Infosecurity.US

Information Security & Occasional Forays Into Adjacent Realms

  • Web Log

DEF CON 28 Safe Mode Ham Radio Village - Baloo's 'APRS Demo' →

November 14, 2020 by Marc Handelman in DEF CON, Ham Radio Village, Conferences, Education, Signals, Communications Security, Information Security, Cyber Security

Many thanks to DEF CON and Conference Speakers for publishing their outstanding presentations; of which, originally appeared at the organization's DEFCON 28 SAFE MODE Conference, and on the DEF CON YouTube channel. Enjoy!

November 14, 2020 /Marc Handelman
DEF CON, Ham Radio Village, Conferences, Education, Signals, Communications Security, Information Security, Cyber Security

DEF CON 28 Safe Mode Ham Radio Village - Aaron Hulett's (K8AMH) 'Ham Radio Snail Mail NTS (National Traffic System) And The Radiogram Format' →

November 13, 2020 by Marc Handelman in DEF CON, Ham Radio Village, Amateur Radio, Radio Security, Conferences, Education, Signals, Communications Security, Information Security, Cyber Security

Many thanks to DEF CON and Conference Speakers for publishing their outstanding presentations; of which, originally appeared at the organization's DEFCON 28 SAFE MODE Conference, and on the DEF CON YouTube channel. Enjoy!

November 13, 2020 /Marc Handelman
DEF CON, Ham Radio Village, Amateur Radio, Radio Security, Conferences, Education, Signals, Communications Security, Information Security, Cyber Security

DEF CON 28 Safe Mode Ham Radio Village - K0BAK's 'The K0BAK News Van 2 Of 2' →

November 13, 2020 by Marc Handelman in DEF CON, Ham Radio Village, Amateur Radio, Radio Security, Conferences, Education, Signals, Communications Security, Information Security, Cyber Security

Many thanks to DEF CON and Conference Speakers for publishing their outstanding presentations; of which, originally appeared at the organization's DEFCON 28 SAFE MODE Conference, and on the DEF CON YouTube channel. Enjoy!

November 13, 2020 /Marc Handelman
DEF CON, Ham Radio Village, Amateur Radio, Radio Security, Conferences, Education, Signals, Communications Security, Information Security, Cyber Security

DEF CON 28 Safe Mode Ham Radio Village - Typer Gardner's 'Single Board Computers In Amateur Radio' →

November 12, 2020 by Marc Handelman in DEF CON, Ham Radio Village, Amateur Radio, Radio Security, Conferences, Education, Signals, Communications Security, Information Security, Cyber Security

Many thanks to DEF CON and Conference Speakers for publishing their outstanding presentations; of which, originally appeared at the organization's DEFCON 28 SAFE MODE Conference, and on the DEF CON YouTube channel. Enjoy!

November 12, 2020 /Marc Handelman
DEF CON, Ham Radio Village, Amateur Radio, Radio Security, Conferences, Education, Signals, Communications Security, Information Security, Cyber Security

DEF CON 28 Safe Mode Ham Radio Village - Eric Escobar's 'Talking To Satellites' →

November 12, 2020 by Marc Handelman in DEF CON, Ham Radio Village, Amateur Radio, Radio Security, Conferences, Education, Signals, Communications Security, Information Security, Cyber Security

Many thanks to DEF CON and Conference Speakers for publishing their outstanding presentations; of which, originally appeared at the organization's DEFCON 28 SAFE MODE Conference, and on the DEF CON YouTube channel. Enjoy!

November 12, 2020 /Marc Handelman
DEF CON, Ham Radio Village, Amateur Radio, Radio Security, Conferences, Education, Signals, Communications Security, Information Security, Cyber Security

DEF CON 28 Safe Mode Ham Radio Village - Pancake's 'So You Have An SDR!' →

November 10, 2020 by Marc Handelman in DEF CON, Ham Radio Village, Amateur Radio, Radio Security, Conferences, Education, Signals, Communications Security, Information Security, Cyber Security

Many thanks to DEF CON and Conference Speakers for publishing their outstanding presentations; of which, originally appeared at the organization's DEFCON 28 SAFE MODE Conference, and on the DEF CON YouTube channel. Enjoy!

