Malicious PyPI Packages Stealing Credit Cards and Injecting Code - Technical Analysis
https://ift.tt/3j6RZYu
Submitted July 30, 2021 at 02:09PM by securehoney
via reddit https://ift.tt/3C6eXrN
https://ift.tt/3j6RZYu
Submitted July 30, 2021 at 02:09PM by securehoney
via reddit https://ift.tt/3C6eXrN
JFrog
Python developers are being targeted with malicious packages on PyPI
JFrog finds a new supply chain attack targeting python developers using the PyPI repository
Attack AI systems in Machine Learning Evasion Competition | Microsoft Security Blog
https://ift.tt/374jNr8
Submitted July 30, 2021 at 02:47PM by AdmiralDoughnot
via reddit https://ift.tt/3zOWKge
https://ift.tt/374jNr8
Submitted July 30, 2021 at 02:47PM by AdmiralDoughnot
via reddit https://ift.tt/3zOWKge
Microsoft Security Blog
Attack AI systems in Machine Learning Evasion Competition | Microsoft Security Blog
Today, we are launching MLSEC.IO, a new machine learning security evasion competition as an educational effort for the AI and security communities to exercise their muscle to attack critical AI systems in a realistic setting.
The first 11 “Secure The Governement” vulnerability disclosure programs (DHS, FCC, UDSA, BOL, etc) are now live.
https://ift.tt/3zRbKKG
Submitted July 30, 2021 at 03:35PM by yesnet0
via reddit https://ift.tt/3fckSkS
https://ift.tt/3zRbKKG
Submitted July 30, 2021 at 03:35PM by yesnet0
via reddit https://ift.tt/3fckSkS
Bugcrowd
CISA Vulnerability Disclosure Programs | Bugcrowd | Bugcrowd
Find active vulnerability disclosure programs from the Cybersecurity & Infrastructure Security Agency. Start hunting today!
[CFP] Call for Papers for Hardwear.io Security Conference Netherlands 2021 is OPEN
https://ift.tt/3BWGKKR
Submitted July 30, 2021 at 05:20PM by hardweario
via reddit https://ift.tt/2UYUJ2q
https://ift.tt/3BWGKKR
Submitted July 30, 2021 at 05:20PM by hardweario
via reddit https://ift.tt/2UYUJ2q
hardwear.io
Hardwear.io Netherlands 2021
You Really Shouldn't Roll Your Own Crypto: An Empirical Study of Vulnerabilities in Cryptographic Libraries
https://ift.tt/3iCYRg0
Submitted July 31, 2021 at 01:16PM by digicat
via reddit https://ift.tt/3fitM0i
https://ift.tt/3iCYRg0
Submitted July 31, 2021 at 01:16PM by digicat
via reddit https://ift.tt/3fitM0i
Several techniques on non-paged pool overflow exploitation including a poc for CVE-2020-17087 (Windows Kernel Cryptography Driver) and an off-by-one overflow.
https://ift.tt/3ieH6F3
Submitted July 31, 2021 at 06:49PM by lunasalmon
via reddit https://ift.tt/3ideTOH
https://ift.tt/3ieH6F3
Submitted July 31, 2021 at 06:49PM by lunasalmon
via reddit https://ift.tt/3ideTOH
GitHub
GitHub - vp777/Windows-Non-Paged-Pool-Overflow-Exploitation: Techniques based on named pipes for pool overflow exploitation targeting…
Techniques based on named pipes for pool overflow exploitation targeting the most recent (and oldest) Windows versions demonstrated on CVE-2020-17087 and an off-by-one overflow - GitHub - vp777/Win...
