Stealing creds from a locked PC using a Hak5 LAN Turtle, plus Mubix joins us! This time on Hak5! ——————————- Shop: http://www.hakshop.com Support: http://www.patreon.com/threatwire Subscribe: http://www.youtube.com/hak5 Our Site: http://www.hak5.org Contact Us: http://www.twitter.com/hak5 —————————— Stealing creds from a locked PC using a Hak5 LAN Turtle, plus Mubix joins us! This time on Hak5! https://room362.com/ – Mubix’s […]

Read more

Today we review MOSH an alternative to SSH that’s better at high latency and intermittent Internet connections. Plus, your USB Rubber Ducky questions and tips! ——————————- Shop: http://www.hakshop.com Support: http://www.patreon.com/threatwire Subscribe: http://www.youtube.com/hak5 Our Site: http://www.hak5.org Contact Us: http://www.twitter.com/hak5 —————————— https://mosh.org/ ConsoleHost_history.txt is kept under %APPDATA%\Microsoft\Windows\PowerShell\PSReadline\ConsoleHost_history.txt, you can check where your system keeps this file by […]

Read more

Steal passwords from a locked PC, 911 is still vulnerable to hacks, and Chrome calls out non secure sites. All that coming up now on ThreatWire. ——————————- Shop: http://www.hakshop.com Support: http://www.patreon.com/threatwire Subscribe: http://www.youtube.com/hak5 Our Site: http://www.hak5.org Contact Us: http://www.twitter.com/hak5 —————————— Links: Learn more about NTLM Challenge Response Authentication: https://msdn.microsoft.com/en-us/library/windows/desktop/aa378749(v=vs.85).aspx http://arstechnica.com/security/2016/09/stealing-login-credentials-from-a-locked-pc-or-mac-just-got-easier/ https://github.com/Spiderlabs/Responder http://www.exploit-monday.com/2016/09/introduction-to-windows-device-guard.html https://room362.com/post/2016/snagging-creds-from-locked-machines/ http://www.cnet.com/news/chrome-warning-insecure-http-websites-expose-passwords-credit-card-numbers/ https://blog.chromium.org/2016/09/moving-towards-more-secure-web.html […]

Read more

iPhone 7 Reaction, Pop Home Switch Review, New PlayStations, Lenovo’s new YogaBook, HDR 4K desktop monitor recco? —— 00:45 Logitech POP Home Switch Review “A simple switch to control your smart home devices.” Control your home with the press of a button, instead of opening an app on your phone. Watch the video to learn […]

Read more

Previously on Hak5, we showed off an USB Rubber Ducky payload to steal plaintext Windows passwords in 15 seconds. So, what if we told you we could get just the logon hash in under two? A 2 second technique for stealing Windows password hashes and otherwise auditing corporate USB drive policies! Learn more on today’s […]

Read more

Clinton’s got an Email Problem, Dropbox and Last.Fm 2012 Hacks get leaked, and is Ford going to introduce a new way to unlock their cars? All that coming up now on Threat Wire. ——————————- Shop: http://www.hakshop.com Support: http://www.patreon.com/threatwire Subscribe: http://www.youtube.com/hak5 Our Site: http://www.hak5.org Contact Us: http://www.twitter.com/hak5 —————————— Links: http://arstechnica.com/security/2016/09/over-40-million-usernames-passwords-from-2012-breach-of-last-fm-surface/ http://www.last.fm/passwordsecurity https://www.cnet.com/roadshow/news/ford-could-replace-your-key-fob-with-radio-button-passcodes/ http://www.freepatentsonline.com/20160244022.pdf https://motherboard.vice.com/read/hackers-stole-over-60-million-dropbox-accounts https://www.wired.com/2016/08/hack-brief-four-year-old-dropbox-hack-exposed-68-million-peoples-data/ https://blogs.dropbox.com/dropbox/2012/07/security-update-new-features/ […]

Read more

Kaby Lake Intel Processor, GEM Box Android TV, KEF EGG, AutoPatcher, Block USB Rubber Ducky? —— New Intel Kaby Lake CPUS! Thinking about buying a new laptop? Might want to wait a week or two, performance deets in the video! https://newsroom.intel.com/editorials/new-7th-gen-intel-core-processor-built-immersive-internet/ EMTEC GEM Box $99 Android TV and Gaming! Can this tiny box compete with […]

