Edição 60 - 07.12.08

Duracao de 1 hora e 11 minutos e 11 segundos



Eventos
-------


FRHACK 01 Call For Papers



Eurosec 2009 CFP




Notícias
--------

Getting OpenID Into the Browser




Homem culpa falha no Iphone por traição




AntiSpam Humano



H2Hc Review

GTS Review

YSTS Review







Baixe o mp3 diretamente daqui.

Fim das Férias

Estamos devendo a edição 60 do Podcast. O período pré e pós YSTS 2.0 foi bastante intenso e ainda não conseguimos conciliar uma agenda para gravarmos, mas podem ter certeza que estamos preocupados com isso e nos empenhando para gravar o quanto antes.
Enquanto isso, voces podem se divertir com algumas coisas:

Fotos do YSTS 2.0
Fotos da Festa do YSTS 2.0

Recordar é viver, vejam também:

Videos das palestras do YSTS 1.0
Video das fotos do YSTS 1.0 (avi e m4v)

Pérolas e erros de Gravação do I Sh0t the Sheriff, clips 1 e 2.

Edição 59 - 26.10.08

51 minutos de duracao


Eventos


you sh0t the sheriff 2.0 updates

GTS e H2HC tambem chegando


Notícias

Kevin Mitnick detained, released after Colombia trip



Preventing Use of Recursive Nameservers in Reflector Attacks



NSA’s secrets to writing zero defects secure code


Is the World Bank really compromised?



Up next: Cellular botnets, cybermilitias


Baixe o mp3 diretamente daqui.

Edição 58 - 12/10/2008

1 hora e 4 minutos


Eventos


Videos da Ekoparty 2007



(de novo, mas agora sim: Todos os videos do YSTS 1.0)



Videos da Shmoocon



Um monte de outros videos de conferencias



Shmoocon CFP



21st First CFP



Malware Challenge




Notícias


World’s first unclonable RFID chip



UAE banks hit by surge in ATM fraud



MI6 Camera With Secret Images Bought on eBay for $30

Captcha Duca

Chip permitirá controlar filhos jovens ao volante


Asus admits Eee Box mini PC shipped with virus



Russian researchers achieve 100-fold increase in WPA2 cracking speed



WarGames: 25 Years Later


Baixe o mp3 diretamente daqui.

Edição 57 - 07.09.08

1 hora e 10 minutos


Eventos


HackIT 08



PAM 2009


CFP da h2hc


T2´08 Challenge is on!
http://www.t2.fi/


If you missed out on BlueHat v7 check out all abstracts, bio and podcast videos here


BlueHat Blog is here http://blogs.technet.com/bluehat/


Notícias


Tick Tack


DVD multiIso security live CD



Distack - A Framework for Distributed Anomaly-based Attack Detection



Linha Defensiva lança BankerFix 3.0



New MySpace and Facebook Worm Target Social Networks



Russian hackers hit Warwick Telephone




http://blogs.zdnet.com/security/?p=1835


Letter lottery defines spam load



Twitter Targeted by Malware Distributors


Google finds no privacy on private roads



Quadrilhas vendem acesso a dados sigilosos de brasileiros


Boston Court's Meddling With 'Full Disclosure' Is Unwelcome


Did corporate lawyers put kibosh on 'Mythbusters' RFID episode?


Baixe o mp3 diretamente daqui.

Edição 56 - 24.08.08

46 minutos

Eventos


ToorCon 2008 CfP
August 4th, 2008 - Call for papers released
August 22nd, 2008 - First round of selection announced
August 29th, 2008 - Call for papers closes
September 5th, 2008 - Speaker & sponsor selection finalized
September 24th, 2008 - ToorCon training workshops start
September 26th, 2008 - ToorCon seminars & conference reception
September 27th, 2008 - ToorCon conference 50-minute talks
September 28th, 2008 - ToorCon conference 20-minute talks


IT Security Conference 2008, UK



Notícias


Introducing Keyczar



Understanding the Web browser threat:
Examination of vulnerable online Web browser populations and the "insecurity iceberg"



Judge lifts MIT students' card-hacking gag order



Spam and Malware Ecosystem Targeting Brazilian Users with YouTube and Adobe Flash Themes


First-Ever Photo Tour of Defcon's Network Center



Delta Air Lines terá Internet sem fio em vôos


Georgia Cyberwar Overblown




Baixe o mp3 diretamente daqui.

