'Israel hacked Kaspersky and caught Russian spies using AV tool to harvest NSA exploits'
http://ift.tt/2i5e2TW
Submitted October 11, 2017 at 09:37PM by exaltedgod
via reddit http://ift.tt/2y9kCPn
http://ift.tt/2i5e2TW
Submitted October 11, 2017 at 09:37PM by exaltedgod
via reddit http://ift.tt/2y9kCPn
www.theregister.co.uk
'Israel hacked Kaspersky and caught Russian spies using AV tool to harvest NSA exploits'
Explosive new claims also put a bomb under US-Israeli cooperation
Needed topic suggestions for my Computer Security Project.
Hello all,Can someone please help me with a computer security project idea for my Intro to computer security class.? It's a 2 member group project and my professor is expecting us to work on a low to medium scale project and we have to perform a little hack to show the vulnerabilities in the project.Thanks,
Submitted October 11, 2017 at 11:20PM by brettdaleshane
via reddit http://ift.tt/2g1keYz
Hello all,Can someone please help me with a computer security project idea for my Intro to computer security class.? It's a 2 member group project and my professor is expecting us to work on a low to medium scale project and we have to perform a little hack to show the vulnerabilities in the project.Thanks,
Submitted October 11, 2017 at 11:20PM by brettdaleshane
via reddit http://ift.tt/2g1keYz
reddit
Needed topic suggestions for my Computer Security... • r/security
Hello all, Can someone please help me with a computer security project idea for my Intro to computer security class.? It's a 2 member group...
Bikeshredding and Threat Models
http://ift.tt/2hCfCbK
Submitted October 12, 2017 at 01:20AM by ju1i3k
via reddit http://ift.tt/2yFaiPT
http://ift.tt/2hCfCbK
Submitted October 12, 2017 at 01:20AM by ju1i3k
via reddit http://ift.tt/2yFaiPT
Cobalt.io
Bikeshredding and Threat Models
Asking a DevOps team what they’re most worried about in their app is a great way to seed a conversation about risk. In my recent…
Crawler written in Go to find links you can update to HTTPS
http://ift.tt/2yhdZtR
Submitted October 12, 2017 at 02:10AM by jorinvo
via reddit http://ift.tt/2i2WE1R
http://ift.tt/2yhdZtR
Submitted October 12, 2017 at 02:10AM by jorinvo
via reddit http://ift.tt/2i2WE1R
GitHub
qvl/httpsyet
httpsyet - Crawler to find links you can update to HTTPS
Thousands of un-updated vulnerable Magento web stores
http://ift.tt/2xwKwsh
Submitted October 12, 2017 at 02:16AM by zulln
via reddit http://ift.tt/2xyXs5F
http://ift.tt/2xwKwsh
Submitted October 12, 2017 at 02:16AM by zulln
via reddit http://ift.tt/2xyXs5F
Detectify Blog
Thousands of vulnerable Magento web stores out there | Detectify Blog
iOS Flaw Makes Apple ID Passwords Prone to Phishing Attacks
http://ift.tt/2kGIGDN
Submitted October 12, 2017 at 03:04AM by dabshitty
via reddit http://ift.tt/2yc8b5m
http://ift.tt/2kGIGDN
Submitted October 12, 2017 at 03:04AM by dabshitty
via reddit http://ift.tt/2yc8b5m
HackRead
iOS Flaw Makes Apple ID Passwords Prone to Phishing Attacks
According to the findings of Felix Krause, a mobile app developer and founder of Fastlane, there is a flaw in iOS that is potentially dangerous for the sec
Week 40 in Information Security, 2017
http://ift.tt/2g0YSe2
Submitted October 12, 2017 at 02:49AM by undercomm
via reddit http://ift.tt/2yc8cGs
http://ift.tt/2g0YSe2
Submitted October 12, 2017 at 02:49AM by undercomm
via reddit http://ift.tt/2yc8cGs
Malgregator
InfoSec Week 40, 2017
There is a great probability that if you used Outlook’s S/MIME encryption in the past 6 months, plaintext of your emails was leaked to...
Millions of PornHub Users Hit By Malvertising Attack
http://ift.tt/2zbR8hu
Submitted October 12, 2017 at 04:43AM by chull2058
via reddit http://ift.tt/2z0Po9Y
http://ift.tt/2zbR8hu
Submitted October 12, 2017 at 04:43AM by chull2058
via reddit http://ift.tt/2z0Po9Y
Hackeroid
Millions of PornHub Users Hit By Malvertising Attack
Researchers from cybersecurity firm Proofpoint have recently discovered a large-scale malvertising campaign that exposed millions of Internet users in the United States, Canada, the UK, and Austral…
Attacks on Smart contracts
http://ift.tt/2zfLQBN
Submitted October 12, 2017 at 04:58AM by poopinspace
via reddit http://ift.tt/2kIOCMv
http://ift.tt/2zfLQBN
Submitted October 12, 2017 at 04:58AM by poopinspace
via reddit http://ift.tt/2kIOCMv
www.cryptologie.net
Attacks on Ethereum Smart Contracts
I just made a video covering common attacks on Ethereum's smart contracts. I used live0verflow's techniques to record and edit this one so it's going to feel different from the others :)
It's a tl;dr of A survey of attacks on Ethereum smart contracts by…
It's a tl;dr of A survey of attacks on Ethereum smart contracts by…
Reddit is now beta testing 2FA!
