information security conference Archives

DEF CON 29 – Jenko Hwong – New Phishing Attacks Exploiting OAuth Authentication Flows

August 12, 2021 Allen THOMPSON 5 Comments CON, conference speakers, DC29, DEC CON 2021, Def, DEF CON, DEF CON 29, DEFCON, hacker conference, hackers, Hacking, hacking videos, information security, information security conference, Jenko Hwong, oauth, phishing, security conference, security research

OAuth 2.0 device authentication gives users on limited-input devices like TVs an easier way to authenticate against a cloud website/app

DNS Server linux Linux server NETWORK ADMINISTRATIONS

DEF CON 29 – Shir Tamari, Ami Luttwak – New class of DNS Vulns Affecting DNS-as-Service Platforms

August 9, 2021 Devin BARTON 1 Comment ami luttwak, CON, conference speakers, DC29, Def, DEF CON, DEF CON 2021, DEF CON 29, DEFCON, dns, DNS-as-Service, hacker conference, hackers, Hacking, hacking videos, information security, information security conference, security conference, security research, shir tamari

We present a novel class of DNS vulnerabilities that affects multiple DNS-as-a-Service (DNSaaS) providers. The vulnerabilities have been proven and

Computer Networks NETWORKS

DEF CON 29 – Kelly Kaoudis, Sick Codes – Rotten code, aging standards, & pwning IPv4 parsing

August 6, 2021 Alice AUSTIN 1 Comment CON, conference speakers, DC29, Def, DEF CON, DEF CON 2021, DEF CON 29, DEFCON, hacker conference, hackers, Hacking, hacking videos, information security, information security conference, IPv4, kelly Kaoudis, security conference, security research, Sick Codes

Openness to responsibly disclosed external vulnerability research is crucial for modern software maintainers and security teams. Changes in upstream dependency

Computer Networks NETWORKS

Travis Palmer – First Try DNS Cache Poisoning with IPv4 and IPv6 – DEF CON 27 Packet Hacking Village

September 15, 2020 Alice AUSTIN 1 Comment CON, conference speakers, Def, DEF CON, DEFCON, hacker conference, hackers, Hacking, hacking videos, information security, information security conference, packet hacking, security conference, security research

DNS fragmentation attacks are a more recent series of cache poisoning attacks on resolvers. Even if DNSSEC is fully implemented,