Security In 5: Episode 204 - Facebook Fail - How To Limit Your Presence On Facebook
https://ift.tt/2pJyuKS
Submitted March 28, 2018 at 06:39PM by BinaryBlog
via reddit https://ift.tt/2GlLSLG
https://ift.tt/2pJyuKS
Submitted March 28, 2018 at 06:39PM by BinaryBlog
via reddit https://ift.tt/2GlLSLG
Libsyn
Security In Five Podcast: Episode 204 - Facebook Fail - How To Limit Your Presence On Facebook
Facebook has no concern about your privacy, that's a proven fact. They want to gather as much information about your private life the better because that allows higher prices to advertisers to better 'customize' ads you see. If you aren't ready to dump Facebook…
iOS camera QR code URL parser bug
https://ift.tt/2IVc0i7
Submitted March 28, 2018 at 08:55PM by EvanConover
via reddit https://ift.tt/2GB9dfG
https://ift.tt/2IVc0i7
Submitted March 28, 2018 at 08:55PM by EvanConover
via reddit https://ift.tt/2GB9dfG
Monero-Mining HiddenMiner Android Malware Can Potentially Cause Device Failure
https://ift.tt/2Gf9VeX
Submitted March 28, 2018 at 08:52PM by EvanConover
via reddit https://ift.tt/2Gg6wN3
https://ift.tt/2Gf9VeX
Submitted March 28, 2018 at 08:52PM by EvanConover
via reddit https://ift.tt/2Gg6wN3
Trendmicro
Monero-Mining HiddenMiner Android Malware Can Potentially Cause Device Failure - TrendLabs Security Intelligence Blog
We uncovered a new Android malware that can surreptitiously use the infected device's computing power to mine Monero: HiddenMiner. This Monero-mining Android app’s self-protection and persistence mechanisms include hiding itself from the unwitting user and…
Lazarus Group Targets More Cryptocurrency Exchanges and FinTech Companies
https://ift.tt/2pKSTiu
Submitted March 28, 2018 at 08:45PM by 0xbaadf00dsec
via reddit https://ift.tt/2Girlrj
https://ift.tt/2pKSTiu
Submitted March 28, 2018 at 08:45PM by 0xbaadf00dsec
via reddit https://ift.tt/2Girlrj
Intezer
Lazarus Group Targets More Cryptocurrency Exchanges and FinTech Companies - Intezer
Introduction Cyber attacks from the Lazarus Group, a threat actor associated with North Korea, has not slowed down and their malware toolset continues to evolve. A few months ago, we published a general research of the Lazarus Group and the Blockbuster campaign…
How many external websites, apps and domains do you have? Compare Shodan.io vs ImmuniWeb Discovery.
https://ift.tt/2GhGFEh
Submitted March 28, 2018 at 08:07PM by htbridgedigital
via reddit https://ift.tt/2GA8cEx
https://ift.tt/2GhGFEh
Submitted March 28, 2018 at 08:07PM by htbridgedigital
via reddit https://ift.tt/2GA8cEx
Htbridge
External Web Applications Discovery with Shodan and ImmuniWeb®
How many external websites, applications and (sub)domains does your company have? Compare free application discovery service by Shodan and ImmuniWeb® Discovery.
Total Meltdown?
https://ift.tt/2I56XKs
Submitted March 28, 2018 at 07:50PM by speckz
via reddit https://ift.tt/2Gh0nEk
https://ift.tt/2I56XKs
Submitted March 28, 2018 at 07:50PM by speckz
via reddit https://ift.tt/2Gh0nEk
blog.frizk.net
Total Meltdown?
Did you think Meltdown was bad? Unprivileged applications being able to read kernel memory at speeds possibly as high as megabytes per seco...
Aussie Telcos are Failing at Some Fundamental Security Basics
https://ift.tt/2E2qfOi
Submitted March 28, 2018 at 09:45PM by volci
via reddit https://ift.tt/2GgoZcs
https://ift.tt/2E2qfOi
Submitted March 28, 2018 at 09:45PM by volci
via reddit https://ift.tt/2GgoZcs
Troy Hunt
Aussie Telcos are Failing at Some Fundamental Security Basics
Recently, I've witnessed a couple of incidents which have caused me to question some pretty fundamental security basics with our local Aussie telcos, specifically Telstra and Optus. It began with a visit to the local Telstra store earlier this month to upgrade…
An in-depth malware analysis of QuantLoader
https://ift.tt/2pOcMEO
Submitted March 28, 2018 at 10:10PM by EvanConover
via reddit https://ift.tt/2pMUTWY
https://ift.tt/2pOcMEO
Submitted March 28, 2018 at 10:10PM by EvanConover
via reddit https://ift.tt/2pMUTWY
Malwarebytes Labs
An in-depth malware analysis of QuantLoader - Malwarebytes Labs
QuantLoader is a Trojan downloader that has been used in campaigns serving a range of malware, including ransomware, Banking Trojans, and RATs. In this post, we'll take a high-level look at the campaign flow, as well as a deep dive into how the malware executes.
