tag:blogger.com,1999:blog-50199039613548031562009-02-21T09:40:44.022+05:00News from Xnet Solutions about happenings in the Information and Network security world.Xnet Solutionshttp://www.blogger.com/profile/04370065274796294966noreply@blogger.comBlogger134125tag:blogger.com,1999:blog-5019903961354803156.post-64272979109817784952008-08-10T07:00:00.001+06:002008-08-10T07:03:26.548+06:00

"The last HOPE" talks in audio and video.

Xnet Solutionshttp://www.blogger.com/profile/04370065274796294966noreply@blogger.comtag:blogger.com,1999:blog-5019903961354803156.post-90825871638499398202008-07-31T11:54:00.003+06:002008-08-10T07:07:06.797+06:00

23-24 April 2008, Munich - Troopers 08 - get skilled or get owned

Xnet Solutionshttp://www.blogger.com/profile/04370065274796294966noreply@blogger.comtag:blogger.com,1999:blog-5019903961354803156.post-52034839515452092492008-07-12T16:43:00.001+06:002008-07-12T17:23:56.617+06:00

Mainly type B videos, but some type A. From the Supernova 2008 conference

Xnet Solutionshttp://www.blogger.com/profile/04370065274796294966noreply@blogger.comtag:blogger.com,1999:blog-5019903961354803156.post-14867494886852363022008-07-06T15:13:00.002+06:002008-07-06T15:17:03.951+06:00

REcon is a reverse engineering conference, held in Montreal. Videos from 2006

Xnet Solutionshttp://www.blogger.com/profile/04370065274796294966noreply@blogger.comtag:blogger.com,1999:blog-5019903961354803156.post-83581885702343901082008-05-23T14:47:00.005+05:002008-05-23T18:04:55.278+05:00

Here are a list of web pages where you can watch information security talks and presentations and so earn CPEs that will help you renew your CISSP certification. Free and easy access.24th Chaos Communication Congress. Torrents of mp4 and mkv files available at the botton of each talks page. Go for the mp4 as these are usually seeded.Defcon 15 and earlier talks are available in mp4 file

Xnet Solutionshttp://www.blogger.com/profile/04370065274796294966noreply@blogger.comtag:blogger.com,1999:blog-5019903961354803156.post-14821887396812066502008-05-19T13:06:00.003+05:002008-05-19T13:14:41.121+05:00

Here are pictures of Xnet PP2100DC UPS in action. These are all from one location in Karachi. Click on the picture to get a bigger image. Sorry these images are not high quality.

Xnet Solutionshttp://www.blogger.com/profile/04370065274796294966noreply@blogger.comtag:blogger.com,1999:blog-5019903961354803156.post-60131290894170553872008-05-02T18:45:00.004+05:002008-05-02T18:55:44.993+05:00

Xnet OS Protector is an intelligent circuit card which protects PC system configuration and protect data on hard disk in simple and fast way. The installation and operation is simple and can be done in minutes without technical staff involvement. The form factor is a small PCI card.The concept is simple. Instead of Blacklisting (ie keeping track of all the new viruses and their signatures) OS

Xnet Solutionshttp://www.blogger.com/profile/04370065274796294966noreply@blogger.comtag:blogger.com,1999:blog-5019903961354803156.post-58774715400628274352008-04-12T12:26:00.003+05:002008-04-12T12:34:15.284+05:00

Setting up RAID1 on Mandriva 20081.Goal: Setup a system with two harddisks that contain identical data so that ifone harddisk crashes, the system survives.2.The system should still be able to boot without manual intervention.3.A mail should be send if one harddisk fails.We chose only two harddisks also a CD-ROM or DVD-ROM must be connected tobe able to install the system.InstallationInstall the

Xnet Solutionshttp://www.blogger.com/profile/04370065274796294966noreply@blogger.comtag:blogger.com,1999:blog-5019903961354803156.post-5476495176238575062008-03-26T09:56:00.003+05:002008-03-27T10:10:24.231+05:00

