Category Archive

The following new features are available for all enterprise and individual customers:

• Performance on flash drives is improved.
• MojoPac can be used on a host with limited mode login with MojoPac Usher (Beta) installed on the host.
• MojoPac can be installed to a directory on the host computer.
• For our Enterprise customers, MojoPac 1.8 has many enhanced management, provisioning and deployment capabilities.
• Active Directory authentication is now available.
• Image creation and deployment have been made easier.
• New configuration options are available to enforce data protection and security policies.
• MojoPac can perform a security check on host computers.  

If you are an IT administrator, please contact sales-at-ringcube dot com for updated documentation and management tools.

If you have automatic updates enabled, your MojoPac will update in the next few days.

If you are not using MojoPac, please download it. MojoPac Freedom is *free* for non-commercial personal use.

For more information and to download Mojopac, please visit them at:

http://www.mojopac.com/portal/content/splash.jsp

It is like a SecureID token but for your Mobile Phone. It is based on Java and provides 1024bit RSA encryption and GrIDsure’s ID technology. Want to learn more, then head to:

http://www.itsecurityportal.com/itsecurity_news.asp?articleid=260033

I have to admit, I thought this is like CommonWealth Bank’s NetCode SMS but it is clearly nothing like it. For more information on that go to:

http://demos.webcentral.com.au/netcode-sms.html

Do you live in the United Arab Emirates? Are you a hacker? Then this site is made for you! Get the latest hacking news, exploits, links, pod casts and more through this easy to use website.

Feel like you want to contribute to the site? Then drop us a line at: (hackers) at {marwan} dot [com].

http://WWW.UAEHACKERS.COM

If you have a USB Flash Disk (thumb drive ) then this software is a must have. It transforms your USB drive into a full featured Windows XP PC! A PC you can take with you anywhere you can take the flash disk to. Best of all, now it is available for free! Get it now!

http://www.mojopac.com

Now if someone can write a forensics paper on this

A simple idea that resulted in big fireworks! Just take the IP address information from wiki posts and cross it with DNS information from IP range owners and walla!

Still don’t know what this means? It means you can now find out if someone is editing their own wiki information (like deleting the bad stuff!… For shame!).

Good on you Virgil Griffith. I hope that you don’t edit your own wiki entry either

Here are the links:

• An MP3 interview with Virgil: http://www.abc.net.au/melbourne/stories/s2017196.htm?backyard
• http://virgil.gr/ his website
• WikiScanner http://wikiscanner.virgil.gr/

This tool answers the question: who really edits wikis? Now you know!

Here is something to get your appetite going. WIRED Magazine’s list of salacious edits:

• http://wired.reddit.com/wikidgame/

Download and read it! It is not small though about 8-10MB. News, articles, intreviews, book releases, software walk-throughs, and more.

Link: http://www.insecuremag.com

The software detects installed software and categorises them as either Insecure, End-of-Life, or Up-To-Date. Effectively enabling you to focus your attention on software installations where more secure versions are available from the vendors. Sounds good to you? Then head to:

https://psi.secunia.com/

I’ve been searching for iPhone unlocking sites and so far I found the sites below. I would like to emphasize that it is only a matter of time until a workaround can be found to use the iPhone with other providers other than AT&T. So, here are the two sites:

• The following blog post claims that it will send you an email with information about unlocking the iPhone once it is available for a small fee:
• http://unlockuriphone.blogspot.com/
• The following company mentioned in this “the register” article claims that it is close to unlocking the iPhone and that once it is able to do that, it will provide iPhone users with a $50 software that will unlock their phones for them:
• http://www.theregister.co.uk/2007/07/06/iphone_unlocking/

It is also worth noting that unlocking phones was ruled to be legal by the US copyright office last year.

If you don’t already have this one, please download and read this Computer Security Division NIST Interagency Report (IR). It was published in March 2007:

• http://csrc.nist.gov/publications/nistir/nistir-7387.pdf
• Zipped version of the pdf: http://csrc.nist.gov/publications/nistir/nistir-7387-pdf.zip

It is an update and complement to NIST Reports:

• Guidelines on Cell Phone Forensics (Special Publication 800-101):
• http://www.mysecured.com/?p=67
• Cell Phone Forensic Tools: An Overview and Analysis (NISTIR 7250):
• http://csrc.nist.gov/publications/nistir/nistir-7250.pdf

“Hitchhiker helps you to connect your Pocket PC to the wireless Internet. Simply click “Connect” and it will try all nearby public access points. Hitchhiker will handle all settings for you and perform complicated tests to ensure you can connect to the Internet in no time.”

