RDP hijacking — how to hijack RDS and RemoteApp sessions transparently to move through an organisation
http://ift.tt/2mKMd0v

Submitted March 18, 2018 at 03:21AM by TechLord2
via reddit http://ift.tt/2HHHRRQ

Which distro for online banking?
I think about to use a live usb with no persistent to do secure online banking. Do anyone preffer this way and which distro can you recommend?

Submitted March 18, 2018 at 03:53AM by akifxy
via reddit http://ift.tt/2DBVTBU

If I tell you what IT stuff I like, could you tell me if a job encompasses it? (i'll keep it brief!)
I'm a controls electrician, stuxnet blew my MIND, and i'm fascinated by the security side of things.. but I don't want to be a pentester or 'hacker' or it sec guyI am super experienced at SCADA, from installing thru coding to commissioning, and I'd like to ask - seeing as how SCADA security is done to such a HIGH standard (lol) and is probably going to keep becoming an issue, do you think sec. will have to exist on the SCADA/LAN network (and hardware) itself (eventually)? Or is realistically just going to be a case of protecting the PC front end (which is usually to gateway to the web? With alot of controls/SCADA gear they're jamming webservers into everything, i'm just thinking that as iot becomes bigger and bigger there'll likely still be more and more stuff coming up on a shodanhq search..In short - how will these networks develop? - cos when I started my apprenticeship the networks were MSTP RS-232, but they're all IP (or will be soon).thanks, (hmmm i didn't keep it that brief)

Submitted March 18, 2018 at 03:08AM by Y34rZer0
via reddit http://ift.tt/2GE3HGK

Hackers are using a Flash flaw in fake document in this new spying campaign
http://ift.tt/2Isf1WG

Submitted March 18, 2018 at 04:10AM by chull2058
via reddit http://ift.tt/2Ity2Il

Chrome unmasks your identity to sites you’ve logged out of.
http://ift.tt/2GzE2yM

Submitted March 18, 2018 at 04:06AM by chull2058
via reddit http://ift.tt/2Ity2YR

U.K. Monitored alarm and cctv
Hello. Does anyone know the cost from Banham for this please? I am looking for a fully monitored, hard wired cctv and alarm system, with auto calling to the police. 1 bedroom flat.

Submitted March 18, 2018 at 05:36AM by iainonline
via reddit http://ift.tt/2G2sKVS

Chrome Extension Protects Against JavaScript-Based CPU Side-Channel Attacks
http://ift.tt/2GEFvUH

Submitted March 18, 2018 at 08:03AM by Horus_Sirius
via reddit http://ift.tt/2tWUTsx

10 Ransomware Facts
http://ift.tt/2tY6jMW

Submitted March 18, 2018 at 12:29PM by Iot_Security
via reddit http://ift.tt/2GEMD3o

Noobs here, please share your expertise
Hi guys,So I'm a semi-literature computer wise ( I can install Windows, assemble components into a full computers, troubleshoot common problems by googling), but I'm not a security expert by any mean.I'm usually pretty paranoid about computer security (I don't go to shady websites or just randomly click on fishy links, etc.)I usually have a "safe" computer to do important stuffs like banking, filing tax, etc. The sensitive stuffs. And I have a "fun" computer that I can do crazy shit on (you know what I mean).My question is, if you reinstall fresh Windows, what is the chance that some shit still remain from the previous windows version? And by fresh reinstall, I mean, stick a USB in, boot from USB, use the Disk tool during install, delete the primary partition, make a new partition, format, and then install.Will this method guarantee that I will get a clean, fresh Windows even if let's say the previous version of Windows on that disk is fucked up and full of malwares?Thanks for your opions.

Submitted March 18, 2018 at 11:49AM by grp78
via reddit http://ift.tt/2IAydBJ

Uncovering a Bug in Cloudflare's Minification Service
http://ift.tt/2G17tfs

Submitted March 18, 2018 at 07:42PM by veggiedefender
via reddit http://ift.tt/2FJho9T

Sudo Science
http://ift.tt/2HG5JW0

Submitted March 18, 2018 at 08:57PM by arcoain
via reddit http://ift.tt/2IAQy1p

Best free Antivirus for Windows?
Any recommendations and supporting rationale appreciated. Thank you in advance.

