12/28/2007
CCC (live from Berlin)
Day 1- 16h: It was a bad idea anyway (Rop Gonggrijp)
As usual, Rop gave a presentation about the status of the electronic voting (NEDAP) machines i n the Netherlands. It seems that since this year, the government decided not to use electronic voting anymore.
Day 1- 20h30: Crouching Powerpoint, Hidden Trojan (Maarten Van Horenbeeck)
Targetted attacks through the use of exploits hidden in Microsoft Word files, WinRar files, ... A very intriging presentation, insinuating some conspiracy theorie by some "dark art" master. It could be true, or it could be complete bullshit. The fact is that Maarten did a great job showing us some facts while not taking the risk of pointing to an attacker, attacking organisation or attacking government. Since 2005 the Falung Gong received specially crafted emails with innocent-looking attachements.
Although this doesn't seem like a new attack method, it proves to be very effective when specifically crafting the email and attached document (read: pull the attention of the reader, not by mentioning penis or viagra, but by mentioning subjects or people that our readers know ... linkedin.com and google are great sources for that). Few file-based virus scanners seem to detect the malicious code analyzed by Maarten. Most of the shellcode included in the documents, created a control channel back to some compromised hosts through HTTP or HTTPS.
Club Mate
No, it's not Redbull or Burn. The high-energy drink which is used here is Clube Mate (and for some reason, the Germans pronounce it KLUP MATEE). It looks like Redbull on Steroids (20mg / 100ml of Caffeine)
10:09 | Permalink | Comments (0) | Email this
| 
| 
del.icio.us
|
| 
Digg | 
Facebook
Post a comment