Cyber@UC Meeting 88 GHIDRA If Youre New! Join our Slack: - - PowerPoint PPT Presentation

cyber uc meeting 88
SMART_READER_LITE
LIVE PREVIEW

Cyber@UC Meeting 88 GHIDRA If Youre New! Join our Slack: - - PowerPoint PPT Presentation

Oct 18, 2023 225 likes •328 views

Cyber@UC Meeting 88 GHIDRA If Youre New! Join our Slack: cyberatuc.slack.com Check out our website: cyberatuc.org Organization Resources on our Wiki: wiki.cyberatuc.org SIGN IN! (Slackbot will post the link in #general

slide-1
SLIDE 1

Cyber@UC Meeting 88

GHIDRA

slide-2
SLIDE 2

If You’re New!

  • Join our Slack: cyberatuc.slack.com
  • Check out our website: cyberatuc.org
  • Organization Resources on our Wiki: wiki.cyberatuc.org
  • SIGN IN! (Slackbot will post the link in #general every Wed@6:30)
  • Feel free to get involved with one of our committees:

Content Finance Public Affairs Outreach Recruitment Lab

  • Ongoing work in our research lab!
slide-3
SLIDE 3

Announcements

  • Bi-weekly lab events!

○ Socket Programming!

  • Executive meeting Sunday, all are

welcome

  • Dodgeball Thursday
  • Shirts!
  • Loveland High School Outreach

Success

slide-4
SLIDE 4

Weekly News

slide-5
SLIDE 5

Prototype iPhone Security

  • Developer iPhones are

“pre-jailbroken” by factory

  • Secure Enclave Processor (SEP)

unprotected on prototypes

  • Recently gaining popularity with

vulnerability researchers looking to break iPhone security

https://nakedsecurity.sophos.com/2019/03/08/for-sale-gray-ma rket-iphones-that-yield-secrets-to-encryption/

slide-6
SLIDE 6

US College Data Ransom

  • Oberlin College (OH), Grinnell

College (IA), Hamilton College (NY) impacted

  • Ransom price at one bitcoin

○ (cur. ~$3800)

  • Data being ransomed is the

“entire admission file” for all applicants

http://fortune.com/2019/03/08/college-applicant-ransomware-h ack/

slide-7
SLIDE 7

IoT Security Bill Proposed

  • The IoT Cybersecurity

Improvement Act, originally introduced in Aug. 2017

  • Aims to add NIST

recommendations as basic standards of IoT products

  • Only covers devices marketed to

the U.S. Government

https://www.beckershospitalreview.com/cybersecurity/congres s-re-introduces-bill-to-enhance-iot-cybersecurity-4-notes.html

slide-8
SLIDE 8

Protect Our Universities Act

  • Aims to ban Kaspersky, Huawei,

and ZTE products from college research projects of National Security Interest

  • All companies proposed to ban

are suspected of being used by foreign governments for various purposes

  • All companies already banned

from U.S. gov use at some level

https://www.washingtonpost.com/news/powerpost/paloma/the- cybersecurity-202/2019/03/13/the-cybersecurity-202-republica ns-want-kaspersky-huawei-banned-from-sensitive-university-r esearch-projects/5c884bd91b326b0f7f38f152/?noredirect=on &utm_term=.57effc0b7ad3

slide-9
SLIDE 9
slide-10
SLIDE 10

GHIDRA

  • NSA Developed Software Reverse Engineering (SRE) tool
  • Basically blows out of the water IDA/r2/BinaryNinja
  • Free and Open Source

gitlab.com/cyberatuc/ghidra