cyber uc meeting 59
play

Cyber@UC Meeting 59 Actually Doing Star Night! If Youre New! Join - PowerPoint PPT Presentation

Jul 20, 2023 •287 likes •525 views

Cyber@UC Meeting 59 Actually Doing Star Night! If Youre New! Join our Slack: ucyber.slack.com SIGN IN! (Slackbot will post the link in #general) Feel free to get involved with one of our committees: Content Finance Public

  1. Cyber@UC Meeting 59 Actually Doing Star Night!

  2. If You’re New! ● Join our Slack: ucyber.slack.com SIGN IN! (Slackbot will post the link in #general) ● Feel free to get involved with one of our committees: ● Content Finance Public Affairs Outreach Recruitment ● Ongoing Projects: RAPIDS Lab! ○

  3. Announcements ● Hope you all enjoyed the 4th of July! US Bank VIP visiting next Wednesday at 2pm ! ● We need to nail down what we want in a logo ● ● Working out our budget!

  4. Public Affairs Useful videos and weekly livestreams on YouTube : youtube.com/channel/UCWcJuk7A_1nDj4m-cHWvIFw Follow us for club updates and cybersecurity news: Twitter: @CyberAtUC ● Facebook: @CyberAtUC ● ● Instagram: @CyberAtUC For more info: cyberatuc.org

  5. Weekly Content

  6. Trustwave sued over failure to detect malware ● Heartland was subject to a major breach in 2009 Details for >100 million payment cards from >650 customers were stolen ○ ● Heartland paid >$148 million in settlement fees ● Two insurance firms paid Heartland 20 and 10 million respectively Civil suit filed in late June claims Trustwave failed to honor the service ● contract ● Claim Trustwave failed to detect an attacker used a SQL Injection attack to breach Heartland in 2007 Trustwave also allegedly failed to detect malware installed on payment ● processor servers in 2008

  7. Trustwave (Continued) ● Lawsuit points out that Trustwave did not detect any suspicious activity during its security audits provided to Heartland for almost two years which included PCI DSS compliance and attestation ● Visa’s review of Heartland’s servers found that Trustwave incorrectly certified Heartland as PCI DSS compliant Lawsuit claims Visa discovered Trustwave ignored that Heartland didn’t run a ● firewall, used vendor-supplied passwords, didn’t have sufficient protection for the storage system used for card data, didn’t have unique identification for each user, didn’t monitor servers and data at regular intervals-comp rules Trustwave states they did not manage Heartland InfoSec ●

  8. IOS USB restricted mode bypass ● IOS 11.4.1 added usb restricted mode feature, designed to make it harder to break into an iphone/ipad through the data port Disables data connection capabilities of the lightning port if the device has ● been locked for >=1 hour, still allows charging ● Attaching a USB device within 1 hour of locking will reset the timer Pressing the power button five times will apparently immediately enter the ● device into USB restricted mode https://thehackernews.com/2018/07/bypass-ios-usb-restricted-mode.html

  9. Hybridized malware, is your computer worth it? ● New variant of Rakhni ransomware judges your computer and decides on the most profitable malware scheme If you computer is deemed worthy infecting it will choose between a ● ransomware and a cryptominer ○ Ransomware: Bitcoin folder in AppData section ○ Cryptominer: no Bitcoin folder in AppData and >= 2 logical processors ○ Worm: neither of the above, worms onto other computers in local network Initially infects through a malicious word file sent through phishing email ● https://thehackernews.com/2018/07/cryptocurrency-mining-ransomware.html

  10. Recommended Reading https://www.welivesecurity.com/2018/07/11/polar-flow-app-exposes-geolocation -data-soldiers-secret-agents/ https://www.welivesecurity.com/2018/07/02/principle-least-privilege-strategy/ https://thehackernews.com/2018/07/facebook-cambridge-analytica.html https://thehackernews.com/2018/07/intel-spectre-vulnerability.html https://thehackernews.com/2018/07/arch-linux-aur-malware.html https://thehackernews.com/2018/07/gaza-palestin-hacker.html

  11. Recommended Reading (continued) https://krebsonsecurity.com/2018/07/exxonmobil-bungles-rewards-card-debut/ https://krebsonsecurity.com/2018/07/notorious-hijack-factory-shunned-from-web / https://krebsonsecurity.com/2018/06/plant-your-flag-mark-your-territory/

  12. GitHub Star Night!

  13. Rickify https://github.com/kjempelodott/rickify Spotify for Android streams over insecure HTTP for a few secs when it starts. ● ● This Python script MITMs the app to replace the audio with "Never Gonna Give You Up".

