Security In 5: Episode 189 - What Is A CSIRT And Does Your Company Need One, Yet?
http://ift.tt/2Hd9IsN
Submitted March 07, 2018 at 07:33PM by BinaryBlog
via reddit http://ift.tt/2FutPpn
http://ift.tt/2Hd9IsN
Submitted March 07, 2018 at 07:33PM by BinaryBlog
via reddit http://ift.tt/2FutPpn
Libsyn
Security In Five Podcast: Episode 189 - What Is A CSIRT And Does Your Company Need One, Yet?
In the security world things happen, we call these incidents. Big and small all incidents need to be investigated, mitigated and worked to prevent them. That's where a CSIRT comes into the mix. Computer Security Incident Response Teams sole responsibility…
Authentication bypass / RCE on 300k wp instances using mainwp-child < 3.4.5
http://ift.tt/2IaUaY6
Submitted March 07, 2018 at 03:59PM by mslavco
via reddit http://ift.tt/2Hgv20r
http://ift.tt/2IaUaY6
Submitted March 07, 2018 at 03:59PM by mslavco
via reddit http://ift.tt/2Hgv20r
Medium
Authentication bypass / RCE on 300k live websites using mainwp-child < 3.4.5
Month ago I was performing a security audit on one web setup for a client and I have meet the mainwp-child plugin there. Looking at the…
Geek Squad staff 'paid by FBI' to flag illegal imagery
http://ift.tt/2FAqg0S
Submitted March 07, 2018 at 08:33PM by modelop
via reddit http://ift.tt/2G3bL3c
http://ift.tt/2FAqg0S
Submitted March 07, 2018 at 08:33PM by modelop
via reddit http://ift.tt/2G3bL3c
BBC News
Geek Squad staff 'paid by FBI' to flag illegal imagery
Digital rights groups say that the relationship threatens computer owners' rights.
Security by Design. UK Gov's first stab at IoT consumer protection isn't good enough
http://ift.tt/2HdVY1d
Submitted March 07, 2018 at 08:24PM by xtantin
via reddit http://ift.tt/2IbEPpQ
http://ift.tt/2HdVY1d
Submitted March 07, 2018 at 08:24PM by xtantin
via reddit http://ift.tt/2IbEPpQ
Pentestpartners
Security by Design. UK Gov's first stab at IoT consumer protection isn't good enough | Pen Test Partners
Today the Department for Digital, Culture, Media and Sport (DDCMS) published a press release to fanfare their "Security by Design" initiative, which aims to sort out the security shambles which is consumer IoT in the UK. Sadly, we think the initiative has…
New DDoS Reflection-Attack Variant
http://ift.tt/2oPHJJ8
Submitted March 07, 2018 at 09:10PM by volci
via reddit http://ift.tt/2FmHU4Q
http://ift.tt/2oPHJJ8
Submitted March 07, 2018 at 09:10PM by volci
via reddit http://ift.tt/2FmHU4Q
reddit
New DDoS Reflection-Attack Variant • r/security
1 points and 0 comments so far on reddit
‘We know all about you’ – MoviePass CEO admits to tracking users
http://ift.tt/2Fi3rzN
Submitted March 07, 2018 at 09:05PM by volci
via reddit http://ift.tt/2G3hGFs
http://ift.tt/2Fi3rzN
Submitted March 07, 2018 at 09:05PM by volci
via reddit http://ift.tt/2G3hGFs
Naked Security
‘We know all about you’ – MoviePass CEO admits to tracking users
“We watch where you go afterwards,” Mitch Lowe said at an industry forum. “We know all about you.”
