🎬 Movies For Hackers - A curated list of movies every hacker & cyberpunk must watch.
http://ift.tt/2lAqcDQ
Submitted October 07, 2017 at 09:35PM by _k4m4_
via reddit http://ift.tt/2y7We07
http://ift.tt/2lAqcDQ
Submitted October 07, 2017 at 09:35PM by _k4m4_
via reddit http://ift.tt/2y7We07
GitHub
k4m4/movies-for-hackers
movies-for-hackers - 🎬 A curated list of movies every hacker & cyberpunk must watch.
Out of character: Homograph attacks explained - Malwarebytes Labs
http://ift.tt/2wC1Dcg
Submitted October 07, 2017 at 09:28PM by majorllama
via reddit http://ift.tt/2y7jPxU
http://ift.tt/2wC1Dcg
Submitted October 07, 2017 at 09:28PM by majorllama
via reddit http://ift.tt/2y7jPxU
Malwarebytes Labs
Out of character: Homograph attacks explained - Malwarebytes Labs
Online and on traditional media, we hear and read about different kinds of cybersecurity attacks that sometimes we get overwhelmed with the terminologies. Most of us grasp what phishing attacks and denial of service (DoS) attacks are, but how familiar are…
How I broke Envato Search Engine
http://ift.tt/2xq5opF
Submitted October 08, 2017 at 12:49AM by serhack
via reddit http://ift.tt/2yxHLMc
http://ift.tt/2xq5opF
Submitted October 08, 2017 at 12:49AM by serhack
via reddit http://ift.tt/2yxHLMc
serhack.me
How I broke Envato Search Engine
See how I could perform an XSS Injection with Envato Search Field. SerHack Blog, a blog about security researcher, development and reverse engineering.
A critical vulnerability affects Siemens smart meters
http://ift.tt/2y5ZoB6
Submitted October 08, 2017 at 02:06AM by chull2058
via reddit http://ift.tt/2gki8Uh
http://ift.tt/2y5ZoB6
Submitted October 08, 2017 at 02:06AM by chull2058
via reddit http://ift.tt/2gki8Uh
Security Affairs
A critical vulnerability tracked as CVE-2017-9944 affects Siemens smart meters
Siemens has just released a firmware update for the 7KT PAC1200 Siemens smart meters that addresses a critical vulnerability.
How good are the password managers in Chrome and Firefox?
I was a Lastpass user. I have since moved to Keepass, because I liked the idea of switching to something that was local. But Keepass presents challenges and on iOS devices, and neither solution supports Gnome Web, which is my preferred browser on my desktop.With the release of Gnome 3.26, Gnome Web will now sync with Firefox Sync and allow me to sync my bookmarks and passwords. This would allow me to use Gnome Web on my Linux machine and use Firefox on my Windows and Mac machines at home and work, and be able to maintain password information across platforms.I know Keepass, and I trust Lastpass (for the most part), but I know nothing about the Firefox sync infrastructure and how secure it is.Anyone have insights into how secure Firefox sync is?
Submitted October 08, 2017 at 04:08AM by plazman30
via reddit http://ift.tt/2xqt4oW
I was a Lastpass user. I have since moved to Keepass, because I liked the idea of switching to something that was local. But Keepass presents challenges and on iOS devices, and neither solution supports Gnome Web, which is my preferred browser on my desktop.With the release of Gnome 3.26, Gnome Web will now sync with Firefox Sync and allow me to sync my bookmarks and passwords. This would allow me to use Gnome Web on my Linux machine and use Firefox on my Windows and Mac machines at home and work, and be able to maintain password information across platforms.I know Keepass, and I trust Lastpass (for the most part), but I know nothing about the Firefox sync infrastructure and how secure it is.Anyone have insights into how secure Firefox sync is?
Submitted October 08, 2017 at 04:08AM by plazman30
via reddit http://ift.tt/2xqt4oW
reddit
How good are the password managers in Chrome and Firefox? • r/security
I was a Lastpass user. I have since moved to Keepass, because I liked the idea of switching to something that was local. But Keepass presents...
POC - Hiding Your Process From SysInternals
http://ift.tt/2y6D2A4
Submitted October 08, 2017 at 04:55AM by MalwareSeattle
via reddit http://ift.tt/2glENj7
http://ift.tt/2y6D2A4
Submitted October 08, 2017 at 04:55AM by MalwareSeattle
via reddit http://ift.tt/2glENj7
Riscy Business
Hiding Your Process from Sysinternals
Malicious.exe running, but does not show up in Procexp.exe I was researching ways to not just do anti-analysis, but to rather run executables in spite of analysis, while evading analysis. I …
Cable modem user/pass discoverable?
