You Could Be An Ethereum (ETH) Millionaire Before Coinbase Fixed This Bug
http://ift.tt/2FVVekU
Submitted March 22, 2018 at 04:04PM by RossPeili
via reddit http://ift.tt/2GQypMP
http://ift.tt/2FVVekU
Submitted March 22, 2018 at 04:04PM by RossPeili
via reddit http://ift.tt/2GQypMP
Oracletimes
You Could Be An Ethereum (ETH) Millionaire Before Coinbase Fixed This Bug | Oracle Times
Should you salt everything in your database?
I'm in my first tech job as the sole back-end developer, and my (non-coding) boss is super super nervous about GDPR. He's wanting me to salt not only passwords in the database but also email addresses.Is there any reason that you'd not salt all personally identifiable information?
Submitted March 22, 2018 at 04:27PM by ShetlandJames
via reddit http://ift.tt/2DM7nTu
I'm in my first tech job as the sole back-end developer, and my (non-coding) boss is super super nervous about GDPR. He's wanting me to salt not only passwords in the database but also email addresses.Is there any reason that you'd not salt all personally identifiable information?
Submitted March 22, 2018 at 04:27PM by ShetlandJames
via reddit http://ift.tt/2DM7nTu
reddit
Should you salt everything in your database? • r/security
I'm in my first tech job as the sole back-end developer, and my (non-coding) boss is super super nervous about GDPR. He's wanting me to salt not...
Hashtopolis distributed hashcat wrapper 0.5.0 released
http://ift.tt/2FZSmPY
Submitted March 22, 2018 at 04:17PM by s3inlc
via reddit http://ift.tt/2ufKk4c
http://ift.tt/2FZSmPY
Submitted March 22, 2018 at 04:17PM by s3inlc
via reddit http://ift.tt/2ufKk4c
GitHub
s3inlc/hashtopolis
hashtopolis - A Hashcat wrapper for distributed hashcracking
Application layer DDoS attacks nearly doubled in Q4, reports Imperva
http://ift.tt/2HWSOPD
Submitted March 22, 2018 at 06:53PM by whitehattracker
via reddit http://ift.tt/2GeKfTa
http://ift.tt/2HWSOPD
Submitted March 22, 2018 at 06:53PM by whitehattracker
via reddit http://ift.tt/2GeKfTa
Blog | Imperva
Q4 2017 Global DDoS Threat Landscape Report – Blog | Imperva
Read our Global DDoS Threat Landscape Report: a statistical analysis of 5,055 network and application layer DDoS attacks mitigated by Imperva Incapsula services during Q4 2017.
Security In 5: Episode 200 - The Department Of Homeland Security InfoSec Department Is Just Like Yours
http://ift.tt/2pzVoDt
Submitted March 22, 2018 at 06:34PM by BinaryBlog
via reddit http://ift.tt/2GgKNaW
http://ift.tt/2pzVoDt
Submitted March 22, 2018 at 06:34PM by BinaryBlog
via reddit http://ift.tt/2GgKNaW
Libsyn
Security In Five Podcast: Episode 200 - The Department Of Homeland Security InfoSec Department Is Just Like Yours
The annual security report for the Department of Homeland Security was released and the results are shocking. The US Government agencies have the problems, same gaps and challenges as you do. The report is a great read and provides good insight to how they…
Application layer DDoS attacks nearly doubled in Q4, reports Imperva
http://ift.tt/2HWSOPD
Submitted March 22, 2018 at 06:53PM by whitehattracker
via reddit http://ift.tt/2pyyZGF
http://ift.tt/2HWSOPD
Submitted March 22, 2018 at 06:53PM by whitehattracker
via reddit http://ift.tt/2pyyZGF
Blog | Imperva
Q4 2017 Global DDoS Threat Landscape Report – Blog | Imperva
Read our Global DDoS Threat Landscape Report: a statistical analysis of 5,055 network and application layer DDoS attacks mitigated by Imperva Incapsula services during Q4 2017.
Ransomware Takes Open-Source Path, Encrypts With GNU Privacy Guard
http://ift.tt/2ICsjjE
Submitted March 21, 2018 at 10:45PM by TechLord2
via reddit http://ift.tt/2HUXEwD
http://ift.tt/2ICsjjE
Submitted March 21, 2018 at 10:45PM by TechLord2
via reddit http://ift.tt/2HUXEwD
McAfee Blogs
Ransomware Takes Open-Source Path, Encrypts With GNU Privacy Guard | McAfee Blogs
McAfee Labs has recently observed a new variant of ransomware that relies on the open-source program GNU Privacy Guard (GnuPG) to encrypt data. GnuPG is a hybrid-encryption software program that uses a combination of conventional symmetric-key cryptography…
CVE-2018-7273 - PoC
http://ift.tt/2G57jjF
Submitted March 22, 2018 at 07:01PM by gdraperi
via reddit http://ift.tt/2pxdzde
http://ift.tt/2G57jjF
Submitted March 22, 2018 at 07:01PM by gdraperi
via reddit http://ift.tt/2pxdzde
remoteawesomethoughts.blogspot.co.uk
CVE-2018-7273 - PoC
tl;dr I came recently across this article https://xorl.wordpress.com/2018/03/18/cve-2018-7273-linux-kernel-floppy-information-leak/ rega...
