TBK - AFK

I just finished watching The Pirate Bay – Away From Keyboard and is as puzzled as always.

I don’t know if the verdict is right, what intent TBK had when they started or how much money they earned. Actually I’m not interested. What interests me is the economics and behavior of  plaintiff or prosecutors.

In Sweden we had a company by the name Facit AB. It started in 1906 under another name and took the name Facit AB in 1965 due to en acquisition. Facit produced mechanical multiplication and addition machines. In 1970 the company reached its peak with 14.000 employs in 140 countries. But Facit was to slow to adapt to new technologies and was almost bankrupt in 1972. After that the company was sold from one company to another until the company was liquidated in 1998.

This resulted in a new word - "facitfällan" (facittrapp): A company that doesn’t keep up with new technologies and is out maneuvered.

The intersecting part is that in modern movie and music distribution economics you can skip new technologies and ideas and sue those who oppose.

When we now look at the market for media and entertainment the range of solutions is growing. Spotify, Netflix, VIA Play, HBO and more…. They are finally offering the consumer what they want, but 10 years too late.

Is there any other market where you can deliver 10 years too late and survive?

Think if Google (Android) would had delivered a smartphone 10 years after Apple iPhone. A living example is Firefox OS. Will it survive? And it’s just 5 years behind.

What I’m trying to say is that the movie and music industry can accuse TBK for whatever they want. The only reason TBK could exist is because the industry couldn’t/wouldn’t deliver what the consumers wanted and asked for. Maybe they should stop pointing fingers on others and take a look at them self and maybe they should be really, really happy that they survived.

Only dead fish follow the stream.

Weekly summary - v.8

This is what my week was like:

I finaly got to use <% in a XSS. Tested an EPiServer CMS 4 and with IE the following XSS worked in the search field: <%x onMouseOver='javascript:alert(1)'>A<%/x>

Needs some trimming as its just an OnMouseOver.

When spidering a site anything under 10.000 pages is OK.

When my spider passed 70.000 the other day I hade to stop it. That’s not OK, its just evil.

You heard me SharePoint.

2 interesting reeding for those who missed:

1.     http://intelreport.mandiant.com/Mandiant_APT1_Report.pdf

2.     http://www.reddit.com/r/netsec/comments/18ro3c/sshd_rootkit/

Ett öppet internet utvecklar människor

Föreläsning vid Södertörns Högskola 14 november 2012 av Anna-Karin Hatt, It- och energiminister.

Saxat:
"Vi befinner oss mitt i ett paradigmskifte, där gamla sanningar och affärsmodeller skakas om i grunden. Och det finns en hel del därute som inte är så förtjusta i den utvecklingen, av en mängd olika skäl. De är de som bygger vindskydd och försöker hålla sig kvar i det som varit. Men vi andra, vi som tillhör de som hellre bygger väderkvarnar än vindskydd, vi har all anledning att se det som nu händer som en fantastisk möjlighet. Och vi har all andledning att tillsammans värna det öppna nätet. För med hjälp av it och med hjälp av internet kan vi stärka människors rättigheter. I Sverige och utanför vårt lands gränser. Och det är väldigt viktigt i sig."

http://www.regeringen.se/sb/a/203611

Weekly summary - v.45

I've had a interesting week.
I done some testing with NFC and this is what i learned:

• NFC from one phone to another phone is not easy. - They don't understand each other all the time and its not easy to hold your phone together when connecting.
• Android demands that you wake your phone before scanning any NFC tags.
• There will be pwnage

Pentesting:

• Found some XSS
• An open redirection
• and a SMS service that we could call from anywhere to any one.

Another interesting observation is this: Where can you see, on an Android, how many failed logging attempts there have been?

Windows 8 Security

Earlier this week I read this Swedish article about how AVs would lose market shares to Microsoft because of how much harder it would be to circumvent the new security features in Windows 8.
http://www.idg.se/2.1085/1.475481/microsoft-dodar-virusskydden

The security features mentioned was Smartscreen, URL reputation, Filesystem filter and the new Windows Defender.
Microsoft is really good on keeping there OS updated, but they still leave allot of issues untouched and they cant fix all the problems on installed programs, how much they want to.

Thats why it was especially interesting to see this article in the Hacker News
http://thehackernews.com/2012/11/hackers-release-windows-phone-8-malware.html

I'm looking forward too see what will revealed on 24 Nov.

I see a future for AV, but they need to focus on IPS, FIM (File Integrity Monitoring), White Listing and DLP. And they need to loose the name AV.

AV security problems

If it’s a program and written in any code then there will be bugs and maybe security problems.

We have seen vulnerability’s on several AV over the years. This time it's Sophos.

Here is the Metasploit Payload Demo for Sophos PDF vulnerability:

Ett steg i rätt riktning?