Today on HakTip we’re talking about dealing with flashdrives in the terminal. ——————————- Shop: http://www.hakshop.com Support: http://www.patreon.com/threatwire Subscribe: http://www.youtube.com/hak5 Our Site: http://www.hak5.org Contact Us: http://www.twitter.com/hak5 Threat Wire RSS: https://shannonmorse.podbean.com/feed/ Threat Wire iTunes: https://itunes.apple.com/us/podcast/threat-wire/id1197048999 —————————— Commands used in this episode include: mount umount /dev/flashdrive1 mount -t filesystem type /dev/flashdrive /newdirectory cd /dev/flashdrive sudo fdisk /dev/flashdrive sudo […]

Read more

Check out the SMB Exfiltrator payload from the Bash Bunny github: https://github.com/hak5/bashbunny-payloads/tree/master/payloads/library/smb_exfiltrator Bash Bunny: http://www.bashbunny.com Hack Across The Planet: http://www.hackacrosstheplanet.com ——————————- Shop: http://www.hakshop.com Support: http://www.patreon.com/threatwire Subscribe: http://www.youtube.com/hak5 Our Site: http://www.hak5.org Contact Us: http://www.twitter.com/hak5 Threat Wire RSS: https://shannonmorse.podbean.com/feed/ Threat Wire iTunes: https://itunes.apple.com/us/podcast/threat-wire/id1197048999 ——————————

Read more

Twitter Counter gets hacked, WhatsApp and Telegram web apps vulnerable to account takeovers, four have been indicted in one of the Yahoo hacks, and the White House has a new cybersecurity coordinator. All that coming up now on Threat Wire. ——————————- Shop: http://www.hakshop.com Support: http://www.patreon.com/threatwire Subscribe: http://www.youtube.com/hak5 Our Site: http://www.hak5.org Contact Us: http://www.twitter.com/hak5 Threat Wire […]

Read more

Today on HakTip we’re discussing packages in Linux: how to install and update packages for software! ——————————- Shop: http://www.hakshop.com Support: http://www.patreon.com/threatwire Subscribe: http://www.youtube.com/hak5 Our Site: http://www.hak5.org Contact Us: http://www.twitter.com/hak5 Threat Wire RSS: https://shannonmorse.podbean.com/feed/ Threat Wire iTunes: https://itunes.apple.com/us/podcast/threat-wire/id1197048999 —————————— Packages come as .deb’s for Debian style distros, like Ubuntu. A Package consists of it’s package files, […]

Read more

Darren Kitchen heads to Jakarta, Indonesia for Hak5’s 2017 Hack Across the Planet! ——————————- Shop: http://www.hakshop.com Support: http://www.patreon.com/threatwire Subscribe: http://www.youtube.com/hak5 Our Site: http://www.hak5.org Contact Us: http://www.twitter.com/hak5 Threat Wire RSS: https://shannonmorse.podbean.com/feed/ Threat Wire iTunes: https://itunes.apple.com/us/podcast/threat-wire/id1197048999 —————————— Darren Kitchen heads to Jakarta, Indonesia for Hak5’s 2017 Hack Across the Planet! Check out https://hackacrosstheplanet.com for more information.

Read more

Wikileaks publicizes Vault 7, 8000 plus pages of CIA documents. All that coming up now on Threat Wire. ——————————- Shop: http://www.hakshop.com Support: http://www.patreon.com/threatwire Subscribe: http://www.youtube.com/hak5 Our Site: http://www.hak5.org Contact Us: http://www.twitter.com/hak5 Threat Wire RSS: https://shannonmorse.podbean.com/feed/ Threat Wire iTunes: https://itunes.apple.com/us/podcast/threat-wire/id1197048999 —————————— Links: https://wikileaks.org/ciav7p1/ https://twitter.com/wikileaks/status/839105996429668352 https://twitter.com/whispersystems/status/839204754718932992?ref_src=twsrc%5Etfw https://wikileaks.com/ciav7p1/cms/page_11629096.html https://wikileaks.com/ciav7p1/cms/files/iOS%20Exploits%20-%20iOS%20-%20EDG%20Confluence.pdf https://wikileaks.org/ciav7p1/cms/page_12353643.html https://www.cnet.com/news/weeping-angel-hack-samsung-smart-tv-cia-wikileaks/ https://wikileaks.org/ciav7p1/cms/page_7995642.html https://wikileaks.org/ciav7p1/cms/page_20873532.html http://www.reuters.com/article/us-cia-wikileaks-leak-idUSKBN16F2CZ https://www.facebook.com/wikileaks/videos/1262453947123048/ https://www.cnet.com/news/google-android-chrome-cia-exploits-wikileaks-vault-7-julian-assange/ https://www.cnet.com/news/microsoft-systems-seem-safe-from-wikileaks-alleged-cia-hacks/ https://www.cnet.com/news/apple-cia-wikileaks-vault-7-ios-patches-vulnerabilities/ […]

