Sandboxes, packet sniffing and malware analysis – this time on Hak5! ——————————- Shop: http://www.hakshop.com Support: http://www.patreon.com/threatwire Subscribe: http://www.youtube.com/hak5 Our Site: http://www.hak5.org Contact Us: http://www.twitter.com/hak5 —————————— ifconfig -a tcpdump -i vmnet8 vmnet-sniffer -e -w test.pcap /dev/vmnet8 wireshark test.pcap & sudo dpkg-reconfigure wireshark-common sudo usermod -a -G wireshark $USER !(icmp or dns or arp or icmpv6 or […]

Read more

CES 2017: 5G Launch Date, Crazy Thin 4K TVs, 2TB USB Drive, Kuri Home Robot, Norton Core, & Too Many Self Driving Cars! —— 00:54 Three Things We Learned at CES… Tesla’s Gigafactory is producting batteries… the other two are in the video! https://www.tesla.com/gigafactory 02:06 2 Terabyte USB Drive: Quick Pick from Patrick: Kingston’s 2TB […]

Read more

How do we hack our way to better habits and goals? This time on Hak5! ——————————- Shop: http://www.hakshop.com Support: http://www.patreon.com/threatwire Subscribe: http://www.youtube.com/hak5 Our Site: http://www.hak5.org Contact Us: http://www.twitter.com/hak5 —————————— Shannon will be in Las Vegas next week for CES! Join her at the TekThing meetup on Friday night. Event details are at http://www.facebook.com/tekthing Loop Habit […]

Read more

CES 2017 Is HERE!!! New Dell XPS 13 2-in-1, HP’s Epic Omen X 35, Linksys Velop, More! —— Heads Up: Our main show for this week will release at 9AM on Friday! DELL There’s a new 2-in-1 XPS 13… details in the video and an HDR desktop monitor, Dell’s Ultrathin 27 aka the S2718D. Linksys […]

Read more

2017: CES, VR, & Android Predictions, FooVR, Comcast’s 1TB Data Cap Alert Broken??? Fix Your Passwords! —— Comcast Terabyte Data Cap Problems Heads up, Comcast’s Usage Meter alerts for the 1 TB data cap might not be working. Here’s what happens if you exceed the cap! https://customer.xfinity.com/MyServices/Internet/UsageMeter/ https://customer.xfinity.com/help-and-support/internet/data-usage-exceed-usage CES 2017 What We’re Looking Forward To […]

Read more

Privilege escalation on Windows, Meterpreter Reverse Shells and Staged Payloads with the USB Rubber Ducky. All that and more, this time on Hak5. ——————————- Shop: http://www.hakshop.com Support: http://www.patreon.com/threatwire Subscribe: http://www.youtube.com/hak5 Our Site: http://www.hak5.org Contact Us: http://www.twitter.com/hak5 —————————— Check out http://www.patreon.com/threatwire for our Patreon-only Audio RSS feed of Threat Wire! git clone https://github.com/SkiddieTech/UAC-D-E-Rubber-Ducky cd UAC-D-E-Rubber-Ducky python […]

Read more

The biggest, baddest, worst hacks of 2016. Coming up now on Threat Wire. ——————————- Shop: http://www.hakshop.com Support: http://www.patreon.com/threatwire Subscribe: http://www.youtube.com/hak5 Our Site: http://www.hak5.org Contact Us: http://www.twitter.com/hak5 —————————— Links: https://nakedsecurity.sophos.com/2016/06/27/irs-hacked-again-say-goodbye-to-that-pin-system/ https://www.engadget.com/2016/08/19/new-snowden-docs-suggest-shadow-broker-leak-was-real/ https://www.wired.com/2016/10/nsa-contractor-arrested-taking-top-secret-documents/ http://arstechnica.com/security/2016/12/the-public-evidence-behind-claims-russia-hacked-for-trump/ http://arstechnica.com/security/2016/11/adultfriendfinder-hacked-exposes-400-million-hookup-users/ https://krebsonsecurity.com/2016/09/krebsonsecurity-hit-with-record-ddos/ https://www.dynstatus.com/incidents/5r9mppc1kb77 http://www.nytimes.com/2016/05/13/business/dealbook/swift-global-bank-network-attack.html https://techcrunch.com/2016/12/14/yahoo-discloses-hack-of-1-billion-accounts/ https://haveibeenpwned.com/