Todos os videos do You Sh0t the Sheriff 1.0

Finalmente todos os videos do YSTS 1.0 estão no ar. A maioria das palestras em PDF tambem.

Divirtam-se.

Abertura do Luiz Eduardo
Video Palestra

Nick Farr - Building the Global Hacker Community
Video Palestra

Augusto P. de Barros - Detecção de ameaças internas: Alternativas, tendências e novidades
Video Palestra

Luis Miras - Reverse engineering analysis of various vulnerabilities
Video Palestra

Eduardo Neves - Sobrevivendo no Mercado: As Carreiras em Segurança da Informação
Video Palestra

Rodrigo R. Branco - KIDS - Kernel Intrusion Detection System
Video Palestra

Mike Reavey - MSRC’s historical perspective on security ecosystem
Video

Adriano Cansian - Forjando o código: Desafios e progressos da formação profissional em segurança
Video Palestra

Felix "FX" Lindner - iPhone vs. Windows Mobile vs. BlackBerry vs. Symbian
Video (probleminhas com o Google Video. Estamos verificando)

Eldon Sprickerhoff - Attacks of Nortel VoIP Implementations
Video Palestra

Emmanuel Goldstein
Video (probleminhas com o Google Video. Estamos verificando)

Edição 55 - 12.08.08

Edição especial Blackhat 2008 & DefCon 16

Billy, Nelson e Luiz se encontram em Las Vegas e falam dos eventos da semana.

Atualização: DefCon teve mais de 9000 pessoas

Baixe o mp3 diretamente daqui.

Edição 54 . 27.07.08

1 hora e 3 minutos

Eventos


ClubHack2008


ekoparty security trainings (2008)

OwnTheBox @ DC16: Pwning for dollars



Notícias


Lynis


Kaspersky claims remote DoS against all Intel chips


Stop using Google, it's dangerous!



Mais sobre o hype do DNS


Comentarios sobre a The Last HOPE

E video da keynote do Adam Savage do MythBusters na The Last HOPE.

Baixe o mp3 diretamente daqui.

Edição 53 - 13.07.08

1 hora e 4 minutos

Eventos


MEITSEC 2008


The Pwnie Awards



Hackers to Face Off in Black Hat 'Iron Chef' Contest



Audio do Webinar 1 da BlackHat USA

Notícias


Fusil the fuzzer is a Python library used to write fuzzing programs.



How your GPS can dob you in

DHS Official Considered Shock Collars For Air Travelers


SUBSTITUTIVO (ao PLS 76/2000, PLS 137/2000 e PLC 89/2003)


Tudo sobre o hype do DNS

ISC


ZDNET


SC Magazine


Information Week


Matasano


Arbor ASERT


Audio do Press-Release do Dan Kaminsky


Baixe o mp3 diretamente daqui.

Edição 52 - 06.07.08

1 hora e 3 minutos

Eventos
-------


Deepsec videos online

BA-Con Argentina 2008


25C3 Call for Papers



This is the ever-evolving site for the film HACKERS ARE PEOPLE TOO



Notícias
--------


Image Fulgurator


Seqüestro de domínios do ICANN e IANA



Steganography of VoIP streams


Spy Cams in Planes Would Track Facial Expressions for Terrorism and 'Air Rage'



New DNSChanger Trojan “hacks” into routers


iPhoneDbg Toolkit



Symbian Jailbreak


Security firm asks for help cracking ransomware key


Baixe o mp3 diretamente daqui.