Rotten Apples MacOS Codesigning Translocation Vulnerability
https://ift.tt/3zVm702
Submitted July 30, 2021 at 01:16AM by gh0stlazers
via reddit https://ift.tt/3CbvCds
https://ift.tt/3zVm702
Submitted July 30, 2021 at 01:16AM by gh0stlazers
via reddit https://ift.tt/3CbvCds
Department of Justice Statement on SolarWinds Update
https://ift.tt/3xgr41N
Submitted July 31, 2021 at 10:43PM by hi5eyes
via reddit https://ift.tt/2VcLqf4
https://ift.tt/3xgr41N
Submitted July 31, 2021 at 10:43PM by hi5eyes
via reddit https://ift.tt/2VcLqf4
www.justice.gov
Department of Justice Statement on SolarWinds Update
Shadow Credentials: Abusing Key Trust Account Mapping for Takeover
https://ift.tt/3gSUnRE
Submitted August 01, 2021 at 12:21PM by disclosure5
via reddit https://ift.tt/3ig1i9B
https://ift.tt/3gSUnRE
Submitted August 01, 2021 at 12:21PM by disclosure5
via reddit https://ift.tt/3ig1i9B
Medium
Shadow Credentials: Abusing Key Trust Account Mapping for Account Takeover
The techniques for DACL-based attacks against User and Computer objects in Active Directory have been established for years. If we…
Github phath0m/JadedWraith - New light-weight ICMP backdoor for UNIX systems
https://ift.tt/3yhL7xT
Submitted August 01, 2021 at 12:35AM by unphath0mable
via reddit https://ift.tt/3llx72r
https://ift.tt/3yhL7xT
Submitted August 01, 2021 at 12:35AM by unphath0mable
via reddit https://ift.tt/3llx72r
GitHub
GitHub - phath0m/JadedWraith: Light-weight UNIX backdoor
Light-weight UNIX backdoor. Contribute to phath0m/JadedWraith development by creating an account on GitHub.
Thinking about “traceability”
https://ift.tt/3C53fh2
Submitted August 02, 2021 at 09:32AM by feross
via reddit https://ift.tt/3fhuueb
https://ift.tt/3C53fh2
Submitted August 02, 2021 at 09:32AM by feross
via reddit https://ift.tt/3fhuueb
A Few Thoughts on Cryptographic Engineering
Thinking about “traceability”
A few weeks back, the messaging service WhatsApp sued the Indian government over new legislation that could undermine its end-to-end encryption (E2EE) software. The legislation requires, among othe…
A Large-Scale Security-Oriented Static Analysis of Python Packages in PyPI
https://ift.tt/3zKEEfi
Submitted August 02, 2021 at 02:21PM by hermajordoctor
via reddit https://ift.tt/3iguTQ4
https://ift.tt/3zKEEfi
Submitted August 02, 2021 at 02:21PM by hermajordoctor
via reddit https://ift.tt/3iguTQ4
reddit
A Large-Scale Security-Oriented Static Analysis of Python Packages...
Posted in r/netsec by u/hermajordoctor • 1 point and 1 comment
CyberDefenders- HoneyPot : WireShark PCAP Analysis
https://ift.tt/3fionGv
Submitted August 02, 2021 at 03:18PM by thatmemforensicsguy
via reddit https://ift.tt/3fm5xhV
https://ift.tt/3fionGv
Submitted August 02, 2021 at 03:18PM by thatmemforensicsguy
via reddit https://ift.tt/3fm5xhV
reddit
CyberDefenders- HoneyPot : WireShark PCAP Analysis
Posted in r/netsec by u/thatmemforensicsguy • 7 points and 0 comments
Potential remote code execution in PyPI
https://ift.tt/3lffB03
Submitted August 02, 2021 at 04:17PM by _vavkamil_
via reddit https://ift.tt/3A0yPdL
https://ift.tt/3lffB03
Submitted August 02, 2021 at 04:17PM by _vavkamil_
via reddit https://ift.tt/3A0yPdL
blog.ryotak.me
Potential remote code execution in PyPI
Preface (日本語版も公開されています。) While PyPI has a security page, they don’t have a clear policy for vulnerability assessments.1 This article describes the vulnerabilities that were reported as potential vulnerabilities, using publicly available information. This…
Universal Privilege Escalation and Persistence – Print Spooler