Read more

Today on HakTip, we’re customizing our shell prompt! ——————————- Shop: http://www.hakshop.com Support: http://www.patreon.com/threatwire Subscribe: http://www.youtube.com/hak5 Our Site: http://www.hak5.org Contact Us: http://www.twitter.com/hak5 Threat Wire RSS: https://shannonmorse.podbean.com/feed/ Threat Wire iTunes: https://itunes.apple.com/us/podcast/threat-wire/id1197048999 —————————— Subscribe to Hak5’s YouTube channel at http://www.youtube.com/hak5 Support Hak5 via our shop at https://www.hakshop.com Commands I used on this episode include: echo $PS1 original_backup=”$PS1″ PS1= […]

Read more

Writing Payloads for the Bash Bunny and contributing to the library on Github, this time on Hak5! ——————————- Shop: http://www.hakshop.com Support: http://www.patreon.com/threatwire Subscribe: http://www.youtube.com/hak5 Our Site: http://www.hak5.org Contact Us: http://www.twitter.com/hak5 Threat Wire RSS: https://shannonmorse.podbean.com/feed/ Threat Wire iTunes: https://itunes.apple.com/us/podcast/threat-wire/id1197048999 —————————— Bash Bunny GitHub: https://github.com/hak5/bashbunny-payloads Bash Bunny: http://www.bashbunny.com Bash Bunny Wiki: http://wiki.bashbunny.com/#!index.md Hack Across the Planet: http://www.hackacrosstheplanet.com […]

Read more

The FCC stays privacy regulations for consumers, 32 million total yahoo accounts were hacked with that cookie problem a few months ago, and CloudPets is really digging themselves into a grave with this toy hack. All that coming up now on Threat Wire. ——————————- Shop: http://www.hakshop.com Support: http://www.patreon.com/threatwire Subscribe: http://www.youtube.com/hak5 Our Site: http://www.hak5.org Contact Us: […]

Read more

http://www.bashbunny.com THE BASH BUNNY BY HAK5 IS THE WORLD’S MOST ADVANCED USB ATTACK PLATFORM. It opens up attack surfaces that weren’t possible before in one single device. Penetration testing attacks and IT automation tasks are all delivered in seconds with the Bash Bunny. By emulating combinations of trusted USB devices – like gigabit Ethernet, serial, […]

Read more

Hop on over to http://www.bashbunny.com to grab your Bash Bunny! RSVP to our launch event: https://goo.gl/forms/3d7mkK6eGFJi6eB43 Hit up http://www.hackacrosstheplanet.com to find out where we’re heading next! Find out more about the Bash Bunny at http://www.bashbunny.com/ ——————————- Shop: http://www.hakshop.com Support: http://www.patreon.com/threatwire Subscribe: http://www.youtube.com/hak5 Our Site: http://www.hak5.org Contact Us: http://www.twitter.com/hak5 Threat Wire RSS: https://shannonmorse.podbean.com/feed/ Threat Wire iTunes: […]

Read more

Cloudflare experiences a bug, SHA-1 is officially dead, and a man accused of DDoSing almost a million people has been arrested. . All that coming up now on Threat Wire. ——————————- Shop: http://www.hakshop.com Support: http://www.patreon.com/threatwire Subscribe: http://www.youtube.com/hak5 Our Site: http://www.hak5.org Contact Us: http://www.twitter.com/hak5 Threat Wire RSS: https://shannonmorse.podbean.com/feed/ Threat Wire iTunes: https://itunes.apple.com/us/podcast/threat-wire/id1197048999 —————————— Links: https://blog.cloudflare.com/incident-report-on-memory-leak-caused-by-cloudflare-parser-bug/ https://twitter.com/taviso/status/832744397800214528 […]