Read more

Happy holidays from the team of Hak5! We are celebrating by decorating our con badge Christmas Tree, and sharing our favorite bloopers from 2016. We hope you enjoy this silly episode of Hak5, and we’ll see ya next week with another tech segment! ——————————- Shop: http://www.hakshop.com Support: http://www.patreon.com/threatwire Subscribe: http://www.youtube.com/hak5 Our Site: http://www.hak5.org Contact Us: […]

Read more

Does your favorite news site get an A+ or an F for privacy? Encryption for cameras? Make it so! Yahoo’s breach accounts hit the billions, and a new malvertising campaign hits sites. Coming up now on Threat Wire. Coming up now on Threat Wire. ——————————- Shop: http://www.hakshop.com Support: http://www.patreon.com/threatwire Subscribe: http://www.youtube.com/hak5 Our Site: http://www.hak5.org Contact […]

Read more

Photogrammetry and building 3D topographic maps with drones! All that and more, this time on Hak5! ——————————- Shop: http://www.hakshop.com Support: http://www.patreon.com/threatwire Subscribe: http://www.youtube.com/hak5 Our Site: http://www.hak5.org Contact Us: http://www.twitter.com/hak5 —————————— Check out http://www.patreon.com/threatwire for our Patreon-only Audio RSS feed of Threat Wire! Our last episode on photogrammetry: https://www.hak5.org/episodes/hak5-1815 http://www.123dapp.com/catch http://www.123dapp.com/catch/Southhampton-Shoal-Lighthouse-Standard/3978121 Open source alternatives: http://ccwu.me/vsfm/ and […]

Read more

President Obama wants to know all about the election season hacks, malvertising exploits millions, the NSA can track in-flight cellphone use, and OpenVPN gets an audit! Coming up now on Threat Wire. ——————————- Shop: http://www.hakshop.com Support: http://www.patreon.com/threatwire Subscribe: http://www.youtube.com/hak5 Our Site: http://www.hak5.org Contact Us: http://www.twitter.com/hak5 —————————— Links: https://www.wired.com/2016/12/russian-election-hacking-investigation/ https://www.wired.com/2016/11/hacked-not-audit-election-rest/ http://www.nytimes.com/2016/12/09/us/obama-russia-election-hack.html?_r=0 https://www.cnet.com/news/donald-trump-cia-russia-hacks-election-rnc-dnc/ https://www.cnet.com/news/president-obama-orders-review-of-hack-2016-presidential-campaign/ http://arstechnica.com/tech-policy/2016/12/obama-asks-intel-community-to-conduct-full-review-of-election-related-hacks/ http://arstechnica.com/security/2016/12/millions-exposed-to-malvertising-that-hid-attack-code-in-banner-pixels/ http://www.welivesecurity.com/2016/12/06/readers-popular-websites-targeted-stealthy-stegano-exploit-kit-hiding-pixels-malicious-ads/ […]

Read more

Exfiltrating documents with the USB Rubber Ducky, part 3! This time on Hak5. ——————————- Shop: http://www.hakshop.com Support: http://www.patreon.com/threatwire Subscribe: http://www.youtube.com/hak5 Our Site: http://www.hak5.org Contact Us: http://www.twitter.com/hak5 —————————— Check out Threat Wire on the Hak5 youtube channel. Your source for security, privacy and internet freedom news. We just released an audio RSS feed for our Patreon […]

Read more

AirDroid is vulnerable to hacks, a Zero Day makes Tor uses not so anonymous, the SF Muni hacker gets hacked, and the avalanche botnet is taken offline. Coming up now on Threat Wire. ——————————- Shop: http://www.hakshop.com Support: http://www.patreon.com/threatwire Subscribe: http://www.youtube.com/hak5 Our Site: http://www.hak5.org Contact Us: http://www.twitter.com/hak5 —————————— Links: http://arstechnica.com/security/2016/12/at-least-10-million-android-users-imperiled-by-popular-airdroid-app/ https://blog.zimperium.com/analysis-of-multiple-vulnerabilities-in-airdroid/ http://arstechnica.com/security/2016/11/tor-releases-urgent-update-for-firefox-0day-thats-under-active-attack/ http://arstechnica.com/security/2016/11/firefox-0day-used-against-tor-users-almost-identical-to-one-fbi-used-in-2013/ https://blog.mozilla.org/security/2016/11/30/fixing-an-svg-animation-vulnerability/ https://blog.torproject.org/blog/tor-browser-607-released https://www.cnet.com/news/hackers-sf-muni-ransomware-attack-muni/ […]

