Equifax blames open-source software for its record-breaking security breach
http://ift.tt/2wUuoBS

Submitted September 13, 2017 at 05:30PM by stjohns1
via reddit http://ift.tt/2w7GeLL

Security In 5: Episode 67 - Passing A Compliance Audit Doesn't Mean You're Secure
http://ift.tt/2x16NBo

Submitted September 13, 2017 at 06:43PM by BinaryBlog
via reddit http://ift.tt/2wpjemO

Heap Exploitation :: Abusing Use-After-Free - Exploit Development
http://ift.tt/2h221Ku

Submitted September 13, 2017 at 06:37PM by Evil1337
via reddit http://ift.tt/2w8M0Nf

Intro To Writing Win32 Shellcode #misec for June 2017
http://ift.tt/2jmQTwl

Submitted September 13, 2017 at 07:41PM by iamhabibone
via reddit http://ift.tt/2x0Fsiy

LetsEncrypt and email servers
Hi all. I wonder if you can help identify whether my colleague at work is being bullshitted by our IT contractor...The bottom line question is - is it possible to use a free LetsEncrypt SSL certificate with my company's Kerio email server or will we need to pay for an annual certificate?I have used LetsEncrypt with an automatic renewal on a linux webserver, but I don't know if it would be different in this case - a Kerio based email server, sitting on a Mac. If this is possible on this setup too, why are people in the world still paying for premium SSL certificates? I understand that one certificate is as good as the next, so what is the deal?Many thanks!

Submitted September 13, 2017 at 08:04PM by bhison
via reddit http://ift.tt/2wWNIkG

IoT Attack Vector “BlueBorne” Exposes Almost Every Connected Device
http://ift.tt/2jjIolw

Submitted September 13, 2017 at 07:43PM by Hamm3rH3ad
via reddit http://ift.tt/2f69hbv

Ransomware "Your Windows is Banned" Muncul Dan Minta Tebusan $50 Bitcoin
http://ift.tt/2h3kqqf

Submitted September 13, 2017 at 07:35PM by khanjadi
via reddit http://ift.tt/2wppOdc

Yubikey NFC platform
Is they Yubikey a safe platform, specifically the one with integrated NFC? Is it possible to have the codes on the key taken because of NFC?

Submitted September 13, 2017 at 08:24PM by cancerous_176
via reddit http://ift.tt/2wpzlkB

SECUMAIL là gì mà có thể bảo mật email cho bạn?
http://ift.tt/2x1yhXk

Submitted September 13, 2017 at 08:18PM by hangcho123
via reddit http://ift.tt/2wpxa00

Equifax breach, what about employment verification data?
I haven't read anything concrete regarding the data that belongs to Equifax's employment verification division. If this data was potentially lost in this breach that could make this much worse than originally thought. Imagine the number of employers that have used them for employment verification and I hope they (or anyone else) doesn't have any persistent hooks into Equifax systems or networks.

Submitted September 13, 2017 at 08:54PM by Hamm3rH3ad
via reddit http://ift.tt/2y5H1u4

Email của bạn sẽ được bảo mật toàn diện với SECUMAIL
http://ift.tt/2xy11IL

Submitted September 13, 2017 at 08:46PM by hangcho123
via reddit http://ift.tt/2y5H4WM

CDNs are starting to become a new way of spreading Malware in Brazil
http://ift.tt/2f6veXP

Submitted September 13, 2017 at 08:32PM by majorllama
via reddit http://ift.tt/2eVKZNE

Backdoor found in WordPress plugin with 200K installs
http://ift.tt/2jiM6Mj

Submitted September 13, 2017 at 05:45PM by campuscodi
via reddit http://ift.tt/2jo2fjE

They're Trying to Hack Your PayPal Account: Analyzing a Real Phishing Email
http://ift.tt/2xxMj4t

Submitted September 13, 2017 at 10:54PM by sh_tomer
via reddit http://ift.tt/2y6mFkw

Army Wargames Against Russia
http://ift.tt/2xyVHVO

Submitted September 13, 2017 at 10:49PM by rec0d3
via reddit http://ift.tt/2y6mGVC

How do you share your secrets after death or inability?
Hi,so i am trying to set up a method(without relying on some proprietary service) to give an individual or group of people access to my passwords, accounts etc. after i die or am somehow not able to remember anything.I looked into Shamir's Secret Sharing, but my problem is that i would like to keep my side of the equation able to update the information i share. Let's say i change the master password of my favorite password sharing app, or change my Bitcoin seed phrase and so on. Has anybody implemented a system in which relatives or significant others can access this information by giving them an envelope or similar? Also, a somewhat automated way of updating the information i want to share would be perfect. I thought about creating an encrypted archive or text and sharing the password via envelopes using SSSS. But then a problem is how people would be able to restore the phrase in 1000 years, without having the tools we use today or advanced knowledge in computers. I would like to leave simple instructions in a sealed envelope, requiring multiple share holders to group in order to gain access.I think this is a situation in which a lot of people find themselves and i would appreciate any feedback!

Submitted September 13, 2017 at 11:21PM by daywalkerdha
via reddit http://ift.tt/2w9nVWM

What Computer Security Experts Wish You Knew: The Top Experts Speak
http://ift.tt/2wozJzv

Submitted September 13, 2017 at 11:04PM by InfoSecCrazy
via reddit http://ift.tt/2fi2A2P

U.S. to ban use of Kaspersky software in federal agencies amid concerns of Russian espionage
http://wapo.st/2vUhrXr

Submitted September 13, 2017 at 11:03PM by buildops
via reddit http://ift.tt/2xZZfMZ

socksmon: a TCP interception proxy using BURP or ZAP
http://ift.tt/2f5OnJp

Submitted September 13, 2017 at 11:56PM by mrschyte
via reddit http://ift.tt/2y5YbId

The only safe email is text-only email
http://ift.tt/2w0OQ79

Submitted September 14, 2017 at 12:50AM by speckz
via reddit http://ift.tt/2f6g9pg

Exploiting CVE-2017-8759: SOAP WSDL Parser Code Injection by MDSec ActiveBreach
http://ift.tt/2x1RYyw

Submitted September 14, 2017 at 01:10AM by mdsec
via reddit http://ift.tt/2wpVejw