Search



AuthenticationWorld.Com

About

This page contains a single entry from the blog posted on December 1, 2006 11:01 AM.

The previous post in this blog was Hacking Blackberry's and gaining access to your enterprise.

The next post in this blog is Social engineering your way into a network and applications.

Many more can be found on the main index page or by looking through the archives.

Subscribe to this blog's feed
[What is this?]

« Hacking Blackberry's and gaining access to your enterprise | Main | Social engineering your way into a network and applications »

More on the Blackberry Hacks

In yesterday's eWeek, Ryan Narine wrote a story "Cracking the Blackberry with a $100 key". This story covers the use of a $100 API key to then use it to open doors to attack.

While much was made of the Symantec blog being quickly withdrawn, it seems to me that this is exactly what is in the Defcon presentation I referred to in an earlier blog. In the Defcon presentation, the proposed attack used a prepaid card to purchase the API and then to lauch the trojan horse attacks. In the blog, I also referenced Blackberry's response to this type of attack.

Make the enterprise changes as per the Blackberry recommendations to mitigate this high risk.

Guy
www.authenticationworld.com
guy.huntington@authenticationworld.com

Posted by Guy Huntington on December 1, 2006 11:01 AM |

TrackBack

TrackBack URL for this entry:
http://www.authenticationworld.com/cgi-bin/blog/mt-tb.cgi/61

Post a comment

(If you haven't left a comment here before, you may need to be approved by the site owner before your comment will appear. Until then, it won't appear on the entry. Thanks for waiting.)