DBLeaks - Find out if your email credentials have been leaked!, password is sent to your email !
https://dbleaks.net/
Submitted March 23, 2018 at 12:24AM by jodevsa
via reddit http://ift.tt/2HVLC69
https://dbleaks.net/
Submitted March 23, 2018 at 12:24AM by jodevsa
via reddit http://ift.tt/2HVLC69
reddit
DBLeaks - Find out if your email credentials have... • r/security
1 points and 0 comments so far on reddit
Hackers 'led warplanes to Syrian hospital' after targeting British surgeon's computer
http://ift.tt/2GK9LgF
Submitted March 23, 2018 at 12:13AM by EvanConover
via reddit http://ift.tt/2pwKI9v
http://ift.tt/2GK9LgF
Submitted March 23, 2018 at 12:13AM by EvanConover
via reddit http://ift.tt/2pwKI9v
The Telegraph
British surgeon who helped Syrian operations 'hacked' to reveal secret hospital to bombers
A British surgeon who helped carry out operations in Aleppo fears that the hacking of his computer led to a hospital being bombed by suspected Russian warplanes.
DDoS attacks are growing: What can businesses do?
http://ift.tt/2FUE9rz
Submitted March 22, 2018 at 11:56PM by EvanConover
via reddit http://ift.tt/2DMAR3X
http://ift.tt/2FUE9rz
Submitted March 22, 2018 at 11:56PM by EvanConover
via reddit http://ift.tt/2DMAR3X
Malwarebytes Labs
DDoS attacks are growing: What can businesses do? - Malwarebytes Labs
How do DDoS attacks work? And how do we protect our organizations from the growing size and number of attacks?
Sandbox awareness via user behaviour
http://ift.tt/2HVDkv5
Submitted March 23, 2018 at 02:06AM by nervium7331
via reddit http://ift.tt/2DNdl6w
http://ift.tt/2HVDkv5
Submitted March 23, 2018 at 02:06AM by nervium7331
via reddit http://ift.tt/2DNdl6w
GitLab
prisma / Sandbox awareness via user behaviour
A technique to evade sandboxes by identifying real user behavior in a short and reliable way.
Sandbox awareness via user behaviour
http://ift.tt/2HVDkv5
Submitted March 23, 2018 at 02:06AM by nervium7331
via reddit http://ift.tt/2DNdl6w
http://ift.tt/2HVDkv5
Submitted March 23, 2018 at 02:06AM by nervium7331
via reddit http://ift.tt/2DNdl6w
GitLab
prisma / Sandbox awareness via user behaviour
A technique to evade sandboxes by identifying real user behavior in a short and reliable way.
What subreddit would be interested in this suspicious disc someone gave me with possibly unknown malware in the image files and maybe some other documents? Is there a malware research section somewhere? Thanks for any input.
The disc contains a bunch of weird conspiracy stuff on it and I presume it is just bait to get the users to run the malware laden files. I haven't done any looking into how the malware works or is installed, but I assume it to be so because of how Windows 10 reacts to opening some of the files. Explorer.exe and the photo viewer app crashing with strange errors and such. The way the guy was talking sounded half like he wanted me to look at the files on a throwaway machine, half that the information needed to get out to the public, but it was suspicious because it was supposed to contain some "revealing" stuff about the US govt.The strange effects do not occur with every app used to open the files, just some of the defaults in Windows 10. I tried it with XP and nothing happens unlike in W10. I doubt anything would be as highly damaging as Conficker, Stuxnet, Duqu 2.0, or Flame, but there is no telling. The guy hinted at court cases.EDIT: I think its nearly 200MB in total.
Submitted March 23, 2018 at 03:42AM by PseudoSecuritay
via reddit http://ift.tt/2DLQad5
The disc contains a bunch of weird conspiracy stuff on it and I presume it is just bait to get the users to run the malware laden files. I haven't done any looking into how the malware works or is installed, but I assume it to be so because of how Windows 10 reacts to opening some of the files. Explorer.exe and the photo viewer app crashing with strange errors and such. The way the guy was talking sounded half like he wanted me to look at the files on a throwaway machine, half that the information needed to get out to the public, but it was suspicious because it was supposed to contain some "revealing" stuff about the US govt.The strange effects do not occur with every app used to open the files, just some of the defaults in Windows 10. I tried it with XP and nothing happens unlike in W10. I doubt anything would be as highly damaging as Conficker, Stuxnet, Duqu 2.0, or Flame, but there is no telling. The guy hinted at court cases.EDIT: I think its nearly 200MB in total.
Submitted March 23, 2018 at 03:42AM by PseudoSecuritay
via reddit http://ift.tt/2DLQad5
reddit
What subreddit would be interested in this suspicious... • r/security
The disc contains a bunch of weird conspiracy stuff on it and I presume it is just bait to get the users to run the malware laden files. I...
Passwords worst authentication method?