I just got this message.Hello there! You are receiving this message because you have been selected to be a part of our trial group for Two-Factor Authentication (2FA). Initially we are rolling this out to a small number of users to work out any unanticipated bugs. While it is optional whether or not you wish to enable 2FA, we strongly suggest doing so.To enable 2FA, you'll need to have an email address verified to your account, as well as an authentication app such as Authy or Google Authenticator. From the desktop site visit your password/email preferences, then select "click to enable" at the bottom of the page. Follow the on-screen instructions to complete the set up. We strongly advise you to generate and print out backup codes in case you lose access to your trusted device or authentication app.Once you have enabled 2FA, the next time you attempt to log in to reddit you'll be asked to enter a 6-digit verification code generated by your authentication app. You can also use one of your single-use backup codes if necessary.If you have any trouble enabling 2FA, please refer to our Help Center for initial troubleshooting. If you need additional assistance please contact us via modmail using this link, or via contact@reddit.com from your verified email address with the subject set to Two-Factor Authentication beta.Thank you for helping us beta test 2FA!”
Submitted October 12, 2017 at 07:46AM by bdonvr
via reddit http://ift.tt/2i3TCdJ
I just got this message.Hello there! You are receiving this message because you have been selected to be a part of our trial group for Two-Factor Authentication (2FA). Initially we are rolling this out to a small number of users to work out any unanticipated bugs. While it is optional whether or not you wish to enable 2FA, we strongly suggest doing so.To enable 2FA, you'll need to have an email address verified to your account, as well as an authentication app such as Authy or Google Authenticator. From the desktop site visit your password/email preferences, then select "click to enable" at the bottom of the page. Follow the on-screen instructions to complete the set up. We strongly advise you to generate and print out backup codes in case you lose access to your trusted device or authentication app.Once you have enabled 2FA, the next time you attempt to log in to reddit you'll be asked to enter a 6-digit verification code generated by your authentication app. You can also use one of your single-use backup codes if necessary.If you have any trouble enabling 2FA, please refer to our Help Center for initial troubleshooting. If you need additional assistance please contact us via modmail using this link, or via contact@reddit.com from your verified email address with the subject set to Two-Factor Authentication beta.Thank you for helping us beta test 2FA!”
Submitted October 12, 2017 at 07:46AM by bdonvr
via reddit http://ift.tt/2i3TCdJ
reddit
Reddit is now beta testing 2FA! • r/security
I just got this message. > Hello there! You are receiving this message because you have been selected to be a part of our trial group for...
Security Now 632 The DNSSEC Challenge | TWiT.TV
http://ift.tt/2gaJHCS
Submitted October 12, 2017 at 08:51AM by dmp1ce
via reddit http://ift.tt/2gxxZim
http://ift.tt/2gaJHCS
Submitted October 12, 2017 at 08:51AM by dmp1ce
via reddit http://ift.tt/2gxxZim
TWiT.tv
Security Now 632 The DNSSEC Challenge | TWiT.TV
This week we take a look at a well-handled breach-response at Disqus, a rather horrifying mistake Apple made in the implementation of their APFS encryption (and the difficulty to t…
Hackers stole Australian Secret Files on Jets and Navy Ships
http://ift.tt/2kJlwN1
Submitted October 12, 2017 at 10:40AM by securitynewsIO
via reddit http://ift.tt/2wPbRpK
http://ift.tt/2kJlwN1
Submitted October 12, 2017 at 10:40AM by securitynewsIO
via reddit http://ift.tt/2wPbRpK
Security News iO
Hackers Stole Secret Files on Jets and Navy Ships | Security News iO
The hackers had full access to secret files for four months in 2016 before the Australian Signals Directorate was tipped about the breach last November.