Read more

Google Daydream View VR, Monoprice $199 M560 planar, Audioquest NightOwl headphone reviews! Doctor Who -is- online! —— 02:16 Daydream View VR Headset by Google Shannon’s got a full review of the $79 Daydream View running on her Pixel… check the video! https://vr.google.com/daydream/headset/ https://madeby.google.com/phone/ 13:27 3 Incredibly Useful Free Apps! Find out why 7-Zip, SD Card […]

Read more

Today we’re continuing on our series on exfiltrating documents with a USB Rubber Ducky. In the last part we tackled the stager payload which enumerated the drive letter of our USB flash drive and executed the staged payload. Today we’re looking at those stages and how they work. Then finally we’ll be wrapping this up […]

Read more

A reused Apple ID could be bad for your privacy, 3 million android devices are vulnerable to hacks, and you can steal cookies from a locked pc with a super cheap device. Coming up now on ThreatWire. ——————————- Shop: http://www.hakshop.com Support: http://www.patreon.com/threatwire Subscribe: http://www.youtube.com/hak5 Our Site: http://www.hak5.org Contact Us: http://www.twitter.com/hak5 —————————— Links: https://threatpost.com/iphone-call-history-synced-to-icloud-without-user-consent-knowledge/122030/ https://thehackernews.com/2016/11/icloud-backup.html https://blog.elcomsoft.com/2016/11/iphone-user-your-calls-go-to-icloud/ […]

Read more

Exfiltrate documents from a target computer within seconds with this USB Rubber Ducky attack! ——————————- Shop: http://www.hakshop.com Support: http://www.patreon.com/threatwire Subscribe: http://www.youtube.com/hak5 Our Site: http://www.hak5.org Contact Us: http://www.twitter.com/hak5 —————————— Full shownotes will be available at http://www.hak5.org

Read more

Google Home vs. Amazon Echo, Best GPU from $100 Up, Mechanical Gaming Keyboards & Headsets, Unsubscribe From Email! —— 00:40 Google Home Review! We’ve gone hands on with Google Home… is it a worthy competitor to Amazon’s Echo? What can it do? Is the speaker any good? Watch the video to find out! https://madeby.google.com/home/ https://madeby.google.com/home/services/ […]

Read more

Turning a Burner Phone into an OpenWRT or WiFi Pineapple LTE modem, this time on Hak5! ——————————- Shop: http://www.hakshop.com Support: http://www.patreon.com/threatwire Subscribe: http://www.youtube.com/hak5 Our Site: http://www.hak5.org Contact Us: http://www.twitter.com/hak5 —————————— NEW! AppleTV App for your viewing pleasure: https://itunes.apple.com/us/app/hak5-tv/id1076116664?mt=8 Mad Props to Richard Hyde for his hard work on developing this app! Today we’re using a […]

Read more

You can now hack your car legally, a printer can also be a fake cell phone tower, and did the Mirai botnet really take down Liberia? All that coming up now on ThreatWire. ——————————- Shop: http://www.hakshop.com Support: http://www.patreon.com/threatwire Subscribe: http://www.youtube.com/hak5 Our Site: http://www.hak5.org Contact Us: http://www.twitter.com/hak5 —————————— Links: https://www.wired.com/2016/10/hacking-car-pacemaker-toaster-just-became-legal/ https://www.cnet.com/roadshow/news/modders-rejoice-its-legal-to-tweak-your-cars-software-now/ https://www.wired.com/2016/11/evil-office-printer-hijacks-cellphone-connection/ http://arstechnica.com/information-technology/2016/11/this-evil-office-printer-hijacks-your-cellphone-connection/ https://julianoliver.com/output/stealth-cell-tower http://www.securityweek.com/mirai-botnet-takes-down-internet-liberia https://medium.com/@networksecurity/shadows-kill-mirai-ddos-botnet-testing-large-scale-attacks-sending-threatening-messages-about-6a61553d1c7#.iz5za4xl3 […]

Read more

Did You Really Get Hacked? Do This Next! HerdProtect Download: One Click Runs 68 Malware Scanners! Best Soldering Iron —— 00:30 What To Do If You Get Hacked Let’s talk about being hacked… which I started thinking about Saturday night when I got a text message “Someone else might have accessed Microsoft account ***@gmail” Saturday […]

Read more

The 3 Second Reverse Shell with a USB Rubber Ducky In this tutorial we’ll be setting up a Reverse Shell payload on the USB Rubber Ducky that’ll execute in just 3 seconds. A reverse shell is a type of shell where the victim computer calls back to an attacker’s computer. The attacking computer typically listens […]