I'm a Cyber Security Student, currently writing up an assignment for college.One of my modules is user access and authentication methods. I have detailed passwords, bio-metrics, email/sms one time passwords, and peripheral device recognition.As i was writing it up i got thinking that out of all of these authentication methods passwords surely is the least secure.What do you think?Dan
Submitted March 23, 2018 at 04:58AM by Danjdunham_
via reddit http://ift.tt/2FYws3C
I'm a Cyber Security Student, currently writing up an assignment for college.One of my modules is user access and authentication methods. I have detailed passwords, bio-metrics, email/sms one time passwords, and peripheral device recognition.As i was writing it up i got thinking that out of all of these authentication methods passwords surely is the least secure.What do you think?Dan
Submitted March 23, 2018 at 04:58AM by Danjdunham_
via reddit http://ift.tt/2FYws3C
reddit
Passwords worst authentication method? • r/security
I'm a Cyber Security Student, currently writing up an assignment for college. One of my modules is user access and authentication methods. I...
Week 12 in Information Security, 2018
http://ift.tt/2ueiRzF
Submitted March 23, 2018 at 12:22PM by undercomm
via reddit http://ift.tt/2pxUEzL
http://ift.tt/2ueiRzF
Submitted March 23, 2018 at 12:22PM by undercomm
via reddit http://ift.tt/2pxUEzL
Malgregator
InfoSec Week 12, 2018
Facebook, Google, Cisco, WhatsApp and other industry partners get together to create Message Layer Security as an open standard for...
Intel chipsets also vulnerable to recent CTS-Labs disclosed attack
TL;DR:The client works on AMD Ryzen machines but it also works on any machine that has these ASMedia chipsets and so quite a few motherboards and other PCs are affected by these vulnerabilities as well. If you search online for motherboard drivers, such as the ASUS website, and download ASMedia drivers for your motherboard, then those motherboards are likely vulnerable to the same issues as you would find on the AMD chipset.Excerpt from interview, fulltext here
Submitted March 23, 2018 at 11:29AM by DarkWorld25
via reddit http://ift.tt/2pyJ46p
TL;DR:The client works on AMD Ryzen machines but it also works on any machine that has these ASMedia chipsets and so quite a few motherboards and other PCs are affected by these vulnerabilities as well. If you search online for motherboard drivers, such as the ASUS website, and download ASMedia drivers for your motherboard, then those motherboards are likely vulnerable to the same issues as you would find on the AMD chipset.Excerpt from interview, fulltext here
Submitted March 23, 2018 at 11:29AM by DarkWorld25
via reddit http://ift.tt/2pyJ46p
AnandTech
Our Interesting Call with CTS-Labs
In light of the recent announcement of potential vulnerabilities in Ryzen processors, two stories have emerged. Firstly, that AMD processors could have secondary vulnerabilities in the secure processor and ASMedia chipsets. The second story is behind the…
Drupal 7 and 8 core highly critical release on March 28th, 2018 PSA-2018-001
http://ift.tt/2DHBXOh
Submitted March 23, 2018 at 01:31PM by al-maisan
via reddit http://ift.tt/2pAx0m0
http://ift.tt/2DHBXOh
Submitted March 23, 2018 at 01:31PM by al-maisan
via reddit http://ift.tt/2pAx0m0
Drupal.org
Drupal 7 and 8 core highly critical release on March 28th, 2018 PSA-2018-001
Advisory ID: DRUPAL-PSA-2018-001 Project: Drupal Core Version: 7.x, 8.x Date: 2018-March-21
Bug in Ethereum
http://ift.tt/2puButL
Submitted March 23, 2018 at 11:54AM by Oxf0xtr0t
via reddit http://ift.tt/2GkrGNv
http://ift.tt/2puButL
Submitted March 23, 2018 at 11:54AM by Oxf0xtr0t
via reddit http://ift.tt/2GkrGNv
www.vicompany.nl
From Christmas present in the blockchain to massive bug bounty
Last year we discussed our Christmas present and how we created and distributed it. However, there was one more thing we were working on that we were not allowed to talk about yet until now. It was a system flaw we found for an online crypto currency exchange…
APT2 - An Automated Penetration Testing Toolkit [Updated with Full Sources]
http://ift.tt/29JK4Q0
Submitted March 23, 2018 at 10:12AM by TechLord2
via reddit http://ift.tt/2G0aJYY
http://ift.tt/29JK4Q0
Submitted March 23, 2018 at 10:12AM by TechLord2
via reddit http://ift.tt/2G0aJYY
GitHub
MooseDojo/apt2
apt2 - automated penetration toolkit
CLOUDKiLL3R - Bypasses Cloudflare protection service via TOR Browser
http://ift.tt/2DO3Zrh
Submitted March 23, 2018 at 10:05AM by TechLord2
via reddit http://ift.tt/2GcSMWJ
http://ift.tt/2DO3Zrh
Submitted March 23, 2018 at 10:05AM by TechLord2
via reddit http://ift.tt/2GcSMWJ
GitHub
inurlx/CLOUDKiLL3R
CLOUDKiLL3R bypasses Cloudflare protection service via TOR Browser !