This post may be 80% rant and 20% inquisitive.I bought a cable modem. Got rid of the one we have been paying a monthly fee for and hookup the new one. The modem powers up and self configures. First thing I do is change the admin password and ssid. Plug everything in that used to be connected to the old modem and restart the modem. Everything comes up fine. Nice. Goodbye monthly bill.The next thing I do is plug a laptop in to the modem and go to speedtest.net. I am redirected to a Centurylink "hello" web page. The page lets me know there is additional configuration necessary. I am miffed, but click the next button. It asks me to provide some account holder identifying info, which I do.The next window displays the new ssid and new cable modem admin password. wtf? It asks me to write down this important information and I give my computer screen the middle finger. I click next and "configuration" is complete.Am I naive to assume that ISPs (or anyone with the know how) should not be able to discover the admin password for a modem I own? I feel I have lost the security I assumed I had on my home network. Please don't park outside my house and access my home network. Thanks for being considerate.Edit: apostrophes are hard
Submitted October 08, 2017 at 08:48AM by SoBeefy
via reddit http://ift.tt/2xp6rq2
This post may be 80% rant and 20% inquisitive.I bought a cable modem. Got rid of the one we have been paying a monthly fee for and hookup the new one. The modem powers up and self configures. First thing I do is change the admin password and ssid. Plug everything in that used to be connected to the old modem and restart the modem. Everything comes up fine. Nice. Goodbye monthly bill.The next thing I do is plug a laptop in to the modem and go to speedtest.net. I am redirected to a Centurylink "hello" web page. The page lets me know there is additional configuration necessary. I am miffed, but click the next button. It asks me to provide some account holder identifying info, which I do.The next window displays the new ssid and new cable modem admin password. wtf? It asks me to write down this important information and I give my computer screen the middle finger. I click next and "configuration" is complete.Am I naive to assume that ISPs (or anyone with the know how) should not be able to discover the admin password for a modem I own? I feel I have lost the security I assumed I had on my home network. Please don't park outside my house and access my home network. Thanks for being considerate.Edit: apostrophes are hard
Submitted October 08, 2017 at 08:48AM by SoBeefy
via reddit http://ift.tt/2xp6rq2
reddit
Cable modem user/pass discoverable? • r/security
This post may be 80% rant and 20% inquisitive. I bought a cable modem. Got rid of the one we have been paying a monthly fee for and hookup...
NSA Hack caused by Kaspersky. Are you protected?
http://ift.tt/2wEPrYu
Submitted October 08, 2017 at 09:42AM by securitynewsIO
via reddit http://ift.tt/2y3m82Y
http://ift.tt/2wEPrYu
Submitted October 08, 2017 at 09:42AM by securitynewsIO
via reddit http://ift.tt/2y3m82Y
Security News iO
NSA Hack, Russians used Kaspersky | Security News iO
Russian backed hackers stole highly classified secrets during the 2015 NSA hack after a contractor put information on a personal computer.
Man in the Middle attacks
http://ift.tt/2gkBs3E
Submitted October 08, 2017 at 01:57PM by WTSxDev
via reddit http://ift.tt/2xqCK2N
http://ift.tt/2gkBs3E
Submitted October 08, 2017 at 01:57PM by WTSxDev
via reddit http://ift.tt/2xqCK2N
Kali Linux Tutorial
Kali Linux Tutorial: Man in the Middle attacks
Man in the middle attacks are methods (which have been discussed since 1995), in which the attacker latches into a communication link, and then sits in the middle between the two communication endpoints
Finding Diamonds in the Rough- Parsing for Pentesters
http://ift.tt/2kvUBEl
Submitted October 08, 2017 at 04:03PM by maxxori
via reddit http://ift.tt/2yPA284
http://ift.tt/2kvUBEl
Submitted October 08, 2017 at 04:03PM by maxxori
via reddit http://ift.tt/2yPA284
bluescreenofjeff.com - a blog about penetration testing and red teaming
Finding Diamonds in the Rough- Parsing for Pentesters
Parsing data is a fundamental ability that anyone serious about information security should consider putting time and effort into understanding. It can mean the difference between spamming Ctrl+F in a text editor and pulling out exactly what you need with…
Security.txt
https://securitytxt.org
Submitted October 08, 2017 at 05:59PM by modelop
via reddit http://ift.tt/2yQdWT7
https://securitytxt.org
Submitted October 08, 2017 at 05:59PM by modelop
via reddit http://ift.tt/2yQdWT7
security.txt
A proposed standard that allows websites to define security policies.
