Scanner

VMWare Enumerate Permissions

VMWare Enumerate Active Sessions

VMWare Enumerate User Accounts

VMWare Enumerate Virtual Machines

VMWare Enumerate Host Details

VMWare Web Login Scanner

VMWare Screenshot Stealer

Capture: HTTP JavaScript Keylogger

Oracle DB SQL Injection via SYS.DBMS_CDC_SUBSCRIBE.ACTIVATE_SUBSCRIPTION

Asterisk Manager Login Utility

FreeBSD Telnet Service Encryption Key ID Buffer Overflow

Linux BSD-derived Telnet Service Encryption Key ID Buffer Overflow

Java Applet Rhino Script Engine Remote Code Execution

Family Connections less.php Remote Command Execution

Gitorious Arbitrary Command Execution

Horde 3.3.12 Backdoor Arbitrary PHP Code Execution

OP5 license.php Remote Command Execution

OP5 welcome Remote Command Execution

Plone and Zope XMLTools Remote Command Execution

PmWiki <= 2.2.34 pagelist.php Remote PHP Code Injection Exploit

Support Incident Tracker <= 3.65 Remote Command Execution

Splunk Search Remote Code Execution

Traq admincp/common.php Remote Code Execution

vBSEO <= 3.6.0 proc_deutf() Remote PHP Code Injection

Mozilla Firefox 3.6.16 mChannel Use-After-Free

CTEK SkyRouter 4200 and 4300 Command Execution

Adobe Flash Player MP4 SequenceParameterSetNALUnit Buffer Overflow

Icona SpA C6 Messenger DownloaderActiveX Control Arbitrary File Download and Execute

HP Easy Printer Care XMLCacheMgr Class ActiveX Control Remote Code Execution

Viscom Image Viewer CP Pro 8.0/Gold 6.0 ActiveX Control

Java MixerSequencer Object GM_Song Structure Handling Vulnerability

MS05-054 Microsoft Internet Explorer JavaScript OnLoad Handler Remote Code Execution

MS12-004 midiOutPlayNextPolyEvent Heap Overflow

Viscom Software Movie Player Pro SDK ActiveX 6.8

Adobe Reader U3D Memory Corruption Vulnerability

Aviosoft Digital TV Player Professional 1.0 Stack Buffer Overflow

BS.Player 2.57 Buffer Overflow

CCMPlayer 1.5 m3u Playlist Stack Based Buffer Overflow

Free MP3 CD Ripper 1.1 WAV File Stack Buffer Overflow

McAfee SaaS MyCioScan ShowReport Remote Command Execution

Mini-Stream RM-MP3 Converter v3.1.2.1 PLS File Stack Buffer Overflow

MS11-038 Microsoft Office Excel Malformed OBJ Record Handling Overflow

Ability Server 2.34 STOR Command Stack Buffer Overflow

AbsoluteFTP 1.9.6 - 2.2.10 LIST Command Remote Buffer Overflow

Serv-U FTP Server < 4.2 Buffer Overflow

HP OpenView Network Node Manager ov.dll _OVBuildPath Buffer Overflow

XAMPP WebDAV PHP Upload

Avid Media Composer 5.5 - Avid Phonetic Indexer Buffer Overflow

Citrix Provisioning Services 5.6 SP1 Streamprocess Opcode 0x40020000 Buffer Overflow

HP Diagnostics Server magentservice.exe Overflow

StreamDown 6.8.0 Buffer Overflow

Wireshark console.lua Pre-Loading Script Execution

Oracle Job Scheduler Named Pipe Command Execution

SCADA 3S CoDeSys CmpWebServer <= v3.4 SP4 Patch 2 Stack Buffer Overflow

Sunway Forcecontrol SNMP NetDBServer.exe Opcode 0x57

OpenTFTP SP 1.4 Error Packet Overflow

AIX Gather Dump Password Hashes

Linux Gather Saved mount.cifs/mount.smbfs Credentials

Multi Gather VirtualBox VM Enumeration

UNIX Gather .fetchmailrc Credentials

Multi Gather VMWare VM Identification

UNIX Gather .netrc Credentials

Multi Gather Mozilla Thunderbird Signon Credential Collection

Multiple Linux / Unix Post Sudo Upgrade Shell

Windows Escalate SMB Icon LNK dropper

Windows Escalate Get System via Administrator

Windows Gather RazorSQL Credentials

Windows Gather File and Registry Artifacts Enumeration

Windows Gather Enumerate Computers

Post Windows Gather Forensics Duqu Registry Check

Windows Gather Privileges Enumeration

Windows Manage Download and/or Execute

Windows Manage Create Shadow Copy

Windows Manage List Shadow Copies

Windows Manage Mount Shadow Copy

Windows Manage Set Shadow Copy Storage Space

Windows Manage Get Shadow Copy Storage Info

Windows Recon Computer Browser Discovery

Windows Recon Resolve Hostname

Windows Gather Wireless BSS Info

Windows Gather Wireless Current Connection Info

Windows Disconnect Wireless Connection

Windows Gather Wireless Profile

For additional information click Here. To Download Metasploit version 4.2.0 for windows & Linux click Here.