  14. More stars from Hayden ● Scripts that make PHP segfault: github.com/hannob/php-crashers Encryption/encoding/etc Swiss army knife: github.com/gchq/CyberChef ● Just visit it and find out... superlogout.github.io ●

  15. Not a Star but a Cool Site https://car.mitre.org/caret/#/ - Based on MITRE’s ATT&CK Matrix - Outlines various APT groups - Shows techniques known to be used by each group - Notes the analytical data to detect on each technique - Includes sensors used to grab specified data

  16. WiFi Pumpkin! https://github.com/P0cL4bs/WiFi-Pumpkin - Software that can be used to make your own “wifi pineapple” - Claims to support partial HSTS bypass - Phishing manager - MITM capabilities - Planning on using this for my HackPack project :)

  17. Mobile Security Framework https://github.com/MobSF/Mobile-Security-Framework-MobSF - Supports dynamic analysis of Android iOS Windows apps - Would be awesome to setup in our lab - They have a docker image :) - Looks like a Cuckoo type of project but focused on mobile

  18. Iodine! DNS Tunneling https://github.com/yarrick/iodine - Very popular way to exfiltrate data from isolated environments - Worth while for us to learn how to use for red v blue missions - Allows you to tunnel IPv4 data through DNS Server - DNS queries are typically allowed

  19. Cuckoo! Malware Sandbox https://github.com/cuckoosandbox/cuckoo - I plan to set this up in our lab - Most sandboxing services are modified Cuckoo instances - Highly configurable - Integrates with Suricata, Moloch, MISP, VT, and more! - We already have some experience in setting this up.

  20. WinPwnage https://github.com/rootm0s/WinPwnage - Full of: - Payload scripts - Scanning scripts for flying undetected - Helpful links - Commented code :)

  21. Chris Morrison’s Stars Page ● (Red) https://github.com/dafthack/DomainPasswordSpray (Red) https://github.com/deepzec/Bad-Pdf ● (Radio) https://github.com/ChristopheJacquet/PiFmRds ● ● (Blue) https://github.com/EgeBalci/The-Eye ● (Red) https://github.com/securestate/king-phisher (Misc) https://github.com/KnightOS/KnightOS ● (Red) https://github.com/0x90/wifi-arsenal ● ● (Red) https://github.com/offensive-security/exploit-database ● (Red) https://github.com/mattifestation/PowerShellArsenal (Blue) https://github.com/jpr5/ngrep ● (Radio) https://github.com/jopohl/urh ●

  22. Invoke-WMILM https://github.com/Cybereason/Invoke-WMILM Neat post-exploitation script for launching processes on locally networked ● windows machines (pivoting) *Also nice for remote installs if you don’t have any remote management tools installed

  23. Just For Fun https://github.com/g0tmi1k/VulnInjector https://github.com/chrislgarry/Apollo-11 https://github.com/NiklasFauth/hoverboard-firmware-hack https://github.com/google/gif-for-cli

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Cyber@UC; Meeting 28 Cyber Kill Chain If Youre New! Join our Slack ucyber.slack.com

Cyber@UC; Meeting 28 Cyber Kill Chain If Youre New! Join our Slack ucyber.slack.com

Cyber@UC; Meeting 28 Cyber Kill Chain If Youre New! Join our Slack ucyber.slack.com Follow us on Twitter @UCyb3r and Facebook UC.yber; University of Cincinnati OWASP Chapter Feel free to get involved with one of our committees:

430 views • 23 slides
NSF Activities in Cyber Trust NSF Activities in Cyber Trust NSF Activities in Cyber Trust For

NSF Activities in Cyber Trust NSF Activities in Cyber Trust NSF Activities in Cyber Trust For

NSF Activities in Cyber Trust NSF Activities in Cyber Trust NSF Activities in Cyber Trust For ACM CCS I ndustry/ Govt Track Oct. 26, 2004 Carl Landwehr ( clandweh@nsf.gov ) Cyber Trust Coordinator National Science Foundation What s the

439 views • 17 slides
CYBER CYBER-SAFETY CYBER CYBER SAFETY SAFETY SAFETY BASICS BASICS Engineering Staff College

CYBER CYBER-SAFETY CYBER CYBER SAFETY SAFETY SAFETY BASICS BASICS Engineering Staff College

3/29/2012 CYBER CYBER-SAFETY CYBER CYBER SAFETY SAFETY SAFETY BASICS BASICS Engineering Staff College of India I N T R O D U C T I O N What is Cyber-safety Consequences Threats of Inaction Cyber-safety? Cyber-safety Cyber-safety at

215 views • 7 slides
What is Cyber Crime? Cyber Enabled Crime Cyber Dependant Crime Traditional crime that is

What is Cyber Crime? Cyber Enabled Crime Cyber Dependant Crime Traditional crime that is