Paper. Paper has been with us for thousands of years. With paper, once you learnt how to read a language, you could read any document.We are now entering the age of electronics. This is a world where most new documents are electronic in form. You cannot read them directly, they are machine readable only and we need hardware and software to do so.Because we are still at the beginning of this era ,

Xnet Solutionshttp://www.blogger.com/profile/04370065274796294966noreply@blogger.comtag:blogger.com,1999:blog-5019903961354803156.post-84879276025546408082008-03-18T13:05:00.003+05:002008-03-18T13:14:59.511+05:00

So, it was not 'hacking', but 'fraudulent withdrawals'. However the fact is that there is a limit of Rs20,000/- and that is all that a client should be able to withdraw in one day. The attack managed to get Rs20 million from accounts that had zero money in them. Here is an image of the notice published in the papers.

Xnet Solutionshttp://www.blogger.com/profile/04370065274796294966noreply@blogger.comtag:blogger.com,1999:blog-5019903961354803156.post-69809179035797523692008-03-16T13:11:00.002+05:002008-03-16T13:15:13.455+05:00

NBP security was bypassed by using other Banks ATM cards where the accounts had no balance.====================================================NBP admits gang withdrew Rs20m in MultanBy Sher Baz KhanISLAMABAD, March 15: The National Bank of Pakistan on Saturday said that some people had fraudulently withdrawn Rs20 million from its automated-teller machines (ATMs) in Multan, while the Federal

Xnet Solutionshttp://www.blogger.com/profile/04370065274796294966noreply@blogger.comtag:blogger.com,1999:blog-5019903961354803156.post-14815485695297815752008-03-15T15:17:00.003+05:002008-03-15T15:22:31.118+05:00

Looks like an inside job, with an employee subverting the security system of the ATMs.===============================================NBP suspends inter-bank ATM service after fraud - By Sher Baz KhanISLAMABAD, March 14: The National Bank of Pakistan (NBP) on Friday unilaterally suspended its One-Link service with 14 other banks after finding out that a cyber gang had withdrawn millions of rupees

Xnet Solutionshttp://www.blogger.com/profile/04370065274796294966noreply@blogger.comtag:blogger.com,1999:blog-5019903961354803156.post-7398509195934224342008-02-23T14:04:00.001+05:002008-02-23T14:08:47.048+05:00

Black Hat researchers have engineered a way to easily and cheaply crack GSM's encryptionBy Kelly Jackson HigginsSenior Editor, Dark ReadingWASHINGTON -- BLACK HAT DC 2008 -- A pair of researchers has created a low-cost and simple hack to crack the encryption in GSM mobile phones and intercept voice conversations and SMS text messages -- within minutes.David Hulton and a researcher who goes only

Xnet Solutionshttp://www.blogger.com/profile/04370065274796294966noreply@blogger.comtag:blogger.com,1999:blog-5019903961354803156.post-23093123973714325622008-02-22T11:39:00.003+05:002008-02-22T11:48:02.015+05:00

Once the attacker has access to your hardware it becomes very very difficult to protect your assets.We show that disk encryption, the standard approach to protecting sensitive data on laptops, can be defeated by relatively simple methods. We demonstrate our methods by using them to defeat three popular disk encryption products: BitLocker, which comes with Windows Vista; FileVault, which comes

Xnet Solutionshttp://www.blogger.com/profile/04370065274796294966noreply@blogger.comtag:blogger.com,1999:blog-5019903961354803156.post-80677747172517100262008-02-19T14:55:00.001+05:002008-02-19T15:13:17.989+05:00

heise Security find that the Easy Nova Data Box PRO-25UE RFID hard drive case by German vendor Drecom sounds promising: hardware data encryption with 128-bit AES, access control via an RFID chip, but actually uses just a simple XOR.

Xnet Solutionshttp://www.blogger.com/profile/04370065274796294966noreply@blogger.comtag:blogger.com,1999:blog-5019903961354803156.post-91465718166992295522008-01-15T14:53:00.000+05:002008-01-15T14:57:30.114+05:00

I found an interesting website all about VPNs over at vpntools.com. It has a lot of articles, but mostly at a basic, introductory level.