Edição 51 - 08.06.08

powered by ODEO


47 minutos e 22 segundos

Eventos
-------


T2'08: Call for Papers 2008

Call for Papers Hack.lu 2008


Bellua Cyber Security Asia 2008


The Bug Magazine edição adios amigos

Black Hat-USA 2008, The Forbidden Sneak Peek


Notícias
--------

Group wants Wi-Fi banned from public buildings

Cresce mercado de prevenção de intrusos em redes sem fio

Firefox Infects Vietnamese Users With Trojan Code

Mulher pode pegar 20 anos de prisão por criar perfil falso

Cyber Incident Blamed for Nuclear Power Plant Shutdown

New company designs RFID firewall


Hackers Find a New Place to Hide Rootkits

Baixe o mp3 diretamente daqui.

Edição 50 - 04.05.2008

powered by ODEO

1 hora e 3 minutos

Eventos


IMF 2008
4th International Conference on
IT Incident Management & IT Forensics
http://www.gi-ev.de/fachbereiche/sicherheit/fg/sidar/imf/imf2008/index.html


T2´08 conference,
http://www.t2.fi/


Kiwicon - New Zealand's Hacker Con
http://www.kiwicon.org/


Index of /hitbsecconf2008dubai/materials
http://conference.hitb.org/hitbsecconf2008dubai/materials/


DefCon contest has vendors worried
http://www.thetechherald.com/article.php/200818/842/DefCon-contest-has-vendors-worried
e
http://www.informationweek.com/blog/main/archives/2008/04/will_code_virus.html


Notícias


Bancos online não prestarão suporte a usuários de PCs inseguros
http://computerworld.uol.com.br/seguranca/2008/04/18/bancos-online-nao-prestarao-suporte-a-usuarios-de-pcs-inseguros/


Juiz solta piratas virtuais, mas exige que leiam obras clássicas
http://www1.folha.uol.com.br/folha/informatica/ult124u394778.shtml


Automatic Patch-Based Exploit Generation
http://techbuddha.wordpress.com/2008/04/24/automatic-patch-based-exploit-generation/


Computer hacker testifies against News corp
http://www.reuters.com/article/blogBurst/technology?type=technologyNews&w1=B7ovpm21IaDoL40ZFnNfGe&w2=B8jR2GIu7TLKBj1N4Ufg5Sg&src=blogBurst_technologyNews&bbPostId=B1ZjqRi8apHfCz9bslrPLhVeFB7kC6bxL7Lk3BzeKtP35nPsd&bbParentWidgetId=B8jR2GIu7TLKBj1N4Ufg5Sg


Bluetooth surveillance secretly tested in the city of Bath
http://arxivblog.com/?p=376


Segurança em TI: profissionais jovens dificultam trabalho de CIOs
http://www.convergenciadigital.com.br/cgi/cgilua.exe/sys/start.htm?infoid=13570&sid=46

Baixe o mp3 diretamente daqui.

Edição 49 - 21.04.2008

powered by ODEO

Uma hora e um minuto de duracao

Eventos
-------

SyScan'08 Singapore - Call for Paper
http://www.syscan.org/sg/indexsg.html

Phrack 65
http://www.phrack.org/




Notícias
--------

The Top 100 Alternative Search Engines
http://www.readwriteweb.com/archives/top_100_alternative_search_engines.php


Open Source Computer Emergency Response Team
http://www.ocert.org/


MetaGoofil - Metadata analyzer, information gathering tool
http://www.edge-security.com/metagoofil.php


THC is sharing their thoughts on a blog starting from TODAY.
http://blog.thc.org


Woman 4 Times More Likely Than Men To Give Passwords For Chocolate
http://www.eskenzipr.com/page.cfm/T=m/Action=Press/PressID=202

Entrevista com Convidado Especial: Marcos Machado

Baixe o mp3 diretamente daqui.

