Security researchers have spotted a new variant of the Mirai malware that focuses on infecting IoT and networking equipment with the main purpose of turning these devices into a network of proxy servers used to relay malicious traffic.

By Ilya Smith (@blackzert), Positive Technologies researcher 0. Abstract The Linux kernel is used on systems of all kinds througho...

Guide to using YubiKey for GPG and SSH. Contribute to drduh/YubiKey-Guide development by creating an account on GitHub.

I've decided to release my presentation (two slide decks) on the theoretical foundations of abstract interpretation, illustrated through the game of chess. It has been collecting dust on my hard drive for five years, so I figured I may as well give it a proper…

Bitcoin or cryptocurrency mining is becoming the new thing websites and hackers are doing. Legitimate websites could be using your PC computing power to mine for bitcoin and you won't know it. This episode goes into the details on how to prevent your PC being…

Domain generation algorithm allows noscripts to bypass ad blockers.

Cryptojackers have been discovered sneaking mining code on to a big brand’s website through the back door of a poorly secured Amazon AWS (Amazon Web Service) S3 bucket.

Upload and store files and send them to anyone in seconds.

honeytrap - Advanced Honeypot framework.

This blog post describes a new vulnerability class that affects SAML-based single sign-on (SSO) systems. This vulnerability can allow an attacker with authenticated access to trick SAML systems into authenticating as a different user without knowledge of…

It's that time of year again! I'm really excited to publish the 6th installment of my Alexa Top 1 Million analysis so we can take a look over our progress on securing the web over the last 6 months. Previous Crawls It's hard to believe there are now 5 previous

Phishing is probably the biggest threat businesses face online, but what can you do to defend against it?...

Twitter: @s4tan Recently the ATM malware Ploutus.D reappeared in the news as being used to attack US ATM ([1]). In this post I'll show a p...

For over 20 years, GlassHouse Systems has served private and public customers across Canada and the US. Our highly experienced team will design and develop i...

Research from ESG says cybersecurity professionals have found their jobs becoming more difficult over the last two years. Find out what a threat intelligence solution should entail to make your job easier.

An in-depth look at the new SAML authentication bypass vulnerability: what it is, how it works, and how you can protect yourself against it.

AVG Secure VPN or Virtual Private Network provides users with a secure and private Internet connection without any restrictions. VPN is able to protect the

9 points and 1 comments so far on reddit

Free Ethical Hacking Course. Module 5 - System Hacking, you will learn the techniques that hackers use to attack objective systems.

Humans Of InfoSec Episode 1, Mike Shema started out as a gamer and hacker in the late 90’s. He was part of the elite Foundstone consulting group, built a web application security scanner at Qualys, an

##TL;DR**Attention – spoiler alert!** I was able to bypass the rate-limiting protection of the login system of TenX w...