R egional C yber C rime U nit DC Louise Gibson Prepare, Prevent & Protect What is Cyber Crime? Cyber Enabled Crime Cyber Dependant Crime Traditional crime that is enhanced in scale or Crimes that can only be committed solely reach by use

316 views • 9 slides
Cyber Security Risk Using the Cyber Security Measurement Framework Cyber Security Framework

Cyber Security Risk Using the Cyber Security Measurement Framework Cyber Security Framework

Cyber Security Risk Using the Cyber Security Measurement Framework Cyber Security Framework Reporting Objectives Executive Summary Information Assess Current Cyber Security Posture Measure Progress Toward Improvement Assess

634 views • 5 slides
The Cyber Threat: Securing Cyber Infrastructure Overview What are the FBIs Priorities?

The Cyber Threat: Securing Cyber Infrastructure Overview What are the FBIs Priorities?

The Cyber Threat: Securing Cyber Infrastructure Overview What are the FBIs Priorities? What is the FBIs Cyber Structure? HQ Division Dedicated Cyber squads in all 56 field offices, including satellite locations overseas.

1.54k views • 14 slides
Strategic Priorities Assurance Board Cyber and Cyber Enabled Crime Introduction Cyber

Strategic Priorities Assurance Board Cyber and Cyber Enabled Crime Introduction Cyber

Strategic Priorities Assurance Board Cyber and Cyber Enabled Crime Introduction Cyber Dependent crime examples of these offences are Distributed Denial of Service attack (DDOS), Account Compromise (hacking), Malware (virus) and

237 views • 7 slides
FEMA Region III Cyber Security Program Maryland Cyber Security Workshop (January 16, 2019)

FEMA Region III Cyber Security Program Maryland Cyber Security Workshop (January 16, 2019)

FEMA Region III Cyber Security Program Maryland Cyber Security Workshop (January 16, 2019) (Presented again at the October 16, 2018, meeting of the Maryland Cybersecurity Council and published with permission.) Overview Current Landscape

560 views • 23 slides
Cyber Security February - 2016 Agenda Overview of Cyber Crime The top cyber threats to UK

Cyber Security February - 2016 Agenda Overview of Cyber Crime The top cyber threats to UK

Cyber Security February - 2016 Agenda Overview of Cyber Crime The top cyber threats to UK businesses and how to remain safe What help is available Further reading Setting the scene 21.2bn The cost of fraud to the

304 views • 19 slides
Mark Fernandes Principal, Cyber Risk Services + FUTURE OF CYBER CYB CYBER SINGU GULAR ARIT

Mark Fernandes Principal, Cyber Risk Services + FUTURE OF CYBER CYB CYBER SINGU GULAR ARIT

Mark Fernandes Principal, Cyber Risk Services + FUTURE OF CYBER CYB CYBER SINGU GULAR ARIT ITY How cyber is becoming a key aspect of the ubiquity generation. CYBER SUMMIT More to come 3 2018 Deloitte Cyber Risk Services 4 2018

514 views • 19 slides
Latest in Cyber Security November 7, 2013 TCIPG Annual Meeting Douglas Maughan Division

Latest in Cyber Security November 7, 2013 TCIPG Annual Meeting Douglas Maughan Division

Homeland Security Advanced Research Projects Agency A View from Washington: The Latest in Cyber Security November 7, 2013 TCIPG Annual Meeting Douglas Maughan Division Director http://www.dhs.gov/cyber-research Presentation Outline

794 views • 32 slides
CYBER SECURITY PROTECTING AGAINST CYBER FRAUD IN SCALEUP COMPANIES AND WHAT TO DO SHOULD THEY

CYBER SECURITY PROTECTING AGAINST CYBER FRAUD IN SCALEUP COMPANIES AND WHAT TO DO SHOULD THEY

CYBER SECURITY PROTECTING AGAINST CYBER FRAUD IN SCALEUP COMPANIES AND WHAT TO DO SHOULD THEY HAPPEN London June 2019 INTRODUCTION Cyber Security The activity or process, ability or capability, or state whereby information and

735 views • 24 slides
Cy Cyber ber La Lay of the he La Land nd What the Numbers Tell Us Cyber r Lay of f the

Cy Cyber ber La Lay of the he La Land nd What the Numbers Tell Us Cyber r Lay of f the

Cy Cyber ber La Lay of the he La Land nd What the Numbers Tell Us Cyber r Lay of f the Land: : Wh What t the Numbe mbers rs Tell l Us Visit www.advisenltd.com at the end of this webinar to download: Copy of these slides

722 views • 31 slides
Cyber@UC Meeting 35 Exploit ALL the vulnerabilities! If Youre New! Join our Slack

Cyber@UC Meeting 35 Exploit ALL the vulnerabilities! If Youre New! Join our Slack

