We launched our HackerOne program a year ago to increase the security of Flexport.

To provide transparency into our ongoing efforts to protect your privacy and security on the Internet, we are releasing a security audit of Firefox Accounts ...

Firstly the advice in this article is not designed for people who are trying to evade spying or some other stuff, it's just to avoid marketers or avoid giving your number to someone you don't want to. So I'm going over to the states at the end of this week

Overview Assuming that you are capable of setting up a fake access point and setup Apache configuration accordingly to fool victim(s) I am beginning this walk-through. In this scenario, we are using one wireless adapter and an Ethernet connection (under VM)…

  Intel has introduced the new I9 CPU which is seen as HEDT (High-End-DeskTop) product. The micro architecture is in many respects shared with the new Skylake server micro architecture.I f his…

1 points and 0 comments so far on reddit

By  Thomas Kilbride Not that long ago, motorized hoverboards were in the news – according to widespread reports, they had a tendency to c...

Vincent Yiu has tweeted some really useful red teaming tips. Red Tip #1: Profile your victim and use their user agent to mask your traffic. Alternatively use UA from software such as Outlook. Red t…

Scientists have developed a new method that can stamp things with "atomic fingerprints" to keep counterfeit goods at bay.

Last week I wrote about how Life Is About to Get a Whole Lot Harder for Websites Without HTTPS. Somewhere in the comments there, the discussion went off on a tangent about commercial CAs, the threat Let's Encrypt poses to them and subsequently, the value…

We’re excited to share NuCypher KMS, a decentralized key management system (KMS) for public blockchains.

Ransomware is a type of malware that has become almost epidemic in recent years. Consumers and businesses are being hit with this malware around the world. Afte...

Valve's Source SDK contained a buffer overflow vulnerability which allowed remote code execution on clients and servers. The vulnerability was exploited by fragging a player, which casued a specially crafted ragdoll model to be loaded. Multiple Source games…

Last week we needed to authenticate some emails sent by the President’s lawyer, Marc Kasowitz. Here’s how we did it.

PostgreSQL is an open source database which can be found mostly in Linux operating systems. However it has great compatibility with…

:notebook: Some security related notes. Contribute to jaybosamiya/security-notes development by creating an account on GitHub.

2 points and 0 comments so far on reddit

Are your alarm systems secure?

PandwaRF is a pocket-sized, portable RF analysis tool operating the sub-1 GHz range. It allows the capture, analysis and re-transmission of RF via an Android device or a Linux PC.

PandwaRF Rogue is an improved variant of the…

1 points and 0 comments so far on reddit

In this blog post, we discuss the basic strategy to integrate CSP into an existing website. It covers the theory and the new features of CSP Auditor.