Edição 48 - 13.04.2008

powered by ODEO


1 hora e SEIS minutos

Eventos
---

Shakacon 2008
http://www.shakacon.org/


POC2008 - Power of Community
http://www.powerofcommunity.net/home.html


ICCYber
http://www.iccyber.org/2008/portugues/index.html





Notícias
--------

Adobe claims it knew of 'Pwn to Own' bug
http://www.computerworld.com/action/article.do?command=viewArticleBasic&taxonomyName=security&articleId=9074719


GOOGLE CONFIRMA CRIAÇÃO DE FERRAMENTA PARA A PF NO ORKUT
http://g1.globo.com/Noticias/Tecnologia/0,,AA1368793-6174,00.html


Google calendar as a spam platform
http://blogs.securiteam.com/index.php/archives/1078
http://lifehacker.com/377925/keep-spammers-out-of-your-google-calendar


Computer viruses hit one million
http://news.bbc.co.uk/2/hi/technology/7340315.stm


Network Solutions Hijacking Unassigned Sub-Domains
http://www.techcrunch.com/2008/04/08/network-solutions-hijacking-unassigned-sub-domains/


Firewall obsolescence
http://www.networkworld.com/community/node/26138


Os norte-americanos irão receber mensagens de texto SMS em caso de emergência
http://www.alexandreatheniense.com.br/2008/04/os-norte-americ.html

Baixe o mp3 diretamente daqui.

Edição 47 - 30.03.08

powered by ODEO

1 hora e 23 minutos


Eventos
---

Hacker Space Fest
http://www.tmplab.org/wiki/index.php/Hacker_Space_Fest


ToorCon Seatle
http://seattle.toorcon.org/


PH-Neutral
http://ph-neutral.org/


Segurança Digital - Portugal
http://www.segurancadigital.org/?q=node/17


SHARKFEST
http://www.cacetech.com/SHARKFEST.08/



Notícias
--------

Abandon Ship! Data Loss Ahoy!
http://attrition.org/security/rant/z/rapid7.html


Trote pela Internet faz homem perder quase todos os seus bens
http://www.alexandreatheniense.com.br/2008/03/trote-pela-inte.html


Sony Officially Apologizes for the PS3 Vulnerability and Network Hack
http://www.akihabaranews.com/en/news_details.php?id=15744


Outsourced passports netting govt. profits, risking national security
http://www.washingtontimes.com/apps/pbcs.dll/article?AID=/20080326/NATION/840186493/1001


---


Review da CanSecWest



Baixe o mp3 diretamente daqui.

Edição 46 - 16.03.2008

powered by ODEO

1 hora e cinco minutos


Eventos


Troopers 08


SBSeg´08

BlackHat CFP aberto

Notícias do BlackBerry



BlackBerry-based SCADA puts plant control in your hands
http://www.drives.co.uk/fullstory.asp?id=2232


Don't forget to secure your BlackBerry, companies told
http://software.silicon.com/security/0,39024655,39170322,00.htm


BlackBerry servers ripe for the hacking
http://www.techworld.com/security/news/index.cfm?newsID=11663


Indian Blackberry network to be shut down unless RIM allows government snooping
http://www.engadget.com/2008/03/12/indian-blackberry-network-to-be-shut-down-unless-rim-allows-gove/



CIAB 2008: Inovação é marca das soluções de Segurança bancária

http://www.convergenciadigital.com.br/cgi/cgilua.exe/sys/start.htm?infoid=12774&sid=16

Baixe o mp3 diretamente daqui.

Edição 45 - 09.03.2008

powered by ODEO

1 hora e quase nove minutos

Eventos

Chamada de apresentações para a Reunião GTS-11.
-------
GTER - Grupo de Trabalho de Engenharia e Operação de Redes - 25ª Reunião
GTS - Grupo de Trabalho em Segurança de Redes - 11ª Reunião
Salvador - 31 de Maio e 1 de Junho de 2008

http://gter.nic.br/
http://gts.nic.br/

---

Call for Papers: First IEEE International
Workitorial on Steganography - "Vision of the Unseen"

http://www.liv.ic.unicamp.br/wvu/

in Anchorage, Alaska on June 23rd


---

RUXCON 2008 CALL FOR PAPERS
RuxCon would like to announce the call for papers for the fifth annual
RuxCon conference.


