Chaos Computer Club finds fundamental security problems in "PC-Wahl'-software which is used for general elections
http://ift.tt/2xQfzk3
Submitted September 07, 2017 at 08:44PM by Skaarj
via reddit http://ift.tt/2xe0ewo
http://ift.tt/2xQfzk3
Submitted September 07, 2017 at 08:44PM by Skaarj
via reddit http://ift.tt/2xe0ewo
reddit
Chaos Computer Club finds fundamental security problems... • r/netsec
9 points and 0 comments so far on reddit
Cryptographic vulnerabilities in cryptocurrency IOTA - custom hash function has practical collisions
http://ift.tt/2eO19fB
Submitted September 08, 2017 at 01:49AM by cybergibbons
via reddit http://ift.tt/2j96Sy1
http://ift.tt/2eO19fB
Submitted September 08, 2017 at 01:49AM by cybergibbons
via reddit http://ift.tt/2j96Sy1
Medium
Cryptographic vulnerabilities in IOTA
Last month, Ethan Heilman, Tadge Dryja, Madars Virza, and I took a look at IOTA, currently the 8th largest cryptocurrency with a $1.9B…
Broadpwn: Remotely Compromising Android and iOS via a Bug in Broadcom's Wi-Fi Chipsets
https://www.youtube.com/watch?v=TDk2RId8LFo
Submitted September 08, 2017 at 04:48AM by bool101
via reddit http://ift.tt/2gLd62H
https://www.youtube.com/watch?v=TDk2RId8LFo
Submitted September 08, 2017 at 04:48AM by bool101
via reddit http://ift.tt/2gLd62H
YouTube
Broadpwn: Remotely Compromising Android and iOS via a Bug in Broadcom's Wi-Fi Chipsets
Meet Broadpwn, a vulnerability in Broadcom's Wi-Fi chipsets which affects millions of Android and iOS devices, and can be triggered remotely, without user interaction. The Broadcom BCM43xx family of Wi-Fi chips is found in an extraordinarily wide range of…
ES6 for penetration testers
http://ift.tt/1tdkHrG
Submitted September 08, 2017 at 04:45AM by nohohC0i
via reddit http://ift.tt/2vQZgpB
http://ift.tt/1tdkHrG
Submitted September 08, 2017 at 04:45AM by nohohC0i
via reddit http://ift.tt/2vQZgpB
Zer0con slides - Owning embedded devices and network protocols
http://ift.tt/2vQSPmr
Submitted September 08, 2017 at 04:25AM by PierreKimSec
via reddit http://ift.tt/2vQKFKZ
http://ift.tt/2vQSPmr
Submitted September 08, 2017 at 04:25AM by PierreKimSec
via reddit http://ift.tt/2vQKFKZ
Pwning the Dlink 850L routers and abusing the MyDlink Cloud protocol
http://ift.tt/2wcWvdT
Submitted September 08, 2017 at 04:25AM by PierreKimSec
via reddit http://ift.tt/2xSUxkS
http://ift.tt/2wcWvdT
Submitted September 08, 2017 at 04:25AM by PierreKimSec
via reddit http://ift.tt/2xSUxkS
Equifax data leak could involve 143 million consumers
http://ift.tt/2xeWmeM
Submitted September 08, 2017 at 04:16AM by marks13
via reddit http://ift.tt/2gPZd73
http://ift.tt/2xeWmeM
Submitted September 08, 2017 at 04:16AM by marks13
via reddit http://ift.tt/2gPZd73
TechCrunch
Equifax data leak could involve 143 million consumers
Data leaks have become so commonplace that it’s incredibly easy to become numb to them, but credit reporting service Equifax announced a doozy today that when all is said and done could involve…
2017 Best Cities for Cybersecurity Professionals
http://ift.tt/2kUX5qP
Submitted September 08, 2017 at 06:22AM by PalwaJoko
via reddit http://ift.tt/2eQAuij
http://ift.tt/2kUX5qP
Submitted September 08, 2017 at 06:22AM by PalwaJoko
via reddit http://ift.tt/2eQAuij
GoodCall DataCenter
2017 Best Cities for Cybersecurity Professionals | GoodCall
As hackers increase attacks, more people are needed to fight back. GoodCall analysts compiled a list of the Best Cities for Cybersecurity Professionals.
Tracing arbitrary Methods and Function calls on Android and iOS
http://ift.tt/2xheHrI
Submitted September 08, 2017 at 02:34PM by 0xdea
via reddit http://ift.tt/2wNcWSl
http://ift.tt/2xheHrI
Submitted September 08, 2017 at 02:34PM by 0xdea
via reddit http://ift.tt/2wNcWSl
A roundup of all PandwaRF versions - Sub 1 GHz RF analysis tool
http://ift.tt/2xaTuPk
Submitted September 08, 2017 at 04:41PM by Tartopom06
via reddit http://ift.tt/2xTLno5
http://ift.tt/2xaTuPk
Submitted September 08, 2017 at 04:41PM by Tartopom06
via reddit http://ift.tt/2xTLno5
PandwaRF
What PandwaRF Version Is Right For You? - PandwaRF
PandwaRF is a portable RF analysis tool available in several versions. We often get asked which version to choose, and […]
Simple noscript that notifies you of the ngrok TCP URL after the tunnel is created.
http://ift.tt/2gNHbP9
Submitted September 08, 2017 at 06:54PM by callahanrazor
via reddit http://ift.tt/2wegrwI
http://ift.tt/2gNHbP9
Submitted September 08, 2017 at 06:54PM by callahanrazor
via reddit http://ift.tt/2wegrwI
GitHub
chargz/RemoteSSH
RemoteSSH - Starts an ngrok TCP tunnel and notifies you of the URL. Perfect for automated remote SSH connections.
