tag:blogger.com,1999:blog-50199039613548031562008-08-10T07:07:06.782+06:00Information Security NewsXnet Solutionshttp://www.blogger.com/profile/04370065274796294966noreply@blogger.comBlogger134125tag:blogger.com,1999:blog-5019903961354803156.post-64272979109817784952008-08-10T07:00:00.001+06:002008-08-10T07:03:26.548+06:00Easy CPE: The last HOPE"The last HOPE" talks in audio and video.Xnet Solutionshttp://www.blogger.com/profile/04370065274796294966noreply@blogger.comtag:blogger.com,1999:blog-5019903961354803156.post-90825871638499398202008-07-31T11:54:00.003+06:002008-08-10T07:07:06.797+06:00Easy CPE: Troopers 0823-24 April 2008, Munich - Troopers 08 - get skilled or get ownedXnet Solutionshttp://www.blogger.com/profile/04370065274796294966noreply@blogger.comtag:blogger.com,1999:blog-5019903961354803156.post-52034839515452092492008-07-12T16:43:00.001+06:002008-07-12T17:23:56.617+06:00Easy CPE : Supernova 2008Mainly type B videos, but some type A. From the Supernova 2008 conferenceXnet Solutionshttp://www.blogger.com/profile/04370065274796294966noreply@blogger.comtag:blogger.com,1999:blog-5019903961354803156.post-14867494886852363022008-07-06T15:13:00.002+06:002008-07-06T15:17:03.951+06:00Easy CPE : REconREcon is a reverse engineering conference, held in Montreal. Videos from 2006Xnet Solutionshttp://www.blogger.com/profile/04370065274796294966noreply@blogger.comtag:blogger.com,1999:blog-5019903961354803156.post-83581885702343901082008-05-23T14:47:00.005+05:002008-05-23T18:04:55.278+05:00Easy CPE: watching conference videosHere are a list of web pages where you can watch information security talks and presentations and so earn CPEs that will help you renew your CISSP certification. Free and easy access.
24th Chaos Communication Congress. Torrents of mp4 and mkv files available at the botton of each talks page. Go for the mp4 as these are usually seeded.
Defcon 15 and earlier talks are available in mp4 file Xnet Solutionshttp://www.blogger.com/profile/04370065274796294966noreply@blogger.comtag:blogger.com,1999:blog-5019903961354803156.post-14821887396812066502008-05-19T13:06:00.003+05:002008-05-19T13:14:41.121+05:00Online UPS Power!Here are pictures of Xnet PP2100DC UPS in action. These are all from one location in Karachi. Click on the picture to get a bigger image. Sorry these images are not high quality.
Xnet Solutionshttp://www.blogger.com/profile/04370065274796294966noreply@blogger.comtag:blogger.com,1999:blog-5019903961354803156.post-60131290894170553872008-05-02T18:45:00.004+05:002008-05-02T18:55:44.993+05:00Hardware Anti-virusXnet OS Protector is an intelligent circuit card which protects PC system configuration and protect data on hard disk in simple and fast way. The installation and operation is simple and can be done in minutes without technical staff involvement. The form factor is a small PCI card.
The concept is simple. Instead of Blacklisting (ie keeping track of all the new viruses and their signatures) OS Xnet Solutionshttp://www.blogger.com/profile/04370065274796294966noreply@blogger.comtag:blogger.com,1999:blog-5019903961354803156.post-58774715400628274352008-04-12T12:26:00.003+05:002008-04-12T12:34:15.284+05:00Howto: RAID1 on MandrivaSetting up RAID1 on Mandriva 2008
1.Goal: Setup a system with two harddisks that contain identical data so that if
one harddisk crashes, the system survives.
2.The system should still be able to boot without manual intervention.
3.A mail should be send if one harddisk fails.
We chose only two harddisks also a CD-ROM or DVD-ROM must be connected to
be able to install the system.
InstallationXnet Solutionshttp://www.blogger.com/profile/04370065274796294966noreply@blogger.comtag:blogger.com,1999:blog-5019903961354803156.post-5476495176238575062008-03-26T09:56:00.003+05:002008-03-27T10:10:24.231+05:00Document freedom : what is it and why is it importantPaper. Paper has been with us for thousands of years. With paper, once you learnt how to read a language, you could read any document.