November 10, 2020 /Marc Handelman
DEF CON, Ham Radio Village, Amateur Radio, Radio Security, Conferences, Education, Signals, Communications Security, Information Security, Cyber Security

DEF CON 28 Safe Mode Ham Radio Village - Panel Discussion - 'What Makes A Good Operator?' →

November 10, 2020 by Marc Handelman in DEF CON, Ham Radio Village, Radio Security, Conferences, Education, Communications Security, Information Security, Cyber Security, 2FA, Amateur Radio, Signals

Many thanks to DEF CON and Conference Speakers for publishing their outstanding presentations; of which, originally appeared at the organization's DEFCON 28 SAFE MODE Conference, and on the DEF CON YouTube channel. Enjoy!

November 10, 2020 /Marc Handelman
DEF CON, Ham Radio Village, Radio Security, Conferences, Education, Communications Security, Information Security, Cyber Security, 2FA, Amateur Radio, Signals

DEF CON 28 Safe Mode Ham Radio Village - Swissninja's 'The OSTRWERK Initiative' →

November 09, 2020 by Marc Handelman in DEF CON, Ham Radio Village, Communications Security, Radio Security, Conferences, Education, Information Security, Cyber Security, Amateur Radio, Signals

Many thanks to DEF CON and Conference Speakers for publishing their outstanding presentations; of which, originally appeared at the organization's DEFCON 28 SAFE MODE Conference, and on the DEF CON YouTube channel. Enjoy!

November 09, 2020 /Marc Handelman
DEF CON, Ham Radio Village, Communications Security, Radio Security, Conferences, Education, Information Security, Cyber Security, Amateur Radio, Signals

via the inimitable Daniel Stori at turnoff.us

Daniel Stori's 'Signals'

September 05, 2020 by Marc Handelman in Daniel Stori, Satire, Sarcasm, IT Humor, DevOps Humor, UNIX™ Humor, Signals, Linux Humor
September 05, 2020 /Marc Handelman
Daniel Stori, Satire, Sarcasm, IT Humor, DevOps Humor, UNIX™ Humor, Signals, Linux Humor

DerbyCon 2018, Eric Watkins' & Devin Noel's 'Ham Radio 4 Hackers' →

December 08, 2018 by Marc Handelman in Irongeek, Information Security, Signals, Radio

Videography Credit: Irongeek (Adrian Crenshaw).

December 08, 2018 /Marc Handelman
Irongeek, Information Security, Signals, Radio

Diameter Protocol Found To Be Vulnerable - On Par With SS7 For Flaw Tally

July 05, 2018 by Marc Handelman in Cellular Telephony, Signals, Network Security, Network Protocols, Information Security, Bridging Protocols, BSS

Whilst the flaws in Signaling System 7 (SS7) are the gift that keeps on giving, in this case, that gift has been inherited by the DIAMETER protocol, to the delight of miscreants unknown... With internal system, billing and bridging protocols like these, deeply embedded in cellular network infrastructure (all carriers) - who needs enemies; which brings to mind: 'We have met the enemy, and he is us! - Walt Kelly's Pogo, h/t

July 05, 2018 /Marc Handelman
Cellular Telephony, Signals, Network Security, Network Protocols, Information Security, Bridging Protocols, BSS

City of Tacoma Fined $300,000 For Witholding Stingray Surveillance Data

July 03, 2018 by Marc Handelman in Surveillance, Signals, Cellular Telephony, Radio Telephony, Radio

Both Cyrus Favrivar of Ars Technica and Kate Martin, writing for The Tacoma News Tribune, have reported (Ars, Tribune) that Judge G. Helen Whitener has rebuked the Tacoma Police Department's for their apparent decision to not produce the surveillance output from a series of StingRay operations conducted by the Department in the City of Tacoma. Regardless, Judge Whitener has handed down the decision.

"Superior Court Judge G. Helen Whitener ruled earlier this year that the city improperly withheld 11 documents from the American Civil Liberties Union. On Monday, Whitener issued a ruling tallying the cost: ▪ $182,340 for violations of the Public Records Act. ▪ $115,530 for attorney fees and other costs." via The News Tribune reporter Kate Martin

As an FYI, The TPD is an excellent organization, and highly respected, both here in the State of Washington and throughout the country. - mh

July 03, 2018 /Marc Handelman
Surveillance, Signals, Cellular Telephony, Radio Telephony, Radio

Satellite Woe →

December 13, 2017 by Marc Handelman in Information Security, Communication Security, Signals, Network Security

The remotest of root exploits in DirecTV's Video Bridge... H/T

December 13, 2017 /Marc Handelman
Information Security, Communication Security, Signals, Network Security

The Voice Assistant Gambit →

September 11, 2017 by Marc Handelman in All is Information, Alternate Attack Vectors, Alternate Attack Analysis, Physical Security, Information Security, Signals, Communication Security, Communications, Hardware Flaws, Hardware Security

Nicole Kobie, writing at New Scientist, tells the tale of newly researched voice assistant attack vectors leveraging signalling flaws (via an ultrasound attack) within both Apple Inc.'s (NasdaqGS: AAPL) and Amazon.com Inc.'s (NasdaqGS: AMZN) voice assitant offerings Siri and Alexa, respectively. The 'Dominoe Effect' of the ultrasound flaws in these products/services traverses down the device foodchain to Alexa and soo-to-be Siri enabled third party devices... Perhaps new protective sound generating devices are in order?