-Source (rapid7)

SHARE OUR NEWS DIRECTLY ON SOCIAL NETWORKS:-

<a href=">Metasploit 4.2.0 Released With IPv6 Support & Virtualization Target Coverage"https://www.voiceofgreyhat.com/2012/02/metasploit-420-released-with-ipv6.html</a>

Wireshark Ver 1.4.11 & 1.6.5 Released (Fixed Many Security Holes)

Posted by Avik Sarkar On 1/14/2012 11:33:00 pm

Earlier we have several times talked about Wireshark. It is the world’s most popular network protocol analyzer. It is used for troubleshooting, analysis, development, and education. Wireshark is widely used by system admins and also cyber criminals as because Wireshark has the capability to sniffing packets.

Official Change Log:-

Bug Fixes:-

wnpa-sec-2012-01: Laurent Butti discovered that Wireshark failed to properly check record sizes for many packet capture file formats. (Bug 6663, bug 6666, bug 6667, bug 6668, bug 6669, bug 6670)
wnpa-sec-2012-02: Wireshark could dereference a NULL pointer and crash. (Bug 6634)
wnpa-sec-2012-03: The RLC dissector could overflow a buffer. (Bug 6391)
“Closing File!” Dialog Hangs. (Bug 3046)
Sub-fields of data field should appear in exported PDML as children of the data field instead of as siblings to it. (Bug 3809)
Incorrect time differences displayed with time reference set. (Bug 5580)
Wrong packet type association of SNMP trap after TFTP transfer. (Bug 5727)
SSL/TLS decryption needs wireshark to be rebooted. (Bug 6032)
Export HTTP Objects -> save all crashes Wireshark. (Bug 6250)
Wireshark Netflow dissector complains there is no template found though the template is exported. (Bug 6325)
DCERPC EPM tower UUID must be interpreted always as little endian. (Bug 6368)
Crash if no recent files. (Bug 6549)
IPv6 frame containing routing header with 0 segments left calculates wrong UDP checksum. (Bug 6560)
IPv4 UDP/TCP Checksum incorrect if routing header present. (Bug 6561)
Incorrect Parsing of SCPS Capabilities Option introduced in response to bug 6194. (Bug 6562)
Various crashes after loading NetMon2.x capture file. (Bug 6578)
Fixed compilation of dumpcap on some systems (when MUST_DO_SELECT is defined). (Bug 6614)
SIGSEGV in SVN 40046. (Bug 6634)
Wireshark dissects TCP option 25 as an “April 1″ option. (Bug 6643)
ZigBee ZCL Dissector reports invalid status. (Bug 6649)
ICMPv6 DNSSL option malformed on padding. (Bug 6660)
Wrong tvb_get_bits function call in packet-csn1.c. (Bug 6708)
[UDP] – Length Field of Pseudo Header while computing CheckSum is not correct. (Bug 6711)
pcapio.c: bug in libpcap_write_interface_description_block. (Bug 6719)
Memory leaks in various dissectors.
Bytes highlighted in wrong Byte pane when field selected in Details pane.

Updated Protocol Support:-
BGP, BMC CSN1, DCERPC EPM, DCP(ETSI) DMP DTLS GSM Management, H245 HPTEAM, ICMPv6, IEEE 802.15.4 IPSEC IPv4, IPv6, ISAKMP KERBEROS LDSS NFS RLC, RPC-NETLOGON RRC RTMPT SIGCOMP SSL SYSLOG TCP, UDP, XML ZigBee ZCL

New and Updated Capture File Support:-
Accellent 5Views, AIX iptrace, HP-UX nettl, I4B, Microsoft Network Monitor, Novell LANalyzer, PacketLogger, Pcap-ng, Sniffer, Tektronix K12, WildPackets {Airo,Ether}Peek.

To Download Wireshark Click Here

SHARE OUR NEWS DIRECTLY ON SOCIAL NETWORKS:-

<a href=">Wireshark Ver 1.4.11 & 1.6.5 Released (Fixed Many Security Holes)"https://www.voiceofgreyhat.com/2012/01/wireshark-ver-1411-165-released-fixed.html</a>