Insignificant Being

HITB Ezine ‘Reloaded’ – Issue #001

Welcome to 2010! We are proud to announce the immediate availability of
our newly ‘reborn’ HITB ezine! You can grab your digital copies here:

https://www.hackinthebox.org/misc/HITB-Ezine-Issue-001.pdf

As some of you may know, we’ve previously had an ezine that
used to be published monthly, however the birth of the HIT-
BSecConf conference series has kept us too busy to continue
working on it. Until now that is…

As with our conference series, the main purpose of this new
format ezine is to provide security researchers a technical
outlet for them to share their knowledge with the security
community. We want these researchers to gain further recog-
nition for their hard work and we have no doubt the security
community will find the material beneficial to them.

We have decided to make the ezine available for free in the
continued spirit of HITB in “Keeping Knowledge Free”. In addi-
tion to the freely available PDF downloads, combined editions
of the magazine will be printed in limited quantities for distri-
bution at the various HITBSecConf’s around the world – Dubai,
Amsterdam and Malaysia. We aim to only print somewhere
between 100 or 200 copies (maybe less) per conference so be
sure to grab a copy when they come out!

Happy New Year once again and we hope you enjoy the zine!

Zarul Shahrin – zarulshahrin@hackinthebox.org
Editor, HITB Ezine

HITBSecConf2010 – Dubai Call for Papers

The Call for Papers for HITB Security Conference 2010 Dubai is now open!

Talks that are more technical or that discuss new and never before seen
attack methods are of more interest than a subject that has been covered
several times before. Summaries not exceeding 1250 words should be
submitted (in plain text format) to cfp -at- hackinthebox.org for review
and possible inclusion in the programme.

Date: April 19th – 22nd 2010
Venue: Sheraton Dubai Creek
Keynote Speakers:

John Viega (CTO, SaaS, McAfee Inc.)
Matt Watchinski (Senior Director of Vulnerability Research, Sourcefire Inc.)

Submissions are due no later than 1st February 2010.

TOPICS

Topics of interest include, but are not limited to the following:

# 3G/4G Cellular Networks
# Apple / OS X security vulnerabilities
# SS7/Backbone telephony networks
# VoIP security
# Firewall technologies
# Intrusion detection
# Data Recovery, Forensics and Incident Response
# HSDPA and CDMA Security
# WIMAX Security
# Identification and Entity Authentication
# Network Protocol and Analysis
# Smart Card and Physical Security
# Virus and Worms
# WLAN, GPS, HAM Radio, Satellite, RFID and Bluetooth Security
# Analysis of malicious code
# Applications of cryptographic techniques
# Analysis of attacks against networks and machines
# File system security
# Security of Embedded Devices
# Side Channel Analysis of Hardware Devices
# Cloud Security

PLEASE NOTE:

We do not accept product or vendor related pitches. If your talk
involves an advertisement for a new product or service your company is
offering, please do not submit.

Your submission should include:

# Name, title, address, email and phone/contact number
# Short biography, qualification, occupation (limit 250 words)
# Summary or abstract for your presentation (limit 1250 words)
# Technical requirements (video, internet, wireless, audio, etc.)

Each non-resident speaker will receive accommodation for 2 nights/3
days. For each non-resident speaker, HITB will cover travel expenses up
to USD 1,200.00.

HITBSecConf2010 – Dubai
http://conference.hackinthebox.org/hitbsecconf2010dxb/

===

In case you missed it, the photos and materials from HITBSecConf2009 -
Malaysia have been released. In addition the CTF Crew has also released
the bonus binaries from the CTF Weapons of Mass Destruction.

Video recordings of the talks will be released as usual in December
(just before Xmas).

Materials:
http://conference.hackinthebox.org/hitbsecconf2009kl/materials/

CTF Binaries:
http://conference.hackinthebox.org/hitbsecconf2009kl/materials/ctf/

Photos:
http://photos.hackinthebox.org/

===

Below are the dates for HITBSecConf2010 (block your calendars now :)

HITBSecConf2010 – Dubai – April 19th – 22nd
Keynote Speakers: John Viega & Matt Watchinski

HITBSecConf2010 – Amsterdam – July 5th – 8th
Keynote Speakers: Paul Asadoorian & Mark Curphey

HITBSecConf2010 – Malaysia – October 11th – 14th
Keynote Speakers: Paul Vixie, Chris Wysopal, Paul Ferguson

See you guys in Dubai!

Bleeping Radar

The time has come, once again!
Masters from all over the world will convene,
Battles will be fought, empowered by deep knowledge,
Hardwares will become the new Software! (-ish)
when Robin Hood embraces the modern day lifestyle.

This will be the day to cherish, the moment of truth!
Interoperability will be attacked, and Software Protection will be defeated via Metasm,
Blackberries will be crushed, making software dumber.
Physical locks give way to the inevitable, HAM Radio rises to seize the day.

The bad guys are winning… so what?
Retaliation to own the world begins — One desktop at a time.
Tempest will be called upon from within mobile command centres.
PDF origami strikes back, having fun with ATMs and HSMs.

There will be NO TURNING BACK!
This, is the way its supposed to be.
This is, Hack In The Box!

Call for Volunteers > HITBSecConf2009 – Malaysia

We need people from the 4th till the 9th of October (event is on 5th, 6th, 7th and 8th Oct).
Activities that we need assistance with:

- Network setup for training
- Network setup during conference
- Security (ensuring people have their tags)
- Airport / Speaker pick up
- Network management during event (to manage the various networks
[speaker, secretariat, exhibitor and public])
- Training track technical assistants
- Conference track technical assistants
- General schtuff

In total we require between 20 and 25 CAPABLE volunteers MAX. You will need to know how to crimp/lay/label cat5 cables, trustworthy, willing to go the extra mile to make the event successful. We will filter and evaluate EVERYONE. HITB is NOT a glamorous event for you to join in as volunteers but do nothing. Email / IM / Tweet me if you’re interested.