[122238] in cryptography@c2.net mail archive
RE: Microsoft COFEE
daemon@ATHENA.MIT.EDU (Dave Korn)
Fri May 2 16:40:49 2008
From: "Dave Korn" <dave.korn@artimi.com>
To: "'Arshad Noor'" <arshad.noor@strongauth.com>,
"'Cryptography'" <cryptography@metzdowd.com>,
<dev-tech-crypto@lists.mozilla.org>,
"'ekmi'" <ekmi@lists.oasis-open.org>
Date: Fri, 2 May 2008 12:32:58 +0100
In-Reply-To: <21394450.10441209584188749.JavaMail.root@gw.noorhome.net>
Arshad Noor wrote on 30 April 2008 20:36:
> It can be "ordered to decrypt system passwords"??? So, I wonder
> what attackers can do with this...
They can run pwdump, lsadump, samdump, dump the pstore, snarf the SAM, all
that kind of stuff that is completely routine and everyday.
See here for a very similar device that's a couple of years old:
http://wiki.hak5.org/wiki/USB_Switchblade
Honestly, this is nothing extraordinary or even new.
cheers,
DaveK
--
Can't think of a witty .sigline today....
---------------------------------------------------------------------
The Cryptography Mailing List
Unsubscribe by sending "unsubscribe cryptography" to majordomo@metzdowd.com
