Sponsored By:


www.tenablesecurity.com


http://twitter.com/pauldotcom


http://www.facebook.com/group.php?gid=6678027341


www.youtube.com/pauldotcom




Wireless Driver Vulnerabilities: The Real Story

By
Paul Asadoorian
on August 28, 2006 9:03 AM | | Comments (3)

It looks like we will find out exactly what is going on, however we will have to wait until ToorCon 8 where Cache and Maynor will give a presentation:

Recently we gave a public demonstration of an exploit in a wireless device driver. We thought it was timely, important, but most importantly it was super cool. Since the first details of our demo were reported two camps instantly formed, people who thought the work and research was good and people thought we faked everything and we are horrible people. How could opinions differ go greatly? What is the story behind exactly what happened and more importantly what does this response mean for the security industry as a whole? This presentation won't be a typical as it will cover the complete story, but it will also offer analysis and commentary of public responses while at the same time giving anyone who has a question a chance to have it answered.

I am a little disappointed that we have to wait a month before we can hear the real story, however I am certain that they have good reasons for doing it this way. I will speculate that a month gives vendors more time to fix vulnerabilities, Mac enthusiasts to make even bigger fools of themselves, and skeptics to report yet even more wacky conspiracy theories. As we have stated, we are standing behind the security researchers on this one and waiting until we have all the facts before we report any real details. For now, my suggestion is to keep your wireless card turned off when not in use.

Paul.com

Categories:

3 Comments

By Leon on August 29, 2006 2:01 AM

Sadly your show is going down the tube fast. If you all were to listen you will heat the use of slang, that still is acceptable, as it fits with your immidge (low maturity), but the use of words (there is two of them) "you know" is just plain a pain in the bum. Not having much to say at the end of the show, see teh spike in the "you know's". Shit man I don't perport to know, that is why I listen. Two of those in a row and I tune out, like mature hey dude! Now go look at the words you type, and see if you ever use "you know" in two consecutive sentinces. Naa don't ... as you do not write like that, so clean up of we tune out.
A listener form Africa.

[PaulDotCom - Dude, we are sorry, You know we will refund 100% of the money you paid to listen to our podcast. You know, you do have a point. And, you know what, I think we do say you know, you know?]

By Ben on August 30, 2006 11:53 AM

Since ToorCon is on a Saturday and Sunday does this mean we'll get a live from ToorCon report from Twitchy? This has been such a big topic that I would love to have a quick 5-15 minute podcast with Twitchy, and anyone else going, giving us a rundown of details.

By Claudio Miranda on September 2, 2006 8:42 AM

In light of this, I thought I would inform you of this "challenge" that someone has put up. Here's the link to the site in question.

http://daringfireball.net/2006/09/open_challenge

Since he's making the challenge, I'm curious to know how this plays out. As much as I like the Mac, somehow I hope he does gt proven wrong because of the smugness. :-)

The challenge might be taken up or not, but I thought you guys should know.