A Shodan tutorial and primer that shows you how to use this powerful information security search engine to find hosts with certain characteristics.

Penetration testing or pen testing for short is a simulation of an attack on your company’s IT infrastructure or specific assets in order…

OpenSSL is a security library that millions of applications use and 70% of the top million websites rely on. It is used on web servers, in browsers in operating systems and apps around the world. This specific version of OpenSSL is extremely important…

German Interior Ministry confirmed that it identified an attack against its servers in December 2017. Since then, there have been multiple reports about potential adversaries behind the attack, infection vectors and exfiltration methods used. In this report…

1 points and 0 comments so far on reddit

Holes useful for malware on completely pwned PCs, servers

Is there a way to encrypt cellular calls and text messages without using data/wifi and only cellphone service?

A professional locksmith helps property owners to keep their commercial and residential areas safe and secure. They help their clients to s…

A simple design change can fix the Internet-of-Things’ biggest security hole.

Few people are familiar with the Chicago-based MBM Company, Inc, but perhaps you might be familiar with its jewelry brand Limogés Jewelry. This firm sells cut-price trinkets through its website to customers across the US and Canada. Researchers from German…

Convenient and secure, the Internet of Things (IoT) is a collection of devices that offer operational efficiency, cost savings, energy savings and more. But, everything comes at a cost. [...]

Jun Ying, who was next in line to be Equifax's global chief information officer, made almost $1 million on the trades, according to an SEC complaint.

The fix? No patch, just destroy all extensions.

icebreaker - Gets plaintext Active Directory credentials if you're on the internal network but outside the AD environment

Insider threats is a common phrase and most people associate it to a single type of person. The malicious individual intent to do harm. This is not the case, inside threats have many faces. This episode goes through the different type of insider threats and…

1 points and 0 comments so far on reddit

Petrochemical companies were hit by a series of cyberassaults last year. The worst of them, against a widely used safety system, could have set off an explosion.