All Amazon and Apple Links in this Post are Non-affiliate

September 11, 2017 /Marc Handelman
All is Information, Alternate Attack Vectors, Alternate Attack Analysis, Physical Security, Information Security, Signals, Communication Security, Communications, Hardware Flaws, Hardware Security

Suit of Bose →

April 20, 2017 by Marc Handelman in All is Information, Awareness, Common Sense, Communications, Data Security, Demise of Privacy, Devices, Information Security, Signals, Privacy, 18 U.S.C. §§ 2510-2522

News of an interesting privacy related lawsuit, via Fortune writer Jeff John Roberts, is now swirling around personal electronics manufacturer Bose Corporation. Apparently, collecting data (and a viloation of the so-called Wire Tap Act (Codified in 18 U.S.C. §§ 2510-2522)) - through a companion app to the company's best-in-class noise canceling headphones, and the misuse thereof, is the gist... Stay Tuned. Hat Tip

"The complaint accuses Boston-based Bose of violating the WireTap Act and a variety of state privacy laws, adding that a person's audio history can include a window into a person's life and views. "Indeed, one’s personal audio selections – including music, radio broadcast, Podcast, and lecture choices – provide an incredible amount of insight into his or her personality, behavior, political views, and personal identity," says the complaint, noting a person's audio history may contain files like LGBT podcasts or Muslim call-to-prayer recordings." - via Fortune writer Jeff John Roberts

April 20, 2017 /Marc Handelman
All is Information, Awareness, Common Sense, Communications, Data Security, Demise of Privacy, Devices, Information Security, Signals, Privacy, 18 U.S.C. §§ 2510-2522
3437692-televizor-tesla-z-r-1957-6.jpeg

Carrier Wave Hack →

April 04, 2017 by Marc Handelman in All is Information, Alternate Attack Vectors, Information Security, Signals

This reported exploit lands solidly embedded in the hard-to-locate-but-you'll-know-it-when-you-see-it genre of the Surreal Attack Vectors, while Dan Goodins' writing of the exploit is this week's inimitable MustRead... The key aspect of this exploit is to note that notwithstanding all is information, in this case, that information utilizes carrier waves to deliver it's payload, so-called air gaps no longer exist as a safety buffer.

April 04, 2017 /Marc Handelman
All is Information, Alternate Attack Vectors, Information Security, Signals

33c3, Vasilios Mavroudis' and Federico Maggi's 'Talking Behind Your Back' →

January 31, 2017 by Marc Handelman in All is Information, Conferences, Information Security, Surveillance, Signals
January 31, 2017 /Marc Handelman
All is Information, Conferences, Information Security, Surveillance, Signals

33c3, Sebastien Dudek's 'Intercoms Hacking' →

January 24, 2017 by Marc Handelman in All is Information, Conferences, Communications, Information Security, Hardware Security, Signals
January 24, 2017 /Marc Handelman
All is Information, Conferences, Communications, Information Security, Hardware Security, Signals

33c3, Harald Welte and Holger Freyther's 'Dissecting Modern (3G/4G) Cellular Modems' →

January 21, 2017 by Marc Handelman in All is Information, Communications, Conferences, Hardware Security, Information Security, Internetwork Security, Signals, Networks, Network Security, Network Protocols, Radio Telephony, Modems, Cellular Telephony
January 21, 2017 /Marc Handelman
All is Information, Communications, Conferences, Hardware Security, Information Security, Internetwork Security, Signals, Networks, Network Security, Network Protocols, Radio Telephony, Modems, Cellular Telephony

Coil Whine

June 06, 2016 by Marc Handelman in All is Information, Cryptography, Information Security, Signals

Newly revealed discovery of coil whine exploitation, targeting the harvesting of cryptographic artifacts (in this case, keys) via wireless connectivity. More here.

June 06, 2016 /Marc Handelman /Source
All is Information, Cryptography, Information Security, Signals
  • Newer
  • Older