Profile

Cover photo
Dragos Ruiu
Works at dragostech.com inc.
Attended University of Alberta
Lived in Saskatchewan
1,621,814 views
AboutPostsPhotosYouTube+1's

Stream

Dragos Ruiu

Shared publicly  - 
 
The management of St. Jude medical devices increasingly looks to be dangerously negligent.

I'm not sure which concerns me more:

The fact that a company implanting RF medical devices in humans has never heard of a high gain antenna,

Or. Them pointing to ISO 27001 as their major security countermeasure,

Or whitewashing likely weak authentication on their updates and control channel with political dancing and careful public company IR press release wording,

Or their complete denial and filibuster marketing non-sense essentially saying they don't plan on improving anything.

The more these guys speak the more concerned I am for their patients who have their devices I'm planted inside their bodies, and the more firmly convinced I am that Justine Bone and the MedSec folks were completely justified in their non-traditional disclosure which led to a stop trading on their stocks. Barnaby Jack pointed them out as a concern in 2014, and it triggered a U.S. federal investigation, which resulted in apparently zero improvements, and seemingly didn't do a thing to shift their corporate culture to more diligence about the security of their systems and designs - if this openly hostile to patient and device security release is any indication about their critical to patient health, and failures lead to serious adverse events devices. I read this press release incredulously, and hope the entire spectrum of information technology knowledgeable folks rally to an outcry when they read it too, over what increasingly looks like serious negligence.

Nick Selby I'm truly regretful and concerned that your mother has to suffer with a medical implant from what seems to be unfolding to look like the Bozo the Clown of the medical industry. Justine, stick to your guns, and fellow InfoSec professionals, please offer your voices in the chorus of WTF.

http://goo.gl/9Ja5Tr
7
1
Add a comment...

Dragos Ruiu

Shared publicly  - 
 
DES, Triple-DES considered harmful: SWEET32
(This also includes other eight byte block cyphers like Blowfish and IDEA)

As the OpenSSL Blog put it: "Because DES and Triple-DES use only a 64-bit block size, birthday attacks are a real concern. With the ability to run Javascript in a browser, it is possible to send enough traffic to cause a collision, and then use that information to recover something like a session Cookie. Their experiments have been able to recover a cookie in under two days. More details are available at their website. But the take-away is this: triple-DES should now be considered as “bad” as RC4."

https://sweet32.info/

Sweet32: Birthday attacks on 64-bit block ciphers in TLS and OpenVPN
9
9
Add a comment...

Dragos Ruiu

Shared publicly  - 
 
Speaking of the AFL 0day Faerie: Fuzzing PERL, A Tale of Two American Fuzzy Lops http://goo.gl/t878Kh
tl;dr Over the course of 48 hours, AFLFast found 6 unique flaws in Perl, while AFL 2.32b found 4, all of which AFLFast failed to find. Abstract Today I'm going to talk about my experiences fuzzing Perl over the course of 48 h...
4
1
Add a comment...

Dragos Ruiu

Shared publicly  - 
 
The power of open source is more eyes usually find more problems. interesting details on the C3 redirectors that passively listen to traffic and bounce traffic destined for third IP to seemingly unconnected IP, curious about further analysis on the redirector packet formats..... (As everyone starts to filter and search old pcap files madly! :-) https://goo.gl/8kH8Zu
4
2
Add a comment...

Dragos Ruiu

Shared publicly  - 
 
Rowhammer jacking Linux VMs http://goo.gl/plRkdQ
1
2
Add a comment...

Dragos Ruiu

Shared publicly  - 
 
VxWorks Packet Execution (!) http://goo.gl/AMmrxD
Contributors. David Barksdale and Alex Wheeler. 1. Background. Earlier this year we reported 3 vulnerabilities in VxWorks to Wind River. Each of these vulnerabilities can be exploited by anonymous remote attackers on the same network without user interaction to take control of the affected ...
1
Add a comment...

Dragos Ruiu

Shared publicly  - 
 
Most VPN Services are Terrible

Great list of VPN service providers with globally known pre-shared keys to NOT USE: http://goo.gl/KzKanr
3
2
Add a comment...

Dragos Ruiu

Shared publicly  - 
 
Imperfect Forward Secrecy

While you are fixing your OpenVPN and SSL for SWEET32 don't forget to update settings for weak Diffie Helman Primes.

