Ayoi’s

Since acting as the head of a new unit in my department, I’ve noticed that most of the time my job will become less technical and more on high level kind of thingy. I attend meetings, devise a training series for the analysts, writing reports (which I hate most) and yeah making presentation slides as well. But from time to time, I do miss doing analysis, looking at the logs and alerts, reconstruct back attackers activities based on our logs and many other stuff. As I seldom touch my lappy at home due to the attention required by my children especially the twin, I’ve found it’s hard sometimes for me to cope with the work load. I know that I have this so called designated assistant where I am the one who recommend his employment but recently I just decided to move him back into the SOC. I believe he needs more knowledge especially on our operations. Anyway I dun think I will recommend anyone else after this..

Continue Reading »

For time being, my current car still can accomodate all of my family members including our maid as well when travelling especially to my mom in law house in Desa Pandan. But from time to time, I do think on the future transportation that I need to have. Well I came across with this “Bus” when I browse paultan website. Maybe that’s the best vehicle for my family, spacious especially when traveling back and forth my hometown, Kuantan and perhaps to wifey’s hometown as well, Kedah.

I guess

Ok this is the update of my last post on the maintenance notice by linkedin.com website. Sadly, it is not because of this website vulnerable to The Middler attack. Initially at the logon page, everything is nice. Even the url is impressive enuff https://www.linkedin.com/secure/login?trk=hb_signin

But when you typed in your authentication information, you will be redirected to…

Normal http channel. Meaning perhaps if you are patient and crazy enuff, you might be able to sniff the communication, rebuild any content or perhaps hijacking the session.. Oh yeah, might as well just use The Middler which saves lot of your time tho.

Thankfully Jay Beal yet to release the tool. When the moment comes, expect couple of hundreds poor victim suffers from the attack by this tool. Maybe couple of hundreds is lil optimistic numbers from me, maybe couple of hundreds or even thousands of people will download this tool once it’s published

I guess those guys at Linkedin.com feel that the impact that The Middler will have on their users is not that severe at all.

That’s only my guess

I received and email from my former colleague asking me to join his network at LinkedIn.com. After making sure that the email really from LinkedIn and really sent by my colleague, I then proceed to the LinkedIn.com page and surprise surprise when I was presented with this notice from LinkedIn.com

Continue Reading »

My friend, geek00l is one of the HiTB’s members and recently they were invited to participate in one conference called Govware by our friendly southern neighbor, Singapore. This conference was organized by Singapore’s own Ministry of Home Affair. My friends geek00l and mel gave a presentation on 8 layers of Security which was held in closed door presentation. It seems that everything went well until… Continue Reading »

Yup, not only everyone can fly with AirAsia but now everyone can perform Monkey in The Middle attacks. I just read an article at one of my favourite sites, darkreading.com that basically about a tool called Middler which automatically generates MiTM attacks on any sites that not fully ensure that the communication channel will be done on SSL besides during the login or authentication process. In the article it does mention some of this sites like Linkedln where for the login process, it will be done on SSL but after the authentication process, the communication will be done on plain HTTP channel. And yes, even our own gmail practice the same method.

Continue Reading »

Taken from lessonlearnedrocks.com

That’s what I can sum up my day today. Early in the morning just before I have my first sip of my latte, I received a phone call from a prospect client which make my latte feel so bitter. I guess I’ve spent more than 20 minutes on the line with him where most of the time I just simply can’t answer his questions and queries. I am totally dumbstruct and lil bit embarras after that conversation. So embarras that I even contemplate of withdrawing from giving my scheduled talk during the coming Infosec.my technical forum organized by CyberSecurity Malaysia.

Continue Reading »

I bought this cap in 1989

I guess, the current theme playing around inside most of Malaysian minds are Wind of Change. Change not only on the options that we have for us to give the mandate of administrating our beloved country but also in other aspect of life as well. As example when I reached my hometown last Sunday, I did notice some changes, physical changes that is. Yeah, Kuantan is not Kuantan that I used to know, used to roam around during my youthful months (I seldom stayed more than few months at Kuantan especially after my secondary school period.) Oh yeah, last nite me, my former bedmate who is now the blogging doctor with another colleague who is also spending his youthful years at the same secondary school as ours, The Malay College.

Continue Reading »

On behalf of my family, I would like to wish all my blog readers, my colleagues and the muslimin and muslimah all around the word, “Eid ul-Fitr” and may our ibadah during the Holy month of Ramadhan will be accepted by Him.

“Selamat Hari Raya Aidil Fitri, Maaf Zahir dan Batin”

~Hazrul, Nizza, Nisha, Iman, Adam and Ariff

p/s: I will go back to my hometown, Kuantan on Sunday evening after breaking fast. SO for all of you out there, drive carefully.

No duit raya this year, because of my “promotion” ;P

Well, it seems that this year I’ve seen many of my colleagues moved on with their careers. Some of them moved to different field and getting better pay (most of them actually) and they’ve made some progress with their career as well. Some of them still within the security field and yeah, they’ve moved on to our competitors as well. For me, profesionally, we are competitors but as security practitioner, they are still my peers

Continue Reading »