---
Sector - Call for Speaker

October 7-8, 2008
MTCC, Toronto, ON, Canada

---

Toorcon Seattle - April 18th-20th

CFP opened


---

DefCon CPF
Call for Papers Opens March 1st!


---

ekoparty 4th edition
Information Security/Insecurity Conference.
October 2 and 3, 2008
Argentina - Ciudad Autonoma de Buenos Aires


---

WOOT '08 Call for Papers

2nd USENIX Workshop on Offensive Technologies (WOOT '08)
July 28, 2008
San Jose, CA


---


Materiais ucon disponiveis





Notícias



State of the wireless security
http://it.slashdot.org/article.pl?sid=08/02/17/1628210&from=rss
http://www.codenomicon.com/resources/whitepapers/Codenomicon_Wireless_WP_v1_0.pdf

Blog do Gustavo Bittencount

---

Ukrainian Hacker Makes a Killing in Stock Market Fraud
http://blog.wired.com/27bstroke6/2008/02/ukrainian-hacke.html

Pesquisa aponta futuro do crime online no mundo
http://www.alexandreatheniense.com.br/2008/02/pesquisa-aponta.html


Gmail captcha
http://www.websense.com/securitylabs/blog/blog.php?BlogID=174


Google as hacking tools
http://www.goolag.org/
http://www.gnucitizen.org/ghdb/application.htm



Estatísticas de invasões 2007 - Zone-H

Chinese backdoors "hidden in router firmware"



Assunto 1
DNS Inventor Warns of Next Big Threat



Assunto 2
Shmoocon 2008


Baixe o mp3 diretamente daqui.

Edição 44 - 11.02.08

powered by ODEO

1 hora e 7 minutos e alguns segundos

Eventos

Black Hat USA 2008 CFP Now Open


SMi’s Cyber Defence Conference

EVT '08 Call for Papers



Notícias


SSA - Security System Analyzer
Based on OVAL framework, Open Vulnerability and Assessment Language


SandBox Information Center


PICO E08 RFID Security 2.5" HDD enclosure


Sadly, the PIX Firewall is Discontinued…


Ameaça a conectividade Internet Global


Hacking Video Surveillance Networks


Assunto 1


Stop this, stop that, ENOUGH!


Assunto 2

Mais paranoia:

Couple banned for life from shopping centre and branded 'terrorists' - for taking photos of their grandchildren

e

Viajantes têm laptops revistados em aeroportos dos EUA

Baixe o mp3 diretamente daqui.

Edição 43 - 27.01.08

powered by ODEO

1 hora e pancada

Notícias

PandaLabs Detects Trojans That Use New Form of Rootkit Attack (Noticia enviada pelo ouvinte Cleber Brandao


Secunia Personal Softwre Inspector

y! suportando openid


Worm em dispositivos Symbian


Criminosos invadem computadores e cortam energia de cidades, diz CIA


Assunto 1

Cresce uso de salas antigrampo no Brasil




Assunto 2

How to stop laptop theft



links diversos mencionados nessa edicao

(alguns) videos do YSTS v1.0 disponiveis

blog do Fernando Cima


Baixe o mp3 diretamente daqui.

Edição 42 - 14.01.08

powered by ODEO

62 minutos


Eventos

CFP opens for LayerOne 2008



EUROSEC
2008 European Workshop on System Security



Notícias

Hacker (sic) cria ataque que envia spams da web para impressoras em rede



shimmer is a pair of small programs (a client and a server) that provide an alternative to port knocking program such as tumbler and are used to hide a valuable port (such as a hidden web server or SSH) on a public IP address.



OWASP Capitulo Brasil


Trojan Software for iPhone


Chaos Computer Club takes legal proceedings against the voting computer in Hesse
(e o Brasil? aonde fica?)