Read more

Building a unified cross platform USB Rubber Ducky hack payload for Windows, Linux, and Macs OSX. ——————————- Shop: http://www.hakshop.com Support: http://www.patreon.com/threatwire Subscribe: http://www.youtube.com/hak5 Our Site: http://www.hak5.org Contact Us: http://www.twitter.com/hak5 Threat Wire RSS: https://shannonmorse.podbean.com/feed/ Threat Wire iTunes: https://itunes.apple.com/us/podcast/threat-wire/id1197048999 —————————— http://www.hackacrosstheplanet.com

Read more

Malware can record your conversations, Trump is under fire from Congress representatives, and connected car apps are vulnerable to hacks. All that coming up now on Threat Wire. ——————————- Shop: http://www.hakshop.com Support: http://www.patreon.com/threatwire Subscribe: http://www.youtube.com/hak5 Our Site: http://www.hak5.org Contact Us: http://www.twitter.com/hak5 Threat Wire RSS: https://shannonmorse.podbean.com/feed/ Threat Wire iTunes: https://itunes.apple.com/us/podcast/threat-wire/id1197048999 —————————— Links: https://arstechnica.com/security/2017/02/hackers-who-took-control-of-pc-microphones-siphon-600-gb-from-70-targets/ https://cyberx-labs.com/en/blog/operation-bugdrop-cyberx-discovers-large-scale-cyber-reconnaissance-operation/ https://www.cnet.com/news/congressman-pushes-for-investigation-on-trumps-android-phone/ https://arstechnica.com/tech-policy/2017/02/trumps-apparent-string-of-security-faux-pas-trigger-call-for-house-investigation/ […]

Read more

Simply viewing a Steam profile could put you at risk, WordPress fixes a rather big problem, and WhatsApp introduces two step verification. All that coming up now on Threat Wire. ——————————- Shop: http://www.hakshop.com Support: http://www.patreon.com/threatwire Subscribe: http://www.youtube.com/hak5 Our Site: http://www.hak5.org Contact Us: http://www.twitter.com/hak5 Threat Wire RSS: https://shannonmorse.podbean.com/feed/ Threat Wire iTunes: https://itunes.apple.com/us/podcast/threat-wire/id1197048999 —————————— Links: https://arstechnica.com/security/2017/02/as-valve-eradicates-serious-bug-in-steam-heres-what-you-need-to-know/ https://www.reddit.com/r/Steam/comments/5skfg4/warning_regarding_a_steam_profile_related_exploit/ […]

Read more

The Best Wikipedia Reader EVER, this time on Hak5! Links: https://play.google.com/store/apps/details?id=com.arcdatum.apps.readable ——————————- Shop: http://www.hakshop.com Support: http://www.patreon.com/threatwire Subscribe: http://www.youtube.com/hak5 Our Site: http://www.hak5.org Contact Us: http://www.twitter.com/hak5 Threat Wire RSS: https://shannonmorse.podbean.com/feed/ Threat Wire iTunes: https://itunes.apple.com/us/podcast/threat-wire/id1197048999 ——————————

Read more

Facebook is trying to make password recovery more secure, Vizio is watching you, and the ECPA sorely needs an update. All that coming up now on Threat Wire. ——————————- Shop: http://www.hakshop.com Support: http://www.patreon.com/threatwire Subscribe: http://www.youtube.com/hak5 Our Site: http://www.hak5.org Contact Us: http://www.twitter.com/hak5 Threat Wire RSS: https://shannonmorse.podbean.com/feed/ Threat Wire iTunes: https://itunes.apple.com/us/podcast/threat-wire/id1197048999 —————————— Links: https://arstechnica.com/security/2017/01/forgotten-passwords-are-bane-of-the-internet-facebook-wants-to-fix-that/ https://www.facebook.com/notes/protect-the-graph/improving-account-security-with-delegated-recovery/1833022090271267/ https://github.com/facebookincubator/DelegatedRecovery/ http://www.theverge.com/2017/2/6/14522582/vizio-ftc-lawsuit-tv-viewing-habits-tracking-privacy […]

