Staying safe on public wifi
What steps can one take to remain addequately safe when using public wifi connections? I spend a lot of time at cafes and need to access my personal accounts. I also would rather that my traffic not be logged or that they not know what websites I'm looking at ( for instance, I want to be able to log into crypto exchanges and do some trading). I just want to try to cover my ass but I don't want to be overboard/anal about it so I'm looking for some tips on how to start to be more safe online but I don't want to operate in a bubble. Any basic tips would be awesome, thanks.
Submitted November 15, 2017 at 01:29AM by kid_cisco
via reddit http://ift.tt/2zF91rI
What steps can one take to remain addequately safe when using public wifi connections? I spend a lot of time at cafes and need to access my personal accounts. I also would rather that my traffic not be logged or that they not know what websites I'm looking at ( for instance, I want to be able to log into crypto exchanges and do some trading). I just want to try to cover my ass but I don't want to be overboard/anal about it so I'm looking for some tips on how to start to be more safe online but I don't want to operate in a bubble. Any basic tips would be awesome, thanks.
Submitted November 15, 2017 at 01:29AM by kid_cisco
via reddit http://ift.tt/2zF91rI
Honeypot Hacker Hunt Fake Service :)
http://ift.tt/2yDfArC
Submitted November 15, 2017 at 02:08AM by berkdusunurx
via reddit http://ift.tt/2zIOrVi
http://ift.tt/2yDfArC
Submitted November 15, 2017 at 02:08AM by berkdusunurx
via reddit http://ift.tt/2zIOrVi
www.berkdusunur.net
What İs Honeypot ? - Trap Systems - Hacker Hunt (Honeypot - Hacker Avı )
What İs Honeypot ? - Trap Systems - Hacker Hunt (Honeypot - Hacker Avı ) Trap computer systems that detect attacks that...
Chrome and Safari UXSS (translation from Russian)
http://ift.tt/2mqawFd
Submitted November 15, 2017 at 02:54AM by shark0der
via reddit http://ift.tt/2zFcpTy
http://ift.tt/2mqawFd
Submitted November 15, 2017 at 02:54AM by shark0der
via reddit http://ift.tt/2zFcpTy
securityespresso.org
Chrome and Safari UXSS (translation)
Hello! In addition to client side vulnerabilities in webapps, a security risk is introduced by the client side software itself. No, we’re not talking about J...
HIDDEN COBRA – North Korean Remote Administration Tool: FALLCHILL
http://ift.tt/2hzN9Yi
Submitted November 15, 2017 at 02:54AM by senatorkevin
via reddit http://ift.tt/2hu77jD
http://ift.tt/2hzN9Yi
Submitted November 15, 2017 at 02:54AM by senatorkevin
via reddit http://ift.tt/2hu77jD
www.us-cert.gov
HIDDEN COBRA – North Korean Remote Administration Tool: FALLCHILL | US-CERT
According to trusted third-party reporting, HIDDEN COBRA actors have likely been using FALLCHILL malware since 2016 to target the aerospace, telecommunications, and finance industries. The malware is a fully functional RAT with multiple commands that the…
How-to: Scanning a PCAP with an open IDS ruleset
http://ift.tt/2hxQCXj
Submitted November 15, 2017 at 02:51AM by log_bender
via reddit http://ift.tt/2jrm8GU
http://ift.tt/2hxQCXj
Submitted November 15, 2017 at 02:51AM by log_bender
via reddit http://ift.tt/2jrm8GU
ProtectWise 401TRG
Using Emerging Threats Suricata Ruleset to Scan PCAP
Scanning a PCAP file with a large IDS ruleset can be beneficial for putting a name to suspicious or malicious activity. It can also be useful for creating signatures on previously undetected malware or deciding which rules to actively run in your environment.…
Check our my latest blog post, Showing the concepts of Integer overflow causing a stack overrun, controllable threads race conditions allowing to manipulate unprotected shared structures leading to information leak allowing full RCE.
http://ift.tt/2yBQlG6
Submitted November 15, 2017 at 02:24AM by ta1s0n
via reddit http://ift.tt/2hxM4Ad
http://ift.tt/2yBQlG6
Submitted November 15, 2017 at 02:24AM by ta1s0n
via reddit http://ift.tt/2hxM4Ad
reddit
Check our my latest blog post, Showing the concepts of... • r/netsec
0 points and 1 comments so far on reddit
Fashion retailer Forever 21 reports payment card security breach
http://ift.tt/2yCZuOq
Submitted November 15, 2017 at 04:44AM by SecurityTrust
via reddit http://ift.tt/2AKriSs
http://ift.tt/2yCZuOq
Submitted November 15, 2017 at 04:44AM by SecurityTrust
via reddit http://ift.tt/2AKriSs
CNBC
Fashion retailer Forever 21 reports payment card security breach
Fashion retailer Forever 21 said on Tuesday there had been unauthorized access to data from payment cards used at certain of its stores.
