Anyone can steal all of chrome saved passwords, form fields, bookmarks, history
http://ift.tt/2BrjAjI

Submitted December 10, 2017 at 08:41PM by micgob
via reddit http://ift.tt/2yWgGBp

PowerShell noscript to dump generic Windows credentials from the Credential Manager without admin
http://ift.tt/2B87hIO

Submitted December 10, 2017 at 08:50PM by peewpw
via reddit http://ift.tt/2kjTWTo

Cool review: vulnerability detection plugins for Burp Suite and Google Chrome
http://ift.tt/2nLa0SO

Submitted December 11, 2017 at 12:48AM by isox_xx
via reddit http://ift.tt/2BqCPdz

How anyone could have hacked the Panama Papers law firm
http://ift.tt/2yUauKc

Submitted December 11, 2017 at 01:39AM by Pissy_Tree_Hugger
via reddit http://ift.tt/2nP5GBY

Vulnerable Lenovo's Unsecured Section Objects
http://ift.tt/2kNL0cF

Submitted December 11, 2017 at 07:19AM by MalwareSeattle
via reddit http://ift.tt/2nMUTIR

Is it as simple as ensuring port 16992 is blocked to see if AMT is disabled?
Been reading up more on this AMT thing given how serious it is to have a backdoor built into a cpu like this. Found that it seems to just listen on a port by sharing the NIC with the OS and it listens to a few ports such as 16992. If I do a port scan from a remote machine and find that it's closed, is that actually enough to find that it's not "working", or does it rely on some kind of secret port triggering to get it to open?Has anyone played deeper with this to find more details on how it works and what can be done to disable it?What about the 3G radio anyone know how that works? That is really the biggest threat as even if you have a non Intel based firewall and you are confident in your ethernet infrastructure then the 3G connection can bypass your firewall.Is this the thing of just ensuring that your hardware is not "compatible" with it, ex: does it rely on specific motherboards, and/or nics? Am I safer using some offbrand NIC in my firewall than an Intel one for example? If the 3G radio is not present (this is still a rumour at this point) then the most important box to protect would be the firewall as it is the one with an internet facing NIC.If the 3G radio really is present, could it be as simple as using a localized RF jammer near the firewall? It won't stop data from going out, but it will stop data from going in, to tell it to send data out... at least in theory? What I'm thinking is to build a faraday cage around my server room to the best of my ability - I won't really be able to get a perfect one, but then I could use a RF jammer inside, most of the jammer signal will hopefully stay contained so it won't affect anything outside. I imagine like 100mw would be more than enough. I would basically tune it until my cell works when I'm standing outside the room but does not work when I'm inside the room. Does this seem like a safe methodology?Having this backdoor wide open just scares the crap out of me and I really need to kill it.

Submitted December 11, 2017 at 07:50AM by RedSquirrelFtw
via reddit http://ift.tt/2AWipYx

New Android vulnerability allows attackers to modify apps without affecting their signatures
http://ift.tt/2A2ieHV

Submitted December 11, 2017 at 08:12AM by numberbuzy
via reddit http://ift.tt/2Bw6T7z

Cyber Threat Intelligence News
http://ift.tt/2Au3tSE

Submitted December 11, 2017 at 12:11PM by cywarelabs
via reddit http://ift.tt/2nOUgOD

How to maintain G Suite security settings ?
http://ift.tt/2jLypDi

Submitted December 11, 2017 at 12:30PM by michaelcloudally
via reddit http://ift.tt/2klaQ3V

For a sense of security
http://ift.tt/2z0dEfk

Submitted December 11, 2017 at 02:41PM by olive100
via reddit http://ift.tt/2yekJ8e

Here is how you can make infosec world better
http://ift.tt/2jLEYWB

Submitted December 11, 2017 at 01:51PM by dbalut
via reddit http://ift.tt/2kkkPq1

10 of the Most Significant Ransomware Attacks of 2017
http://ift.tt/2jLNwwF

Submitted December 11, 2017 at 03:07PM by nanooonanooo
via reddit http://ift.tt/2kmsswh

Hack Me Bounty Challenge
In preparation for the upcoming Bancor Wallet launch, we are leaving the final security audit to you! To ensure that we've thought through everything, we're challenging the community to hack a Bancor account in our demo environment. A secret (and worthy) amount of ETH & BNT will be awarded to the winner. Let’s get hacking!http://ift.tt/2z19dkq

Submitted December 11, 2017 at 06:53PM by nanadze
via reddit http://ift.tt/2BTYpmV

Get your features aligned with Athletic Lockers for Sale
http://ift.tt/2B2uOu5

Submitted December 11, 2017 at 06:35PM by de_bourgh
via reddit http://ift.tt/2BT27Nt

Security In 5: Episode 129 - LinkedIn InMail Phishing Shows The Need For Two Factor Authentication
http://ift.tt/2z0WT3w

Submitted December 11, 2017 at 07:31PM by BinaryBlog
via reddit http://ift.tt/2AceXpz

Interesting new research: 24% of corporate devices connect to insecure WiFi. What policies to you have at your company to protect this?
http://ift.tt/2iSSd7a

Submitted December 11, 2017 at 07:49PM by pxlprincess
via reddit http://ift.tt/2kXPduw

Hidden keylogger found on HP laptops
http://ift.tt/2jw7L4v

Submitted December 11, 2017 at 07:39PM by DuncanIdahos8thClone
via reddit http://ift.tt/2iTyXGH

Sallie Mae CISO: 4 Technologies That Will Shape IT ...
http://ift.tt/2j7ncwA

Submitted December 11, 2017 at 09:50PM by SecurityTrust
via reddit http://ift.tt/2BUtlU3

Metasploitable3 CTF (Linux) Write-Up
http://ift.tt/2C1aHL3

Submitted December 11, 2017 at 10:45PM by tmsteen
via reddit http://ift.tt/2kmp58G

Giving away a free lifetime membership at the Hacking Dojo
http://ift.tt/2iN8kDi

Submitted December 11, 2017 at 10:16PM by hackingdojo
via reddit http://ift.tt/2AvHwm4

Extended Validation is Broken
https://stripe.ian.sh/

Submitted December 11, 2017 at 11:50PM by iancarroll
via reddit http://ift.tt/2jyq4WN