Research on Misconfigured Jenkins Servers - emtunc's Blog
http://ift.tt/2EXA5BM

Submitted January 19, 2018 at 07:41PM by emtunc
via reddit http://ift.tt/2DwWdWE

Automating VMware RPC Request Sniffing: ZDI researcher details how he wrote a noscript to sniff RPC requests from VMware guest-to-host communications – a capability beneficial in writing VMware RPC exploits.
http://ift.tt/2rp5mfc

Submitted January 19, 2018 at 08:41PM by RedmondSecGnome
via reddit http://ift.tt/2FRKq3z

Secure Contexts Everywhere
http://ift.tt/2FDrGVr

Submitted January 19, 2018 at 08:28PM by speckz
via reddit http://ift.tt/2mPWGco

On the physical security side, do real security cameras ever have blinking lights?
I've noticed a fair number of fake security cameras and they seem like they could be somewhat effective (better than nothing anyway), but the blinking lights bother me. Isn't that a dead giveaway that they're fake?

Submitted January 19, 2018 at 07:54PM by suddenly_ponies
via reddit http://ift.tt/2Ds12Sd

Security In 5: Episode 156 - Tools, Tips and Tricks - Exploit Database
http://ift.tt/2DoNV3P

Submitted January 19, 2018 at 07:31PM by BinaryBlog
via reddit http://ift.tt/2mQjHfg

How Slack Stays Secure During Hyper Growth
http://ift.tt/2EWjONK

Submitted January 20, 2018 at 12:11AM by MaliaPowers
via reddit http://ift.tt/2DQCtLy

DarkComet upload vulnerability
http://ift.tt/2DxNl3n

Submitted January 20, 2018 at 01:44AM by JustThisNietzscheGuy
via reddit http://ift.tt/2EVwjcd

Security Orchestration for Endpoint Security: Use Cases
http://ift.tt/2DmxkcT

Submitted January 20, 2018 at 04:15AM by abhishekiyer
via reddit http://ift.tt/2DS6U3Y

OnePlus got pwned, exposed up to 40,000 users to credit card fraud | A malicious noscript injected into OnePlus' payment page went undiscovered for two months.
http://ift.tt/2mTdFeI

Submitted January 20, 2018 at 11:56AM by RandomCollection
via reddit http://ift.tt/2mROqIG

British teen gained access to US intelligence operations by pretending to be CIA head
http://ift.tt/2EZyNXf

Submitted January 20, 2018 at 03:54PM by Bastet1
via reddit http://ift.tt/2Bg0RTW

OnePlus website hacked - Credit Card Information of 40000 customers leaked
http://ift.tt/2G0kAKP

Submitted January 20, 2018 at 05:29PM by chieffrank
via reddit http://ift.tt/2DtQnq9

You can actually update your microcode even without a BIOS update.
Here is how you do it in Windows, and here is some Linux fun. And here is Intel's latest microcode.AMD's microcode you can obtain via this git repo.

Submitted January 20, 2018 at 08:06PM by kn1ght
via reddit http://ift.tt/2DRV7m3

Collection of Books on Info Sec and Hacking
http://ift.tt/2mSDD0U

Submitted January 20, 2018 at 09:01PM by learnie
via reddit http://ift.tt/2DtKXLO

Mobile Devices Compromised by Fake Secure Messaging Clients
http://ift.tt/2DpyiJP

Submitted January 20, 2018 at 10:30PM by 4f97749cdfb5dc076228
via reddit http://ift.tt/2Bhqx2i

IDOR leaks PII of Apple pre-order customers
http://ift.tt/2DSyxd6

Submitted January 21, 2018 at 02:17AM by hiilikecats
via reddit http://ift.tt/2Dmtwsn

Universal XSS vulnerability via Evernote Web Clipper extension
http://ift.tt/2mLDQ65

Submitted January 19, 2018 at 02:47PM by xpnsecurity
via reddit http://ift.tt/2rlnVAS

Debugging third-party Android Java code on OS X
http://ift.tt/2DoZ0hh

Submitted January 21, 2018 at 02:59PM by xaocuc
via reddit http://ift.tt/2DqgppO

Wapiti (web vulnerability scanner)
http://ift.tt/1j1r2Du

Submitted January 21, 2018 at 06:01PM by fAyf5eQR
via reddit http://ift.tt/2mZn2cw

abatchy's blog | [Kernel Exploitation] 2: Payloads
http://ift.tt/2rsy12T

Submitted January 21, 2018 at 06:44PM by sanderD
via reddit http://ift.tt/2FWQXtP

CISSP Dysfunction
http://ift.tt/2mYsmvV

Submitted January 22, 2018 at 12:46AM by Deku-shrub
via reddit http://ift.tt/2DxqggZ

CISSP Dysfunction
http://ift.tt/2mYsmvV

Submitted January 22, 2018 at 12:44AM by Deku-shrub
via reddit http://ift.tt/2Dv7h7N