Inaudible ultrasound attack can stealthily control your phone, smart speaker bleepingcomputer.com/news/security/… 16 hours ago

Microsoft pushes OOB security updates for Windows Snipping tool flaw bleepingcomputer.com/news/microsoft… 19 hours ago

New CISA tool detects hacking activity in Microsoft cloud services bleepingcomputer.com/news/security/… 2 days ago

Mandiant: Move, Patch, Get Out the Way: 2022 Zero-Day Exploitation Continues at an Elevated Pace mandiant.com/resources/blog… 3 days ago

Should the US ban TikTok? Can it? A cybersecurity expert explains the risks the app poses and the challenges to blo… twitter.com/i/web/status/1… 3 days ago

Archive for the ‘El Sibakero’ Category

Happy Holidays from InfoSec Philippines!

Posted by Jaime Raphael Licauco, CISSP, GSEC on December 21, 2009

As 2009 comes to a close, we here at InfoSec.PH would like to thank everyone for supporting our site this year. We appreciate the comments and suggestions in improving our site to better help in spreading InfoSec awareness in the Philippines.

So from all of us here at InfoSec.PH, Merry X’mas and a Happy New Year 🙂

Posted in El Sibakero | Leave a Comment »

“El Sibakero”, #3

Posted by Daniel Tumalad on November 22, 2009

#3: “NOT-4-HIRE”

[got something you’d like to share with us? email danieltumalad atyahoodotcom]

Posted in El Sibakero | Tagged: Cartoons | Leave a Comment »

Quick Tips: Securing Your AP

Posted by Daniel Tumalad on November 15, 2009

"El Sibakero", Rollin' Down the Street...

A few years ago, a German hacker visited the Philippines and went wardriving on the streets of Ayala. He observed the lack of security in most of the wireless networks he discovered, prompting people to address the situation.

Today, many are still ignoring the importance of protecting their wireless networks. There are plenty of APs in condominiums, corporate buildings and commercial establishments that still use insecure WEP or don’t use any form of encryption at all. [results=car+laptop+airodump, office->home]

With a lot of information and software pertaining to hacking wireless networks freely available on the Internet, almost anyone can obtain illegal access to insecure wireless networks.

Protect your AP:

1. Enable Encryption
With both WEP and WPA-TKIP having security flaws, your best bet is WPA2-CCMP. Make sure you choose a difficult-to-guess passphrase (alpha-numeric+special characters) and “try hard” to change your key every 3 months.

2. Configure AP Administration
Change the default AP admin password, disable remote administration and restrict AP management to local encrypted access (SSL) only. If you are feeling the need to overkill then also disable the wireless LAN access, make the administration console accessible only through the wire.

3. Security through Obscurity
Replace the default SSID and disable SSID broadcast.

4. White-list the MAC-Addresses of your Users
If all else fails, this can possibly make it hard for attackers to join the wireless network.

Internal Links:
Wireless Hacking
Using Nmap to Detect Rogue APs
Password Tips

Posted in El Sibakero, Wireless | Tagged: Local Wi-Fi Posture, Wireless Security | 2 Comments »