CTF365 - Blitz CTF write-up. 5 challenges, created for beginners.
http://ift.tt/2AC6e15

Submitted December 07, 2017 at 09:11PM by thel3l
via reddit http://ift.tt/2nCgy6s

Banking apps vulnerable to MITM. Spinner: Semi-Automatic Detection of Pinning without Hostname Verification
http://ift.tt/2k1LoQP

Submitted December 07, 2017 at 10:59PM by americanmonty
via reddit http://ift.tt/2nERL1h

My VK acvount has been hacked
Today I've tried to log in to my account and I found out it had been blocked by the vk staff. After I managed to log in to it I saw a job offer on my wall posted in russian and a lot of private messages.Работа в вашем городе! Свободный >график! Обучение за счет фирмы! Зарплата от 55 000 до 80 000 в >неделю , И ЭТО РЕАЛЬНО !! Не >интернет, не пирамида, не косметика >=) Ждем Вас! Собеседование через >защищенное приложение телеграмм. Мои контакты там-@DZ91199 >( Money )262/5000 Rabota v vashem gorode! Svobodnyy >grafik! Obucheniye za schet firmy! Zarplata ot 55 000 do 80 000 v nedelyu , >I ETO REAL'NO !! Ne internet, ne >piramida, ne kosmetika =) Zhdem Vas! Sobesedovaniye cherez >zashchishchennoye prilozheniye >telegramm. Moi kontakty tam-@DZ91199 ( Money )Work in your city! Free schedule! Training at the expense of the company! Salary from 55 000 to 80 000 per week, >> AND IT IS REAL !! Not the Internet, not the pyramid, not the makeup =) Waiting for you! Interview via secure >>telegram application. My contacts there- @ DZ91199 (Money)My password hadn't been modified and I immediately changed it. I had my phone number linked to my profile settings but the two step verification was disabled because I kept missing the verification messages with my current smartphone.The mail and password used is not linked to any other account.What else am I supposed to do now?Should I reactivate the two step verification before deleting the account?

Submitted December 07, 2017 at 10:58PM by 8412286215E
via reddit http://ift.tt/2AEmgcy

When Scriptlets Attack: Excel’s Alternative to DDE Code Execution
http://ift.tt/2nCKY8z

Submitted December 08, 2017 at 12:06AM by teksquisite
via reddit http://ift.tt/2BL672j

How to Hack a Turned-Off Computer, or Running Unsigned Code in Intel Management Engine
http://ift.tt/2BLl8SF

Submitted December 07, 2017 at 11:40PM by maxxori
via reddit http://ift.tt/2BRClK9

Cloudflare[.]Solutions Keylogger on Thousands of Infected WordPress Sites
http://ift.tt/2Ae6oyD

Submitted December 08, 2017 at 01:01AM by pesofr
via reddit http://ift.tt/2jpbFJe

BSidesSF 2018 CFP is open!
http://ift.tt/2AWoYLr

Submitted December 08, 2017 at 03:18AM by reedloden
via reddit http://ift.tt/2jrAmF4

Week 48 in Information Security, 2017
http://ift.tt/2jrUqqH

Submitted December 08, 2017 at 03:30AM by undercomm
via reddit http://ift.tt/2ACDfvX

Chrome 63 offers even more protection from malicious sites, using even more memory
http://ift.tt/2ACrupf

Submitted December 08, 2017 at 03:29AM by speckz
via reddit http://ift.tt/2ACDiYF

Searching for the perimeter in cloud security: From microservices to chaos | ZDNet
http://ift.tt/2AzIe0j

Submitted December 08, 2017 at 04:03AM by SecurityTrust
via reddit http://ift.tt/2A1euqk

How to secure service accounts
http://ift.tt/2BdzRJh

Submitted December 08, 2017 at 05:07AM by nzwasp
via reddit http://ift.tt/2jqtQhK

pass.sh - simple, secure, open source, password sharing service
https://pass.sh

Submitted December 08, 2017 at 05:53AM by jc_sec
via reddit http://ift.tt/2k7Dl4R

This Is Why Secret Questions For Authentication Are A Bad Idea
http://ift.tt/2zZvvRI

Submitted December 08, 2017 at 06:54AM by InternetBowzer
via reddit http://ift.tt/2A1WBYb

Security Now 640 More News & Feedback | TWiT.TV
http://ift.tt/2zRnH4a

Submitted December 08, 2017 at 06:39AM by dmp1ce
via reddit http://ift.tt/2nBVRas

Elevation of Privilege vulnerability (CVE-2017-3891) in QNX Qnet
http://ift.tt/2Bg9cey

Submitted December 08, 2017 at 11:08AM by 2ROT13
via reddit http://ift.tt/2j6pOOK

Disco, or what happens when you attempt to merge the Noise and Strobe protocol frameworks
http://ift.tt/2j99s7V

Submitted December 08, 2017 at 03:31PM by davidw_-
via reddit http://ift.tt/2AmZOpM

Disco: a plug-and-play protocol to encrypt communications and a cryptographic library in Golang
http://ift.tt/2kCYVCd

Submitted December 08, 2017 at 03:30PM by davidw_-
via reddit http://ift.tt/2nHaae6

macOS High Sierra 10.13.1 insecure cron system
http://ift.tt/2BThGFI

Submitted December 08, 2017 at 03:29PM by lyinch
via reddit http://ift.tt/2AovEm0

Equifax to Uber, executives could soon serve jail time over hacks
http://ift.tt/2njNMXQ

Submitted December 08, 2017 at 03:13PM by GemmaJ123
via reddit http://ift.tt/2jvbWdL

Ai.Type data leak: 31 million users' personal data exposed due to MongoDB cloud configuration error
http://ift.tt/2iYf2dm

Submitted December 08, 2017 at 03:13PM by GemmaJ123
via reddit http://ift.tt/2kzp4BR

Dark Army has 600k+ implants (Mr Robot ep3.8 writeup)
http://ift.tt/2AEWy85

Submitted December 08, 2017 at 03:48PM by fr3dsmith
via reddit http://ift.tt/2BhwDUZ