TekDefense

I’m not sure how “crazy” these IT “tricks” are but this is a good collection of tips especially for those that are new to the field.  For those of you in the DoD, you’ll recognize many of these tips from STIGs.  There are a couple gems in this though.

There were so many articles this week on the Yahoo Voice (Associated Content) data breach, it was really hard to choose one (You’ll find another in the honorable mentions).  Yahoo was subject to a basic SQL injection attack that lead to a dump of over 450,000 email addresses and passwords.  In an effort to make this as easy as possible for the attackers, Yahoo graciously left passwords in clear text.  Email and password combinations were posted publically.  Good news is someone should be able to make a decent dictionary out of this.

Warp Trojan infects machines via the normal java/adobe exploits, but once a machine is compromised Warp shows why it is unique.  Warp will send ARP requests to the local networking devices in an attempt to falsely display itself as a router.  Once a networking device is fooled, subnet traffic is routed through the infected machine for man in the middle fun.

Not much to say on this one except be prepared.  These 88 patches will most likely not address the zero day for 11g that we spoke to previously.

As if the Yahoo breach wasn’t enough, last week we also received news of passwords being dumped from NVIDIAs forums.  At least they didn’t store the passwords in clear text.