Read more

Pilfering Passwords with the USB Rubber Ducky Can you social engineer your target into plugging in a USB drive? How about distracting ’em for the briefest of moments? 15 seconds of physical access and a USB Rubber Ducky is all it takes to swipe passwords from an unattended PC. In honor of the USB Rubber […]

Read more

Was the ShadowBrokers NSA hack an inside Job?, ATM’s Hacked through EMV Chips, Update Your iPhone NOW, Voter Records Stolen in a State Hack. All that coming up now on ThreatWire! ——————————- Shop: http://www.hakshop.com Support: http://www.patreon.com/threatwire Subscribe: http://www.youtube.com/hak5 Our Site: http://www.hak5.org Contact Us: http://www.twitter.com/hak5 —————————— Links: http://arstechnica.com/security/2016/08/hints-suggest-an-insider-helped-the-nsa-equation-group-hacking-tools-leak/ https://motherboard.vice.com/read/former-nsa-staffers-rogue-insider-shadow-brokers-theory?trk_source=popular https://taia.global/2016/08/shadowbroker-is-a-native-english-speaker-trying-to-appear-non-native/ http://www.reuters.com/article/us-intelligence-nsa-commentary-idUSKCN10X01P http://arstechnica.com/security/2016/08/nsa-linked-cisco-exploit-poses-bigger-threat-than-previously-thought/ http://www.securityweek.com/leaked-cisco-asa-exploit-adapted-newer-versions https://threatpost.com/cisco-begins-patching-equation-group-asa-zero-day/120124/ https://threatpost.com/ripper-atm-malware-uses-malicious-evm-chip/120192/ http://www.securityweek.com/ripper-atm-malware-linked-thailand-heist […]

Read more

Dell Inspiron 13 7000 2-in-1, VR Oculus, Vive, or PSVR? Peak Design Slide Strap & Capture Pro, Hashtag Wedding Photos! —— Dell Inspiron 13 7000 2-in-1 Back to school shopping, or just looking for a bargain, Chromebooks are the choice for a lot of folks… and you can pick one up for as little as […]

Read more

DEF CON 24: Warwalking at DEF CON, Semaphor and Consumer Privacy, Mousejack and Keysniffer, this week on Hak5! ——————————- Shop: http://www.hakshop.com Support: http://www.patreon.com/threatwire Subscribe: http://www.youtube.com/hak5 Our Site: http://www.hak5.org Contact Us: http://www.twitter.com/hak5 —————————— D4rkm4tter talks warwalking at DEF CON and his upgrade to deploying 12 nodes at DEF CON 24 http://www.palshack.com Alan Fairless, Founder of Spideroak […]

Read more

Did the NSA get hacked? Pokemon Go users fall prey to malware, and a TCP vulnerability is found on many Android devices. All that coming up now on ThreatWire. ——————————- Shop: http://www.hakshop.com Support: http://www.patreon.com/threatwire Subscribe: http://www.youtube.com/hak5 Our Site: http://www.hak5.org Contact Us: http://www.twitter.com/hak5 —————————— https://threatpost.com/pokemon-go-spam-ransomware-on-the-rise/119948/ https://threatpost.com/malicious-pokemon-go-app-installs-backdoor-on-android-devices/119174/ https://threatpost.com/tcp-flaw-in-linux-extends-to-80-percent-of-android-devices/119897/ http://www.cs.ucr.edu/~zhiyunq/pub/sec16_TCP_pure_offpath.pdf http://www.techinsider.io/nsa-cyberweapon-auction-shadow-brokers-2016-8 https://theintercept.com/2016/08/19/the-nsa-was-hacked-snowden-documents-confirm/ http://arstechnica.com/security/2016/08/group-claims-to-hack-nsa-tied-hackers-posts-exploits-as-proof/ https://webcache.googleusercontent.com/search?q=cache:owtq6OBSmgEJ:https://theshadowbrokers.tumblr.com/+&cd=1&hl=en&ct=clnk&gl=us http://arstechnica.com/tech-policy/2016/08/snowden-speculates-leak-of-nsa-spying-tools-is-tied-to-russian-dnc-hack/ https://securelist.com/blog/incidents/75812/the-equation-giveaway/ https://www.wired.com/2016/08/shadow-brokers-mess-happens-nsa-hoards-zero-days/ Youtube […]

