Security In 5: Episode 168 - Celebrate Safer Internet Day Today!
http://ift.tt/2EllKT9
Submitted February 06, 2018 at 07:32PM by BinaryBlog
via reddit http://ift.tt/2FTGrTn
http://ift.tt/2EllKT9
Submitted February 06, 2018 at 07:32PM by BinaryBlog
via reddit http://ift.tt/2FTGrTn
Libsyn
Security In Five Podcast: Episode 168 - Celebrate Safer Internet Day Today!
Today is Safer Internet Day! A day each year in February to help bring awareness for creating a safer Internet for children and young people. The 2018 theme, "Create, connect and share respect: A better internet starts with you" is a call to action for every…
Flash 0-Day In The Wild: Group 123 At The Controls
http://ift.tt/2EyiFwK
Submitted February 06, 2018 at 08:21PM by Sjoerder
via reddit http://ift.tt/2BZE0we
http://ift.tt/2EyiFwK
Submitted February 06, 2018 at 08:21PM by Sjoerder
via reddit http://ift.tt/2BZE0we
Talosintelligence
Flash 0 Day In The Wild: Group 123 At The Controls
A blog from the world class Intelligence Group, Talos, Cisco's Intelligence Group
Grammarly: auth tokens are accessible to all websites
http://ift.tt/2EfDy2d
Submitted February 06, 2018 at 08:08PM by Sjoerder
via reddit http://ift.tt/2nOzhbI
http://ift.tt/2EfDy2d
Submitted February 06, 2018 at 08:08PM by Sjoerder
via reddit http://ift.tt/2nOzhbI
reddit
Grammarly: auth tokens are accessible to all websites • r/netsec
1 points and 0 comments so far on reddit
Cryptocurrency Botnets Potentially Damaging Business Operations
http://ift.tt/2E6FJBH
Submitted February 06, 2018 at 08:35PM by htbridgedigital
via reddit http://ift.tt/2nGOAUq
http://ift.tt/2E6FJBH
Submitted February 06, 2018 at 08:35PM by htbridgedigital
via reddit http://ift.tt/2nGOAUq
Htbridge
Cryptocurrency Botnets Potentially Damaging Business Operations
One example, the Smominru cryptocurrency botnet, has infected 526,000 machines, generated as much as $3.6 million.
230-OOB - An Out-of-Band XXE server for retrieving file contents over FTP
http://ift.tt/2FRs16m
Submitted February 06, 2018 at 09:17PM by howucan
via reddit http://ift.tt/2nON0iK
http://ift.tt/2FRs16m
Submitted February 06, 2018 at 09:17PM by howucan
via reddit http://ift.tt/2nON0iK
howucan.gr
230-OOB - An Out-of-Band XXE server for retrieving file contents over FTP
230-OOB - An Out-of-Band XXE server for retrieving file contents over FTP
Bug bounty left over (and rant) Part III (Google and Twitter)
http://ift.tt/2E7tUQ1
Submitted February 06, 2018 at 09:05PM by asanso
via reddit http://ift.tt/2E3Qrcd
http://ift.tt/2E7tUQ1
Submitted February 06, 2018 at 09:05PM by asanso
via reddit http://ift.tt/2E3Qrcd
Intothesymmetry
Bug bounty left over (and rant) Part III (Google and Twitter)
tl;dr in this blog post I am going to talk about some bug bounty left over with a little rant. Here you can find bug bounty left over part...
Smart Homes - Inadequate Security?
http://ift.tt/2BXvmhD
Submitted February 06, 2018 at 09:10PM by Mi3Security
via reddit http://ift.tt/2nHOTyB
http://ift.tt/2BXvmhD
Submitted February 06, 2018 at 09:10PM by Mi3Security
via reddit http://ift.tt/2nHOTyB
Mi3 Security
Smart Homes - Inadequate Security?
The rise of Alexa, Siri and Google Home make it easy to say commands to unlock your door, or turn on your television and set your lights to 50% brightness. However, this convenience factor presents a new and unique risk to the security posture of your home.