The Phish In The Room: Human Emotions And Cybersecurity
https://ift.tt/2GgwjZx
Submitted March 28, 2018 at 11:09PM by VY99
via reddit https://ift.tt/2pIZGcQ
https://ift.tt/2GgwjZx
Submitted March 28, 2018 at 11:09PM by VY99
via reddit https://ift.tt/2pIZGcQ
Medium
The Phish In The Room: Human Emotions And Cybersecurity
It was in my first corporate role, at a bank, when I first became a cybersecurity threat to myself. I had just come from a meeting with a…
Qubes OS 4.0 has been released!
https://ift.tt/2pMBdCq
Submitted March 28, 2018 at 11:20PM by Marha01
via reddit https://ift.tt/2IbUDZ6
https://ift.tt/2pMBdCq
Submitted March 28, 2018 at 11:20PM by Marha01
via reddit https://ift.tt/2IbUDZ6
Qubes OS
Qubes OS 4.0 has been released!
After nearly two years in development and countless hours of testing, we’re pleased to announce the stable release of Qubes OS 4.0! Major changes in version 4.0 Version 4.0 includes several funda...
Simple CryptoCurrency Honeypot
https://ift.tt/2GgAfcL
Submitted March 28, 2018 at 11:11PM by gunmr
via reddit https://ift.tt/2E0kiBy
https://ift.tt/2GgAfcL
Submitted March 28, 2018 at 11:11PM by gunmr
via reddit https://ift.tt/2E0kiBy
GitHub
omergunal/CryptoPot
CryptoPot - Simple cryptocurrency honeypot
Vulnerability Spotlight: Multiple Nvidia D3D10 Driver Pixel Shader Vulnerabilities
https://ift.tt/2GhguO5
Submitted March 29, 2018 at 12:11AM by kuralvanan
via reddit https://ift.tt/2pNk4Zf
https://ift.tt/2GhguO5
Submitted March 29, 2018 at 12:11AM by kuralvanan
via reddit https://ift.tt/2pNk4Zf
Talosintelligence
Vulnerability Spotlight: Multiple Nvidia D3D10 Driver Pixel Shader Vulnerabilities
A blog from the world class Intelligence Group, Talos, Cisco's Intelligence Group
Where to go to keep up with what's happening in Computer Security research?
I'm nearing the end of my MS in Computer Security and need to work on a thesis or capstone, but I don't know where to find what the field is doing outside of what makes the news. Where is current research posted online?
Submitted March 29, 2018 at 01:14AM by dxk3355
via reddit https://ift.tt/2uwakbH
I'm nearing the end of my MS in Computer Security and need to work on a thesis or capstone, but I don't know where to find what the field is doing outside of what makes the news. Where is current research posted online?
Submitted March 29, 2018 at 01:14AM by dxk3355
via reddit https://ift.tt/2uwakbH
reddit
Where to go to keep up with what's happening in... • r/security
I'm nearing the end of my MS in Computer Security and need to work on a thesis or capstone, but I don't know where to find what the field is doing...
Drupal core - Highly critical - Remote Code Execution - SA-CORE-2018-002
https://ift.tt/2Ic6uqd
Submitted March 29, 2018 at 01:25AM by Adr1enb
via reddit https://ift.tt/2GRs0Ro
https://ift.tt/2Ic6uqd
Submitted March 29, 2018 at 01:25AM by Adr1enb
via reddit https://ift.tt/2GRs0Ro
reddit
Drupal core - Highly critical - Remote Code Execution -... • r/netsec
4 points and 2 comments so far on reddit
How many external websites, apps and domains do you have? Compare Shodan.io vs ImmuniWeb Discovery
https://ift.tt/2GhGFEh
Submitted March 29, 2018 at 01:24AM by htbridgedigital
via reddit https://ift.tt/2E0oKjz
https://ift.tt/2GhGFEh
Submitted March 29, 2018 at 01:24AM by htbridgedigital
via reddit https://ift.tt/2E0oKjz
Htbridge
External Web Applications Discovery with Shodan and ImmuniWeb®
How many external websites, applications and (sub)domains does your company have? Compare free application discovery service by Shodan and ImmuniWeb® Discovery.
