22 Mar 2013

South Korean Attack & Malware Analysis

On March 20th an attack that brought down three major media broadcasters and at least two financial institutions computer systems in South Korea was launched.  The Red Alert team which is part of NSHC Security has provided access to their  onging reports of the malware attack  (PDF – Korean). The

20 Dec 2012

Penetration Testing with Smartphones Part 2: Session Hi-Jacking & ARP Spoofing

In the first part of this series “Penetration Testing with Smartphones Part 1” we covered several network and vulnerability scanning applications that can be run from a smartphone. In this section we will be covering some additional tools for Wi-Fi sniffing, session hi-jacking and ARP spoofing. Disclaimer:This article is for

23 Nov 2012

South Carolina Department of Revenue Data Breach: What Went Wrong?

“Where do we go from here? We now have to go into cyber plan mode. This is a new era in time where you can’t work with 1970s equipment, you can’t go with compliance standards of the federal government, because both are outdated.” – Nikki Haley,  Governor of South Carolina