January 2015 Meeting Notes

by IceQUICK 0 Comments

January 2015 Meeting
7:00pm to 9:00pm
5 people attended (0 first timers)

Discussion

HackerNews site: Windows 8.1 vulnerability
Lizard Squad
What is Anonymous up to lately?

DDoS mitigation – proactive vs reactive

Sony’s security staffing and what we’d do different

Should we get a new venue for future 2600 meetings? The Starbucks is getting kind of cramped

DEFCON/B-Sides plans

Field trip to DC303 group?
To-do: Tweet to @dc303 about good time to show up

Tech toys from Santa this Christmas?

Oil cooling computers (mineral oil in fishtanks, etc…)

IceQUICK

September 2014 Meeting Notes

by IceQUICK 0 Comments

September 2014 Meeting
7:00pm to 9:00pm
5 people attended (0 first timers)

Discussion

PhutureCon – Denver Oct 11

SSH via PKI certs instead of passwords

Trivia Night – Geeks Who Drink in Fort Collins

EFF and Tor operator t-shirt promotion (from June)

Hacking challenges at http://www.projectmentor.net/

Differences in RaspberryPi Models B and B+

Utilities
-BleachBit
-Flux

Text Editors
-gvim
-vim
-notepad++

NerdCore
-MC Frontalot
-YTCracker

Old school slang
-Warez
-HPVCA
-etc…

Another successful meeting…

IceQUICK

Russian Hackers disguise Kelihos bot as Anti-Government Software

Russian Hackers are spreading the Kelihos Trojan leading victims into believing that it is a software to hit Western Governments.

Kelihos botnet is still active and exploited by the cybercrime ecosystem to monetize its effort as discovered by security experts at Bitdefender. Cyber criminals have a single purpose, to earn money by any means, for this reason it is not surprising that Russian hackers are riding the interest on the conflict in Ukraine to serve malware via links found in spam emails purporting to support the Russian cause.

 

Russian Hackers disguise Kelihos bot as Anti-Government Software

After Impressive Emergency Landing, Harrier Jet Requires Tender 3D Printed Care

To get the jet repaired and back into the fleet as quickly as possible, technicians on the Bataan and designers at Fleet Readiness Center East (FRCE) at Marine Corps Air Station in Cherry Point, North Carolina 3D printed specialty forming tools to aid in the replacement of the jet’s damaged part.  First, FRCE aerospace engineer, Doug Greenwood, worked with a team aboard the Bataan to remove the Harrier’s nose cone to assess the situation inside.  Greenwood explains, “The hard landing damaged a portion of one of the structural frames in the nose cone.”

 

http://3dprintingindustry.com/2014/08/23/impressive-emergency-landing-harrier-jet-requires-tender-3d-printed-care/

CryptoWall Collects $1M+ in Six Months

The family of file-encrypting ransomware known as CryptoWall is proliferating quickly, with more than $1 million paid in ransoms to date. Though it became well-known in the first quarter of 2014, researchers believe that the malware is now accelerating to become the largest and most destructive ransomware threat on the internet.

http://www.infosecurity-magazine.com/news/cryptowall-snowballs-collecting-1m/

 

April 2014 Meeting

by IceQUICK 0 Comments

April 2014 Meeting
7:00pm to 9:00pm
6 people attended (0 first timers)

Discussion

DC303 field trip to Denver planned

TrueCrypt configuration
-Default AES vs double or triple bagging it (AES+TwoFish…)

IT (Admin and Security) Certifications
-Comparing reimbursement policies for various employer

SteamOS, Steam Streaming to lower powered computers

Using VMware ESXi 5 to run a virtual gaming machine using SteamOS, streaming

WPA2 hacking process
-Password salt
-Rainbow tables

Full Disk Encryption options

The old fingerprint login software for Windows that stored the username/password in the registry with 56-bit encryption

Lotus Notes(R) sucks

Domain controller event logs, password lockout
-Potential lulz by intentionally locking out coworkers
-Big lulz by intentionally locking out service accounts

PowerShell scripting games
Robocode game

Aaron Swartz…

Minecraft server mod – Client/server/floppy modules

Rust, 7 Days to Die on Steam

PvP glitches, MMO hacks

 

Another successful meeting…

IceQUICK

March 2014 Meeting

by IceQUICK 0 Comments

March 2014 Meeting
7:00pm to 9:15pm
7 people attended (0 first timers)

Discussion

I didn’t take any notes, but from memory…

  • Recent events involving people reporting on vulnerable systems being held liable for criminal charges
  • PhutureCon in Denver (http://phuturecon.com/) participation by this group
  • Nostalgia gaming (NES) on emulators with USB controllers
  • Advanced home networking
    • NAS
    • Gateway/firewall
    • Anti-virus recommendations
    • Anti-malware recommendations