New research from Spencer Gietzen: Amazon’s AWS Misconfiguration: Arbitrary File Upload in Amazon Go. Amazon Go utilizes AWS S3 and that is where this vulnerability comes in to play.
https://ift.tt/2pNRN4Z
Submitted March 29, 2018 at 01:43AM by hackers_and_builders
via reddit https://ift.tt/2I8z1gf
https://ift.tt/2pNRN4Z
Submitted March 29, 2018 at 01:43AM by hackers_and_builders
via reddit https://ift.tt/2I8z1gf
Rhino Security Labs
Amazon's AWS Misconfiguration:Arbitrary Files Upload in Amazon Go - Rhino Security Labs
Researchers discover a misconfiguration error which makes it possible to upload arbitrary file to Amazon Go's Logging Bucket.
New Cloud Security Report Reveals Rising Cybersecurity Concerns and Lack of Expertise | Business Wire
https://ift.tt/2GBGXcw
Submitted March 29, 2018 at 02:06AM by samson_78
via reddit https://ift.tt/2GgKHNn
https://ift.tt/2GBGXcw
Submitted March 29, 2018 at 02:06AM by samson_78
via reddit https://ift.tt/2GgKHNn
Businesswire
New Cloud Security Report Reveals Rising Cybersecurity Concerns and Lack of Expertise
Crowd Research Partners today released the 2018 Cloud Security Report revealing that security concerns are on the rise, exacerbated by a lack of quali
Breaking the unbreakable voting machine! Bluefrost Ekoparty Stack Overflow Challenge
https://ift.tt/2GS7PTB
Submitted March 29, 2018 at 02:38AM by alex91ar
via reddit https://ift.tt/2GS7P63
https://ift.tt/2GS7PTB
Submitted March 29, 2018 at 02:38AM by alex91ar
via reddit https://ift.tt/2GS7P63
Medium
Breaking the unbreakable voting machine! Bluefrost Ekoparty Stack Overflow Challenge
This is long overdue, but I wanted to do a write up of this challenge, hopefully someone will find it helpful if they find themselves on a…
Cloudflare is adding Drupal WAF Rule to Mitigate Critical Drupal Exploit
https://ift.tt/2usVEKj
Submitted March 29, 2018 at 03:26AM by Moop6535
via reddit https://ift.tt/2GS5AQa
https://ift.tt/2usVEKj
Submitted March 29, 2018 at 03:26AM by Moop6535
via reddit https://ift.tt/2GS5AQa
Cloudflare Blog
Cloudflare is adding Drupal WAF Rule to Mitigate Critical Drupal Exploit
Drupal has recently announced an update to fix a critical remote code execution exploit (SA-CORE-2018-002/CVE-2018-7600). This patch is to disallow forms and form fields from starting with the “#” character.
AWS S3 File Upload Vulnerability in Amazon Go
https://ift.tt/2pNRN4Z
Submitted March 29, 2018 at 03:14AM by hackers_and_builders
via reddit https://ift.tt/2GdDuBE
https://ift.tt/2pNRN4Z
Submitted March 29, 2018 at 03:14AM by hackers_and_builders
via reddit https://ift.tt/2GdDuBE
Rhino Security Labs
Amazon's AWS Misconfiguration:Arbitrary Files Upload in Amazon Go - Rhino Security Labs
Researchers discover a misconfiguration error which makes it possible to upload arbitrary file to Amazon Go's Logging Bucket.
A Solution to Compression Oracles on the Web (via Cloudflare)
https://ift.tt/2pNMDa5
Submitted March 29, 2018 at 03:57AM by volci
via reddit https://ift.tt/2IdfNGr
https://ift.tt/2pNMDa5
Submitted March 29, 2018 at 03:57AM by volci
via reddit https://ift.tt/2IdfNGr
Medium
A Solution to Compression Oracles on the Web
This is a guest post by Blake Loring, a PhD student at Royal Holloway, University of London. Blake worked at Cloudflare as an intern in the