Read more

Today on HakTip we’re talking Vi, the powerful text editor for Linux systems! ——————————- Shop: http://www.hakshop.com Support: http://www.patreon.com/threatwire Subscribe: http://www.youtube.com/hak5 Our Site: http://www.hak5.org Contact Us: http://www.twitter.com/hak5 ——————————

Read more

Intel Project Alloy Wireless VR, New V-Nand Flash Means 32TB SSDs, Sub $100 Headphone DACS, Linux WiFi Troubleshooting ——- 00:47 Google Fiber Going Wireless? Big shock: Google Fiber has discovered that laying fiber is expensive… and takes forever. http://www.wsj.com/article_email/googles-high-speed-web-plans-hit-snags-1471193165-lMyQjAxMTA2NjEwNDUxNDQ0Wj 02:31 Intel Developer Forum 2016 What makes Intel’s Project Alloy VR headset, 7th Gen Core i5 […]

Read more

DEF CON 24: VNC vulnerabilities, Blue Hydra bluetooth sniffing, making your own DEF CON Black Badge, and the DEF CON DarkNet, this week on Hak5! ——————————- Shop: http://www.hakshop.com Support: http://www.patreon.com/threatwire Subscribe: http://www.youtube.com/hak5 Our Site: http://www.hak5.org Contact Us: http://www.twitter.com/hak5 —————————— Dan Tentler (Viss) from Phobos Group talks VNC vulnerabilities – https://phobos.io/ http://www.github.com/phobosgroup https://github.com/0x3a/stargate Zero_Chaos and Granolocks […]

Read more

Millions of Volkswagen Cars are Vulnerable to a Hack, and apparently so is that air-gapped PC, plus several hotels in the US get their credit card data stolen. All that coming up now on ThreatWire! ——————————- Shop: http://www.hakshop.com Support: http://www.patreon.com/threatwire Subscribe: http://www.youtube.com/hak5 Our Site: http://www.hak5.org Contact Us: http://www.twitter.com/hak5 —————————— Links: https://www.usenix.org/system/files/conference/usenixsecurity16/sec16_paper_garcia.pdf https://threatpost.com/key-fob-hack-allows-attackers-to-unlock-millions-of-cars/119846/ https://www.cnet.com/roadshow/news/100-million-volkswagens-at-risk-with-new-wireless-key-hack/ https://www.wired.com/2016/08/oh-good-new-hack-can-unlock-100-million-volkswagens/ https://threatpost.com/westin-marriott-sheraton-hotels-hit-by-payment-card-malware/119879/ […]

Read more

——- Support us: http://www.patreon.com/tekthing Amazon Associates: http://amzn.to/1OTcDZn Subscribe: https://www.youtube.com/c/tekthing Website: http://www.tekthing.com RSS: http://feeds.feedburner.com/tekthing THANKS! Hak5!: http://hak5.org/ HakShop: https://hakshop.myshopify.com/ SOCIAL IT UP! Twitter: https://twitter.com/tekthing Facebook: https://www.facebook.com/TekThing Google+: https://plus.google.com/+Tekthing/ Reddit: https://www.reddit.com/r/tekthingers EMAIL US! ask@tekthing.com ——- 00:33 No Man’s Sky So excited for No Man’s Sky to get unlocked on steam this Friday… the game “about exploration and […]

Read more

Monitoring network traffic in OpenWRT and benchmarking throughput from the Linux command line, this time on Hak5. ——————————- Shop: http://www.hakshop.com Support: http://www.patreon.com/threatwire Subscribe: http://www.youtube.com/hak5 Our Site: http://www.hak5.org Contact Us: http://www.twitter.com/hak5 —————————— Bandwidth benchmarking tools speedtest-cli https://github.com/sivel/speedtest-cli speedtest.sh http://dl.getipaddr.net/ netspeed.sh https://gist.github.com/rsvp/1272488 wget –output-document=/dev/null http://speedtest.wdc01.softlayer.com/downloads/test500.zip Bandwidth monitoring tools bwm-ng – super small and simple live monitoring bmon […]

