Thursday, August 28, 2014

Hacker Halted 2014 - Atlanta, USA

Telspace Systems’ will offer Wireless Hacking 101 as a certification class to teach information security professionals how to ensure their wireless infrastructures are secure. Hacker Halted will be taking place during October 2014 in Atlanta, USA.

Due to the explosion of “always-connected” devices, sensitive and classified information have become lucrative targets for exploitation. Wherever you look, people are using laptops, tablets and smartphones, both for personal and business reasons. This opens up massive opportunities for wireless hackers and other types of cybercrime.

Among these threats, is a rise in ransomware infecting mobile phones, as a recent claim by McAfee reiterates. The interception of data between a wireless device and the website or application the user is using is also lucrative for farming usernames and passwords or attempting to hijack user sessions. Additionally, simply “grabbing” whatever comes through the air to look for interesting files, photos and data is increasingly common.

Telspace Systems’ Wireless Hacking 101 will be offered as a certification class to teach information security professionals how to ensure their wireless infrastructures are secure. The course will run from 14th-15th October 2014, and will be taking place at the Georgia World Congress Center.  Telspace Systems will be running a two-day course addressing wireless hacking issues ahead of, and in conjunction with, the Hacker Halted IT Security conference.

The new culture of Bring Your Own Device (BYOD) brings additional security issues to the fore, as businesses have to protect their critical company information on user-controlled devices. Companies are now faced with the problem of personnel bringing in personal cellular access points, often bypassing company security policies and transmitting sensitive data over an unsecured, out-of-band channels. This adds to the list of vectors an attacker could pursue. Since BYOD hardware often contains company sensitive information, it is too a target for attackers either directly or via Wi-Fi attacks.

This course covers one of the most widely used forms of data transmission available to mankind today – wireless. Wireless Hacking 101 will provide real world, hands-on instruction on not only how to attach wireless, but also how to defend against attacks.

Students will leave equipped with the knowledge of how to analyze wireless networks, enumerate them, and then attack them. The course is not all theory. After covering the basics and fundamentals of how Wi-Fi works, how encryption works and how clients associate with wireless access points, the course will then examine how to attack them. With in-depth and hands-on instruction, the students will learn to competently hack their way through a wireless network. Challenging assessments, and a “capture-the-flag” examination will ensure students are immersed in this highly technical, but highly rewarding course. Subjects covered will include; Wi-Fi enumeration, WEP and WPA1/2 hacking, obtaining passwords, spoofing and attacking wireless clients and defending against wireless attacks.

Saturday, August 2, 2014

Telspace Systems will be speaking at PasswordsCon 14 in Las Vegas, USA

This year, Telspace Systems will be speaking at PasswordsCon 14 in Las Vegas, USA.

PasswordsCon is a place where people from all backgrounds including researchers, specialists, password crackers and security experts gather to discuss and learn about all things Password related. A simple term; “Password” carries a very large impact to humans in today’s world. We use a password to access a wide variety of systems, communication, documents, email and more. With so much advancement in technology and user education one would think that the humble “Password” is now a perfected art amongst people. However it is not as can be seen repeatedly by the breaches occurring throughout the world. When password crackers obtain the plain text to the hashed passwords leaked from websites, it becomes apparent that passwords like “12345”, “Password”, “Password123” and others like it are still very much in use. Raising the questions; Why is it like that? How can we get more secure passwords? Why do people choose insecure passwords? 

Telspace Systems’s talk at PasswordsCon will answer those questions in the context of one of the most critical areas of impact – The Enterprise. How do large corporates ensure their passwords are secure? How do they ensure their staff choose strong passwords? What about SOA Architecture and Cloud Computing? A large enterprise and corporate IT environment is not only critical but highly complex. We will show you what challenges are faced, how to overcome them and how some companies have both succeeded and failed to do so. We will additionally also cover technical aspects such as what algorithms should corporates use for their systems, and why choosing certain ones can be highly secure but also a pitfall of note. 

The presentation outline is as follows:

1. Introduction to Presentation, Speaker BIO and Purpose of the
2. Why is an Enterprise an entirely different scenario to other
entities that use Passwords? 
3. Top 5 points of failure - Where do Enterprises make the biggest
mistakes with their Password usage? 
4. SOA (Server Oriented Architecture) - When good ideas get bad
passwords. Discussion into why and what happens? 
5. Server Administrators in the Enterprise - Friend or Foe? 
6. Doing it the right way - Simple points to make Passwords in your
Enterprise a positive security aspect. Is your password policy
7. Q&A & Concluding Comments. 

Don’t miss this talk on a critical aspect of your company’s security. Presented by our in-house password specialist Dimitri Fousekis. Stick around for the Q&A to ask your questions to both Dimitri and other industry password experts. Additionally look out for us at the Vegas 2.0 gathering where you will have more time to engage in high-level, technical and specific information about passwords and security.