Security Now 653 MemCrashed
http://ift.tt/2G04zoC
Submitted March 07, 2018 at 08:58PM by volci
via reddit http://ift.tt/2FjYW3p
http://ift.tt/2G04zoC
Submitted March 07, 2018 at 08:58PM by volci
via reddit http://ift.tt/2FjYW3p
TWiT.tv
Security Now 653 MemCrashed | TWiT.TV
This week we discuss some very welcome microcode news from Microsoft, ten (yes, ten!) new 4G LTE network attacks, the battle over how secure TLS v1.3 will be allowed to be, the inc…
Unearthing Z͌̈́̾a͊̈́l͊g̏̉͆o̾̚̚S̝̬ͅc̬r̯̼͇ͅi̼͖̜̭͔p̲̘̘̹͖t̠͖̟̹͓͇ͅ with visual fuzzing
http://ift.tt/2oSFnZV
Submitted March 07, 2018 at 09:36PM by albinowax
via reddit http://ift.tt/2I8xuHS
http://ift.tt/2oSFnZV
Submitted March 07, 2018 at 09:36PM by albinowax
via reddit http://ift.tt/2I8xuHS
blog.portswigger.net
Unearthing Z͌̈́̾a͊̈́l͊ g̏̉͆o̾̚̚S̝̬ͅc̬r̯̼͇ͅi̼͖̜̭͔p̲̘̘̹͖t̠͖̟̹͓͇ͅ with visual fuzzing
This is valid JavaScript on Edge: ̀̀̀̀̀́́́́́̂̂̂̂̂̃̃̃̃̃̄̄̄̄̄̅̅̅̅̅̆̆̆̆̆̇̇̇̇̇̈̈̈̈̈̉̉̉̉̉ͅͅͅͅͅͅͅͅͅͅͅ alert(̋̋̋̋̋̌̌̌̌̌̍̍̍̍̍̎̎̎̎̎̏̏̏̏̏ͅͅͅͅͅ1ͅ...
Multiple Vulnerabilities in PHP Could Allow for Arbitrary Code Execution
http://ift.tt/2t4eiaw
Submitted March 07, 2018 at 09:29PM by soonbesleeping
via reddit http://ift.tt/2IbQODQ
http://ift.tt/2t4eiaw
Submitted March 07, 2018 at 09:29PM by soonbesleeping
via reddit http://ift.tt/2IbQODQ
Investigation into the security and pri- vacy of the three critical procedures of the 4G LTE protocol (i.e., attach, detach, and paging)
http://ift.tt/2Fn3ZmZ
Submitted March 07, 2018 at 09:11PM by fxja
via reddit http://ift.tt/2oQfEkW
http://ift.tt/2Fn3ZmZ
Submitted March 07, 2018 at 09:11PM by fxja
via reddit http://ift.tt/2oQfEkW
The Voice Commands Hidden In YOUTUBE Videos May Hack Smartphone
http://ift.tt/2Fkd299
Submitted March 07, 2018 at 11:06PM by dailynewscard
via reddit http://ift.tt/2I8AJ1S
http://ift.tt/2Fkd299
Submitted March 07, 2018 at 11:06PM by dailynewscard
via reddit http://ift.tt/2I8AJ1S
Dailynewscard
The Voice Commands Hidden In YOUTUBE Videos May Hack Smartphone | Latest Cyber News
A study has showed twisted voice commands concealed in YouTube videos may be used to assault a smartphone.
Any updates on ads being able to steal credentials via invisible forms?
Earlier this year, news came out that ads were able to include an invisible form in order to trick browser autofill in to handing over credentials. Supposedly these ad devs were only grabbing your email, but we all know how that goes. Anyways, has this been fixed? is it safe again to use browser autofill on chrome?
Submitted March 07, 2018 at 10:35PM by An_Angry_Badger
via reddit http://ift.tt/2FA7syH
Earlier this year, news came out that ads were able to include an invisible form in order to trick browser autofill in to handing over credentials. Supposedly these ad devs were only grabbing your email, but we all know how that goes. Anyways, has this been fixed? is it safe again to use browser autofill on chrome?
Submitted March 07, 2018 at 10:35PM by An_Angry_Badger
via reddit http://ift.tt/2FA7syH
reddit
Any updates on ads being able to steal credentials... • r/security
Earlier this year, news came out that ads were able to include an invisible form in order to trick browser autofill in to handing over...
Metasploit - Some “Assembly” Required
http://ift.tt/2oSOMjg
Submitted March 07, 2018 at 11:31PM by majorllama
via reddit http://ift.tt/2D8panE
http://ift.tt/2oSOMjg
Submitted March 07, 2018 at 11:31PM by majorllama
via reddit http://ift.tt/2D8panE
Ringzerolabs
Metasploit - Some Assembly Required
Metasploit is the most prevalent exploit framework in the world today thanks to it's ease of use, support, and scalability. Today we focus on payload generation and how "some assembly may be required." (Pun Intended)
Hackers May Use Cortana To Hack A Locked Windows PC
http://ift.tt/2G3JpWH
Submitted March 07, 2018 at 11:17PM by dailynewscard
via reddit http://ift.tt/2Fn8ryJ
http://ift.tt/2G3JpWH
Submitted March 07, 2018 at 11:17PM by dailynewscard
via reddit http://ift.tt/2Fn8ryJ
Dailynewscard
Hackers May Use Cortana To Hack A Locked Windows PC | Latest Cyber News
Compromising a PC this way is possible as Cortana contains performance to listen and react to your voice commands when the computer is secured.
