#HITB2014KUL White Paper: IRMA - An Open Source Platform for Incident Response & Malware Analysis
Authors: Guillaume Dedrie, Fernand Lone-Sang, Alexandre Quint - Quarkslab
HITB2014KUL
#HITB2014KUL White Paper: Extreme Privilege Escalation on Windows 8/UEFI Systems
Authors: Xeno Kovah, Corey Kallenberg, John Butterworth amd Sam Cornwell - The MITRE Corporation
Presentation Overview: http://conference.hitb.org/hitbsecconf2014kul/sessions/watching-the-watcher-extreme-privilege-escalation-on-windows-8uefi-systems/
Abstract
#HITB2014KUL White Paper: Using Intel TXT to Attack BIOSes
Authors: Xeno Kovah, Corey Kallenberg, John Butterworth amd Sam Cornwell - The MITRE Corporation
Presentation Overview: http://conference.hitb.org/hitbsecconf2014kul/sessions/senter-sandman-using-intel-txt-to-attack-bioses/
Abstract
A comparatively large number of security problems at the PC BIOS level have been found in the last 2 years relative to the preceding years [7].
Censorship 2.0: Shadowy forces controlling online conversations
It was perhaps a bit unfortunate, but in October, about a hundred journalists, civil rights advocates and representatives from non-governmental organisations, Internet rights activists, academics and lawyers from across Asia were gathered in Kuala Lumpur to discuss Internet rights and freedoms.
Apple Pay Is Here But How Secure Is It? Security Researcher Reveals Touch ID Still Poses A Problem
Is Apple Pay safe? Are there any known security issues? With this week's release of iOS 8.1, came also the launch of the Apple Pay system – a new NFC payment system that allows users to make purchases in stores, online and through apps with just the press of a finger on the Touch ID. While many users are excited about the ease of payment now available on iPhone 6 and above running iOS 8.1, it does come with some reservations by those within the security community.
HITB now out to hack the conference experience with new GSEC event
L33tdawg: Mark your calendars! #HITB #GSEC is coming to Singapore in October 2015! Can't make it to SG? Come to Amsterdam! #HITB2015AMS (May 27th, 28th, 29th, 30th 2015) & #HITB #Haxpo (May 28th, 29th, 30th) @ Beurs van Berlage. Site opens at the end of Nov
Build A Better Bitcoin Wallet: Security Researcher Calls For Developers To Use Safer ECDSA Operations
One of the biggest fears of Bitcoin users is that one day they will wake up and find their virtual currency wallet emptied, signaling that someone, somehow, has managed to uncover the user’s private key. A Bitcoin private key is a secret number that acts as a kind of identifying “ticket,” allowing coins from the corresponding wallet to be spent.
DarkMatter Secure Android May Run on Your Phone
Do you want to use a secure smartphone, but not look like you're using a secure smartphone? A team of researchers are developing a version of Android called DarkMatter that could turn mainstream Android phones, such as the Galaxy S4 and the Nexus 5, into high-end security devices.
Roll your own Bitcoin client? Prepare to be raided
The engineer behind the Heartbleed checker has created a tool to hunt down wallets from poorly secured transactions that leak private keys.
Filippo Valsorda released the Blockchainer tool to Github following a presentation at the Hack in the Box conference in Malaysia today.
#HITB2014KUL: Get advice of locksmiths for maximum protection
Protecting any property is not just about getting quality locks but getting sound advice from a professional locksmith, advised non-profit organisation The Open Organisation for Lockpickers (TOOOL).
Babak Javadi, a founding member of TOOOL, said the market in the region was driven by demand for cheap locks, which resulted in products of low quality. He warned that one of the most popular lock brands in Malaysia could easily be opened by force with an Allen key.
