Data Breach Report: March 2018
https://ift.tt/2GVMqss
Submitted March 30, 2018 at 05:08PM by Uminekoshi
via reddit https://ift.tt/2E4ICCk
https://ift.tt/2GVMqss
Submitted March 30, 2018 at 05:08PM by Uminekoshi
via reddit https://ift.tt/2E4ICCk
Nehemiah Security
Data Breach Report: March 2018 - Nehemiah Security
Review some of the biggest data breaches that occurred in March 2018. Read the full report here.
Exploring Cobalt Strike’s ExternalC2 Framework
https://ift.tt/2uxCpiF
Submitted March 30, 2018 at 05:32PM by xpnsecurity
via reddit https://ift.tt/2GkacS1
https://ift.tt/2uxCpiF
Submitted March 30, 2018 at 05:32PM by xpnsecurity
via reddit https://ift.tt/2GkacS1
XPN InfoSec Blog
Exploring Cobalt Strike's ExternalC2 framework
As many testers will know, achieving C2 communication can sometimes be a pain. Whether because of egress firewall rules or process restrictions, the simple days of reverse shells and reverse HTTP C2 channels are quickly coming to an end. OK, maybe I exaggerated…
Security In 5: Episode 206 - Tools, Tips and Tricks - ProcessLibrary.com
https://ift.tt/2IiB3ud
Submitted March 30, 2018 at 06:31PM by BinaryBlog
via reddit https://ift.tt/2GG6rWw
https://ift.tt/2IiB3ud
Submitted March 30, 2018 at 06:31PM by BinaryBlog
via reddit https://ift.tt/2GG6rWw
Libsyn
Security In Five Podcast: Episode 206 - Tools, Tips and Tricks - ProcessLibrary.com
If you have a Windows PC you probably have looked at your Task Manager and asked yourself, What Is That File? Is it dangerous? Why is it consuming so much memory? That is where ProcessLibrary comes in. This episode goes into what the ProcessLibrary.com is…
Been getting messages like this “story in comments”
https://ift.tt/2E6ST0V
Submitted March 30, 2018 at 09:17PM by AlarmedHorse
via reddit https://ift.tt/2GZH2Va
https://ift.tt/2E6ST0V
Submitted March 30, 2018 at 09:17PM by AlarmedHorse
via reddit https://ift.tt/2GZH2Va
Fraud prevention, web application security and biometrics firms were among the cyber-security startups that secured new funding in March 2018.
https://ift.tt/2GX5Xc4
Submitted March 30, 2018 at 10:29PM by yourbasicgeek
via reddit https://ift.tt/2GZLgMT
https://ift.tt/2GX5Xc4
Submitted March 30, 2018 at 10:29PM by yourbasicgeek
via reddit https://ift.tt/2GZLgMT
eWEEK
10 Tech Startups Raise VC Funding to Advance Cyber-Security Efforts
Fraud prevention, web application security and biometrics firms were among the cyber-security startups that secured new funding in March 2018.
Fingbox, an airodump/ettercap always on at home.
https://fingbox.eu
Submitted March 31, 2018 at 01:33AM by ajanty
via reddit https://ift.tt/2Ie5iT9
https://fingbox.eu
Submitted March 31, 2018 at 01:33AM by ajanty
via reddit https://ift.tt/2Ie5iT9
FingboxEU
Fingbox EU - Network Security, Parental Control, Device Blocking
Protect your Home and Family Online with Fingbox. Detect WiFi Attacks, Monitor Surrounding Devices, Parental Control and Device Blocking. Internet Speed Tests, ISP Ranking, WiFi Speed and Bandwidth Analysis. Fingbox is Plug & Play and simple to set-up in…
TippingPoint Threat Intelligence and Zero-Day Coverage – Week of March 26, 2018 -
https://ift.tt/2J7ojIb
Submitted March 31, 2018 at 04:05AM by samson_78
via reddit https://ift.tt/2E7WawP
https://ift.tt/2J7ojIb
Submitted March 31, 2018 at 04:05AM by samson_78
via reddit https://ift.tt/2E7WawP
Trendmicro
TippingPoint Threat Intelligence and Zero-Day Coverage – Week of March 26, 2018 -
Is it me or does it seem like the bad guys always want to mess up everyone’s holiday weekend? Instead of hunting for Easter eggs and candy, many will end up searching and patching vulnerable systems. Earlier this week, a highly critical security advisory…
#0daytoday #osCommerce 2.3.4.1 - Remote Code Execution Exploit [webapps #exploits #0day #Exploit]
https://ift.tt/2GZqXz2
Submitted March 31, 2018 at 07:18AM by Horus_Sirius
via reddit https://ift.tt/2pTTKwL
https://ift.tt/2GZqXz2
Submitted March 31, 2018 at 07:18AM by Horus_Sirius
via reddit https://ift.tt/2pTTKwL
TSecurity Portal
#0daytoday #osCommerce 2.3.4.1 - Remote Code Execution Exploit [webapps #exploits #0day #Exploit]
Does secure chat + email exist?
