MacSecure.com » Uncategorized http://macsecure.com A Mac Security Blog Tue, 18 Nov 2008 00:46:01 +0000 http://wordpress.org/?v=2.9.2 en hourly 1 Another month — another RTSP Vulnerability http://macsecure.com/2008/01/11/another-month-another-rtsp-vulnerability/ http://macsecure.com/2008/01/11/another-month-another-rtsp-vulnerability/#comments Fri, 11 Jan 2008 19:00:31 +0000 john http://macsecure.com/2008/01/11/another-month-another-rtsp-vulnerability/ This is making the rounds, but CERT has the dirt. At this early stage it seems like the only “easy” fix is blocking RTSP traffic at a port level on the network, but hopefully something more practical come around in the next few days. More info here as well.

As a note, I’ve got more tool ‘how-to’s that I’m writing now, so more is coming soon.

]]> http://macsecure.com/2008/01/11/another-month-another-rtsp-vulnerability/feed/ 0 Mac Used for Wardriving on 60 Minutes http://macsecure.com/2007/11/26/mac-used-for-wardriving-on-60-minutes/ http://macsecure.com/2007/11/26/mac-used-for-wardriving-on-60-minutes/#comments Tue, 27 Nov 2007 01:32:36 +0000 john http://macsecure.com/2007/11/26/mac-used-for-wardriving-on-60-minutes/ Thought it was funny, this past Sunday’s 60 Minutes on CBS aired a segment called “High-Tech Heist” — specifically about credit card fraud and vulnerability in the physical world.  They talked to staff at the FBI and showed how easy it is to buy and sell card numbers and ‘full identities’ online — no big shock there.      One of the CBS reporters drove around with an InfoSec expert who was using his Mac and KisMAC to do some Wardriving, which was amusing.   They talked about cracking WEP, and a few other basic concepts.  Interesting.    For anyone who wants to play with KisMAC, get it here.   More on KisMAC soon.

]]> http://macsecure.com/2007/11/26/mac-used-for-wardriving-on-60-minutes/feed/ 0