Metasploit - Some “Assembly” Required
http://ift.tt/2oSOMjg
Submitted March 07, 2018 at 11:53PM by majorllama
via reddit http://ift.tt/2IcEJOT
http://ift.tt/2oSOMjg
Submitted March 07, 2018 at 11:53PM by majorllama
via reddit http://ift.tt/2IcEJOT
Ringzerolabs
Metasploit - Some Assembly Required
Metasploit is the most prevalent exploit framework in the world today thanks to it's ease of use, support, and scalability. Today we focus on payload generation and how "some assembly may be required." (Pun Intended)
Airline websites don’t care about your privacy follow-up: Emirates responds to my article with…
http://ift.tt/2D6FqFO
Submitted March 08, 2018 at 12:39AM by kmodi
via reddit http://ift.tt/2oXCxC7
http://ift.tt/2D6FqFO
Submitted March 08, 2018 at 12:39AM by kmodi
via reddit http://ift.tt/2oXCxC7
freeCodeCamp
Airline websites don’t care about your privacy follow-up: Emirates responds to my article with full-on denial
Yesterday, The Register wrote about my exposé on the privacy failings of airline websites.
AlgoSaaS, First & Only Network Security Policy Management "Software as a Service" Solution -
http://ift.tt/2G4j4Yv
Submitted March 08, 2018 at 12:40AM by ic3cub3d
via reddit http://ift.tt/2I9J71b
http://ift.tt/2G4j4Yv
Submitted March 08, 2018 at 12:40AM by ic3cub3d
via reddit http://ift.tt/2I9J71b
Techexeconline
AlgoSaaS, First & Only Network Security Policy Management “Software as a Service” Solution
AlgoSec, the leading provider of business-driven security policy management solutions, today announced AlgoSaaS, the industry’s first Network Security Policy Management Solution available as a Software as a Service (SaaS) solution. AlgoSaaS delivers AlgoSec’s…
The King of traffic distribution
http://ift.tt/2FyEO0I
Submitted March 08, 2018 at 01:31AM by IllRaspberry
via reddit http://ift.tt/2HcBnKE
http://ift.tt/2FyEO0I
Submitted March 08, 2018 at 01:31AM by IllRaspberry
via reddit http://ift.tt/2HcBnKE
MDNC | Malware don't need Coffee
The King of traffic distribution
Disclaimer: This post is hosted here as a courtesy to the author who prefers to remain anonymous. MDNC was not involved in any way with this study.
Stored XSS, and SSRF in Google using the Dataset Publishing Language
http://ift.tt/2tmaBNL
Submitted March 08, 2018 at 12:47AM by s1gnalc
via reddit http://ift.tt/2FnnCYY
http://ift.tt/2tmaBNL
Submitted March 08, 2018 at 12:47AM by s1gnalc
via reddit http://ift.tt/2FnnCYY
reddit
Stored XSS, and SSRF in Google using the Dataset... • r/netsec
2 points and 0 comments so far on reddit
Is there a hidden process?
http://ift.tt/2oTE4cd
Submitted March 07, 2018 at 10:01PM by khasaia
via reddit http://ift.tt/2G7YRkR
http://ift.tt/2oTE4cd
Submitted March 07, 2018 at 10:01PM by khasaia
via reddit http://ift.tt/2G7YRkR
secrary[dot]com
Is there a hidden process?
This blog is about malware analysis and reverse engineering. But Does it matter?
Half a million Exim mail servers need an urgent update
http://ift.tt/2FvZB5g
Submitted March 08, 2018 at 02:55AM by volci
via reddit http://ift.tt/2FAfQ1e
http://ift.tt/2FvZB5g
Submitted March 08, 2018 at 02:55AM by volci
via reddit http://ift.tt/2FAfQ1e
Naked Security
Patch now! Half a million Exim mail servers need an urgent update
Exim is the world’s most popular mail server and it has a bug that can be triggered remotely