Writeup and PoC for arbitrary file read/write in locked Samsung Android device via MTP (SVE-2017-10086)
http://ift.tt/2lHkFe5

Submitted January 03, 2018 at 01:29AM by smesoraca
via reddit http://ift.tt/2Cv2ba5

Security Orchestration For Policy Management
http://ift.tt/2DSUMP4

Submitted January 03, 2018 at 02:32AM by abhishekiyer
via reddit http://ift.tt/2qdtb9k

VMSA-2018-0001: vSphere Data Protection (VDP) updates address multiple security issues.
http://ift.tt/2ECDMOb

Submitted January 03, 2018 at 01:26AM by bagaudin
via reddit http://ift.tt/2EAs6LH

I get this pop up on my phone for EVERY WEBSITE. It’s scary. I cleared cookies but it won’t go away?
http://ift.tt/2lIO9az

Submitted January 03, 2018 at 02:44AM by chriserie
via reddit http://ift.tt/2CtAEqz

Safe file formats
By safe I mean absolutely 100% safe or very close.I know that pdf is not safe due to javanoscriptI know that .docx is unsafe due to macrosI've heard that .rtf is unsafeWhat basic file formats are safe from malware? Mostly interested in text formats but tips on other basic formats are welcome.BONUS QUESTION: If I take an infected file (ex. .pdf) and convert it to a different format (ex. .docx) before opening, does that render the attack useless? I mean, from what I understand .pdf and .docx have different vulnerabilities, so a .pdf attack shouldn't transfer to .docx. What if I then convert it back to pdf?

Submitted January 03, 2018 at 03:47AM by Optymistyk
via reddit http://ift.tt/2CGNMFj

blackberrymobile.com mining monero?
The site seems to be including a coinhive.com noscript. http://ift.tt/2qSHLiI Address is 9KNyPFbDqJesaSxBLcQoJZX6PgXN1ld0. The way that it's implemented (before the first byte) makes it look like it got injected.Seems weird that something got injected into a BlackBerry site, since blackberry is supposed to be security-focussed.Is anyone else seeing this miner?

Submitted January 03, 2018 at 05:31AM by cryptocripples
via reddit http://ift.tt/2Cv3CVV

DNS Spoofing www.berkdusunur.net
http://ift.tt/2A8NyUR

Submitted January 03, 2018 at 06:29AM by berkdusunurx
via reddit http://ift.tt/2CwymXt

OS Command Injection Unauthorized Access
http://ift.tt/2CHphb9

Submitted January 03, 2018 at 06:19AM by berkdusunurx
via reddit http://ift.tt/2A8PHzB

Academic researchers fire latest shots in adblocking arms race
http://ift.tt/2CsE5wS

Submitted January 03, 2018 at 08:46AM by RandomCollection
via reddit http://ift.tt/2DTpyqX

Star Wars Episode IV.1.d: The Pentesters Strike Back
http://ift.tt/1kcUBmV

Submitted January 03, 2018 at 10:27AM by antdude
via reddit http://ift.tt/2CeDbkd

Client specific design security booth by Big Booth
https://www.youtube.com/watch?time_continue=2&v=TtuiRzfaFL4

Submitted January 03, 2018 at 12:33PM by phelpsryans
via reddit http://ift.tt/2DWBacN

The new intel vulnerability
It allows normal user programs – from database applications to JavaScript in web browsers – to discern to some extent the layout or contents of protected kernel memory areas.http://ift.tt/2lEEKleSo, does this mean that by visiting a website, the javanoscript can access information from the kernel of my PC?

Submitted January 03, 2018 at 03:19PM by Lumo5
via reddit http://ift.tt/2CjxIZn

Intel left a fascinating security flaw in its chips for 16 years – here's how to exploit it • The Register
http://ift.tt/2qhD3yD

Submitted January 03, 2018 at 04:23PM by Seiryth
via reddit http://ift.tt/2lKf8Dc

Bancor's HackMe Security Bounty ends in 1 week! Participate now to win ETH & BNT!
http://ift.tt/2ttpeL2

Submitted January 03, 2018 at 05:17PM by BancorAmbassador
via reddit http://ift.tt/2lL9kcM

Web Application Penetration Testing With WFuzz
http://ift.tt/2ELVQ8x

Submitted January 03, 2018 at 06:37PM by berkdusunurx
via reddit http://ift.tt/2Czg48a

exploit vulnerable windows using metasploit [kali linux] advanced ethical hacking and pen testing
https://youtu.be/A_xhZPnNWpY

Submitted January 03, 2018 at 07:15PM by jasminsmith1
via reddit http://ift.tt/2lNZnKU

Security In 5: Episode 144 - Top 10 Tips To Secure Your Network - 9 - Define Strong Rules For Admin Accounts
http://ift.tt/2Cy7oyE

Submitted January 03, 2018 at 07:36PM by BinaryBlog
via reddit http://ift.tt/2COKXlN

Office 365 ATP Safe links giving you a hard time? Check out this bypass technique and how to protect
http://ift.tt/2CA4OHQ

Submitted January 03, 2018 at 07:45PM by oddvarmoe
via reddit http://ift.tt/2E1Tb9o

9% of Popular Websites Use Anti-Adblock Scripts
http://ift.tt/2A61rmK

Submitted January 03, 2018 at 09:30PM by DJRWolf
via reddit http://ift.tt/2lRPFHB

2018: Mobile App Security Outlook
http://ift.tt/2EQh7hs

Submitted January 03, 2018 at 10:09PM by Mi3Security
via reddit http://ift.tt/2CC98Hu

www.itwissen.info infects your computer with a JavaScript cryptocurrency miner
I tested it with Google Chrome, Firefox and Internet Explorer. Everytime I opened the website, my Symantec Endpoint Protection encountered a JavaScript cryptocurrency miner in my cache (Image).http://ift.tt/2CkANbq Do not hesitate to test it yourself in a secure environment.This is illegal and definitely not in the interest of the customer/visitor.Your opinions?

Submitted January 03, 2018 at 09:55PM by BlackyGhosty
via reddit http://ift.tt/2AhVRO7