tagged w/ Cyber Defense Weekly
-
In a stream of RSS and Twitter feeds, news captions, headlines, water-cooler-talk and the occasional lunch crunch and nightly news reports, it's hard to visualize a snapshot of what's really going on in the world and how seemingly random data may or may not fit together with malicious attacks and how they transform. Take a look at this attempt to visually put some random events together. http://cyy.be/b3Qb07In a stream of RSS and Twitter feeds, news captions, headlines, water-cooler-talk and... more
-
-
"There is an UNEQUAL amount of good and bad in most things, the trick is to work out the ratio and act accordingly…" The Jester
Infosec Island has once again gained exclusive access to a video demonstration of the XerXeS DoS attack recently developed by the infamous patriot-hacker known only as The Jester (th3j35t3r).
This new video shows a little more of the XerXeS dashboard, and reveals even more about the attack technique – watch the text box on the left as Jester mentions “Apache” for the first time outside of our private conversations...
https://www.infosecisland.com/blogview/3258-Hacker-Releases-Second-Video-of-Enhanced-XerXeS-DoS-Attack-on-Apache-Vulnerability-.html"There is an UNEQUAL amount of good and bad in most things, the trick is to work... more
-
-
RALEIGH, N.C.--(EON: Enhanced Online News)--Infosec IslandTM, the online community for IT and network professionals who manage information security, risk and compliance issues, today posted an exclusive video created by the anti-Jihadi hacker known as The Jester. In the seven-minute video, the “hacktivist” claims to show how technology he developed was used to temporarily disrupt a Taliban web site. In interviews conducted anonymously, The Jester has stated that his targets are mainly Jihadi recruiting web sites and that his goal is temporary disruption via DOS attacks. He routinely discusses the targets and reasons for his attacks on Twitter.
http://eon.businesswire.com/portal/site/eon/permalink/?ndmViewId=news_view&newsId=20100223007175&newsLang=enRALEIGH, N.C.--(EON: Enhanced Online News)--Infosec IslandTM, the online community for... more
-
-
Infosec Island has gained exclusive access to a video demonstration of the XerXeS DoS attack as it is unleashed on a Taliban website, and carried out by infamous patriot hacker The Jester (th3j35t3r). The video release follows an earlier announcement that The Jester has been working to improve and automate aspects of the attack method, which unlike a DDoS attack, requires only one low spec machine to implement…
https://www.infosecisland.com/blogview/2990-Exclusive-Video-of-XerXeS-DoS-Attack.htmlInfosec Island has gained exclusive access to a video demonstration of the XerXeS DoS... more
-
-
Everyday the news bombards us with security issues of minor or major magnitude. Currently, some of the hottest topics are the Chinese Google Hacking, Botnets, Online War between organized Crime Cartels, and Vigilante Hackers on a Jihad Crusade. Applauding hacking vigilantes like The Jester is just another road to hell paved with good intentions…
http://information-security-resources.com/2010/02/15/vigilante-hacker-fans-have-eyes-wide-shut/Everyday the news bombards us with security issues of minor or major magnitude.... more
-
-
The security industry is poised for its biggest upheaval ever in 2010. While defense contractors move into the space (redubbed “cyber”), and the big players adjust their product portfolios by making strategic acquisitions and large IT vendors (HP) break into the space, there are many small companies offering innovative products and services. Here is a list of just a few that are on IT-Harvest’s rada…
http://information-security-resources.com/2010/02/15/top-cyber-defense-vendors-to-watch-in-2010/The security industry is poised for its biggest upheaval ever in 2010. While defense... more
-
-
By Anthony M. Freed, Director of Business Development, Infosec Island Network
Anti-jihadi hacker The Jester (th3j35t3r), continues his campaign against militant Islamic websites, and now reveals the development of an automated version of his DoS attack, which he calls the XerXeS project. While most of the conversations concerning Jester are regarding the ethics and lawlessness of his crusade, no one has addressed the fact that The Jester has developed an attack technique that could be employed against our own critical systems…
http://information-security-resources.com/2010/02/10/jester-unveils-xerxes-automated-dos-attack/By Anthony M. Freed, Director of Business Development, Infosec Island Network... more
-
-
Anti-jihadi hactivist The Jester (th3j35t3r), the self-proclaimed Nicest Hacker in the World, has returned for part two of our conversation concerning his campaign of intermittent disruption of militant pro-jihad websites. Part one, Q&A With anti-Jihadi Hacker The Jester, elicited both ire and accolades for the cyber-vigilante in nearly equal volume, revealing just how polarizing the issues surrounding ownership, permissions and access have become in this age of information.