Diffie-Helman Key Exchange isn't as secure as you thought.

Primes below 1024 bits are insecure. Disable DHEXPORT and configure key exchange to use primes longer than 2048 bits.

Paper: https://weakdh.org/imperfect-forward-secrecy-ccs15.pdf

See https://WeakDH.org

13
8
Add a comment...

Dragos Ruiu

Shared publicly  - 
1
Add a comment...

Dragos Ruiu

Shared publicly  - 
 
Ya know, when your randoms don't actually random, scrambling stuff quickly becomes secret decoder ring level silliyness. It wouldn't be unwise to update GPG, revoke, and regenerate any GPG key you've generated and had signed over the last 18 years. Ugh.

P.S. Now is still a good time to send a donation to GPG to keep up good work.

https://goo.gl/7ynl8o
15
11
Add a comment...

Dragos Ruiu

Shared publicly  - 
 
Flip Feng Shui https://goo.gl/szjve1
3
3
Jürgen Christoffel's profile photo
 
This would have been nearly impossible, if CPUs had a segmented memory architecture, ... Oh, they once had and they killed it?
Add a comment...

Dragos Ruiu

Shared publicly  - 
 
Windows UAC bypass using eventvwr.exe and registry jacking. https://goo.gl/S366uY
After digging into Windows 10 and discovering a rather interesting method for bypassing user account control, I decided to spend a little more time investigating other potential techniques for gett…
11
1
Tim Johnson's profile photo
2 comments
 
Oh, duh, HKCU not HKCR. Still, I haven't been able to reproduce it. Has anyone else? I get an access denied message from eventvwr and no process creation. I do see consent.exe checking the file, but no launch.
Add a comment...
Story
Tagline
Stop, Think, Pwn.
Introduction
Systems Rationalizer
Bragging rights
Can hover inverted. ;-)
Education
  • University of Alberta
Basic Information
Gender
Male
Other names
dr
Work
Occupation
engineer
Employment
  • dragostech.com inc.
    engineer, 1997 - present
  • HP
  • Myrias
Places
Map of the places this user has livedMap of the places this user has livedMap of the places this user has lived
Previously
Saskatchewan
Links
Dragos Ruiu's +1's are the things they like, agree with, or want to recommend.
Waze Social GPS Maps & Traffic
market.android.com

Waze is a fun, community based mapping, traffic & navigation app. With millions of drivers from across the globe joining forces to outsmart

Threema
market.android.com

Threema ist eine Kurznachrichten-App mit einem besonderen Fokus auf Sicherheit. Echte Ende-zu-Ende-Verschlüsselung garantiert, dass niemand

CPU-Z
market.android.com

Android version of the popular CPU identification tool for PC/Windows., CPU-Z is a free application that reports information about your devi

Demand answers and real consequences for robocall election fraud
www.leadnow.ca

Elections Canada just traced misleading phone calls made during the 2011 federal election to a company that worked for the Conservative Part

KB14320-How to maximize battery life and free memory on the BlackBerry s...
btsc.webapps.blackberry.com

Maximizing Battery Power. Application Management. Multitasking - Close any running BlackBerry® smartphone applications that are not being ac

Play VOB,MKV,MTS,FLV RM,RMVB on Windows RT (Surface 8 RT included) » AMV...
blog.amvsoft.com

Overview Micrsoft has made an important step to support the playback of MPEG-4 on Windows 8 RT and Windows 8 Pro. Windows RT has excellent s

Locus Pro
market.android.com

MULTI-FUNCTION TOURIST NAVIGATION Irreplaceable application for hiking, geocaching and your everyday life. Locus offers many useful features

A free and open world depends on a free and open web. | Google
www.google.com

A free and open world depends on a free and open Internet. Governments alone, working behind closed doors, should not direct its future. The

There's a New Way to Own a Piece of Facebook Before Its IPO
mashable.com

If you're looking to invest in Facebook before its IPO but not privy to the secondary markets where shares of the company have been trad

Maverick
market.android.com

Off-road GPS navigator with offline maps support, compass and track recording. Use offline maps and GPS even without an internet connection.

Vancouver Riot: Psychology (Not Hooligans) Is Responsibile for the Chaos...
bleacherreport.com

As I sat at home watching the Vancouver riots unfold in front of me, I was amazed at how ill-informed the newscasters and on-site reporters