Robin Hood vs Cisco ASA AnyConnect - Recon Brussels
http://ift.tt/2BJo7hR
Submitted February 06, 2018 at 10:01PM by bill__24
via reddit http://ift.tt/2C0MJy1
http://ift.tt/2BJo7hR
Submitted February 06, 2018 at 10:01PM by bill__24
via reddit http://ift.tt/2C0MJy1
reddit
Robin Hood vs Cisco ASA AnyConnect - Recon Brussels • r/netsec
4 points and 0 comments so far on reddit
ZDI Researcher digs through a failed patch for more post-auth bugs in HPE IMC and provides Metasploit module for testing.
http://ift.tt/2FSwmpZ
Submitted February 06, 2018 at 09:55PM by RedmondSecGnome
via reddit http://ift.tt/2E5566X
http://ift.tt/2FSwmpZ
Submitted February 06, 2018 at 09:55PM by RedmondSecGnome
via reddit http://ift.tt/2E5566X
Zero Day Initiative
One man's patch is another man's treasure: A tale of a failed HPE patch
A further analysis of various attack vectors in HPE IMC – Part 2. You can find Part 1 here. Developers often think code behind an authentication mechanism is safe from attackers and therefore the program inputs are relatively “safe.” This thought often results…
dnscrypt-proxy 2.0.0 released
http://ift.tt/1gYmWJe
Submitted February 06, 2018 at 09:41PM by jedisct1
via reddit http://ift.tt/2nFYJ3F
http://ift.tt/1gYmWJe
Submitted February 06, 2018 at 09:41PM by jedisct1
via reddit http://ift.tt/2nFYJ3F
GitHub
GitHub - DNSCrypt/dnscrypt-proxy: dnscrypt-proxy 2 - A flexible DNS proxy, with support for encrypted DNS protocols.
dnscrypt-proxy 2 - A flexible DNS proxy, with support for encrypted DNS protocols. - GitHub - DNSCrypt/dnscrypt-proxy: dnscrypt-proxy 2 - A flexible DNS proxy, with support for encrypted DNS protoc...
A witch-hunt for trojans in our chips
http://ift.tt/2nFYpCa
Submitted February 06, 2018 at 10:46PM by sjmurdoch
via reddit http://ift.tt/2E5pJE1
http://ift.tt/2nFYpCa
Submitted February 06, 2018 at 10:46PM by sjmurdoch
via reddit http://ift.tt/2E5pJE1
reddit
A witch-hunt for trojans in our chips • r/netsec
1 points and 0 comments so far on reddit
Joomla! 3.8.3 Core: Privilege Escalation via SQL Injection
http://ift.tt/2C0ERfX
Submitted February 06, 2018 at 11:20PM by websecdev
via reddit http://ift.tt/2BZXssK
http://ift.tt/2C0ERfX
Submitted February 06, 2018 at 11:20PM by websecdev
via reddit http://ift.tt/2BZXssK
It’s Hard To Change The Keys To The Internet And It Involves Destroying HSM’s
http://ift.tt/2FT8Jxc
Submitted February 07, 2018 at 05:22AM by rmddos
via reddit http://ift.tt/2EpUao0
http://ift.tt/2FT8Jxc
Submitted February 07, 2018 at 05:22AM by rmddos
via reddit http://ift.tt/2EpUao0
Cloudflare Blog
It’s Hard To Change The Keys To The Internet And It Involves Destroying HSM’s
The root of the DNS tree has been using DNSSEC to protect the zone content since 2010. DNSSEC is simply a mechanism to provide cryptographic signatures alongside DNS records that can be validated, i.e. prove the answer is correct and has not been tampered…
Internals of AFL fuzzer - QEMU Instrumentation
http://ift.tt/2E2Zie7
Submitted February 07, 2018 at 05:10AM by tunnelshade
via reddit http://ift.tt/2FPlI35
http://ift.tt/2E2Zie7
Submitted February 07, 2018 at 05:10AM by tunnelshade
via reddit http://ift.tt/2FPlI35
usn-search: a tool to facilitate local search and processing of Ubuntu's packages vulnerabilities and its CVEs.