The software can be downloaded from here:
http://www.kasuei.com/hitchhiker/

The site also has other useful freeware, so check it out.

4 days after I posted the “Must Have Applications for your Windows Pocket PC” I received an email saying that I should post the link from xda-developer wiki. Somebody sent it to me… I am not gonna say who, … Somebody   So here it is:
http://wiki.xda-developers.com/index.php?pagename=Must_have_tools

Enjoy

I know many people will look at this and go “We’ve seen this before… Cellular phone spying is not new” but I have to say that the technology is now more readily available than before. To understand what I am talking about, please read the following from zone labs:

• http://blog.zonelabs.com/blog/2007/04/they_can_hear_y.html
• http://blog.zonelabs.com/blog/2007/03/warning_this_ce_1.html

Also, visit this site:

• http://www.global-security-solutions.com/CellularSpyPhone.htm

Beware of cellphones left in your office, on your table at a coffee shop and in meetings. The FBI has been doing cell phone spying apparently:
http://www.youtube.com/watch?v=O61YfvPZGJs

The “Cryptography, Law Enforcement, and Mobile Communications ” article in IEEE’s Security and Privacy magazine sheds some light on the use of flashers in mobile forensics as well as the use of tools such as XRY. The article also mentions the use and importance of Faraday cages.

Here is a link to the full article:
Link.

Read what Prof. Rick Mislan said about the use of Phone Flasher Technologies and their role in the acquisition stage of mobile phone forensics and their use by students in digital forensics courses at Purdue University in the US.

http://www.physorg.com/news95611284.html

Matt’s Blog is not frequently updated but his site crypto.com is an excelent resource for all kinds of information. Make sure you check it out.

Ever wanted to show your mobile screen on a computer screen or a projector? You can now with Project-A-Phone! A picture is worth a thousand words.

http://www.projectaphone.com/index.htm

The Mobile Forensics blog by Michael Harrington has useful information on: SMS forensics, phone flashers, Faraday cages, forensics seizure procedures and much more. The site also includes posts on the forensic examination of BlackBerry devices. The blog was created in February 2007.

You can visit the blog here:

http://mobileforensics.wordpress.com/

The blog is frequently updated and links to Michael’s http://www.mobile-examiner.com/ website.  This site has online training and on-location training and it also has mobile forensic tools and a forum.

CellDEK™ is a portable handset data extraction kit designed for use at the scene of a crime and all working environments associated with on-going investigations. The kit is fully integrated within a ruggedised briefcase. It has approximately 10 hours of battery life and can be recharged through a vehicle, or mains electrical source. The website for the product is here:
http://www.celldek.com 

More information is also available through logicube:
http://www.logicubeforensics.com/products/hd_duplication/celldek.asp

It is privided in the UK by the Forensic Science Service® (FSS) a provider of forensic supplies to police forces in England and Wales. The FSS is also a source of training, consultancy and scientific support. FSS can be reached here:
http://www.forensic.gov.uk/

News, exploits, papers, views, and releases from information security enthusiasts. Has links to major hacker related security events as well. http://www.thc.org/

The project is looking for smart people (like you) to join in the fun. They are trying to build a cheap GSM scanner/receiver by using an ettus hardware board and the gnu-radio software. The reason the project got started is because GSM scanners cost a heap of money and that the builders of the site believe that the price is exaggerated and they could build a scanner/receiver for under a $1000 USD. This project’s aim is to help researchers learn more about GSM traffic or at least we hope so!

Need more info? Go here:

The project is looking for smart people (like you) to join in the fun. They are trying to build a cheap GSM scanner/receiver by using an ettus hardware board and the gnu-radio software. The reason the project got started is because GSM scanners cost a heap of money and that the builders of the site believe that the price is exaggerated and they could build a scanner/receiver for under a $1000 USD. This project’s aim is to help researchers learn more about GSM traffic or at least we hope so!