Wi-Fi packet sniffing / monitoring on Windows using Raspberry Pi - inspired by Wimonitor
http://ift.tt/2gjNBpx
Submitted October 08, 2017 at 07:09PM by zone13_io
via reddit http://ift.tt/2wF02CH
http://ift.tt/2gjNBpx
Submitted October 08, 2017 at 07:09PM by zone13_io
via reddit http://ift.tt/2wF02CH
Zone13.io
Wi-Fi packet sniffing / monitoring on Windows using Raspberry Pi - inspired by Wimonitor · Zone13.io
Information Security Blog
One ring to rule them all - Same RCE on multiple Trend Micro products
http://ift.tt/2yPoi5C
Submitted October 08, 2017 at 08:53PM by wtfse
via reddit http://ift.tt/2y9goqQ
http://ift.tt/2yPoi5C
Submitted October 08, 2017 at 08:53PM by wtfse
via reddit http://ift.tt/2y9goqQ
How does Pretty Good Privacy work?
http://ift.tt/2y8JbuV
Submitted October 08, 2017 at 09:46PM by radu_raicea
via reddit http://ift.tt/2kyNWte
http://ift.tt/2y8JbuV
Submitted October 08, 2017 at 09:46PM by radu_raicea
via reddit http://ift.tt/2kyNWte
Medium
How does Pretty Good Privacy work?
It’s Pretty Simple.
Testing U2F Security Keys
http://ift.tt/2yymsdx
Submitted October 09, 2017 at 02:04AM by quarrelyank
via reddit http://ift.tt/2wFC5Lj
http://ift.tt/2yymsdx
Submitted October 09, 2017 at 02:04AM by quarrelyank
via reddit http://ift.tt/2wFC5Lj
reddit
Testing U2F Security Keys • r/netsec
3 points and 0 comments so far on reddit
Cyber Operators — Differences Matter – the grugq
http://ift.tt/2k6iPEU
Submitted October 09, 2017 at 05:50AM by imr2017
via reddit http://ift.tt/2xtc0ik
http://ift.tt/2k6iPEU
Submitted October 09, 2017 at 05:50AM by imr2017
via reddit http://ift.tt/2xtc0ik
Medium
Cyber Operators — Differences Matter
A mini rant disguised as a cybersecurity taxonomy
Computer virus infects US military drone fleet: report
http://ift.tt/2kxHRNL
Submitted October 09, 2017 at 09:13AM by berthaegan
via reddit http://ift.tt/2fVEECt
http://ift.tt/2kxHRNL
Submitted October 09, 2017 at 09:13AM by berthaegan
via reddit http://ift.tt/2fVEECt
TheHill
Computer virus infects US military drone fleet: report
Editor's note: This story inadvertently went off reporting from a Wired.com article published in 2011. The story, as published by The Hill, incorrectly stated that the military had detected the virus two weeks
Reverse Engineering macOS High Sierra Supplemental Update
http://ift.tt/2kw2EBg
Submitted October 09, 2017 at 12:42PM by Mempodipper
via reddit http://ift.tt/2yR0AG8
http://ift.tt/2kw2EBg
Submitted October 09, 2017 at 12:42PM by Mempodipper
via reddit http://ift.tt/2yR0AG8
Cocoa Engineering
Reverse Engineering macOS High Sierra Supplemental Update
Reported by Matheus Mariano, a Brazilian software developer, a programming error was discovered in Apple’s most recent operating system, High Sierra, that exposed passwords of encrypted volum…
Recent Cyber Security Breaches News - Cyware
http://ift.tt/2y3m5XF
Submitted October 09, 2017 at 12:13PM by cywarelabs
via reddit http://ift.tt/2gngP6S
http://ift.tt/2y3m5XF
Submitted October 09, 2017 at 12:13PM by cywarelabs
via reddit http://ift.tt/2gngP6S
Cyware
Recent Cyber Security Breaches News | Latest Security Breaches | Cyware
Get recent news about Cyber Security Breaches. Cyware will keep you updated with latest data, information, cyber security news and be updated with all the security awareness techniques.
Sri Lanka police arrest two men over cyber theft at the Taiwan Bank
http://ift.tt/2wHyfla
Submitted October 09, 2017 at 02:35PM by MicheeLengronne
via reddit http://ift.tt/2yRQrct
http://ift.tt/2wHyfla
Submitted October 09, 2017 at 02:35PM by MicheeLengronne
via reddit http://ift.tt/2yRQrct
Security Affairs
Sri Lanka police arrest two men over cyber theft at the Taiwan Bank
The Sri Lanka authorities have arrested two men allegedly involved in cyber heist at an unnamed Taiwan bank that occurred last week.
Forget stealing data — these hackers broke into Amazon's cloud to mine bitcoin
http://ift.tt/2fUHhV7
Submitted October 09, 2017 at 03:52PM by GemmaJ123
via reddit http://ift.tt/2z7szlP
http://ift.tt/2fUHhV7
Submitted October 09, 2017 at 03:52PM by GemmaJ123
via reddit http://ift.tt/2z7szlP
Business Insider
Forget stealing data — these hackers broke into Amazon's cloud to mine bitcoin
RedLock discovered nearly 100 administration consuls with no password protection.