jeff moss

ZDNet Resources

• sort by:
• Relevance
• Date
• Popularity

Something uncomfortable about DEFCON's treatment of Dateline NBC reporter

I don't know about you but after watching the video and reading the reports (George Ou, Techmeme, Threat Level) about DEFCON's outing of Dateline NBC producer Michelle Madigan, I came away with an uncomfortable feeling that it was rather childish, over-the-top and unnecessary.For starters, there's the irony of underground hackers...

Tags: Hacking, TV, Reporter, Hacker, Conference, Ryan Naraine

Blog posts 2007-08-06

Additional Resources

Hacker named to Homeland Security Advisory Council

Hacker named to Homeland Security Advisory CouncilCrooks hire CrooksWhere else can a crook get a Job.Crooks in D.C. hire crooks to help the crooked Gov't do crooked things to help the crooked Banks and crooked companies the politicians award contracts to while decent people get rolled because they follow the...

Tags: Hacking, crook, hacker, Homeland Security Advisory Council, security, homeland security

Discussion threads 2009-06-08

Kaminsky suggests long-term fix will still have to be determined, but patch now, or pay soon

I listened to the Black Hat webcast today to grab as much info as I could on this subject. The biggest thing that I heard from the whole talk is that the patch fixes things to a reasonable point, but that long-term, there will have to be more work...

Tags: CERT, DNS Server, Domain Names, Internet, Kaminsky, Nathan McFeters, Patches, Security, Server

Blog posts 2008-07-24

2008 Pwnie Awards

Don't forget to go and vote on the Pwnie Awards, which will happen at Black Hat Vegas again this year.  I don't want to campaign for votes, but I wouldn't be pissed if some of my loyal readers out there voted for me, Billy Rios, Rob Carter, and John Heasman and...

Tags: Category, Nomination, Security, Nathan McFeters

Blog posts 2008-06-19

Black Hat '08 preview webcast on its way

Ladies and gents, For those who hadn't heard, I will be presenting at Black Hat Vegas '08 this year with Rob Carter, John Heasman, and Billy Rios.  Our presentation is called "The Internet is Broken: Beyond document.cookie - Extreme Client Side Attacks", which may sound like a...

Tags: Black Hat, Webcast, Nathan McFeters

Blog posts 2008-06-15

Blackhat Europe, Day 1: The Waag, the Bulldog, and web application hacking

Considering my previous posts on my experiences at Black Hat Federal received pretty good reviews, I thought it would make sense to again highlight a Black Hat trip. This time it was all the way out to Amsterdam, where Rob Carter and I will be speaking about URI Use...

Tags: Black Hat, Web Application, SQL, Training, SQL Injection, Tool, Nate, Productivity, Hacking, Workforce Management, Security, Human Resources, Nathan McFeters

Blog posts 2008-03-25

Black Hat, Day 2: DTrace, (un)Smashing the Stack, Cisco IOS Forensics

Day 2 is done and Black Hat is wrapped up. The second day of talks was power-packed with some really great presentations. Despite a wicked night of celebration after my successful talk, I still managed to turn up on time for the "DTRACE: The Reverse Engineer's...

Tags: Black Hat, Cisco IOS, Researcher, Speaker, Cisco Systems Inc., DTrace, Day 2, FX, Nate McFeters

Blog posts 2008-02-21

RFID security: Black Hat muzzle prevents real discussion

Ryan Naraine gives details on why a talk about RFID security was canceled at Black Hat. In short, IOActive’s Chris Paget’s plan to explain why RFID technology is “insecure and untrustworthy” was nixed after secure card maker HID Corp. raised objections in a letter that claims possible patent infringement. Infoworlds...

Tags: RFID, Security, Software Infrastructure, General

Blog posts 2007-02-27

Black Hat RFID hacking demo threatened

Another Black Hat conference, another vulnerability disclosure debate.IOActive's Chris Paget's plan to explain why RFID technology is "insecure and untrustworthy" has run into a legal stumbling block after secure card maker HID Corp. raised objections in a letter that claims possible patent infringement.InfoWorld's Paul Roberts is reporting that HID sent...

Tags: Wi-Fi security, Pen testing, Black Hat, Exploit code, Responsible disclosure, Punditocracy, Cisco, Vulnerability research, Oracle, Hackers, Zero-day attacks, Uncategorized

Blog posts 2007-02-27