Read more

Description: Bluetooth smart locks can be hacked wirelessly, apple begins a bug bounty program finally, point of sale terminals are hacked once again, and Qualcomm had a few Android chipset security flaws. All that coming up now on ThreatWire. ——————————- Shop: http://www.hakshop.com Support: http://www.patreon.com/threatwire Subscribe: http://www.youtube.com/hak5 Our Site: http://www.hak5.org Contact Us: http://www.twitter.com/hak5 —————————— Links: http://www.tomsguide.com/us/bluetooth-lock-hacks-defcon2016,news-23129.html […]

Read more

——- Support us: http://www.patreon.com/tekthing Amazon Associates: http://amzn.to/1OTcDZn Subscribe: https://www.youtube.com/c/tekthing Website: http://www.tekthing.com RSS: http://feeds.feedburner.com/tekthing THANKS! Hak5!: http://hak5.org/ HakShop: https://hakshop.myshopify.com/ SOCIAL IT UP! Twitter: https://twitter.com/tekthing Facebook: https://www.facebook.com/TekThing Google+: https://plus.google.com/+Tekthing/ Reddit: https://www.reddit.com/r/tekthingers EMAIL US! ask@tekthing.com ——- Today’s topics: 01:28 Block Thumbdrive Hacks- @GeneComer tweets “any suggestions on methods to check thumb drives which came from uncertain sources like […]

Read more

Setting up Let’s Encrypt Certificates, and understanding TLS / SSL. This time on Hak5! ——————————- Shop: http://www.hakshop.com Support: http://www.patreon.com/threatwire Subscribe: http://www.youtube.com/hak5 Our Site: http://www.hak5.org Contact Us: http://www.twitter.com/hak5 —————————— https://en.wikipedia.org/wiki/Transport_Layer_Security https://letsencrypt.org/how-it-works/ http://www.github.com/certbot http://certbot.eff.org Commands: pwd wget https://dl.eff.org/certbot-auto chmod a+x certbot-auto /root/certbot-auto /root/certbot-auto –apache Test your site! For us, it’s: https://www.internetspiritguide.com /root/certbot-auto renew –dry-run crontab -e /root/certbot-auto […]

Read more

It is time to leave LastPass? Wireless keyboards can spy on you! A gov’t agency finally gets 2FA, and Android security notifications are now a thing.. All that coming up now on ThreatWire. ——————————- Shop: http://www.hakshop.com Support: http://www.patreon.com/threatwire Subscribe: http://www.youtube.com/hak5 Our Site: http://www.hak5.org Contact Us: http://www.twitter.com/hak5 —————————— Links: http://www.theregister.co.uk/2016/07/27/zero_day_hole_can_pwn_millions_of_lastpass_users_who_visit_a_site/ https://threatpost.com/lastpass-patches-ormandy-remote-compromise-flaw/119533/ http://www.pcworld.com/article/3101354/security/how-to-make-sure-youre-using-the-latest-version-of-lastpass-for-firefox.html https://blog.lastpass.com/2016/07/lastpass-security-updates.html/ https://bugs.chromium.org/p/project-zero/issues/detail?id=884 https://www.wired.com/2016/07/radio-hack-steals-keystrokes-millions-wireless-keyboards/ http://www.keysniffer.net/affected-devices/ […]

Read more

——- Support us: http://www.patreon.com/tekthing Amazon Associates: http://amzn.to/1OTcDZn Subscribe: https://www.youtube.com/c/tekthing Website: http://www.tekthing.com RSS: http://feeds.feedburner.com/tekthing THANKS! Hak5!: http://hak5.org/ HakShop: https://hakshop.myshopify.com/ SOCIAL IT UP! Twitter: https://twitter.com/tekthing Facebook: https://www.facebook.com/TekThing Google+: https://plus.google.com/+Tekthing/ Reddit: https://www.reddit.com/r/tekthingers EMAIL US! ask@tekthing.com ——- Today’s topics: AmpliFi Mesh WiFi Review Can Ubiquiti Labs AmpliFi deliver flawless Wi-Fi coverage in our 5000 square foot warehouse in minutes? […]

