Mt. Gox “Found” Some Missing Bitcoins

Exactly how does this happen? Sheer incompetence, that's how. Today I read that Mt. Gox discovered an "old" wallet with 200,000 bitcoins in it. What the ever living...are you kidding me? From CNN: "On March 7, 2014, Mt.Gox Co., Ltd. confirmed that an old-format wallet which was used prior to June 2011 held a balance of approximately 200,000 BTC," the statement said. Karpeles said that the discovery was reported to lawyers on March 8. ...

Continue reading

Spy Satellites Backdoored

Oh this just keeps getting better. Apparently some back doored parts made in the US were discovered in a couple of brand new spy satellites. From Defense News: A United Arab Emirates (UAE) deal to purchase two intelligence satellites from France worth almost 3.4 billion dirhams (US $930 million) is in jeopardy after the discovery of what was described as “security compromising components.” A high-level UAE source said the two high-resolution Pleiades-type ...

Continue reading

Mailbag: A package from Jericho

On September 7, I received a small package from Jericho (@attritionorg) as a "prize" for submitting a picture of Lazlo near SCADA gear.  I finally got to meet him in Las Vegas this summer at BSidesLV and DEF CON.  We must have trolled each other for at least a year on twitter about CyberSCADASquirrels.  One day we'll probably publish a whitepaper on the correlation between the population density of squirrels and ...

Continue reading

Liquidmatrix Security Digest Podcast – Episode 30

Episode 0x30 Getting the band back together... Because you know, it *IS* a weekly podcast afterall. Upcoming this week... Lots of News Kittens SCADA / Cyber, cyber... etc. finishing it off with DERPs/Mailbag And there are weekly Briefs - no arguing or discussion allowed And if you've got commentary, please sent it to [email protected] for us to check out. DISCLAIMER: It's not that explicit, but you may want ...

Continue reading

Have SCADAs — will travel!

Hi everyone! Long time listener, first time blogger.  First, I want to thank Cap'n Dave for inviting shoving me aboard the Black Pearl and making me a part of the Liquidmatrix band of pirates.  I am honored! I wanted to go to Hacker Summer Camp last year, but I wasn't sure how to make it work...since I am just a SCADA Engineer, not a pentester or infosec rockstar.  This ...

Continue reading

NASDAQ Forum Site Was Hacked

Not entirely sure how I managed to miss this one but, it seems that a NASDAQ forum site was hacked. Specifically a community forum site for NASDAQ was in fact compromised on Tuesday of last week. From Huffington Post: Cyber-criminals targeted Nasdaq OMX Group's community forum website and gained access to the email usernames and passwords of the members of the site, which took two days to come back online ...

Continue reading

Blackhat And Defcon Parties 2013

Back for another year...FINALLY! Sorry I was late getting this published. Here is the list for Blackhat and Defcon parties 2013. This is the list that we have so far. There are numerous other parties that we are awaiting confirmation on the final details before we post them. If you have any tips please let us know at [email protected] Please note that this sched should work fine in ...

Continue reading

Liquidmatrix Security Digest Podcast – Episode 2D

Episode 0x2D Nobody loves us. It's all about us this week. Well, not really. It's more about getting the world to get off the crazy train. Upcoming this week... Lots of News Kittens Breaches SCADA / Cyber, cyber... etc. finishing it off with DERPs/Mailbag and There will NOT be a DEEP DIVE And there are weekly Briefs - no arguing or discussion allowed And if you've got commentary, please ...

Continue reading

Aeroplan Provides Proactive Customer Alerting

Now, this is really nice to see. Aeroplan, an airline loyalty points program here in Canada, noticed something was afoot. When reviewing logs...MY $DEITY SOMEONE ACTUALLY DOES THAT, they noticed a coordinated attempt to access numerous accounts. Seems some information on certain accounts were in fact accessed. Here is the email they sent out: Aeroplan has discovered and blocked activity on aeroplan.com that appears to have been a ...

Continue reading

Last Days On The Wall: Becoming A Security Evangelist

Well, here I am. Looking out at the horizon. Time to leave my post on the parapet. Somewhat melodramatic but, you get the idea. Today is my last day of a great job in a company that has had its share of difficulties. After over two years I'm leaving to pursue new opportunities. I'm leaving behind one of the best bosses I've ever had in CJ Wickham. It was a ...

Continue reading