Automatic authorization enforcement detection extension for burp suite
http://ift.tt/1IXHfEl
Submitted October 12, 2017 at 12:55AM by quitten11
via reddit http://ift.tt/2z13vMs
http://ift.tt/1IXHfEl
Submitted October 12, 2017 at 12:55AM by quitten11
via reddit http://ift.tt/2z13vMs
GitHub
Quitten/Autorize
Autorize - Automatic authorization enforcement detection extension for burp suite written in Jython developed by Barak Tawily in order to ease application security people work and allow them perfor...
atomic-red-team: Small and highly portable detection tests mapped to the Mitre ATT&CK Framework.
http://ift.tt/2geBv4d
Submitted October 12, 2017 at 12:11PM by 2xyo
via reddit http://ift.tt/2zhrkRa
http://ift.tt/2geBv4d
Submitted October 12, 2017 at 12:11PM by 2xyo
via reddit http://ift.tt/2zhrkRa
GitHub
redcanaryco/atomic-red-team
Small and highly portable detection tests based on MITRE's ATT&CK. - redcanaryco/atomic-red-team
Biometric Products, Biometric Solution Providers - About Us
http://ift.tt/2z26Cnk
Submitted October 12, 2017 at 12:14PM by FaceKeyCorporation
via reddit http://ift.tt/2zh3zbU
http://ift.tt/2z26Cnk
Submitted October 12, 2017 at 12:14PM by FaceKeyCorporation
via reddit http://ift.tt/2zh3zbU
Facekey
About Us - Facekey
FaceKey, security access control, biometric access control and fingerprint access control, face recognition, facial recognition, card access, biometrics
Kovter Group malvertising campaign exposes millions to potential ad fraud malware infections
http://ift.tt/2glU9UX
Submitted October 12, 2017 at 01:55PM by paran0ide
via reddit http://ift.tt/2yinlW0
http://ift.tt/2glU9UX
Submitted October 12, 2017 at 01:55PM by paran0ide
via reddit http://ift.tt/2yinlW0
Proofpoint
Kovter Group malvertising campaign exposes millions to potential ad fraud malware infections
Proofpoint researchers describe recent malvertising activity by the so-called “KovCoreG group” impacting several high-ranking websites.
Home Security Alarm
http://ift.tt/2zhLies
Submitted October 12, 2017 at 03:03PM by Sophiaalice2
via reddit http://ift.tt/2xBmcu4
http://ift.tt/2zhLies
Submitted October 12, 2017 at 03:03PM by Sophiaalice2
via reddit http://ift.tt/2xBmcu4
Home Security System | Wireless DIY Home Security Systems - HNS
NBN Ready Security Alarm System & Alarm Monitoring Service
HNS smart home security solution provides NBN ready security system with professional back to base monitoring keeping you, your home and family safe and secure.
Kernel Pool Overflow Exploitation In Real World – Windows 7
http://ift.tt/2tV7Nn6
Submitted October 12, 2017 at 03:45PM by maxxori
via reddit http://ift.tt/2zhE0aE
http://ift.tt/2tV7Nn6
Submitted October 12, 2017 at 03:45PM by maxxori
via reddit http://ift.tt/2zhE0aE
TRACKWATCH
Kernel Pool Overflow Exploitation In Real World – Windows 7 | TRACKWATCH
1) IntroductionThis article will focus on a vulnerability (CVE-2017-6008) we identified in the HitmanPro standalone scan version 3.7.15 - Build 281. This tool is a part of the HitmanPro.Alert solution and has been integrated in the Sophos
Over The Air Conclusion: Exploiting The Wi-Fi Stack on Apple Devices
http://ift.tt/2ygncSW
Submitted October 12, 2017 at 02:28PM by albinowax
via reddit http://ift.tt/2yiqKnV
http://ift.tt/2ygncSW
Submitted October 12, 2017 at 02:28PM by albinowax
via reddit http://ift.tt/2yiqKnV
googleprojectzero.blogspot.co.uk
Over The Air - Vol. 2, Pt. 3: Exploiting The Wi-Fi Stack on Apple Devices
Posted by Gal Beniamini, Project Zero In this blog post we’ll complete our goal of achieving remote kernel code execution on the iPhone ...
Kernel Pool Overflow Exploitation In Real World – Windows 10
http://ift.tt/2hDq7vt
Submitted October 12, 2017 at 03:57PM by maxxori
via reddit http://ift.tt/2yejAPF
http://ift.tt/2hDq7vt
Submitted October 12, 2017 at 03:57PM by maxxori
via reddit http://ift.tt/2yejAPF
TRACKWATCH
Kernel Pool Overflow Exploitation In Real World – Windows 10 | TRACKWATCH
1) IntroductionThis article is the sequel of the article Kernel Pool Overflow Exploitation In Real World - Windows 7.We will exploit the very same vulnerability on Windows 10, which is pretty challenging since Microsoft did a great jo
Read on the Web: Scammers demand Bitcoin in DDoS extortion scheme, deliver empty threats
http://ift.tt/2yiBQJj
Submitted October 12, 2017 at 04:38PM by MicheeLengronne
via reddit http://ift.tt/2xAOHDr
http://ift.tt/2yiBQJj
Submitted October 12, 2017 at 04:38PM by MicheeLengronne
via reddit http://ift.tt/2xAOHDr
Limawi
Read on the Web: Scammers demand Bitcoin in DDoS extortion scheme, deliver empty threats
Read on the Web: The FBI has issued an advisory to businesses over a recent string of DDoS extortion attempts. The perpetrators are claiming to be affiliated with Anonymous or Lizard S...