how to hack the uk tax system, i guess
http://ift.tt/2wewzON
Submitted September 08, 2017 at 07:46PM by Zemnmez
via reddit http://ift.tt/2gOog6H
http://ift.tt/2wewzON
Submitted September 08, 2017 at 07:46PM by Zemnmez
via reddit http://ift.tt/2gOog6H
Medium
how to hack the uk tax system, i guess
a 3 step guide to a 57 day journey
Public API for Vulners. Seems to be world's largest vulnerabilities database.
http://ift.tt/2eS8wT6
Submitted September 08, 2017 at 07:32PM by cr1ys
via reddit http://ift.tt/2jbwx91
http://ift.tt/2eS8wT6
Submitted September 08, 2017 at 07:32PM by cr1ys
via reddit http://ift.tt/2jbwx91
GitHub
vulnersCom/api
api - Vulners Python API wrapper
Abusing JavaScript frameworks to bypass XSS mitigations [PortSwigger Web Security Blog]
http://ift.tt/2xUudGY
Submitted September 08, 2017 at 08:19PM by chloeeeeeeeee
via reddit http://ift.tt/2xhvvP3
http://ift.tt/2xUudGY
Submitted September 08, 2017 at 08:19PM by chloeeeeeeeee
via reddit http://ift.tt/2xhvvP3
blog.portswigger.net
Abusing JavaScript frameworks to bypass XSS mitigations
At AppSec Europe Sebastian Lekies, Krzysztof Kotowicz and Eduardo Vela Nava showed how to use JavaScript frameworks to bypass XSS mitigation...
How Equifax & Fire Eye Threw Oil Onto The Fire
http://ift.tt/2gOFP6E
Submitted September 08, 2017 at 09:26PM by Smokebits
via reddit http://ift.tt/2xUIDqA
http://ift.tt/2gOFP6E
Submitted September 08, 2017 at 09:26PM by Smokebits
via reddit http://ift.tt/2xUIDqA
Hacker Noon
A Series Of Unfortunate Events or How Equifax & Fire Eye Threw Oil On The Fire
As far as data breaches go, this one was a beauty and happily I don’t need to tell you what happened or how it happened, others already did…
How to Not Get Your Identity Stolen
http://ift.tt/2weHub6
Submitted September 08, 2017 at 10:33PM by Ramirond
via reddit http://ift.tt/2eTRvbg
http://ift.tt/2weHub6
Submitted September 08, 2017 at 10:33PM by Ramirond
via reddit http://ift.tt/2eTRvbg
Auth0 - Blog
How to Not Get Your Identity Stolen
Practical advice for mitigating your risk of identity theft.
A quick look at the CIA's Protego: likely a MANPADS missile control system
http://ift.tt/2weLBnS
Submitted September 09, 2017 at 02:04AM by 2ROT13
via reddit http://ift.tt/2xjvSJb
http://ift.tt/2weLBnS
Submitted September 09, 2017 at 02:04AM by 2ROT13
via reddit http://ift.tt/2xjvSJb
List Of High Profile Cryptocurrency Hacks So Far (August 24th 2017)
http://ift.tt/2iAOLAT
Submitted September 09, 2017 at 06:23AM by fagnerbrack
via reddit http://ift.tt/2vLRl9b
http://ift.tt/2iAOLAT
Submitted September 09, 2017 at 06:23AM by fagnerbrack
via reddit http://ift.tt/2vLRl9b
storeofvalue.github.io
List Of High Profile Cryptocurrency Hacks So Far (August 24th 2017)
There's been quite a few large, high profile cryptocurrency hacks over the past few years. Hundreds of millions of dollars have been stolen. Although blockch...
I emailed the Equifax hackers... And they emailed back
http://ift.tt/2eMw73Z
Submitted September 09, 2017 at 06:47AM by lgats
via reddit http://ift.tt/2xVAzGa
http://ift.tt/2eMw73Z
Submitted September 09, 2017 at 06:47AM by lgats
via reddit http://ift.tt/2xVAzGa
R Blog
An email from the Russian Equifax Hackers - R Blog
I emailed the Equifax hackers at the and they responded with the following: We are processing information is not a single file and we must still unite which data correspond to which people. We are not going to give interviews. We do not have expectations…
A reliable automated tool for testing and exploiting Apache Struts CVE-2017-9805
http://ift.tt/2xjwtuv
Submitted September 09, 2017 at 07:21AM by mazen160
via reddit http://ift.tt/2vUBgCc
http://ift.tt/2xjwtuv
Submitted September 09, 2017 at 07:21AM by mazen160
via reddit http://ift.tt/2vUBgCc
GitHub
mazen160/struts-pwn_CVE-2017-9805
struts-pwn_CVE-2017-9805 - An exploit for Apache Struts CVE-2017-9805
Over 32 character password is apparently weak for an apple ID
http://ift.tt/2jbFUWA
Submitted September 09, 2017 at 08:33AM by JBaczuk
via reddit http://ift.tt/2xc5XCh
http://ift.tt/2jbFUWA
Submitted September 09, 2017 at 08:33AM by JBaczuk
via reddit http://ift.tt/2xc5XCh
Jordan Baczuk
Over 32 character password is apparently weak for an apple ID
I went to appleid.apple.com to change my password using a psuedorandom character generator and apparently 32 characters is weak: I'm sure it was just overlooked, I just thought it was funny.