How to exploit BlueBorne RCE on Nexus5 Android 6.0.1 (CVE-2017-0781)
http://ift.tt/2AHzQci
Submitted November 15, 2017 at 05:08AM by h3ku
via reddit http://ift.tt/2hxjPl6
http://ift.tt/2AHzQci
Submitted November 15, 2017 at 05:08AM by h3ku
via reddit http://ift.tt/2hxjPl6
JesuX Blog
BlueBorne RCE on Android 6.0.1 (CVE-2017-0781) [English]
A few days ago, the company Armis published a proof of concept (PoC) of a remote code execution vulnerability in Android via Bluetooth (CVE-2017-0781), known as BlueBorne. Although BlueBorne refers to a set of 8 vulnerabilities, this PoC uses only 2 of them…
Accidentally left a server open with semi-default password. How can I ensure I wasn't hacked?
For about 18 hours you could log in as root over the internet to my server using the credentials root and test -- I unfortunately forgot I left root login enabled. I promptly disabled root login, changed the password, and looked through the SSH logs. As usual, I saw a bunch of failed attempts to login from the normal bots, but checking
Submitted November 15, 2017 at 05:36AM by steelcowboy1
via reddit http://ift.tt/2jsN09F
For about 18 hours you could log in as root over the internet to my server using the credentials root and test -- I unfortunately forgot I left root login enabled. I promptly disabled root login, changed the password, and looked through the SSH logs. As usual, I saw a bunch of failed attempts to login from the normal bots, but checking
last root didn't show any logins out of the ordinary.What else should I do to see if it's compromised? Or is there no way to be sure? What do you all recommend?Submitted November 15, 2017 at 05:36AM by steelcowboy1
via reddit http://ift.tt/2jsN09F
reddit
Accidentally left a server open with semi-default... • r/security
For about 18 hours you could log in as root over the internet to my server using the credentials *root* and *test* -- I unfortunately forgot I...
NTP Amplification DDoS Attack
http://ift.tt/2zGUVpK
Submitted November 15, 2017 at 06:08AM by berkdusunurx
via reddit http://ift.tt/2ij5DcP
http://ift.tt/2zGUVpK
Submitted November 15, 2017 at 06:08AM by berkdusunurx
via reddit http://ift.tt/2ij5DcP
www.berkdusunur.net
NTP AMPLIFICATION DDoS ATTACK
NTP AMPLIFICATION DDoS ATTACK DDoS Saldırıları Standart DDoS saldırılarında amaç olabildiğince çok fazla sayıda sis...
Remote Code Execution in CouchDB (and Privilege Escalation in the npm Registry)
http://ift.tt/2hqXIcm
Submitted November 15, 2017 at 06:03AM by justicz
via reddit http://ift.tt/2AH1ypo
http://ift.tt/2hqXIcm
Submitted November 15, 2017 at 06:03AM by justicz
via reddit http://ift.tt/2AH1ypo
justi.cz
Remote Code Execution in CouchDB (and Privilege Escalation in the npm Registry)
tl;dr There was a vulnerability in CouchDB caused by a discrepancy between the database’s native JSON parser and the Javanoscript JSON parser used during docum...
Skeleton in the closet. MS Office vulnerability you didn’t know about
http://ift.tt/2iUpkaj
Submitted November 15, 2017 at 05:50AM by campuscodi
via reddit http://ift.tt/2mvoJ3Z
http://ift.tt/2iUpkaj
Submitted November 15, 2017 at 05:50AM by campuscodi
via reddit http://ift.tt/2mvoJ3Z
Embedi
Skeleton in the closet. MS Office vulnerability you didn’t know about
What is the beginning of a typical research? Any research begins with detecting vulnerabilities with common tools. Although the process does not require much time and effort, it works well.Detection procedure is focused on vulnerabilities in third-party libraries…
Travis CI vulnerability (fixed)
http://ift.tt/2yCJEn4
Submitted November 15, 2017 at 06:53AM by CashWilliams
via reddit http://ift.tt/2ieQJnI
http://ift.tt/2yCJEn4
Submitted November 15, 2017 at 06:53AM by CashWilliams
via reddit http://ift.tt/2ieQJnI
Acquia
A Travis CI/Github Security Vulnerability
For the past 6 years, private Github repositories using Travis CI have been vulnerable to a privilege escalation attack. Under certain configurations, an attacker with read-only access to the Github repo could change the code just by submitting a pull request.…
What is the best open source solution for encrypting files on a USB drive?