Read more

Darren chats with EvilMog (Team Hashcat) about Hashcat, the world’s fastest and most advanced password recovery tool. Find out more about Hashcat at https://hashcat.net/hashcat/ “Special thanks to atom, epixoip, purehate, minga, thank you for all that you do.” – EvilMog ——————————- Shop: http://www.hakshop.com Support: http://www.patreon.com/threatwire Subscribe: http://www.youtube.com/hak5 Our Site: http://www.hak5.org Contact Us: http://www.twitter.com/hak5 Threat Wire […]

Read more

Facebook now supports security keys, DCs cameras were hacked days before the inauguration, and a new FCC boss could mean bad news for net neutrality. Coming up now on Threat Wire. ——————————- Shop: http://www.hakshop.com Support: http://www.patreon.com/threatwire Subscribe: http://www.youtube.com/hak5 Our Site: http://www.hak5.org Contact Us: http://www.twitter.com/hak5 Threat Wire RSS: https://shannonmorse.podbean.com/feed/ Threat Wire iTunes: https://itunes.apple.com/us/podcast/threat-wire/id1197048999 —————————— Links: https://arstechnica.com/security/2017/01/now-theres-a-better-way-to-prevent-facebook-account-takeovers/ […]

Read more

Woody joins us on Hak5 to chat about his journey in discovering proximity sensor fingerprinting of smartphones and developing the IRis board for infrared hacks. ——————————- Shop: http://www.hakshop.com Support: http://www.patreon.com/threatwire Subscribe: http://www.youtube.com/hak5 Our Site: http://www.hak5.org Contact Us: http://www.twitter.com/hak5 Threat Wire RSS: https://shannonmorse.podbean.com/feed/ Threat Wire iTunes: https://itunes.apple.com/us/podcast/threat-wire/id1197048999 —————————— Woody on Twitter: https://twitter.com/tb69rr Github for IRis: The […]

Read more

Meitu is super kawaii, but is it spyware?, Lavabit is Back!, Chelsea Manning’s jail time gets commuted, and the US people still needs pix or it didn’t happen regarding Russia’s hacks of the DNC and RNC. Coming up now on Threat Wire. ——————————- Shop: http://www.hakshop.com Support: http://www.patreon.com/threatwire Subscribe: http://www.youtube.com/hak5 Our Site: http://www.hak5.org Contact Us: http://www.twitter.com/hak5 […]

Read more

Today on Hak5 we head to Washington DC for Shmoocon 2017! We chat sniffing IR signals, how to get into SDR, Dog Collar Radio Roulette, and advertising malware detection! ——————————- Shop: http://www.hakshop.com Support: http://www.patreon.com/threatwire Subscribe: http://www.youtube.com/hak5 Our Site: http://www.hak5.org Contact Us: http://www.twitter.com/hak5 —————————— See the talks! http://shmoocon.org/ Russell Handorf – @dntlookbehindu – http://wctf.ninja Hak5 eps […]

Read more

Does WhatsApp really have a backdoor? Thousands of MongoDB Databases have been deleted across the web, cardless ATMs sounds like a terrible idea, and Cellebrite got hacked… Coming up now on Threat Wire. ——————————- Shop: http://www.hakshop.com Support: http://www.patreon.com/threatwire Subscribe: http://www.youtube.com/hak5 Our Site: http://www.hak5.org Contact Us: http://www.twitter.com/hak5 —————————— Links: http://thehackernews.com/2017/01/whatsapp-backdoor-encryption.html http://arstechnica.com/security/2017/01/whatsapp-and-friends-take-umbrage-at-report-its-crypto-is-backdoored/ https://www.theguardian.com/technology/2017/jan/13/whatsapp-backdoor-allows-snooping-on-encrypted-messages https://www.mongodb.com/blog/post/how-to-avoid-a-malicious-attack-that-ransoms-your-data http://arstechnica.com/security/2017/01/more-than-10000-online-databases-taken-hostage-by-ransomware-attackers/ https://krebsonsecurity.com/2017/01/extortionists-wipe-thousands-of-databases-victims-who-pay-up-get-stiffed/ https://krebsonsecurity.com/2017/01/stolen-passwords-fuel-cardless-atm-fraud/ […]

