http://ift.tt/2zYcVcU
http://ift.tt/2zYcVcU

Submitted October 30, 2017 at 12:26AM by Mysterii8
via reddit http://ift.tt/2yZZN7i

ROCA vulnerability - the full paper available online
ACM has just published the full paper in its Digital Library athttp://ift.tt/2zQqGcYSome interesting charts of the CPU cycles needed for particular key lengths - mostly academical, with the notable exception of 3k keys.The cost of the attack of 2k RSA keys seems to be derived from Amazon EC2 x2 instance (2 cores) - my feeling is that the cost is fairly conservative. GPU-optimized versions are bound to make 2k key cracking quite affordable.

Submitted October 30, 2017 at 09:08PM by dc352
via reddit http://ift.tt/2gMfJlc

Introducing GoCrack: A Managed Password Cracking Tool
http://ift.tt/2homgDd

Submitted October 30, 2017 at 08:54PM by Extremite
via reddit http://ift.tt/2ziVPt4

Our computers, ourselves: digital vs. biological security
http://ift.tt/2yUinjd

Submitted October 31, 2017 at 12:05AM by screen317
via reddit http://ift.tt/2ltsyWI

Mozilla Wants to Distrust Dutch HTTPS Provider Because of Local Dystopian Law
http://ift.tt/2zi3qZf

Submitted October 30, 2017 at 11:48PM by DJRWolf
via reddit http://ift.tt/2xAKIHA

A Guide to Attacking Domain Trusts
http://ift.tt/2yZGZoH

Submitted October 31, 2017 at 01:05AM by juken
via reddit http://ift.tt/2yYdg1x

Linux Privilege Escalation using weak NFS permissions
http://ift.tt/2iiaWrV

Submitted October 31, 2017 at 02:20AM by InformationSecurity
via reddit http://ift.tt/2ihVax9

A Masscan Tutorial and Primer
http://ift.tt/2gLDVnN

Submitted October 31, 2017 at 02:50AM by danielrm26
via reddit http://ift.tt/2ig7ezf

Can someone copy or install files into my laptop using a usb connected phone?
If so, is there a way for me to check for that?

Submitted October 31, 2017 at 04:53AM by Opportunityinrisk
via reddit http://ift.tt/2yY8DVx

Oracle Security Alert CVE-2017-10151
http://ift.tt/2xvrvHu

Submitted October 31, 2017 at 05:22AM by bagaudin
via reddit http://ift.tt/2iNoHTo

Sandbox your applications with Firejail
http://ift.tt/2hmeutt

Submitted October 31, 2017 at 06:38AM by unquietwiki
via reddit http://ift.tt/2z1V2dd

Heathrow Airport launching a probe after a USB was found
http://ift.tt/2lsxtqI

Submitted October 31, 2017 at 07:39AM by securitynewsIO
via reddit http://ift.tt/2zTdcNw

Protect - a comprehensive home security system from Ring
Ring introduced a comprehensive home security system called Protect to monitor the indoors of houses.

Submitted October 31, 2017 at 12:16PM by CIOBulletin
via reddit http://ift.tt/2iiZWdR

Blades Power Generation Brings Top-End Emergency Power Generation Units
Blade Power Generation specialises in meeting client demands with optimal emergency power generation. From manual and automatic transfer switches to used/new generator units, the company always maintains the British Standards in each of their exclusive offerings. They supply their power generation units for both personal homes and corporate offices. Plus, they cater to the extra security needs of large scale establishments.

Submitted October 31, 2017 at 11:48AM by bladespower
via reddit http://ift.tt/2gPnhn1

Firefox takes a bite out of the canvas ‘super cookie’
http://ift.tt/2zgIIsx

Submitted October 31, 2017 at 12:39PM by wfpoulet
via reddit http://ift.tt/2hrk3al

Cybersecurity: Internet security 101: Six ways hackers can attack you and how to stay safe
http://ift.tt/2gUatj2

Submitted October 31, 2017 at 01:21PM by davidpatter
via reddit http://ift.tt/2A29Etf

A Finger Vibration-based Security System "VibWrite" can work on any Solid Surface
Rutgers engineers have created VibWrite, a smart access system that senses finger vibrations to verify users. The low-cost security system could eventually be used to gain access to homes, apartment buildings, cars, appliances – anything with a solid surface.Everyone’s finger bone structure is unique, and their fingers apply different pressures on surfaces, so sensors that detect subtle physiological and behavioral differences can identify and authenticate a person.The market for smart security access systems is expected to grow rapidly, reaching nearly $10 billion by 2022. Today’s smart security access systems mainly rely on traditional techniques that use intercoms, cameras, cards or fingerprints to authenticate users. But these systems require costly equipment, complex hardware installation and diverse maintenance needs.The goal of VibWrite is to allow user verification when fingers touch any solid surface. VibWrite integrates passcode, behavioral and physiological characteristics. It builds on a touch-sensing technique by using vibration signals. It’s different than traditional, password-based approaches, which validate passwords instead of legitimate users, as well as behavioral biometrics-based solutions, which typically involve touch screens, fingerprint readers or other costly hardware and lead to privacy concerns and “smudge attacks” that trace oily residues on surfaces from fingers.Smart access systems that use fingerprinting and iris-recognition are very secure, but they’re probably more than 10 times as expensive as this new VibWrite system.

Submitted October 31, 2017 at 02:55PM by karthikaag
via reddit http://ift.tt/2zVpp46

PDF - ACIDRain: Concurrency-Related Attacks on Database-Backed Web Applications
http://ift.tt/2nmBJar

Submitted October 31, 2017 at 03:10PM by disclosure5
via reddit http://ift.tt/2z4CGKN

Application Threat Modeling using STRIDE and DREAD
http://ift.tt/2z2vGfq

Submitted October 31, 2017 at 04:23PM by InformationSecurity
via reddit http://ift.tt/2z1gr6a

Application Threat Modeling using DREAD and STRIDE
http://ift.tt/2z2vGfq

Submitted October 31, 2017 at 04:20PM by InformationSecurity
via reddit http://ift.tt/2hpMO71

Chrome Plugin that automatically checks software vulnerabilities in browsed websites
http://ift.tt/2yPWsaM

Submitted October 31, 2017 at 03:57PM by videns
via reddit http://ift.tt/2z4uRoh