You want use Gigabyte online support? Ok! You need to create a account for that, BUT look first how *not* secure their servers are
http://ift.tt/2Fvjd6G

Submitted January 14, 2018 at 12:21AM by rediii123
via reddit http://ift.tt/2EE5xVB

Yet another gadget for java deserialization: Misusing Oracle JDBC for SSRF-attacks
http://ift.tt/2DddtjH

Submitted January 13, 2018 at 02:29AM by agrrrdog
via reddit http://ift.tt/2Fw08Bf

Chasing malware and c&c servers in OSINT style!
http://ift.tt/2muX3c6

Submitted January 14, 2018 at 02:30AM by Mysterii8
via reddit http://ift.tt/2DaxS9b

Proof of Concept: Website analytics/tracking only using CSS and no JS
http://ift.tt/2Dco3aB

Submitted January 14, 2018 at 03:34AM by jbtronics
via reddit http://ift.tt/2D9F5qJ

Russia behind NotPetya cyberattack in Ukraine, CIA concludes
http://ift.tt/2mzPgKN

Submitted January 14, 2018 at 12:17PM by cmstrump
via reddit http://ift.tt/2EHcgy9

Russian military was behind ‘NotPetya’ cyberattack in Ukraine, CIA concludes
http://ift.tt/2CYsh27

Submitted January 14, 2018 at 02:20PM by DerBootsMann
via reddit http://ift.tt/2mBSqO3

Looking for half-decent MSSP Service Catalog and documentation templates - Whatcha got?
http://ift.tt/2D2uxFB

Submitted January 14, 2018 at 03:25AM by sh8k3nb8by
via reddit http://ift.tt/2mBvmzf

You want use Gigabyte online support? Ok! You need to create a account for that, BUT look first how *not* secure their servers are
http://ift.tt/2Fvjd6G

Submitted January 14, 2018 at 04:10PM by rediii123
via reddit http://ift.tt/2EFJqyl

CTF Challenge n3ph4ck Writeup
http://ift.tt/2D8WKyD

Submitted January 14, 2018 at 03:17PM by administrator007
via reddit http://ift.tt/2EHX8AJ

Lenovo network-switches with backdoor
http://ift.tt/2CYtSoX

Submitted January 14, 2018 at 04:19PM by rediii123
via reddit http://ift.tt/2D8KfTQ

Fuzzing D code with LDC
http://ift.tt/2CZw6UN

Submitted January 14, 2018 at 06:22PM by cym13
via reddit http://ift.tt/2mx19Ai

CS graduate looking to work in InfoSec, any help?
Firstly I understand the premise of this thread is that it is for computer security professionals, please remove if I am posting in the wrong place... I'm looking to graduate this August with with a BSc in Computer Science and I want to ideally go into information security, whether it involves analysing code, reverse engineering, penetration testing etc. I don't really care, and I intend to do a masters specialising in Information Security (http://ift.tt/2FEFaQY) so I can learn as much as I can before entering a job. My issue is that I am looking for an internship over the summer to help me gain some experience before my studies continue but I don't even know what to look for. I have tried searching for "information security intern" on Indeed and Glassdoor to no avail. I already have a year's experience working as an IT Administrator at a finance firm, but I would ideally like to broaden my horizons. What kind of job/internship noscripts do any of you think I should be looking for?

Submitted January 14, 2018 at 09:31PM by t-sploit
via reddit http://ift.tt/2EIzjsx

gOSINT 0.4 is out, now with a telegram groups scraper
http://ift.tt/2ikgu8N

Submitted January 14, 2018 at 10:06PM by Nhoya
via reddit http://ift.tt/2DcASTm

A Critique of Logging Capabilities in PowerShell v6
http://ift.tt/2mDYTbD

Submitted January 14, 2018 at 11:04PM by SamratAsh0k
via reddit http://ift.tt/2r03pWi

Malicious Spear-Phishing Campaign Targets Upcoming Winter Olympics in South Korea
http://ift.tt/2DhITD6

Submitted January 14, 2018 at 11:30PM by imr2017
via reddit http://ift.tt/2mCYSEx

Most Important Penetration Testing commands Cheat Sheet for Linux Machine
http://ift.tt/2m6dVsD

Submitted January 14, 2018 at 11:24PM by tech-gig
via reddit http://ift.tt/2muzPmi

Damn vulnerable arm router
http://ift.tt/2DgFnv4

Submitted January 15, 2018 at 12:11AM by pm_me_your_findings
via reddit http://ift.tt/2D0AcvZ

Browser as botnet, the coming war on your web browser
http://ift.tt/2EHePjM

Submitted January 15, 2018 at 01:21AM by brannondorsey
via reddit http://ift.tt/2mxkFNj

AKITA Instant Privacy | Worth it?
http://ift.tt/2lk0666

Submitted January 15, 2018 at 01:26AM by bjm123
via reddit http://ift.tt/2EG68X0

A few OSSEC HIDS thoughts...
We've used OSSEC HIDS in PCI:DSS environments for years now, but I'm looking to extend the functionality quite a bit.Automated agent installation. (Puppet Labs?)Reporting Analytics / Rules. (Wazuh?)Templated site configuration. (no idea...)The goal would be to prop-up a vanilla OSSEC installation with base configs on a VM (probably in Hyper-V) then create an image we could clone to other future client spaces. This would greatly reduce the time spent on initial project-work, remediating these specific PCI requirements.A few questions:How would you go about it?Is AlienVault worth it? (Demo'ing their product this week.)Have you run into any gotcha's with OSSEC HIDS that are better overcome with another product?Thanks in advance!

Submitted January 14, 2018 at 10:48PM by sh8k3nb8by
via reddit http://ift.tt/2AXUvZk

OnePlus Checkout Hacked? The Dangers of On-Site Payment Processing
http://ift.tt/2r7tYcl

Submitted January 15, 2018 at 03:30AM by JustAPenTester
via reddit http://ift.tt/2r9cNaq