Submitted March 18, 2018 at 09:34PM by Vissuto
via reddit http://ift.tt/2FQO4KG

Attack vectors in my online security, feedback needed.
I have envisioned this setup that would fit my needs and keep my online accounts safe, and would appreciate if a more knowledgeable security person would revise it and give me feedback:Using a spare phone for 2fa (kept always offline) with recovery phrases written on a typewriter (printers have caches) and keeping them in a safeUsing lastpass for password management with FIDO u2f keyUsing a FIDO u2f key to access my main google account (which is linked to all my relevant online accounts for communication/password retrieval)My main questions with this are:Currently I use my daily phone for 2fa, but due to malware and theft, I consider this to be vulnerable. Am I paranoid, or is using a second phone offline reasonable? Also, one thing that has been bothering me is that many accounts require a telephone number as a second option in case I lose my 2fa authenticator (paypal offers only sms verification). Is it a big security risk to give these services my phone number for account recovery as someone could theoretically social engineer my operator and get a replacement sim card, or is it just paranoia?Would you reccomend any other app (lastpass seemed to have the best UI and supports u2f)? Is using a password management app a possible attack vector ?Would you reccomend using one main google account which is linked to all of my other accounts, with a very strong (30 char) password and a u2f key, or rather use multiple accounts also using u2f? This is more of a convenience issue, whether it is usefull or just a waste of time to have multiple accounts for every major account (banking, paypal, etc.).Some other question regarding general security:I am using norton antivirus on all devices. I have read very good reviews on kaspersky total security, and using norton mobile has been a total pain (significant performance impact). What alternatives would you recommend, It could even be using multiple programs (anitviruses do not catch everything). I have very limited knowledge of detection rates and benefits of using multiple security programs, so more elaboration on this would be helpful.Any help would be greatly appreciated. I know this is a complex post, so thank you to anyone who bothers reading.

Submitted March 18, 2018 at 10:25PM by RiBc_
via reddit http://ift.tt/2DDi7DH

What's your job, how much do you make per year, how old are you and how satisfied are you with your job?
No text found

Submitted March 18, 2018 at 10:05PM by bigpoppaash
via reddit http://ift.tt/2plOxhS

Is free SSL as good as paid SSL?
I want to get SSL for my website and saw that I can get it free at www.letsencrypt.org versus having to pay for it through my website host. Is this free SSL as good as the paid SSL? Are there drawbacks to this free SSL?

Submitted March 19, 2018 at 12:00AM by rkim777
via reddit http://ift.tt/2G6lBnK

Python Based Backdoor That Uses Gmail To Exfiltrate Data - tracks the user activity using Screen Capture and Sends Back Info as Attachment
http://ift.tt/2Gxduyd

Submitted March 17, 2018 at 01:40AM by TechLord2
via reddit http://ift.tt/2tYfcGf

Taking down Gooligan: part 1 — overview
http://ift.tt/2FKjy8I

Submitted March 19, 2018 at 02:07AM by jmichelp
via reddit http://ift.tt/2tYyMSB

Firefox Master Password System Has Been Poorly Secured for the Past 9 Years
http://ift.tt/2FMM6Pt

Submitted March 19, 2018 at 02:12AM by Horus_Sirius
via reddit http://ift.tt/2tYRLwh

Chrome Extension Protects Against JavaScript-Based CPU Side-Channel Attacks
http://ift.tt/2FHMYoz

Submitted March 19, 2018 at 02:02AM by majorllama
via reddit http://ift.tt/2FJyVib

Attempting to find Security Guard Services London
http://ift.tt/2GHaCir

Submitted March 19, 2018 at 05:32AM by guardsace07
via reddit http://ift.tt/2HM4Wmz

Finding a 2FA Bypass by sheer laziness
http://ift.tt/2tYJU1Z

Submitted March 19, 2018 at 06:15AM by redorhcal
via reddit http://ift.tt/2u6KL0L