Read more

Sandboxes, packet sniffing and malware analysis – this time on Hak5! ——————————- Shop: http://www.hakshop.com Support: http://www.patreon.com/threatwire Subscribe: http://www.youtube.com/hak5 Our Site: http://www.hak5.org Contact Us: http://www.twitter.com/hak5 —————————— ifconfig -a tcpdump -i vmnet8 vmnet-sniffer -e -w test.pcap /dev/vmnet8 wireshark test.pcap & sudo dpkg-reconfigure wireshark-common sudo usermod -a -G wireshark $USER !(icmp or dns or arp or icmpv6 or […]

Read more

Start your 2017 off right by using some privacy and security apps made for anyone! ——————————- Shop: http://www.hakshop.com Support: http://www.patreon.com/threatwire Subscribe: http://www.youtube.com/hak5 Our Site: http://www.hak5.org Contact Us: http://www.twitter.com/hak5 —————————— Links: https://twitter.com/Snubs/status/808355762539876352 https://whispersystems.org/ https://play.google.com/store/apps/details?id=com.google.android.apps.authenticator2&hl=en https://www.authy.com/ https://twofactorauth.org/ https://www.mailvelope.com/en/ https://keybase.io/ https://protonmail.com/ http://keepass.info/ https://www.lastpass.com/ https://thatoneprivacysite.net/vpn-comparison-chart/ https://openvpn.net/ https://www.privateinternetaccess.com/pages/how-it-works/ https://www.privacytools.io/ Youtube Thumbnail credit: https://c2.staticflickr.com/6/5503/11406965045_b520282906_b.jpg

Read more

How do we hack our way to better habits and goals? This time on Hak5! ——————————- Shop: http://www.hakshop.com Support: http://www.patreon.com/threatwire Subscribe: http://www.youtube.com/hak5 Our Site: http://www.hak5.org Contact Us: http://www.twitter.com/hak5 —————————— Shannon will be in Las Vegas next week for CES! Join her at the TekThing meetup on Friday night. Event details are at http://www.facebook.com/tekthing Loop Habit […]

Read more

Privilege escalation on Windows, Meterpreter Reverse Shells and Staged Payloads with the USB Rubber Ducky. All that and more, this time on Hak5. ——————————- Shop: http://www.hakshop.com Support: http://www.patreon.com/threatwire Subscribe: http://www.youtube.com/hak5 Our Site: http://www.hak5.org Contact Us: http://www.twitter.com/hak5 —————————— Check out http://www.patreon.com/threatwire for our Patreon-only Audio RSS feed of Threat Wire! git clone https://github.com/SkiddieTech/UAC-D-E-Rubber-Ducky cd UAC-D-E-Rubber-Ducky python […]

Read more

The biggest, baddest, worst hacks of 2016. Coming up now on Threat Wire. ——————————- Shop: http://www.hakshop.com Support: http://www.patreon.com/threatwire Subscribe: http://www.youtube.com/hak5 Our Site: http://www.hak5.org Contact Us: http://www.twitter.com/hak5 —————————— Links: https://nakedsecurity.sophos.com/2016/06/27/irs-hacked-again-say-goodbye-to-that-pin-system/ https://www.engadget.com/2016/08/19/new-snowden-docs-suggest-shadow-broker-leak-was-real/ https://www.wired.com/2016/10/nsa-contractor-arrested-taking-top-secret-documents/ http://arstechnica.com/security/2016/12/the-public-evidence-behind-claims-russia-hacked-for-trump/ http://arstechnica.com/security/2016/11/adultfriendfinder-hacked-exposes-400-million-hookup-users/ https://krebsonsecurity.com/2016/09/krebsonsecurity-hit-with-record-ddos/ https://www.dynstatus.com/incidents/5r9mppc1kb77 http://www.nytimes.com/2016/05/13/business/dealbook/swift-global-bank-network-attack.html https://techcrunch.com/2016/12/14/yahoo-discloses-hack-of-1-billion-accounts/ https://haveibeenpwned.com/

Read more