Best Phone for Security?
Now that Apple has revealed their new iPhone starting at a ridiculous price, I began to think of alternatives. I would like to know what you all think is the best phone in terms of security. Maybe a good lower costing phone up to a higher costing phone with the pros and cons.

Submitted September 13, 2017 at 05:53AM by Deaf_Priest
via reddit http://ift.tt/2xw3m7b

BlueBorn - Wide Spread Bluetooth Vulnerabilities
http://ift.tt/2jjIolw

Submitted September 13, 2017 at 05:59AM by dij-8al
via reddit http://ift.tt/2wZSbCo

5 Easy Ways to Improve the Protection of Your Home
http://ift.tt/2h1iAdg

Submitted September 13, 2017 at 11:17AM by martinsztein
via reddit http://ift.tt/2xkfYxl

How to Protect Your Company From Botnet Attacks
http://ift.tt/2jkDZPl

Submitted September 13, 2017 at 12:13PM by InfoSecCrazy
via reddit http://ift.tt/2w6uqtb

A POC to Monitoring Windows Console Activity
http://ift.tt/2woRSgL

Submitted September 13, 2017 at 12:45PM by eyeofrateam
via reddit http://ift.tt/2x08L4Q

RouteX Malware Uses Netgear Routers for Credential Stuffing Attacks
http://ift.tt/2h3o5o3

Submitted September 13, 2017 at 12:40PM by majorllama
via reddit http://ift.tt/2w7ec3b

Why Face ID won’t give you the legal protection of a passcode
http://ift.tt/2jmZ7V9

Submitted September 13, 2017 at 02:14PM by Benjaminsen
via reddit http://ift.tt/2joCcZK

SSRF (Server Side Request Forgery) testing resources
http://ift.tt/2wp6zR3

Submitted September 13, 2017 at 03:52PM by cujanovic
via reddit http://ift.tt/2xy3BhU

Handy Collaborator: a Burp Suite extension that lets you use the Collaborator tool for manual testing
http://ift.tt/2h3hD0u

Submitted September 13, 2017 at 03:35PM by 0xdea
via reddit http://ift.tt/2x0XRvU

CVE-2017-9805: Analysis of the Vulnerability in the Apache Struts RCE REST Plugin
http://ift.tt/2jo5aJ2

Submitted September 13, 2017 at 04:27PM by whitehattracker
via reddit http://ift.tt/2f4pRZs

Newbie question
Hi all, normally a lurker on Reddit but have a question I'm hoping someone will be able to answer.I have my work email forwarded into my personal Gmail account, bad practice but my institution allows it as I was previously a contractor with a staff account that was not always active, and that was often activated without any notification to myself.I send email from my personal account but via an email alias of my staff account. The emails appear to be sent from my staff account but only show up in the sent folder of my personal account.I've recently mistakenly sent some personal emails this way (from personal account but via the alias of my staff account).Can anyone tell me if it is common practice to store and archive all emails passing through the mail server or if this is typically done only at mailbox level? I work for a large organisation that is subject to the usual data retention policies.

Submitted September 13, 2017 at 04:26PM by bilalqayum
via reddit http://ift.tt/2jozdAn

Equifax blames open-source software for its record-breaking security breach
http://ift.tt/2wUuoBS

Submitted September 13, 2017 at 05:30PM by stjohns1
via reddit http://ift.tt/2w7GeLL

Security In 5: Episode 67 - Passing A Compliance Audit Doesn't Mean You're Secure
http://ift.tt/2x16NBo

Submitted September 13, 2017 at 06:43PM by BinaryBlog
via reddit http://ift.tt/2wpjemO

Heap Exploitation :: Abusing Use-After-Free - Exploit Development
http://ift.tt/2h221Ku

Submitted September 13, 2017 at 06:37PM by Evil1337
via reddit http://ift.tt/2w8M0Nf

Intro To Writing Win32 Shellcode #misec for June 2017
http://ift.tt/2jmQTwl

Submitted September 13, 2017 at 07:41PM by iamhabibone
via reddit http://ift.tt/2x0Fsiy

LetsEncrypt and email servers
Hi all. I wonder if you can help identify whether my colleague at work is being bullshitted by our IT contractor...The bottom line question is - is it possible to use a free LetsEncrypt SSL certificate with my company's Kerio email server or will we need to pay for an annual certificate?I have used LetsEncrypt with an automatic renewal on a linux webserver, but I don't know if it would be different in this case - a Kerio based email server, sitting on a Mac. If this is possible on this setup too, why are people in the world still paying for premium SSL certificates? I understand that one certificate is as good as the next, so what is the deal?Many thanks!

Submitted September 13, 2017 at 08:04PM by bhison
via reddit http://ift.tt/2wWNIkG

IoT Attack Vector “BlueBorne” Exposes Almost Every Connected Device
http://ift.tt/2jjIolw

Submitted September 13, 2017 at 07:43PM by Hamm3rH3ad
via reddit http://ift.tt/2f69hbv

Ransomware "Your Windows is Banned" Muncul Dan Minta Tebusan $50 Bitcoin
http://ift.tt/2h3kqqf

Submitted September 13, 2017 at 07:35PM by khanjadi
via reddit http://ift.tt/2wppOdc

Yubikey NFC platform
Is they Yubikey a safe platform, specifically the one with integrated NFC? Is it possible to have the codes on the key taken because of NFC?

Submitted September 13, 2017 at 08:24PM by cancerous_176
via reddit http://ift.tt/2wpzlkB

SECUMAIL là gì mà có thể bảo mật email cho bạn?
http://ift.tt/2x1yhXk

Submitted September 13, 2017 at 08:18PM by hangcho123
via reddit http://ift.tt/2wpxa00

Equifax breach, what about employment verification data?
I haven't read anything concrete regarding the data that belongs to Equifax's employment verification division. If this data was potentially lost in this breach that could make this much worse than originally thought. Imagine the number of employers that have used them for employment verification and I hope they (or anyone else) doesn't have any persistent hooks into Equifax systems or networks.

Submitted September 13, 2017 at 08:54PM by Hamm3rH3ad
via reddit http://ift.tt/2y5H1u4