We are now entering the age of electronics. This is a world where most new documents are electronic in form. You cannot read them directly, they are machine readable only and we need hardware and software to do so.
Because we are still at the beginning of this Xnet Solutionshttp://www.blogger.com/profile/04370065274796294966noreply@blogger.comtag:blogger.com,1999:blog-5019903961354803156.post-84879276025546408082008-03-18T13:05:00.003+05:002008-03-18T13:14:59.511+05:00National Bank of Pakistan refutes hacking / cyber crime allegations.So, it was not 'hacking', but 'fraudulent withdrawals'. However the fact is that there is a limit of Rs20,000/- and that is all that a client should be able to withdraw in one day. The attack managed to get Rs20 million from accounts that had zero money in them. Here is an image of the notice published in the papers.
Xnet Solutionshttp://www.blogger.com/profile/04370065274796294966noreply@blogger.comtag:blogger.com,1999:blog-5019903961354803156.post-69809179035797523692008-03-16T13:11:00.002+05:002008-03-16T13:15:13.455+05:00National Bank of Pakistan admits gang withdrew Rs20m in MultanNBP security was bypassed by using other Banks ATM cards where the accounts had no balance.
====================================================
NBP admits gang withdrew Rs20m in Multan
By Sher Baz Khan
ISLAMABAD, March 15: The National Bank of Pakistan on Saturday said that some people had fraudulently withdrawn Rs20 million from its automated-teller machines (ATMs) in Multan, while the Xnet Solutionshttp://www.blogger.com/profile/04370065274796294966noreply@blogger.comtag:blogger.com,1999:blog-5019903961354803156.post-14815485695297815752008-03-15T15:17:00.003+05:002008-03-15T15:22:31.118+05:00National Bank of Pakistan ATM network hackedLooks like an inside job, with an employee subverting the security system of the ATMs.
===============================================
NBP suspends inter-bank ATM service after fraud -
By Sher Baz Khan
ISLAMABAD, March 14: The National Bank of Pakistan (NBP) on Friday unilaterally suspended its One-Link service with 14 other banks after finding out that a cyber gang had withdrawn Xnet Solutionshttp://www.blogger.com/profile/04370065274796294966noreply@blogger.comtag:blogger.com,1999:blog-5019903961354803156.post-7398509195934224342008-02-23T14:04:00.001+05:002008-02-23T14:08:47.048+05:00Encrypted GSM Voice Calls & SMS Messages HackedBlack Hat researchers have engineered a way to easily and cheaply crack GSM's encryption
By Kelly Jackson Higgins
Senior Editor, Dark Reading
WASHINGTON -- BLACK HAT DC 2008 -- A pair of researchers has created a low-cost and simple hack to crack the encryption in GSM mobile phones and intercept voice conversations and SMS text messages -- within minutes.
David Hulton and a researcher who Xnet Solutionshttp://www.blogger.com/profile/04370065274796294966noreply@blogger.comtag:blogger.com,1999:blog-5019903961354803156.post-23093123973714325622008-02-22T11:39:00.003+05:002008-02-22T11:48:02.015+05:00Attacking Hard Disk EncryptionOnce the attacker has access to your hardware it becomes very very difficult to protect your assets.