This is for storing backups on a USB drive. I'm running Windows 10 Home on my PC. I'm looking for something with the ease of use that TrueCrypt had.
Submitted November 15, 2017 at 07:14AM by MildlyExceptional
via reddit http://ift.tt/2zEJvDe
This is for storing backups on a USB drive. I'm running Windows 10 Home on my PC. I'm looking for something with the ease of use that TrueCrypt had.
Submitted November 15, 2017 at 07:14AM by MildlyExceptional
via reddit http://ift.tt/2zEJvDe
gnoscript - A Go library for dynamic runtime execution of malware
http://ift.tt/2hz2LLJ
Submitted November 15, 2017 at 11:21AM by mandatoryprogrammer
via reddit http://ift.tt/2zZXa8v
http://ift.tt/2hz2LLJ
Submitted November 15, 2017 at 11:21AM by mandatoryprogrammer
via reddit http://ift.tt/2zZXa8v
GitHub
GitHub - gen0cide/gnoscript: framework to rapidly implement custom droppers for all three major operating systems
framework to rapidly implement custom droppers for all three major operating systems - gen0cide/gnoscript
Asus firmware addresses KRACK
http://ift.tt/2htqlWg
Submitted November 15, 2017 at 05:47PM by NothingWasChanged
via reddit http://ift.tt/2zG3v8p
http://ift.tt/2htqlWg
Submitted November 15, 2017 at 05:47PM by NothingWasChanged
via reddit http://ift.tt/2zG3v8p
Imgur
thanks Asus
Imgur: The most awesome images on the Internet.
UltraHeal Blog For PC Security
http://ift.tt/2hvbXx1
Submitted November 15, 2017 at 03:53PM by ultraheal
via reddit http://ift.tt/2zGxLzQ
http://ift.tt/2hvbXx1
Submitted November 15, 2017 at 03:53PM by ultraheal
via reddit http://ift.tt/2zGxLzQ
reddit
UltraHeal Blog For PC Security • r/security
0 points and 0 comments so far on reddit
A researcher claims to have unlocked an iPhone X by defeating Face ID with a custom $150 mask
http://ift.tt/2zJy1fq
Submitted November 15, 2017 at 02:34PM by GemmaJ123
via reddit http://ift.tt/2iVIkFp
http://ift.tt/2zJy1fq
Submitted November 15, 2017 at 02:34PM by GemmaJ123
via reddit http://ift.tt/2iVIkFp
Business Insider
A researcher claims to have unlocked an iPhone X by defeating Face ID with a custom $150 mask
It’s the first reported case of researchers apparently being able to fool the Face ID software.
North Korean Remote Administration Tool: FALLCHILL
http://ift.tt/2hzN9Yi
Submitted November 15, 2017 at 06:48PM by uid_0
via reddit http://ift.tt/2mrAXdA
http://ift.tt/2hzN9Yi
Submitted November 15, 2017 at 06:48PM by uid_0
via reddit http://ift.tt/2mrAXdA
www.us-cert.gov
HIDDEN COBRA – North Korean Remote Administration Tool: FALLCHILL | US-CERT
According to trusted third-party reporting, HIDDEN COBRA actors have likely been using FALLCHILL malware since 2016 to target the aerospace, telecommunications, and finance industries. The malware is a fully functional RAT with multiple commands that the…
Things you wanted to know about storing passwords but were afraid to ask
http://ift.tt/2htgxLV
Submitted November 15, 2017 at 07:05PM by ruidfigueiredo
via reddit http://ift.tt/2AOMBCA
http://ift.tt/2htgxLV
Submitted November 15, 2017 at 07:05PM by ruidfigueiredo
via reddit http://ift.tt/2AOMBCA
The Blinking Caret
Things you wanted to know about storing passwords but were afraid to ask - The Blinking Caret
The issue of storing passwords securely is often overlooked. This blog post describes how a password can be stored securely even in the event of a breach.
Oracle released 4 hotfixes patch in Jolt protocol {CVE-2017-10269} CVSS 10.0/10.0
http://ift.tt/2hxJNFb
Submitted November 15, 2017 at 07:56PM by vah_13
via reddit http://ift.tt/2AHpGrZ
http://ift.tt/2hxJNFb
Submitted November 15, 2017 at 07:56PM by vah_13
via reddit http://ift.tt/2AHpGrZ
reddit
Oracle released 4 hotfixes patch in Jolt protocol... • r/security
1 points and 0 comments so far on reddit