Posts by Jim Cosser

*Vulnerability, not exploit.

Re: No chance

Not to mention pay, I have friends contracting to local authorities on a good day rate (let's not get into IR35) but the permanent rates of pay are dire, that seems to apply across the public sector when it comes to InfoSec roles.

They seem to be around 30% off the average salary.

I agree about the fleet autonomous vehicles but I think the Powerwalls are unrelated, they are a benefit if you have solar rather than directly related to private vs fleet autonomous vehicles.

There are interim advances being made where the privately owned elec vehicles can be used in a similar way to a powerwall but it's not likely to benefit the consumer unless your car is parked at home all day being charged on solar, it seems like it's a big boost to smoothing out the peaks in the grid.

Re: Pollution impact

The vast majority of plastic products are single use, that's the main problem, cars don't really fit the bill there...

Re: 16 billion

I agree price would decline (and needs to) but the market will dramatically increase, a patent on something revolutionary in that energy storage sector would be of real value.

^ This 'We take security very seriously, we have reviewed and improved our processes' I'd much rather have someone say 'I dropped one here' as this guy has.

Re: Cybercriminals and open source exploit code

Find a vulnerability on the machine that will allow remote code execution (Scanning with Nessus/OpenVAS whatever floats your boat) and set meterpreter as the payload within Metasploit...Done

Escalate privs if required, dump hashes, have fun.

Re: Insiders as a threat

It doesn't change the problem but it likely increases the scope, the ability to monetise financial information without these kind of forums in a safe way is more difficult.

When it comes to purposefully installing malware it again it removes the requirement to handle the end to end engagement as well as plausible deniability.

I think it's a significant shift.

Re: Sympathy for the Devil

I'd be really surprised if the weaknesses that are public with the D-Link products are forced on them by government organisations. I suspect occams razor, it's more likely a lack of focus on security.

Why bother forcing someone if there are plenty on table just through incompetence?

Re: Huh?

Hacking is a pretty broad term these days, many people including social engineering/phishing within hacking.

Re: Is this an article from the future?

That or he has been arrested a LOT

Re: Lawyer speak

I get your point but I think it's over egged. A statement to say they are secure would be meaningless I agree, but that wasn't what was proposed, industry best practice salted and hashed is different from the statement 'they are secure', but it's also a huge improvement on not giving any details in that area.

Recommendations to change if re-used elsewhere would be issued anyway as you point out, why not?

As we know it's all about time and effort to crack rather than it being impossible to break.

Re: Excellent

Agreed, technologies such as this:

http://www.getfreevolt.com/

Will help IoT explode.

Re: And this will KEEP happening...

I think the GDPR will change the priority, the stick is now pretty large.

Re: There are no legal issues! The tool doesn't attack the hacker!

Ok replying to a REALLY old thread here but I'm reading up on this in general.

I agree you aren't attacking the AP as such but you would be denying anyone connecting to it, so is it no longer functioning? Are you denying service? Yes, obviously that is the point of the Deauth.

So it is kind of a DoS on equip you don't own but for the greater good...I think it's grey at best.

Re: Secret questions and answers

True true

Re: What is the attack vector ?

This is changing with things like self service in the UK, we have a greater exposure to the user.

Also these machines don't exist in a network vacuum as such depending on how the network is configured there is exposure here.

With regards to prevention, it seems like a no brainer candidate for application whitelisting.

True there are different motives but the only motive here is money, Stuxnet isn't really comparable it was also low and slow trying to hide itself and the damage it was doing for as long as possible.

It's a profit exercise, as another poster points out sometimes to stop these kind of things as a government you would need to show your hand in terms of tooling and control. It doesn't always mean they couldn't stop the attackers just that it's a balance.

It could be a government but I think it's way less likely than an organised crime group.