Apple's in the eye of flaw finders

Apple's in the eye of flaw finders
Robert Lemos, SecurityFocus 2006-02-07

At the recent ShmooCon hacking conference, one security researcher found out the hard way that such venues can be hostile, when an unknown hacker took control of the researcher's computer, disabling the firewall and starting up a file server.

Expand all | Post comment

Apple's in the eye of flaw finders 2006-02-07
Anonymous (1 replies)

Re: Apple's in the eye of flaw finders 2006-02-08
Rick (1 replies)

Re: Re: Apple's in the eye of flaw finders 2006-02-09
Jay Beale (1 replies)

Re: Re: Re: Apple's in the eye of flaw finders 2006-02-09
Anonymous

Apple's in the eye of flaw finders 2006-02-08
Anonymous (1 replies)

Re: Apple's in the eye of flaw finders 2006-02-08
Ralph

Apple's in the eye of flaw finders 2006-02-08
Anonymous (1 replies)

Re: Apple's in the eye of flaw finders 2006-02-09
Anonymous

Apple's in the eye of flaw finders 2006-02-08
Alexey Vesnin

Apple's in the eye of flaw finders 2006-02-08
Anonymous (1 replies)

Re: Apple's in the eye of flaw finders 2006-02-08
Rick

Apple's in the eye of flaw finders 2006-02-08
Anonymous (1 replies)

Re: Apple's in the eye of flaw finders 2006-02-08
Anonymous

Don't be foolish 2006-02-08
Anonymous (2 replies)

Re: Don't be foolish 2006-02-08
Anonymous

I had no problems at Shmoocon 2006-02-08
Anonymous (2 replies)

Re: I had no problems at Shmoocon 2006-02-08
Anonymous (3 replies)

Re: Re: I had no problems at Shmoocon 2006-02-08
Anonymous

move along 2006-02-09
Anonymous

Re: Re: I had no problems at Shmoocon 2006-04-17
Anonymous

Re: I had no problems at Shmoocon 2006-02-08
Anonymous (2 replies)

Re: Re: I had no problems at Shmoocon 2006-02-09
Raven

Re: Re: I had no problems at Shmoocon 2006-02-10
R_U_Trustified?

Apple's in the eye of flaw finders 2006-02-08
Mike Andrews (1 replies)

Re: Apple's in the eye of flaw finders 2006-03-07
Anonymous

Apple's in the eye of flaw finders 2006-02-08
Anonymous (2 replies)

Re: Apple's in the eye of flaw finders 2006-02-08
Anonymous

Re: Apple's in the eye of flaw finders 2006-02-09
Anonymous

do we want security through obscurity? 2006-02-08
assurbanipal (1 replies)

Re: do we want security through obscurity? 2006-02-08
Penguinisto

Maybe, maybe not... I suspect that, unless more than one incident of this occurs, it could well have been someone peeking over the guy's shoulder while he logged into the laptop at a keynote.

As beautiful as paranoia can be to someone who secures things for a living, it must also stand to chance that, as Freud said: "sometimes a cigar is just a cigar".

Otherwise, we either have one of two conditions here:

1) someone really knows WTF they're doing and decided to have some fun with a well-known CISSP type, or...

2) he got "scanned" by a pair of observant eyeballs watching the laptop keyboard.

On a serious note though - obscurity only cuts down the pool of people willing to invest the time to overcome it, not the determination and itnelligence of a given individual who really wants inside that particular box.

[ reply ]

Link to this comment: http://www.securityfocus.com/comments/articles/11375/33090#33090

Apple's in the eye of flaw finders 2006-02-08
Scott Barman (www.barman.ws) (2 replies)

Re: Apple's in the eye of flaw finders 2006-02-08
Adam

Re: Apple's in the eye of flaw finders 2006-02-08
Anonymous

Hired Gun 2006-02-08
Anonymous

Long on FUD, short on fact 2006-02-08
Marty

Forensices did not reveal any clues? 2006-02-08
Anonymous

Apple's in the eye of flaw finders 2006-02-08
Anonymous

Ragnarok/Apocalypse is possible for Mac users - wake up. 2006-02-08
Rumplestiltskin

Apple's in the eye of flaw finders (yes, and no) 2006-02-08
Debunker

"Intel", new fuel for the FUD 2006-02-08
rY.

Did his POwerBook really get compromised? 2006-02-08
Anonymous (2 replies)

Re: Did his POwerBook really get compromised? 2006-02-09
Anonymous