Threat Level: green Handler on Duty: Xavier Mertens

SANS ISC: Internet Security | DShield SANS ISC InfoSec Forums

Watch ISC TV. Great for NOCs, SOCs and Living Rooms:

Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!
Next Bad Thing(tm) to be announced at CCC

There's currently a lot of discussion on a couple different forums about  Alex Sotirov's and Jake Appelbaum's talk scheduled for Tuesday at the CCC. While their description ( leaves something to be desired, you can find additional discussion on the BreakingPoint Systems' blog:

A quote from HD's blog entry: 

"First things first; the reason for secrecy. Their research combined a known weakness in one area with a massive resource investment in another to show that a third party was vulnerable to a practical attack that affects the security of all Internet users. Security researchers often release code and technical documentation to demonstrate a flaw, but in this case, they went a step further and used the attack in the real world to obtain proof that it works. This process required interaction with a third party that will likely do whatever they can to save face once the details become public."

There is a lot of speculation but I'm inclined to just say we're all looking forward to hearing the details and when we have more verified information we'll post it and let y'all know.


68 Posts
Dec 29th 2008

Sign Up for Free or Log In to start participating in the conversation!