http://information-security-resources.com/2010/02/04/more-talks-with-anti-jihadi-hacker-the-jester/Anti-jihadi hactivist The Jester (th3j35t3r), the self-proclaimed Nicest Hacker in the... more
-
-
-
We have had a few weeks to absorb the implications of wide spread Chinese supported attacks against Google and thirty or so other organizations. The US Secretary of State made one of the most affirmative statements on Internet freedom yet articulated by a government. Various policy analysts have chimed in as well. Some thoughts on what they have said…
http://information-security-resources.com/2010/02/02/china-internet-freedom-is-culturally-relative/We have had a few weeks to absorb the implications of wide spread Chinese supported... more
-
-
-
Google has long maintained that by providing their search, hosted blogging, and email services to the people of China they were supporting access to information and community that would be a long term benefit. Last week we learned that engineers at Google have been engaging in their own form of cyber vigilantism by hacking into a command and control server in Taiwan…
http://information-security-resources.com/2010/01/17/google-engages-china-with-cyber-vigilantism/Google has long maintained that by providing their search, hosted blogging, and email... more
-
-
There is nothing distributed about this. It is possible with very low bandwidth and a single low-spec linux machine. I am still refining the tool, but if you check right now - www.alemarah.info is in fact temporarily down, until I decide to bring it back. The idea here is to target known sites and cause much trouble, but not be destructive and defacing. it’s a very surgical strike and causes no collateral or long-term damage…
http://information-security-resources.com/2010/01/07/patriot-hacker-hits-jihad-with-ddos-attacks/There is nothing distributed about this. It is possible with very low bandwidth and a... more
-
-
Every new form of war drives changes in technology. Conversely the technology causes the change in the methods and outcomes of wars. Effective cyber war is driven by the cyber equivalent of an arms race. The attacker discovers and devises new attack methodologies while the defender shores up his defenses by blocking ports, patching systems and deploying technology. There are eleven areas of development in offensive technology to be brought to bear on the problems of cyber war.
http://information-security-resources.com/2009/12/15/technology-and-the-advent-of-cyber-war/Every new form of war drives changes in technology. Conversely the technology causes... more
-
-
Just as markets do a better job of regulating good and bad business practices in rapidly evolving economies, the self interested protection of the security community may be the best response to the scourge of Internet pestilence. Viruses, worms, spam, spyware, and botnets have all changed the Internet and the way organizations use it for profit.
http://information-security-resources.com/2009/11/22/surviving-cyber-war-a-primer-on-ddos/Just as markets do a better job of regulating good and bad business practices in... more
-
-
-
There are four pillars to the cyber war realm: intelligence, technology, logistics, and command. By understanding these factors IT security practitioners can gauge the threat to their own organization from cyber war and perhaps take steps to prepare for either direct attacks or the fallout from an outbreak of cyber hostilities between nations.
http://information-security-resources.com/2009/11/09/four-pillars-of-cyber-warfare-intelligence/There are four pillars to the cyber war realm: intelligence, technology, logistics,... more
-
-
This is the first cogent look at the efficacy of waging strategic cyber war and I hope will serve to slow the rhetoric coming from the US Defense community about acquiring cyber offensive capability: “Can cyberattacks disarm cyberattackers? In a world of cheap computing, ubiquitous networking, and hackers who could be anywhere, the answer is no.”
http://information-security-resources.com/2009/10/31/debunking-cyber-deterrence-as-a-strategy/This is the first cogent look at the efficacy of waging strategic cyber war and I hope... more
-
-
Oops, I just argued from scenario. Pundits often extrapolate from the current state of vulnerability of systems to predictions of massive power outages, financial collapse, and loss of command and control are falling into the scenario syllogism trap. Posing scenarios to support your anti-cyber war position can be just as dangerous…
http://information-security-resources.com/2009/10/28/security-scenarios-are-syllogistic-fallacy/Oops, I just argued from scenario. Pundits often extrapolate from the current state of... more
-
-
Is the best way to counter the rise of bike gangs in Canada for the government to create a rival bike gang? No. Is the best way to counter Somali pirates to develop piratical abilities? No. Is the best way to fight biologic weapons to develop more virulent pathogens? No.
Federal Agencies and the Defense Department have inadequate cyber defenses, but the course of action should be to beef those defenses up, not to resort to cyber attacks as some sort of deterrent. The best way to counter cyber attacks is with cyber defense.Is the best way to counter the rise of bike gangs in Canada for the government to... more
-