Hi all, In doing some research last week, I came across a lot of secure chat apps: Signal, Telegram, Wire, etc. However, I swear that one of them advertised not only e2e encrypted chat functionality, but also a secure email account as well. Does such a thing exist? I have been trying to retrace my steps but cannot find anything like that. I guarantee I wasn't high or drunk, but I may have been confused or misread something...
Submitted March 31, 2018 at 09:30AM by dewalist
via reddit https://ift.tt/2GKkwSU
Hi all, In doing some research last week, I came across a lot of secure chat apps: Signal, Telegram, Wire, etc. However, I swear that one of them advertised not only e2e encrypted chat functionality, but also a secure email account as well. Does such a thing exist? I have been trying to retrace my steps but cannot find anything like that. I guarantee I wasn't high or drunk, but I may have been confused or misread something...
Submitted March 31, 2018 at 09:30AM by dewalist
via reddit https://ift.tt/2GKkwSU
reddit
Does secure chat + email exist? • r/security
Hi all, In doing some research last week, I came across a lot of secure chat apps: Signal, Telegram, Wire, etc. However, I swear that one of...
This executable is nearly ten years old. I rescanned it with VirusTotal yesterday, and, for the first time ever, it was detected as malicious. How likely is it to be a false positive?
https://ift.tt/2E8YLGG
Submitted March 31, 2018 at 10:34AM by 7-pm
via reddit https://ift.tt/2H0zFx5
https://ift.tt/2E8YLGG
Submitted March 31, 2018 at 10:34AM by 7-pm
via reddit https://ift.tt/2H0zFx5
What’s more secure? Multiple 2FAs or single 2FA?
So let’s say I have an account that offers many different kinds of two factor authenticators.Does having multiple ways to authenticate yourself make your account more safe, or does it do the opposite?Wouldn’t having Google Authenticator, SMS and Yubikey activated to an account simultaneously weaken the overall security of my account?
Submitted March 31, 2018 at 04:05PM by swappyland
via reddit https://ift.tt/2pS874w
So let’s say I have an account that offers many different kinds of two factor authenticators.Does having multiple ways to authenticate yourself make your account more safe, or does it do the opposite?Wouldn’t having Google Authenticator, SMS and Yubikey activated to an account simultaneously weaken the overall security of my account?
Submitted March 31, 2018 at 04:05PM by swappyland
via reddit https://ift.tt/2pS874w
reddit
What’s more secure? Multiple 2FAs or single 2FA? • r/security
So let’s say I have an account that offers many different kinds of two factor authenticators. Does having multiple ways to authenticate...
Your website has assets - you need SRI
https://ift.tt/2GqPcF0
Submitted March 31, 2018 at 06:58PM by deblona
via reddit https://ift.tt/2GpvspC
https://ift.tt/2GqPcF0
Submitted March 31, 2018 at 06:58PM by deblona
via reddit https://ift.tt/2GpvspC
#BugBounty - API keys leakage, Source code disclosure in India’s largest e-commerce health care company by logicbomb_1
https://ift.tt/2pSM9yw
Submitted March 31, 2018 at 08:50PM by logicbomb_1
via reddit https://ift.tt/2GKYFKM
https://ift.tt/2pSM9yw
Submitted March 31, 2018 at 08:50PM by logicbomb_1
via reddit https://ift.tt/2GKYFKM
Medium
#BugBounty — API keys leakage, Source code disclosure in India’s largest e-commerce health care company.
Hi Guys,
Kioptrix 2014 Write-up: Apache LFI & RCE, FreeBSD Kernel Exploit
https://ift.tt/2uBCFNz
Submitted March 31, 2018 at 09:33PM by Taptempo
via reddit https://ift.tt/2GmJcBf
https://ift.tt/2uBCFNz
Submitted March 31, 2018 at 09:33PM by Taptempo
via reddit https://ift.tt/2GmJcBf
Medium
Kioptrix 2014
Summary
2FA for my own domain email
I'm currently using zoho free, but free user can't enable IMAP, so I was hoping to find a free solution to implement 2FA on to my domain email account and can login using my phone's stock mail app.