https://ift.tt/3BYOagK
Submitted August 02, 2021 at 04:47PM by netbiosX
via reddit https://ift.tt/3foXr86
https://ift.tt/3BYOagK
Submitted August 02, 2021 at 04:47PM by netbiosX
via reddit https://ift.tt/3foXr86
Penetration Testing Lab
Universal Privilege Escalation and Persistence – Printer
The Print Spooler is responsible to manage and process printer jobs. It runs as a service with SYSTEM level privileges on windows environments. Abuse of the Print Spooler service is not new and suc…
Almost 10 million BGP route leaks and more than 7 million BGP hijacks occured in Q2 2021
https://ift.tt/3jcdlnE
Submitted August 02, 2021 at 06:17PM by shapelez
via reddit https://ift.tt/2VbXRYA
https://ift.tt/3jcdlnE
Submitted August 02, 2021 at 06:17PM by shapelez
via reddit https://ift.tt/2VbXRYA
blog.qrator.net
Blog — Q2 2021 DDoS attacks and BGP incidents
The second quarter of 2021 was expected to be much quieter than the Q1 in DDoS attacks; hence we're looking at the late spring and early summer months of April, May and June, with somewhat cooled business buzz globally. Although, some attacking activity was…
ZeroDay in 'Commercial Stalkerware' - The Disclosure Dilemma
https://ift.tt/3C2nJHb
Submitted August 03, 2021 at 12:19AM by kev-thehermit
via reddit https://ift.tt/3rPjcTI
https://ift.tt/3C2nJHb
Submitted August 03, 2021 at 12:19AM by kev-thehermit
via reddit https://ift.tt/3rPjcTI
Immersivelabs
Disclosure Dilemmas: Vulnerable Stalkerware - Immersive Labs
Our Director of Cyber Threat Research, Kev Breen, recently discovered a vulnerability in a piece of stalkerware. What followed was a dilemma that has lasted months. Together, the Immersive Labs team has decided to help educate people on the dangers of stalkerware…
The Ultimate Guide to Phishing: Learn how to Phish without spending a single ₹
https://ift.tt/3C6GWaB
Submitted August 03, 2021 at 08:31AM by alt-glitch
via reddit https://ift.tt/3A2B3td
https://ift.tt/3C6GWaB
Submitted August 03, 2021 at 08:31AM by alt-glitch
via reddit https://ift.tt/3A2B3td
computer insecurities
The Ultimate Guide to Phishing
Learn how to Phish using EvilGinx2 and GoPhish
A bunch of different edge-case recon ideas for uncovering well-hidden hostnames
https://ift.tt/3fa7BcL
Submitted August 03, 2021 at 09:40AM by hakluke
via reddit https://ift.tt/3frt6G5
https://ift.tt/3fa7BcL
Submitted August 03, 2021 at 09:40AM by hakluke
via reddit https://ift.tt/3frt6G5
Securitytrails
SecurityTrails | How I Lost the SecurityTrails #ReconMaster Contest, and How You Can Win: Edge-Case Recon Ideas
A while back, SecurityTrails announced that they would be running a contest dubbed
How to boost your popularity on OkCupid using CSRF and a JSON type confusion
https://ift.tt/37ea6WW
Submitted August 03, 2021 at 03:41PM by pimterry
via reddit https://ift.tt/3CdUMI6
https://ift.tt/37ea6WW
Submitted August 03, 2021 at 03:41PM by pimterry
via reddit https://ift.tt/3CdUMI6
reddit
How to boost your popularity on OkCupid using CSRF and a JSON type...
Posted in r/netsec by u/pimterry • 303 points and 30 comments
Escaping from a truly air gapped network via Apple AWDL
https://ift.tt/3loqI6H
Submitted August 03, 2021 at 06:02PM by oherrala
via reddit https://ift.tt/3xnz294
https://ift.tt/3loqI6H
Submitted August 03, 2021 at 06:02PM by oherrala
via reddit https://ift.tt/3xnz294
Medium
Escaping from a truly air gapped network via Apple AWDL
In the following post I go through how to escape from a truly air gapped network using Apple Wireless Direct Link -network and leveraging…