Brinde: How to open a locked zippered luggage bag

Assunto 1

The Airport Security Follies



Assunto 2


Hacking for a good cause


e contribua com o Hackers for Charities


Baixe o mp3 diretamente daqui.

Edição 41 - 02.01.08

powered by ODEO

Duração: 66 minutos :)


Eventos

BlackHat
Várias coisas sobre a Blackhat em 2008, incluindo um tal local secreto. Que local secreto é esse?
Além disso, CFP aberto
https://cfp.blackhat.com/

D.C. 2008 Briefings CfP closes January 4
Europe 2008 Briefings CfP closes February 1
USA 2008 Briefings CfP will open February 1
Japan 2008 Briefings CfP will open May 1


SecTor 2007
Apresentações e vídeos disponíveis
http://sector.ca/presentations/


Ekoparty 2007
Apresentações disponíveis
http://www.ekoparty.com.ar/cronograma-eng.html


Videos da HitB Malasia disponíveis
http://video.hitb.org/2007.html

e apresentação do Luiz Eduardo aqui.


1st CALL FOR PAPERS. - CISIS'08
International Workshop on
Computational Intelligence in Security for Information Systems (CISIS'08)
http://www.cisis2008.org/home/home.shtml

uCon
Em 9 de fevereiro vai acontecer a primeira uCon, conferência de
segurança da informação, hacking e tecnologia realizada em Recife, PE.
A conferência não tem fins lucrativos, não terá palestras de empresas
tentando vender produtos e a entrada é gratuita.
Call for participation: http://ucon.thebugmagazine.org/cfp.php


ACNS 2008: CALL FOR PAPERS
6th International Conference on
Applied Cryptography and Network Security
Location: Columbia University, New York City, USA
Date: June 3-6, 2008
Submission Deadline: 14 January 2008 23:59:59 EST
Author Notification: 14 March 2008
http://acns2008.cs.columbia.edu/


ClubHack2007: Presentation are online now
http://clubhack.com/2007/presentations.html


Novos vídeos do CGI.br


Video: Theory and Practice of Cryptography
http://www.youtube.com/watch?v=KDvt_0cafPw


2008 IEEE 11th International Conference on Computational Science and Engineering
Track: Security, Privacy and Trust
CSE 2008
http://www.icmc.usp.br/cse08
July 16-18, 2008 - Sao Paulo - Brazil
Important Dates
Paper submission due: January 25, 2008
Paper notification of acceptance: March 21, 2008
Final camera ready: April 25, 2008
Paper submission web site http://cse.stfx.ca/~cse08/sub/

*SyScan’08 HONG KONG*
To address the increasing importance of information security in Hong Kong, SyScan will be going to Hong Kong in 2008.
SyScan’08 Hong Kong will provide an opportunity for foreign security specialists to be exposed to the Hong Kong security community and collaborate on practical solutions to computer security issues.

Date: May 29th – 30th, 2008.
Venue: To be determined.

*SyScan’08 SINGAPORE*
Date: July 3rd – 4th, 2008.
Venue: Novotel Clarke Quay Singapore.


*IMPORTANT DATES*
*Hong Kong*
Final CFP Submission – 29th February 2008
Notification of Acceptance – 30th March 2008.
Final Submission for Accepted Presentation Material (Speakers) – 15th April 2008

*Singapore*
Final CFP Submission – 30th April 2008
Notification of Acceptance – 30th May 2008.
Final Submission for Accepted Presentation Material (Speakers) – 15th June 2008



Notícias


Mini bug do milênio


Google develops Wikipedia rival


Tiger Team: New TV series about pen testers


Russia launches final satellites for its own GPS


Welcome to the new Microsoft Security Vulnerability Research and Defense blog!


Assunto 1
1 ano de IStS, retrospectiva 2007 e planos de conquista do mundo em 2008



Assunto 2

Revisão da 24c3

Baixe o mp3 diretamente daqui.