Cyber@UC Meeting 35 Exploit ALL the vulnerabilities! If Youre New! Join our Slack ucyber.slack.com Follow us on Twitter @UCyb3r and Facebook UC.yber; University of Cincinnati OWASP Chapter Feel free to get involved with one of

563 views • 11 slides
Cyber@UC Meeting 63 Contributing to the Website If Youre New! Join our Slack:

Cyber@UC Meeting 63 Contributing to the Website If Youre New! Join our Slack:

Cyber@UC Meeting 63 Contributing to the Website If Youre New! Join our Slack: ucyber.slack.com SIGN IN! (Slackbot will post the link in #general every Wed@6:30) Feel free to get involved with one of our committees: Content

491 views • 14 slides
Cyber@UC Meeting 67 Bash and OverTheWire If Youre New! Join our Slack:

Cyber@UC Meeting 67 Bash and OverTheWire If Youre New! Join our Slack:

Cyber@UC Meeting 67 Bash and OverTheWire If Youre New! Join our Slack: cyberatuc.slack.com (URL changed!) SIGN IN! (Slackbot will post the link in #general every Wed@6:30) Feel free to get involved with one of our committees:

594 views • 16 slides
DIY Marketing for Your Library Maine Library Association Annual Conference 2017 Presented by

DIY Marketing for Your Library Maine Library Association Annual Conference 2017 Presented by

DIY Marketing for Your Library Maine Library Association Annual Conference 2017 Presented by Brad Beauregard Public Relations Manager at Fogler Library Whats this all about? The Workshop About the Presenter Simplify marketing, public

334 views • 18 slides
UBC Virtual Physics Circle The Hackers Guide to Physics David Wakeham May 14, 2020 Overview

UBC Virtual Physics Circle The Hackers Guide to Physics David Wakeham May 14, 2020 Overview

UBC Virtual Physics Circle The Hackers Guide to Physics David Wakeham May 14, 2020 Overview Welcome to the UBC Virtual Physics Circle! Next few meetings: The Hackers Guide to Physics. Dont worry. Well be only be breaking

376 views • 33 slides
Family and Community Engagement Network BUREAU OF WORKERS COMPENSATION, PICKERINGTON OCTOBER

Family and Community Engagement Network BUREAU OF WORKERS COMPENSATION, PICKERINGTON OCTOBER

This year's winning pumpkin weighed in at 2,517.5 pounds! Family and Community Engagement Network BUREAU OF WORKERS COMPENSATION, PICKERINGTON OCTOBER 16, 2019 Amy Luttrell won the 2019 Margaret Burley Family Impact Award! Wacky Family

698 views • 27 slides
Lecture 13: Machine Translation Julia Hockenmaier juliahmr@illinois.edu 3324 Siebel Center

Lecture 13: Machine Translation Julia Hockenmaier juliahmr@illinois.edu 3324 Siebel Center

CS447: Natural Language Processing http://courses.engr.illinois.edu/cs447 Lecture 13: Machine Translation Julia Hockenmaier juliahmr@illinois.edu 3324 Siebel Center Lecture 13: Machine Translation e n i h c n a o M i t a l s s

493 views • 34 slides
Identifying Information Disclosure in Web Applications with Retroactive Auditing Haogang Chen ,

Identifying Information Disclosure in Web Applications with Retroactive Auditing Haogang Chen ,

Identifying Information Disclosure in Web Applications with Retroactive Auditing Haogang Chen , Taesoo Kim, Xi Wang Nickolai Zeldovich, and M. Frans Kaashoek MIT CSAIL Data breach: an enduring problem Data breach: an enduring problem What

1.22k views • 103 slides
Kindergarten Orientation The first day of kindergarten is an exciting and important milestone in

Kindergarten Orientation The first day of kindergarten is an exciting and important milestone in

Kindergarten Orientation The first day of kindergarten is an exciting and important milestone in the lives of children and their families. Kindergarten provides a solid foundation for academic achievement and success in elementary school and

574 views • 19 slides
Func%ons Func%ons are groups of statements to which you

Func%ons Func%ons are groups of statements to which you

Func%ons Func%ons are groups of statements to which you give a name. Defining a func%on uses the " def " keyword. That group of

626 views • 27 slides
Lake Park Elementary School Student Advisory Council SAC October 23, 2019 6:00 pm Lake Park

Lake Park Elementary School Student Advisory Council SAC October 23, 2019 6:00 pm Lake Park

Lake Park Elementary School Student Advisory Council SAC October 23, 2019 6:00 pm Lake Park Elementary School Media Center Principal's Message Mrs. Fleming Principals Report: State of the School as of 10.23.19 A+ Money / School

447 views • 23 slides

More recommend