We show that disk encryption, the standard approach to protecting sensitive data on laptops, can be defeated by relatively simple methods. We demonstrate our methods by using them to defeat three popular disk encryption products: BitLocker, which comes with Windows Vista; FileVault, which comes Xnet Solutionshttp://www.blogger.com/profile/04370065274796294966noreply@blogger.comtag:blogger.com,1999:blog-5019903961354803156.post-80677747172517100262008-02-19T14:55:00.001+05:002008-02-19T15:13:17.989+05:00Fake Cryptoheise Security find that the Easy Nova Data Box PRO-25UE RFID hard drive case by German vendor Drecom sounds promising: hardware data encryption with 128-bit AES, access control via an RFID chip, but actually uses just a simple XOR.Xnet Solutionshttp://www.blogger.com/profile/04370065274796294966noreply@blogger.comtag:blogger.com,1999:blog-5019903961354803156.post-91465718166992295522008-01-15T14:53:00.000+05:002008-01-15T14:57:30.114+05:00VPN ToolsI found an interesting website all about VPNs over at vpntools.com. It has a lot of articles, but mostly at a basic, introductory level.Xnet Solutionshttp://www.blogger.com/profile/04370065274796294966noreply@blogger.comtag:blogger.com,1999:blog-5019903961354803156.post-18422183873095494642007-11-21T10:57:00.000+05:002007-11-21T11:10:58.519+05:00Security and UsabilityXnet Solutionshttp://www.blogger.com/profile/04370065274796294966noreply@blogger.comtag:blogger.com,1999:blog-5019903961354803156.post-22783907496519394142007-11-21T10:48:00.000+05:002007-11-21T10:52:35.690+05:00Google as a password crackerHaving the MD5, the article discusses how to find the the original password. The solution is to use Google. This is using the big G as a Rainbow table.Xnet Solutionshttp://www.blogger.com/profile/04370065274796294966noreply@blogger.comtag:blogger.com,1999:blog-5019903961354803156.post-82679528234989359352007-10-20T14:46:00.000+05:002007-10-20T14:52:34.290+05:00Suspicious BehaviourXnet Solutionshttp://www.blogger.com/profile/04370065274796294966noreply@blogger.comtag:blogger.com,1999:blog-5019903961354803156.post-2036872401503582162007-10-13T11:30:00.000+05:002007-10-13T11:38:48.535+05:00SQL Injection Kiddie
Exploits of a Mom. XKCD.Xnet Solutionshttp://www.blogger.com/profile/04370065274796294966noreply@blogger.comtag:blogger.com,1999:blog-5019903961354803156.post-6098238673479228192007-09-22T11:56:00.000+05:002007-09-22T11:59:41.286+05:00Widespread DH Implementation Weakness: Conspiracy or Ignorance?September 18th, 2007 by Adam Bozanich
While developing an implementation of IKE for our platform, I noticed an astonishing behavior in the servers I was testing against: Not a single IKE implementation, which included products from the biggest names in network infrastructure, were validating the Diffie-Hellman public keys that I sent. A consequence of this is that any deployment of these serversXnet Solutionshttp://www.blogger.com/profile/04370065274796294966noreply@blogger.comtag:blogger.com,1999:blog-5019903961354803156.post-18214701593276264972007-08-14T20:12:00.000+05:002007-08-15T10:19:37.776+05:00ITCN 2007 Pictures Pakistan Federal Minister for Information Technology, Awais Ahmed Khan Leghari, takes a keen interest in Xnet Solutions network security products.
A birds-eye view of the Xnet Stand
The Xnet Marketing TeamXnet Solutionshttp://www.blogger.com/profile/04370065274796294966noreply@blogger.comtag:blogger.com,1999:blog-5019903961354803156.post-80947400181343640362007-08-13T16:13:00.000+05:002007-08-14T19:28:06.298+05:00ITCN 2007 Pictures - Getting readyXnet Solutionshttp://www.blogger.com/profile/04370065274796294966noreply@blogger.comtag:blogger.com,1999:blog-5019903961354803156.post-59933156871256517822007-07-30T10:25:00.000+05:002007-07-30T10:26:41.239+05:00Cisco Multiple Products Wireless ARP Requests Denial of ServiceSecunia Advisory: SA26161
Release Date: 2007-07-25
Last Update: 2007-07-27
Critical: Moderately critical
Impact: DoS
Where: From local network
Solution Status: Partial Fix
OS: Cisco 4400 Series Wireless LAN Controller
Cisco Catalyst 3750 Series Integrated Wireless LAN Controllers
Software: Cisco Catalyst 6500 Series Wireless Service Module (WiSM)
CVE reference: CVE-2007-Xnet Solutionshttp://www.blogger.com/profile/04370065274796294966noreply@blogger.comtag:blogger.com,1999:blog-5019903961354803156.post-5050759859374748032007-07-30T10:21:00.000+05:002007-07-30T10:24:01.938+05:00Panda Software AdminSecure Agent Heap Overflow VulnerabilityCVE ID:
CVE-2007-3026
Affected Vendor:
Panda Software
Affected Products:
Panda AdminSecure 2006
Vulnerability Details:
This vulnerability allows remote attackers to execute arbitrary code on affected installations of Panda AdminSecure. Authentication is not required to exploit this vulnerability.
The specific flaw exists within the AdminSecure agent which binds by default to TCP port Xnet Solutionshttp://www.blogger.com/profile/04370065274796294966noreply@blogger.com