Need more info? Go here:
http://scratchpad.wikia.com/wiki/Gsm

The agent files are installed in the root of a USB mass storage devices, such as a USB flash drives, digital cameras and iPods.  The agent prompts the user to “install USB Device Driver” which is social engineering the thief into running the agent’s IP tracking and sending code! For more details visit their how it works section on:

http://www.gadgettheft.com

Yet another clever use of The pop-up window of USB devices. Best of all, the basic service is currently free

The Toronto Star, Canada’s largest daily newspaper, reports a spy-story where high security people has been tracked and tapped by using Canadians coins, able to capture and transmit voice data. This said, what next?
Read the full article at Spies put transmitters in Canadian coins

Here is an interesting concept, a dns service that corrects typos and adds some intelligence to the otherwise dumb dns service. It has a blacklist of bad phishing sites, it also has a big cache and a good network, at least its cache is probably bigger than your existing dns server. Give it a try, it is free.

http://www.opendns.com

Foundstone Hacme Casino™ is a learning platform for secure software development and is targeted at software developers, application penetration testers, software architects, and anyone with an interest in application security. This extensible online casino platform is written using Ruby on Rails and demonstrates the security problems that can potentially arise in these applications.

Link:
foundstone.com

The solution to online banking sucurity, according to the report is two factor authintication utilizing security tokens. 

Link:
http://ninemsn.video.msn.com/v/en-au/v.htm?g=949680da-9ced-4cf5-a92e-10a8a45b5e7d&f=39&fg=copy

A new service by a company called Synchronica can remotely make a Windows Mobile-based handset sound a high-pitched alarm so it can be found after it has been stolen or misplaced. The service also lets the user wipe his data remotely when he finds out that the mobile is stolen or lost.Link:
http://networks.silicon.com/mobile/0,39024665,39161849,00.htm

Codeen is a proxy server system created at Princeton University. I felt that I needed to tell you about it in relation to my paper on Tracing E-mail Headers. CoDeeN operates in the following manner:

1. Users connect to a proxy server nearest to them (or any proxy server in the codeen network).
2. Requests are then forwarded to a network node that has cached the file and that has sent recent updates showing that it is still alive (in the form of heartbeats). The file is then forwarded to the proxy and from there to the client.

Interesting for caching purposes but has the potential of becoming a nightmare for network forensics including web and email tracing. Abuse was addressed by CoDeeN in the following statement:

All accesses via CoDeeN are logged, mostly to aid in identifying abuse and other forms of damage control. We sometimes monitor these logs, report abuse, and release entries to aid in investigations. In case of suspicious traffic, we may access URLs from the logs to determine what kind of content is passing through our network. We are also using these logs in our own research, so they may be examined as needed for non-abuse reasons. For normal users, we do not expect that we will intentionally release any personally-identifying information. To prevent abuse, some sites have requested we pass along the client IP addresses, and these are included with every request forwarded to those sites.

 So, if you see a CoDeeN server IP in your logs, you know who to contact!

Links:
http://codeen.cs.princeton.edu/
http://en.wikipedia.org/wiki/Codeen

My Paper on Tracing E-mail Headers:
http://scissec.scis.ecu.edu.au/publications/forensics04/Al-Zarouni.pdf

Remember the stolen laptop incident?  “Which one?” you might ask! Well, there have been many of them lately. Search google news for “laptop stolen” and you are sure to find some news:
http://news.google.com.au/news?q=laptop+stolen

The question of the day is: If there are many protection machinisms against laptop and mobile device theft, then why isn’t anybody using them?

Some links:
Articles on the issue:
http://www.networkworld.com/news/2006/071706-mobile-users-security.html
http://www.dermatologytimes.com/dermatologytimes/article/articleDetail.jsp?id=100055

Hardware encryption option for laptops:
http://www.securesystems.com.au/pages/02_technology/01.htm

Tracking options for laptops:
http://mylaptopgps.com/
http://www.lojackforlaptops.com/
http://www.ztrace.com/
http://www.xtool.com/

I remember Phil telling me something about voice encryption a long time ago… I think it was in Techno-Security 2001! I guess this is the final product of that.  Well, it is still in Beta.

I love how Phil approached the VOIP encryption problem.  With Zfone, he uses a new protocol called ZRTP, which differs from other approaches that rely on PKI, key certification, trust models, certificate authorities, or key management. It is NOT a server based solution and it does perform its key agreements and key management in a pure peer-to-peer manner.

This has been a long time coming project for Phil and I wish him all the best with it.

Link:
http://www.philzimmermann.com/EN/zfone/index.html

Salvatore asked me for this, so here you go my friend.  It is not a new program though as it was out in 2005! It can track the CIDs (Cell IDs) of mobile phone towers around you, their LAC (Location Area Code) and their SIG (signal strength). Having that information can help in tracking the location of your mobile phone and the accuracy will depend a number of factors including the 3 above.