New EMOTET Hijacks a Windows API, Evades Sandbox and Analysis
http://ift.tt/2iZ0JB1

Submitted November 15, 2017 at 08:39PM by EvanConover
via reddit http://ift.tt/2APBb1u

Sith Spam Bots Take a Page from a Star Wars Novel(s)
http://ift.tt/2zMaQkQ

Submitted November 15, 2017 at 09:20PM by whitehattracker
via reddit http://ift.tt/2A0vKzo

Bsides Lisbon 2017 Videos
https://www.youtube.com/playlist?list=PLbuNP88_wbNx3RfhlCMhjlIEKg4t8YopL

Submitted November 15, 2017 at 04:54PM by clviper
via reddit http://ift.tt/2zF7zGs

What happens when you try to guess the type of a void pointer (CVE-2017-16379)
http://ift.tt/2APS8c4

Submitted November 15, 2017 at 09:43PM by Cybellum
via reddit http://ift.tt/2zGSqnA

Protect JS/VBS/PS Payloads with Environmental and HTTP Keying
http://ift.tt/2z49e8S

Submitted November 15, 2017 at 10:04PM by ad4pt_
via reddit http://ift.tt/2z4wNhT

ZeroNights ICO Hacking Contest Writeup
http://ift.tt/2ihQTdY

Submitted November 15, 2017 at 11:22PM by alexlash
via reddit http://ift.tt/2juAFBO

Blind Operator Mode - An open source "defensive" rootkit created for a VPN provider that wants to keep their customer's connections private
http://ift.tt/2iXBRcN

Submitted November 15, 2017 at 11:09PM by IncludeSec
via reddit http://ift.tt/2hBLyRx

PoshC2 v3 with SOCKS Proxy (SharpSocks)
http://ift.tt/2zJZEqZ

Submitted November 15, 2017 at 11:59PM by eth_
via reddit http://ift.tt/2hudgMB

[News] MacPass 0.7 released (native macOS port of KeePass)
GitHub Link http://ift.tt/1j7w6AhChangelog:MacPass 0.7 introduces a lot of changes and a vast amount of bug fixes.Features:KDBX4 support (ChaCha Cipher, Argon2 Key Derivation)Database merge on file change as well as manual mergeTwofish Cipher for KDB and KDBX databasesFull support of the entry historyPartial support for multi-selection of entries and groupsSupport for custom iconsCreate custom icons from favorite icons for URLsEnhanced display in database settingsAuto-completion for tagsBackground color of entries is used to colorize default iconsAdded settings to enabled and change history support on databasesAdded additional enforce password change once optionAdded setting to lock database if user changes (e.g fast user switching)Moved custom fields to the general tab and removed additional tab.Removed a lot of annoyances when working with KDB filesEnhanced Auto-type candidate selection dialogBugfixes:fixed broken clearing of clipboard when copy is directly invoked via Cmd+C or menu item on text inputsfixed issues resulting in placeholders not being evaluated on Auto-typefixed multiple issues resulting in lost data after edits (notes in particular)removed many incompatibilities in KDBX output with other Keepass clientsKnown Issues:it's currently not possible to show protected custom attributes independently from their protected settingFor a complete list of changes see 0.6.2-alpha…0.7 and the corresponding submodule commitsVersion 0.7 requires macOS 10.10. Support for 10.8 and 10.9 has been dropped.

Submitted November 16, 2017 at 12:49AM by WalrusSwarm
via reddit http://ift.tt/2hu2ztm

White House Blog: Improving and Making the Vulnerability Equities Process Transparent is the Right Thing to Do
http://ift.tt/2zDe8cq

Submitted November 16, 2017 at 12:33AM by jamesgalb
via reddit http://ift.tt/2zJ7XTW

CVE-2017-12337: Cisco Voice Operating System-Based Products Unauthorized Access Vulnerability
http://ift.tt/2hu2xlh

Submitted November 15, 2017 at 11:54PM by bagaudin
via reddit http://ift.tt/2ijgFP6

Spammers using "send to a friend" form filler bots and Star Wars to trick spam filters
http://ift.tt/2zMaQkQ

Submitted November 16, 2017 at 01:02AM by buildops
via reddit http://ift.tt/2msFegZ

afl-unicorn: Part 2 — Fuzzing the ‘Unfuzzable’
http://ift.tt/2mtmdeu

Submitted November 16, 2017 at 12:46AM by njv299
via reddit http://ift.tt/2AOJL0x

CVS says outages at pharmacies due to network problems
http://ift.tt/2zZgRNX

Submitted November 16, 2017 at 02:31AM by SecurityWiseGuy
via reddit http://ift.tt/2ALAoh7

How to perform simple malware behavior analysis?
So, I can scan this file for viruses, but what I really want to see is his exactly behavior. What registry does it change, what files, etc. I've already tried to submit to hybrid-analysis.com, but it gives me an error.What tool could I use that is not too difficulty to learn (as disassembly, etc.)?Thanks

Submitted November 16, 2017 at 02:42AM by joaopaocha
via reddit http://ift.tt/2jvwQfr

No boundaries: Exfiltration of personal data by session-replay noscripts
http://ift.tt/2A0gjr3

Submitted November 16, 2017 at 03:10AM by danwin
via reddit http://ift.tt/2ARQ978

Parsing Untrusted File Formats Safely
http://ift.tt/2AIKQWH

Submitted November 16, 2017 at 05:14AM by defunct_io
via reddit http://ift.tt/2zI2DQA

Forbes '30 Under 30' Conference Website Exposed Attendees' Personal Information
http://ift.tt/2zEf9Rm

Submitted November 16, 2017 at 10:15AM by antdude
via reddit http://ift.tt/2iZxnCP

Plus Accounts for Students! (ProtonMail)
http://ift.tt/2mvgZii

Submitted November 16, 2017 at 10:56AM by sixw
via reddit http://ift.tt/2infEFV

What is the best password manager according to you?
No text found

Submitted November 16, 2017 at 12:39PM by HugoTRB
via reddit http://ift.tt/2hDeade

Week 45 in Information Security, 2017
http://ift.tt/2ALNGdD

Submitted November 16, 2017 at 04:57PM by undercomm
via reddit http://ift.tt/2in9Yvn