Xnet Solutionshttp://www.blogger.com/profile/04370065274796294966noreply@blogger.comtag:blogger.com,1999:blog-5019903961354803156.post-18422183873095494642007-11-21T10:57:00.000+05:002007-11-21T11:10:58.519+05:00

Xnet Solutionshttp://www.blogger.com/profile/04370065274796294966noreply@blogger.comtag:blogger.com,1999:blog-5019903961354803156.post-22783907496519394142007-11-21T10:48:00.000+05:002007-11-21T10:52:35.690+05:00

Having the MD5, the article discusses how to find the the original password. The solution is to use Google. This is using the big G as a Rainbow table.

Xnet Solutionshttp://www.blogger.com/profile/04370065274796294966noreply@blogger.comtag:blogger.com,1999:blog-5019903961354803156.post-82679528234989359352007-10-20T14:46:00.000+05:002007-10-20T14:52:34.290+05:00

Xnet Solutionshttp://www.blogger.com/profile/04370065274796294966noreply@blogger.comtag:blogger.com,1999:blog-5019903961354803156.post-2036872401503582162007-10-13T11:30:00.000+05:002007-10-13T11:38:48.535+05:00

Exploits of a Mom. XKCD.

Xnet Solutionshttp://www.blogger.com/profile/04370065274796294966noreply@blogger.comtag:blogger.com,1999:blog-5019903961354803156.post-6098238673479228192007-09-22T11:56:00.000+05:002007-09-22T11:59:41.286+05:00

September 18th, 2007 by Adam BozanichWhile developing an implementation of IKE for our platform, I noticed an astonishing behavior in the servers I was testing against: Not a single IKE implementation, which included products from the biggest names in network infrastructure, were validating the Diffie-Hellman public keys that I sent. A consequence of this is that any deployment of these servers

Xnet Solutionshttp://www.blogger.com/profile/04370065274796294966noreply@blogger.comtag:blogger.com,1999:blog-5019903961354803156.post-18214701593276264972007-08-14T20:12:00.000+05:002007-08-15T10:19:37.776+05:00

Pakistan Federal Minister for Information Technology, Awais Ahmed Khan Leghari, takes a keen interest in Xnet Solutions network security products. A birds-eye view of the Xnet Stand The Xnet Marketing Team

Xnet Solutionshttp://www.blogger.com/profile/04370065274796294966noreply@blogger.comtag:blogger.com,1999:blog-5019903961354803156.post-80947400181343640362007-08-13T16:13:00.000+05:002007-08-14T19:28:06.298+05:00

Xnet Solutionshttp://www.blogger.com/profile/04370065274796294966noreply@blogger.comtag:blogger.com,1999:blog-5019903961354803156.post-59933156871256517822007-07-30T10:25:00.000+05:002007-07-30T10:26:41.239+05:00

Secunia Advisory: SA26161 Release Date: 2007-07-25 Last Update: 2007-07-27 Critical: Moderately critical Impact: DoSWhere: From local networkSolution Status: Partial Fix OS: Cisco 4400 Series Wireless LAN ControllerCisco Catalyst 3750 Series Integrated Wireless LAN ControllersSoftware: Cisco Catalyst 6500 Series Wireless Service Module (WiSM)CVE reference: CVE-2007-4011 CVE-2007-4012

Xnet Solutionshttp://www.blogger.com/profile/04370065274796294966noreply@blogger.comtag:blogger.com,1999:blog-5019903961354803156.post-5050759859374748032007-07-30T10:21:00.000+05:002007-07-30T10:24:01.938+05:00

CVE ID:CVE-2007-3026 Affected Vendor:Panda Software Affected Products:Panda AdminSecure 2006 Vulnerability Details:This vulnerability allows remote attackers to execute arbitrary code on affected installations of Panda AdminSecure. Authentication is not required to exploit this vulnerability.The specific flaw exists within the AdminSecure agent which binds by default to TCP port 19226 or 19227.

Xnet Solutionshttp://www.blogger.com/profile/04370065274796294966noreply@blogger.com