Gain Root Access ~Remotely~ with Newly Discovered Vulnerability Within macOS High Sierra
http://ift.tt/2zAewF7

Submitted November 29, 2017 at 10:38PM by goopcat
via reddit http://ift.tt/2j0I6xs

Security update for High Sierra root issue released
http://ift.tt/2k9Gsgq

Submitted November 29, 2017 at 09:51PM by faderprime
via reddit http://ift.tt/2AmTq0Z

Apple has issued a patch regarding the root login problem
http://ift.tt/2k9Gsgq

Submitted November 29, 2017 at 11:23PM by railedit
via reddit http://ift.tt/2zBNdKG

Resources for android and iOS internal security mechanisms and comparison of them
Hello,I hate the "android vs iOS" flame war, so I'll just set the scope a bit. First of all I'm a pentester and security enthusiast, so I'm interested in deep tech stuff, not "apple got hacked" and "enable remote wipe" stuff.What I'm really searching is research material for both operating systems and devices. I want to do a personal research, as I'm really tempted to switch to iOS. The reason is that I want a smartphone secure enough to carry my private key.The threat model includes of course remote access, via internet or lan (both WiFi and 2g/3g/4g), local physical unauthorized access post-boot (unattended device with locked screen) and pre-boot.Nontrivial hardware tampering is out of scope (crack open the device). The serial console that the nexus 5/5x has on the headphone jack, is though IN scope.As a result, device specific resources might be needed (talking about android devices), as they have different hardware.I'm as much concerned about privacy as with security.Take into account that android has many flavors, so I want to compare only the most hardened (such as copperheados), without root or xposed framework.If you want to narrow your answer a bit, focus on the Pixel line by google (gets security updates by google first and supported and recommended by copperheados) and especially on the pixel XL and iPhone 8+ (as these are the devices I'm between). If you have another model/vendor in mind, that's cool too.

Submitted November 30, 2017 at 12:08AM by 01ttouch
via reddit http://ift.tt/2AgTTkQ

Is it dangerous to mine litecoin?
Does it open up your computer/network to hacking, etc?

Submitted November 30, 2017 at 01:05AM by Nateispineapple
via reddit http://ift.tt/2ikIARS

Tips is help me to create a powerful password which also remember very easily for my online security. Very good, Give it a try
https://youtube.com/watch?v=wSA011eQ784

Submitted November 30, 2017 at 02:27AM by myS_Cross
via reddit http://ift.tt/2BleL7O

Car stolen without using a key
http://ift.tt/2jpqLgY

Submitted November 30, 2017 at 03:09AM by whodewhode
via reddit http://ift.tt/2imPPZR

MS15-011 Remote Execution Buffer Overflow Server 2003 SP2
i get there are no patches released for this OS version. a user with this expertise came back to me and asked if it's sufficient if he/she blocked TCP 445, i kicked off a Nmap scan, it shows 445 closed, but 137 & 139 are opened. is blocking 445 sufficient or do they need to do more with 137/139? anything will help, thank you!

Submitted November 30, 2017 at 03:39AM by xbadazzx
via reddit http://ift.tt/2Apghca

Security Now 639 News & Feedback | TWiT.TV
http://ift.tt/2zO5cBQ

Submitted November 30, 2017 at 05:03AM by dmp1ce
via reddit http://ift.tt/2AnXrCk

Hey r/security, looking for laptop recommendations for a crypto trader
Hello all, I am looking into getting a laptop for security reasons because I will be using the laptop for crypto trading and daily handling of crypto assets. Is there a specific laptop that would be best? I'm looking into purism laptops, but am looking for something a little cheaper. Any suggestions will be appreciated

Submitted November 30, 2017 at 06:01AM by xGhJuZcvijDhwQvvNzZT
via reddit http://ift.tt/2i3IScc

Fantastic article on Red Teaming
http://ift.tt/2ne04kI

Submitted November 30, 2017 at 06:34AM by Tawnii
via reddit http://ift.tt/2Alohux

Here's What I'm Telling US Congress about Data Breaches
http://ift.tt/2AkR56I

Submitted November 30, 2017 at 06:07AM by ben_a_adams
via reddit http://ift.tt/2zOPu9r

Videocon Eco Series- An entrylevel low priced CCTV solution
http://ift.tt/2i0cQhg

Submitted November 30, 2017 at 11:42AM by VideoconWallCam
via reddit http://ift.tt/2jwfVpA

Huge Dirty COW vulnerability (CVE-2017–1000405) writeup and PoC
http://ift.tt/2inDRyU

Submitted November 30, 2017 at 12:49PM by 0xdea
via reddit http://ift.tt/2Bnbxk3

Oh-my-zsh Plugins for Metasploit Framework
http://ift.tt/2jxbnzq

Submitted November 30, 2017 at 12:33PM by sathish09
via reddit http://ift.tt/2zB9LLC

Damn insecure REST API
http://ift.tt/2jyUJzj

Submitted November 30, 2017 at 11:59AM by pm_me_your_findings
via reddit http://ift.tt/2zB8zrK

CALDERA: an automated adversary emulation system based on the Adversarial Tactics, Techniques & Common Knowledge (ATT&CK™) project
http://ift.tt/2AltaUH

Submitted November 30, 2017 at 01:54PM by 2xyo
via reddit http://ift.tt/2BnvcQZ

T-Mobile and Nest team up to keep you safe
http://ift.tt/2zRflh2

Submitted November 30, 2017 at 03:53PM by CIOBulletin
via reddit http://ift.tt/2AK9TNl

Hackbar for Firefox 57 (Quantium)
http://ift.tt/2zRShyY

Submitted November 30, 2017 at 04:22PM by pentesterggyh
via reddit http://ift.tt/2AIoPvf

Why Data Breaches Will Get Worse Before Things Get Better
http://ift.tt/2AqS1pP

Submitted November 30, 2017 at 05:49PM by pmillerbd
via reddit http://ift.tt/2ioP2aO

Vita: high performance VPN endpoint for commodity hardware (userspace networking)
http://ift.tt/2i3y2D3

Submitted November 30, 2017 at 06:16PM by mrottenkolber
via reddit http://ift.tt/2AfWhbn