Fail 2.0: Further Musings on Attacking Social Networks

ShmooCon V - 2009

Presented by: Mike Bailey (mckt), Russ McRee
Date: Saturday February 07, 2009
Time: 11:00 - 12:00
Location: Wilson
Track: Bring It On!

<p>We've spent a lot of time ranting about and / or embarrassing variousSocial Networks last year already. Still, we wanted to share with theShmoo audience some further silliness, social experiments, and goodold-fashioned Fail 2.0 that's popped up since we last looked at thistopic. We'll also cover some of the new countermeasures andcounter-countermeasures that have showed up on various SocNets in thepast few months.</p><p>In light of some recent mass pwnage occurring over Social Networksthis past year, we explicitly promise NOT to say "we told you so", anddefinitely won't be performing our patented synchronized stage-leftElectric Slide followed by some pop-locking and Nathan's famousGloating Robot.</p><p>A few things we'll be covering this time around: SocNets as AttackPlatform, SocNets-As-Botnets, new developments in SocNet Applications,Alex Sotirov's cell phone number on Twitter, some new impersonationexcercises, bypassing CSRF protections, and thoughts (and potentiallysome tools) for practicing "safe" Social Networking.</p>

Links

Shawn Moyer

Shawn Moyer is a WebAppSec security monkey who spends far too much time on social networks, and far too much time worrying about whether that's a bad idea, a really bad idea, or a really, really bad idea.

Nathan Hamiel

Nathan Hamiel is a WebAppSec security monkey who spends far too much time on social networks, and far too much time worrying about whether that's a bad idea, a really bad idea, or a really, really bad idea.


KhanFu - Mobile schedules for INFOSEC conferences.
Mobile interface | Alternate Formats