Communication
Software: CryptoCat Encrypted Chat Software
Note: This software uses a central website to manage the accounts and perform connection moniker to moniker. In that it is vulnerable.
Research Links
Computing
Blackhat – 2010 How to Hack Millions of Routers
This video is part of the Infosec Video Collection at SecurityTube.net: http://www.securitytube.net
This talk will demonstrate how many consumer routers can be exploited via DNS rebinding to gain interactive access to the router's internal-facing administrative interface. Unlike other DNS rebinding techniques, this attack does not require prior knowledge of the target router or the router's configuration settings such as make, model, internal IP address, host name, etc, and does not rely on any anti-DNS pinning techniques, thus circumventing existing DNS rebinding protections.
A tool release will accompany the presentation that completely automates the described attack and allows an external attacker to browse the Web-based interface of a victim's router in real time, just as if the attacker were sitting on the victim's LAN. This can be used to exploit vulnerabilities in the router, or to simply log in with the router's default credentials. A live demonstration will show how to pop a remote root shell on Verizon FIOS routers (ActionTec MI424-WR).
Confirmed affected routers include models manufactured by Linksys, Belkin, ActionTec, Thompson, Asus and Dell, as well as those running third-party firmware such as OpenWRT, DD-WRT and PFSense.
All Videos Are Listed At :- http://archive.org/details/blackhat20…
Research Links