Read more

The Shadow Brokers are back with more NSA data, the FCC passes some new privacy laws, and should hacking back, or counterattacking, be legal?. All that coming up now on ThreatWire. ——————————- Shop: http://www.hakshop.com Support: http://www.patreon.com/threatwire Subscribe: http://www.youtube.com/hak5 Our Site: http://www.hak5.org Contact Us: http://www.twitter.com/hak5 —————————— Links: https://motherboard.vice.com/read/shadow-brokers-nsa-hackers-dump-more-files https://medium.com/@shadowbrokerss/message-5-trick-or-treat-e43f946f93e6#.447qr63g2 http://pastebin.com/RK73grmu https://twitter.com/musalbas/status/793001139310559232 https://www.washingtonpost.com/world/national-security/government-alleges-massive-theft-by-nsa-contractor/2016/10/20/e021c380-96cc-11e6-bb29-bf2701dbe0a3_story.html https://krebsonsecurity.com/2016/10/senator-prods-federal-agencies-on-iot-mess/ http://www.warner.senate.gov/public/index.cfm/pressreleases?ContentRecord_id=CD1BBB25-83E0-494D-B7E1-1C350A7CFCCA https://threatpost.com/mirai-vulnerability-disclosed-but-exploits-may-constitute-hacking-back/121644/ https://www.invincealabs.com/blog/2016/10/killing-mirai/ […]

Read more

In this episode of Hak5 we’re joined by Samy Kamkar, the maker of many portable hacker devices like the MagSpoof and KeySweeper just to name a couple. Read about his developments at https://samy.pl/ ——————————- Shop: http://www.hakshop.com Support: http://www.patreon.com/threatwire Subscribe: http://www.youtube.com/hak5 Our Site: http://www.hak5.org Contact Us: http://www.twitter.com/hak5 ——————————

Read more

Google Pixel Review, $100 Noise Cancelling Headphones, How To Put Out Smartphone Fires, Stop IoT DDOS Attacks —— 00:55 – Google Pixel XL Review Is Google’s Pixel the best Android phone ever? Shannon’s full review in the video! https://madeby.google.com/phone/ 15:12 – Detect Hacked IoT Devices? Joseph writes ask@tekthing.com “After last weeks huge DDoS, has anyone […]

Read more

The internet goes down, more IoT things are being hacked, and a product recall. All that coming up now on ThreatWire! ——————————- Shop: http://www.hakshop.com Support: http://www.patreon.com/threatwire Subscribe: http://www.youtube.com/hak5 Our Site: http://www.hak5.org Contact Us: http://www.twitter.com/hak5 —————————— Links: http://www.businessinsider.com/amazon-spotify-twitter-github-and-etsy-down-in-apparent-dns-attack-2016-10 https://krebsonsecurity.com/2016/10/ddos-on-dyn-impacts-twitter-spotify-reddit/ https://www.dynstatus.com/incidents/nlr4yrr162t8 https://thehackernews.com/2016/10/iot-dyn-ddos-attack.html https://intel.malwaretech.com/botnet/mirai/?h=24 https://krebsonsecurity.com/2016/10/hacked-cameras-dvrs-powered-todays-massive-internet-outage/ https://krebsonsecurity.com/2016/10/iot-device-maker-vows-product-recall-legal-action-against-western-accusers/ https://mp.weixin.qq.com/s?__biz=MzA4MDQ4NjMwOA==&mid=2651450911&idx=1&sn=f4d41b6fae77ece8493fdec1197d97f0&chksm=845ec4d4b3294dc23df1d6ecba1e76ccec9ac6533aef4403ecf34f9b72e4cb3c7c94e57dfc89&mpshare=1&scene=1&srcid=1024DskPGO5o4Jgp1qYNtrDZ#wechat_redirect Youtube Thumbnail credit: https://upload.wikimedia.org/wikipedia/en/a/ad/Webcam.JPG

Read more

Decrypting Morse code with a simple terminal command and a PC sound card, this time on Hak5! Shannon’s call sign is KM6FPP! Listen for her on the radio soon. Installing and setting up XDEMorse: sudo apt-get install xdemorse cd /usr/share/doc/xdemorse/examples/ sudo gunzip xdemorserc.example.gz cp xdemorserc.example ~/.xdemorserc nano ~/.xdemorserc xdemorse & xdemorse http://www.qsl.net/5b4az/pkg/morse/xdemorse/xdemorse.html rscw http://wwwhome.ewi.utwente.nl/~ptdeboer/ham/rscw/ minimodem […]

Read more