In other news the newest 801.11n WiFi standard has some seriously broken bits in the standard. They introduced a new packet coalescing and aggregation protocol that leaves the chipsets vulnerable to Packet-in-Packet injection. I.e. You can abuse the protocol to include spoofed low level MAC packets in HTTP frames from any web server and other similar fun. An attacker can leverage this technique to deauthenticate clients, inject malicious beacon frames, perform host and port scans, bypass firewall rules, and conduct Address Resolution Protocol (ARP) spoofing. So, not so good, especially since this is a chipset level issue and the chipsets are just behaving as the ill-conceived standard specifies for Aggregated-MAC Protocol Data Units (A-MPDU) handling. Being hardware/firmware, it's not easily changed.
Paper and PoC at link below.
So we have the first bona fide casualty of the Wassenaar Agreement. HP and counsel are concerned over Japanese implementation of it and any resutant complications getting the bugs back into the US, so they will not be involved with Pwn2Own Mobile in Japan. However, I still like hacker circuses, and have ordered up my own RF isolation cage, and am interested in other folks to be involved int he competition which will go ahead with rules to be announced shortly(so contact me if you are interested in participating or offering bounties on anything related to mobile to get bugs back). My new plan is to hand over the bugs directly to local representatives in Japan, without the ZDI need to feed the bugs back to the US first - and make like the internet and route around the issues with export.
In related matters some folks complained about getting us mail for the PacSec CFP while I was at CCC Camp, and some office renovations yanked a cable and reinforced my belief that VLAN tagging is still bunk to be eliminated. So we'll be accepting proposals until the end of the week, just to make sure you get your mail to us (firstname.lastname@example.org), all networks firing on all cylinders here now. Boo Yah.
- University of Alberta
Demand answers and real consequences for robocall election fraud
Elections Canada just traced misleading phone calls made during the 2011 federal election to a company that worked for the Conservative Part
KB14320-How to maximize battery life and free memory on the BlackBerry s...
Maximizing Battery Power. Application Management. Multitasking - Close any running BlackBerry® smartphone applications that are not being ac
XBMC is awesome on Nexus 7! - Page 3 - xda-developers
XBMC is awesome on Nexus 7! Nexus 7 Themes and Apps
Play VOB,MKV,MTS,FLV RM,RMVB on Windows RT (Surface 8 RT included) » AMV...
Overview Micrsoft has made an important step to support the playback of MPEG-4 on Windows 8 RT and Windows 8 Pro. Windows RT has excellent s
A free and open world depends on a free and open web. | Google
A free and open world depends on a free and open Internet. Governments alone, working behind closed doors, should not direct its future. The
There's a New Way to Own a Piece of Facebook Before Its IPO
If you're looking to invest in Facebook before its IPO but not privy to the secondary markets where shares of the company have been trad
Vancouver Riot: Psychology (Not Hooligans) Is Responsibile for the Chaos...
As I sat at home watching the Vancouver riots unfold in front of me, I was amazed at how ill-informed the newscasters and on-site reporters