Read more

Deploying an OpenVPN server in minutes with one simple script, plus clients configuring Android and automating connections on the WiFi Pineapple. New dates available for Pentest With Hak5! See info at http://pentestwithhak5.com/ ——————————- Shop: http://www.hakshop.com Support: http://www.patreon.com/threatwire Subscribe: http://www.youtube.com/hak5 Our Site: http://www.hak5.org Contact Us: http://www.twitter.com/hak5 —————————— https://github.com/Nyr/openvpn-install wget https://git.io/vpn -O openvpn-install.sh && bash openvpn-install.sh Setting […]

Read more

Snowden and Huang are trying to build a warning system for your phone’s radio, DMCA is under fire by the EFF, and the DNC was hacked… All that coming up now on Threat Wire. ——————————- Shop: http://www.hakshop.com Support: http://www.patreon.com/threatwire Subscribe: http://www.youtube.com/hak5 Our Site: http://www.hak5.org Contact Us: http://www.twitter.com/hak5 —————————— Links: https://www.wired.com/2016/07/snowden-designs-device-warn-iphones-radio-snitches/ https://theintercept.com/2016/07/21/edward-snowdens-new-research-aims-to-keep-smartphones-from-betraying-their-owners/ https://www.pubpub.org/pub/direct-radio-introspection https://threatpost.com/eff-files-lawsuit-challenging-dmcas-restrictions-on-security-researchers/119410/ https://www.eff.org/document/1201-complaint http://arstechnica.com/security/2016/07/new-evidence-suggests-dnc-hackers-penetrated-deeper-than-previously-thought/ […]

Read more

——- Support us: http://www.patreon.com/tekthing Amazon Associates: http://amzn.to/1OTcDZn Subscribe: https://www.youtube.com/c/tekthing Website: http://www.tekthing.com RSS: http://feeds.feedburner.com/tekthing THANKS! Hak5!: http://hak5.org/ HakShop: https://hakshop.myshopify.com/ SOCIAL IT UP! Twitter: https://twitter.com/tekthing Facebook: https://www.facebook.com/TekThing Google+: https://plus.google.com/+Tekthing/ Reddit: https://www.reddit.com/r/tekthingers EMAIL US! ask@tekthing.com ——- Bargain Cables! Cheap prices don’t mean they won’t work great! HDMI: http://amzn.to/29H4sAi USB-C to USB 3.0: http://amzn.to/2a0Bv0h Scosche Car Charger: http://amzn.to/29qlJ1B Lightning […]

Read more

Building the most awesome console and arcade emulator ever – all that and more, this time on Hak5. ——————————- Shop: http://www.hakshop.com Support: http://www.patreon.com/threatwire Subscribe: http://www.youtube.com/hak5 Our Site: http://www.hak5.org Contact Us: http://www.twitter.com/hak5 —————————— Today’s topic: Run: ls -l /dev/sd* sudo dd if=Lakka-*.img of=/dev/sdX (where X is your USB flashdrive) Downloading Lakka: http://www.lakka.tv/get/ Joypad config: http://www.lakka.tv/doc/Input-settings/ Enabling […]

Read more

——- Support us: http://www.patreon.com/tekthing Amazon Associates: http://amzn.to/1OTcDZn Subscribe: https://www.youtube.com/c/tekthing Website: http://www.tekthing.com RSS: http://feeds.feedburner.com/tekthing THANKS! Hak5!: http://hak5.org/ HakShop: https://hakshop.myshopify.com/ SOCIAL IT UP! Twitter: https://twitter.com/tekthing Facebook: https://www.facebook.com/TekThing Google+: https://plus.google.com/+Tekthing/ Reddit: https://www.reddit.com/r/tekthingers EMAIL US! ask@tekthing.com ——- 00:28 Free Windows 10 Ending Soon! If you’ve been meaning to score a free copy of Windows 10, the offer expires on […]

Read more