-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 bogi wrote: > Well welcome back guys ... I think it would be a great idea if we had a small > set of presentations (account presentations) about defcon and what went > there. I am sure it will be intresting to many of us ... > I believe that this is already planned for the September meeting. We even have a movie to show as well.
> Cheers > Szemir > > On August 12, 2008 02:16, Shawn wrote: >> Watch the news in the next bit. There was a VERY significant hack >> revealed DURING DefCon. In a nutshell, they >> "hijacked the Internet - no really". It was significant enough that an >> unscheduled presentation was put together for this. >> >> In the middle of DefCon, they were able to capture ALL, (seriously I >> mean ALL!) traffic on the DefCon network, reroute it to go through New >> York, and back to DefCon. Without anyone noticing. In an almost >> untraceable manner. The traceable part would take an incredibly keen >> eye to see the one or two hints in a trace route. >> >> Think about that. Approx 9000 hackers, actively stressing the network. >> The most hostile network there could be. And not a single one of them >> noticed they themselves were hacked in the midst of the event.... >> >> And it was all triggered by a single email message. (disclaimer - I >> *think* that was the mechanism) No "exploits" needed.... and it wasn't >> even a social engineering thing. >> >> The implications are kinda staggering. They chose to only affect the >> DefCon network. They could have very easily done the same to say, >> Google. MicroSoft, Dell, etc. And then blocked or modified any traffic >> they wanted. >> >> That was a VERY cool thing to see. >> >> If the news isn't released before the next meeting, we'll give a few >> more details. (we being one of the 4 of us who made it to DefCon this >> year) >> >> Shawn >> >> ps, hope I got the hints right... They were talking about networking at >> a level I've rarely had the opportunity to hear about, never mind >> implement. John, I think you know all the details needed to do this. >> It's much closer to your level of work, I think. >> >> pss. hmmm. Now as I write this up, I'm beginning to wonder if this may >> have been misdirection.... If nothing else, DefCon shows you that the >> paranoid are not being paranoid enough!... lol >> >> -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.6 (GNU/Linux) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iD8DBQFIoa5PwRXgH3rKGfMRArJAAJ0a6ed+JeEae1EwNXwMNwIZa5WPJQCggwSo i3dhGaMG8Uz1AVki3Cneg5Y= =pAND -----END PGP SIGNATURE----- _______________________________________________ clug-talk mailing list [email protected] http://clug.ca/mailman/listinfo/clug-talk_clug.ca Mailing List Guidelines (http://clug.ca/ml_guidelines.php) **Please remove these lines when replying