http://ift.tt/2GT3Cyv
Submitted February 07, 2018 at 06:06AM by lukeberner
via reddit http://ift.tt/2nHQxzY
http://ift.tt/2GT3Cyv
Submitted February 07, 2018 at 06:06AM by lukeberner
via reddit http://ift.tt/2nHQxzY
GitHub
lukeber4/usn-search
usn-search is a tool to import USN (Ubuntu Security Notices) database dump into a MongoDB to facilitate search and processing of .deb packages vulnerabilities and its CVEs.
usn-search: a tool to facilitate local search and processing of Ubuntu's packages vulnerabilities and its CVEs.
http://ift.tt/2GT3Cyv
Submitted February 07, 2018 at 06:06AM by lukeberner
via reddit http://ift.tt/2nHQxzY
http://ift.tt/2GT3Cyv
Submitted February 07, 2018 at 06:06AM by lukeberner
via reddit http://ift.tt/2nHQxzY
GitHub
lukeber4/usn-search
usn-search is a tool to import USN (Ubuntu Security Notices) database dump into a MongoDB to facilitate search and processing of .deb packages vulnerabilities and its CVEs.
Local File Disclosure in Marked2 Markdown Previewer
http://ift.tt/2nI7daD
Submitted February 07, 2018 at 08:58AM by sxcurity
via reddit http://ift.tt/2nNscYQ
http://ift.tt/2nI7daD
Submitted February 07, 2018 at 08:58AM by sxcurity
via reddit http://ift.tt/2nNscYQ
Secretary of State wants to create Bureau for Cyberspace and Digital Economy
http://ift.tt/2nS49Iv
Submitted February 07, 2018 at 10:20AM by jesseflorig
via reddit http://ift.tt/2GUExmR
http://ift.tt/2nS49Iv
Submitted February 07, 2018 at 10:20AM by jesseflorig
via reddit http://ift.tt/2GUExmR
Safer internet day 2018-an admirable goal, but impossible to achieve without considering IoT Security
http://ift.tt/2EKMxpE
Submitted February 07, 2018 at 03:05PM by Iot_Security
via reddit http://ift.tt/2BgqiIr
http://ift.tt/2EKMxpE
Submitted February 07, 2018 at 03:05PM by Iot_Security
via reddit http://ift.tt/2BgqiIr
Medium
Safer internet day 2018- impossible to achieve without considering IoT Security
Today we mark the Safer internet day 2018. This is an opportunity to stop and think about the all things that make our connected world…
new botnet, dubbed ADB.Miner uses a wormlike process to spread itself across Android devices, including phones, smart TVs and TV settop boxes
http://ift.tt/2BbRw32
Submitted February 07, 2018 at 03:04PM by Iot_Security
via reddit http://ift.tt/2Bd5TnE
http://ift.tt/2BbRw32
Submitted February 07, 2018 at 03:04PM by Iot_Security
via reddit http://ift.tt/2Bd5TnE
SiliconANGLE
Rapidly spreading cryptomining botnet targets Android phones and smart TVs
A new botnet that targets Android devices to mine for cryptocurrency is spreading rapidly in the wild, just days after more than a half-million Windows personal computers were reported hijacked by
Pixel and Nexus now Receiving it's February Android Security
http://ift.tt/2C3k4IM
Submitted February 07, 2018 at 05:20PM by Ezehill
via reddit http://ift.tt/2E5GCi5
http://ift.tt/2C3k4IM
Submitted February 07, 2018 at 05:20PM by Ezehill
via reddit http://ift.tt/2E5GCi5
TutorialScope - Free Browsing Cheats, Tech News,Data Plans, Phone Spec, Tutorials
Pixel and Nexus now Receiving it's February Android Security
Google has started rolling out the February Android security patch for Google Pixel and Nexus smartphones.