Another month or so has gone by, so I figured I’d give you folks a quick July update. Last month I got to speak on the plethora of stored credentials on Windows systems and their use in penetration testing, at the monthly NolaSec meeting. There was a great turnout and it was tons of fun. Hopefully I scared some people. The next meeting is July 16 – if you in the New Orleans area (and you’re reading this) you should definitely come by, network, and maybe learn a thing or two.


Speaking of public speaking, our own Joe Sylve (@jtsylve) has been on Garland Robinette’s ‘Think Tank’ radio show twice recently talking about cyber security issues: once about how to protect you identity when your phone is stolen, and the other about the NSA spying on ordinary Americans (audio here). He sounded great and the listeners seemed very entertained.


On a related note, I posted a blog over at Silicon Bayou News talking about iPhones, iBeacon and Apple’s recent creepy stalker-ish behavior. It looks like they’ve effectively limited brick and mortar retailers’ ability to track you in stores, only to release their own tech to do the same thing with increased accuracy (and an Apple price tag). Sneaky.


Since we seem to be on a privacy/creepy behavior kick here, I figured I’d share some thought on this Facebook ‘mood manipulation’ thing that folks are all up in arms about. On the creepy side, the researchers over at Facebook experimented on users by intentionally modifying the number of happy versus sad posts on a user’s feed and the seeing if there was an effect on that user’s posts – as in were they happier or sadder. Yes that does sound creepy, but there are two other bits of information we should take into account. First, while the experiment was performed in secret, the results have been published for all to see – no secret there. And second, and I urge all of you to read this carefully, Facebook is free. Nothing, however is free. How does this work? The data you post and the links you click are what’s being sold. All of that data is theirs in exchange for their ‘free’ social networking website. These are the breaks. So, just quit Facebook – if you dare.


Wow, that was harsh, right? On to gladder tidings: both Joe and I have been accepted to demo some tools that came out of our research at the BlackHat USA conference in August in Las Vegas. Joe will be demo’ing Spotlight Inspector, our tool for forensic analysis of the OS X Spotlight metadata store, and I will be demo’ing DAMM, a tool for differential analysis of malware in memory. It promises to be a rocking good time. If you’re one of the lucky BlackHat attendees, be sure to come check out all of the awesome demos!


Well, that’s about it for now. Until next update!


— Vico  (@vicomarziale)