Submitted March 31, 2018 at 10:08PM by pbni6n
via reddit https://ift.tt/2GL4LLa
I'm currently using zoho free, but free user can't enable IMAP, so I was hoping to find a free solution to implement 2FA on to my domain email account and can login using my phone's stock mail app.
Submitted March 31, 2018 at 10:08PM by pbni6n
via reddit https://ift.tt/2GL4LLa
reddit
2FA for my own domain email • r/security
I'm currently using zoho free, but free user can't enable IMAP, so I was hoping to find a free solution to implement 2FA on to my domain email...
Frida Engage Part Three | You Down With XPC?
https://ift.tt/2Gk76tg
Submitted March 30, 2018 at 06:03PM by rotlogix_
via reddit https://ift.tt/2GIfBS7
https://ift.tt/2Gk76tg
Submitted March 30, 2018 at 06:03PM by rotlogix_
via reddit https://ift.tt/2GIfBS7
VerSprite | Integrated Security Services and Consulting
Frida Engage Part Three: You Down With XPC? | VerSprite
In the final installment of the Frida Engage blog series, we will demonstrate how to use Frida for hooking and inspecting Apple's NSXPC API using the CleanMyMac 3 application as our guinea pig.
Popular VPNs Leaking Your Real IP Address Through WebRTC Leak
https://ift.tt/2GTA04j
Submitted March 31, 2018 at 11:25PM by chull2058
via reddit https://ift.tt/2GM8VTn
https://ift.tt/2GTA04j
Submitted March 31, 2018 at 11:25PM by chull2058
via reddit https://ift.tt/2GM8VTn
HackRead
Popular VPNs Leaking Your Real IP Address Through WebRTC Leak
As per researcher, nearly 23% of VPN providers are still leaking IP addresses of users through the VPN flaw dubbed as WebRTC Leak.
How to remove a Google account permanently
https://www.youtube.com/attribution_link?a=vXVj6qM9pr0&u=%2Fwatch%3Fv%3DowIPHvnBAWw%26feature%3Dshare
Submitted April 01, 2018 at 01:36AM by alibd654
via reddit https://ift.tt/2Ijt5B6
https://www.youtube.com/attribution_link?a=vXVj6qM9pr0&u=%2Fwatch%3Fv%3DowIPHvnBAWw%26feature%3Dshare
Submitted April 01, 2018 at 01:36AM by alibd654
via reddit https://ift.tt/2Ijt5B6
YouTube
How to remove a Google account permanently
Google account is very useful and we use it for our day to day life but sometime we need to remove this and you can do it very easily. In this tutorial you c...
Windows Privilege Escalation Fundamentals [See Comments for more Resources]
https://ift.tt/1jjDvlw
Submitted April 01, 2018 at 04:21AM by TechLord2
via reddit https://ift.tt/2IjAsIM
https://ift.tt/1jjDvlw
Submitted April 01, 2018 at 04:21AM by TechLord2
via reddit https://ift.tt/2IjAsIM
reddit
Windows Privilege Escalation Fundamentals [See Comments... • r/netsec
2 points and 1 comments so far on reddit
Hakluke’s Ultimate OSCP Guide: Part 3 — Practical hacking tips and tricks
https://ift.tt/2GKsYkY
Submitted April 01, 2018 at 04:20AM by TechLord2
via reddit https://ift.tt/2pTBdS9
https://ift.tt/2GKsYkY
Submitted April 01, 2018 at 04:20AM by TechLord2
via reddit https://ift.tt/2pTBdS9
Medium
Hakluke’s Ultimate OSCP Guide: Part 3 — Practical hacking tips and tricks
So, you’ve finally signed up, paid the money, waited for the start date, logged in to the VPN, and are suddenly hit in the face with a…
Keeper Security has dropped its ridiculous lawsuit against ArsTechnica reporter Dan Goodin over a story about vulnerabilities in Keeper's password manager.
https://twitter.com/zackwhittaker/status/979825995971747842
Submitted April 01, 2018 at 04:28AM by moooooky
via reddit https://ift.tt/2EdipBK
https://twitter.com/zackwhittaker/status/979825995971747842
Submitted April 01, 2018 at 04:28AM by moooooky
via reddit https://ift.tt/2EdipBK
Twitter
Zack Whittaker
Glad to see that @keepersecurity has dropped its lawsuit against Ars Technica reporter @dangoodin001. This lawsuit should never have been filed in the first place. Never forget that.