Sensitive User Data Stolen From MyFitnessPal
https://ift.tt/2IGXI3o
Submitted April 10, 2018 at 06:21AM by lifecrazymy
via reddit https://ift.tt/2Jw9bUQ
https://ift.tt/2IGXI3o
Submitted April 10, 2018 at 06:21AM by lifecrazymy
via reddit https://ift.tt/2Jw9bUQ
Rec0deD:88
MyFitnessPal Data Breach - Rec0deD:88
The popular weight loss app and website, MyFitnessPal, has suffered a data breach. An email to users, signed by…
Facebook and Cambridge Analytica
https://ift.tt/2E85VuT
Submitted April 10, 2018 at 07:11AM by fesasso
via reddit https://ift.tt/2uZ3RpI
https://ift.tt/2E85VuT
Submitted April 10, 2018 at 07:11AM by fesasso
via reddit https://ift.tt/2uZ3RpI
P4wnP1 - a highly customizable USB attack platform based on Raspberry Pi Zero/W [Full Sources incl Video Demos]
https://ift.tt/2v3UdR3
Submitted April 10, 2018 at 07:38AM by TechLord2
via reddit https://ift.tt/2GONzFK
https://ift.tt/2v3UdR3
Submitted April 10, 2018 at 07:38AM by TechLord2
via reddit https://ift.tt/2GONzFK
GitHub
mame82/P4wnP1
P4wnP1 is a highly customizable USB attack platform, based on a low cost Raspberry Pi Zero or Raspberry Pi Zero W.
WannaCry data available to organisations
https://ift.tt/2qkhryt
Submitted April 10, 2018 at 10:19AM by not_2sec4u
via reddit https://ift.tt/2uXk52N
https://ift.tt/2qkhryt
Submitted April 10, 2018 at 10:19AM by not_2sec4u
via reddit https://ift.tt/2uXk52N
Kryptoslogic
Introducing Telltale and addressing the lingering WannaCry Threat
In light of the recent news circulating about sporadic WannaCry outbreaks, namely defense contractor Boeing and earlier last month Connecticut state agencies...
Hooking Chrome’s SSL functions
https://ift.tt/2JAYQqS
Submitted April 10, 2018 at 11:49AM by Vasile4444
via reddit https://ift.tt/2qkOXoY
https://ift.tt/2JAYQqS
Submitted April 10, 2018 at 11:49AM by Vasile4444
via reddit https://ift.tt/2qkOXoY
Nytro Security
Hooking Chrome’s SSL functions
The purpose of NetRipper is to capture functions that encrypt or decrypt data and send them through the network. This can be easily achieved for applications such as Firefox, where it is enough to …
JSON Web Token (JWT) Security Cheat Sheet [PDF]
https://ift.tt/2v0Vpqe
Submitted April 10, 2018 at 12:20PM by Gallus
via reddit https://ift.tt/2Hs86wV
https://ift.tt/2v0Vpqe
Submitted April 10, 2018 at 12:20PM by Gallus
via reddit https://ift.tt/2Hs86wV
Creating custom YARA rules
https://ift.tt/2IAJXUc
Submitted April 10, 2018 at 01:50PM by someniak
via reddit https://ift.tt/2HpZtCE
https://ift.tt/2IAJXUc
Submitted April 10, 2018 at 01:50PM by someniak
via reddit https://ift.tt/2HpZtCE
NVISO LABS - blog
Creating custom YARA rules
In a previous post, we created YARA rules to detect compromised CCleaner executables (YARA rules to detect compromised CCleaner executables). We will use this example as an opportunity to illustrat…
Safety deposit box
https://ift.tt/2qiEURj
Submitted April 10, 2018 at 02:55PM by kubervaults
via reddit https://ift.tt/2GONpd6
https://ift.tt/2qiEURj
Submitted April 10, 2018 at 02:55PM by kubervaults
via reddit https://ift.tt/2GONpd6
Kuber Vaults
Jewellery storage, Gold storage, Safety Vault, Safety deposit box - Kuber Vaults
Kuber vaults are the first safety deposit box facility in western Sydney and castle hill. Kuber Vaults meets the highest international standards to give you complete value for money and of course, total peace of mind.
Yet another Drupal scanner - Drupwn
https://ift.tt/2qguOAI
Submitted April 10, 2018 at 02:53PM by Nitr4x
via reddit https://ift.tt/2GLxxrX
https://ift.tt/2qguOAI
Submitted April 10, 2018 at 02:53PM by Nitr4x
via reddit https://ift.tt/2GLxxrX
HoleyBeep: Explanations and exploit
https://ift.tt/2v1zT4n
Submitted April 10, 2018 at 02:17PM by rain5
via reddit https://ift.tt/2GPs07J
https://ift.tt/2v1zT4n
Submitted April 10, 2018 at 02:17PM by rain5
via reddit https://ift.tt/2GPs07J
sigint.sh
Pirhack's Blog
A blog about infosec, exploits assembly and stuff.
A Long-Awaited IoT Crisis Is Here, and Many Devices Aren't Ready
https://ift.tt/2Ex7NNS
Submitted April 10, 2018 at 03:55PM by Iot_Security
via reddit https://ift.tt/2GNStCE
https://ift.tt/2Ex7NNS
Submitted April 10, 2018 at 03:55PM by Iot_Security
via reddit https://ift.tt/2GNStCE
WIRED
A Long-Awaited IoT Crisis Is Here, and Many Devices Aren't Ready
Some network communication protocol vulnerabilities have been known for more than a decade and still aren't fixed. Now they're being exploited.
Security In The Business/Cyber Operations
https://ift.tt/2EA2EVx
Submitted April 10, 2018 at 05:12PM by Uminekoshi
via reddit https://ift.tt/2v10Zcd
https://ift.tt/2EA2EVx
Submitted April 10, 2018 at 05:12PM by Uminekoshi
via reddit https://ift.tt/2v10Zcd
Nehemiah Security
Guest Post: Setting the Stage - Security in the Business - Nehemiah Security
Cybersecurity management within most organizations is dictated by spending on human resources and technology, with little to no emphasis on Return on Investment (ROI) analysis, and little to no proof-of-value analysis on the myriad of security products in…
How I broke into Google Issue Tracker
https://ift.tt/2ExxwWx
Submitted April 10, 2018 at 05:59PM by infocentric
via reddit https://ift.tt/2JxmBjq
https://ift.tt/2ExxwWx
Submitted April 10, 2018 at 05:59PM by infocentric
via reddit https://ift.tt/2JxmBjq
Medium
How I broke into Google Issue Tracker
Hi friends,
The dots do matter: how to scam a Gmail user
https://ift.tt/2Et7weU
Submitted April 10, 2018 at 07:01PM by kubcle
via reddit https://ift.tt/2GQ4Ji0
https://ift.tt/2Et7weU
Submitted April 10, 2018 at 07:01PM by kubcle
via reddit https://ift.tt/2GQ4Ji0
jameshfisher.com
The dots do matter: how to scam a Gmail user
I recently received an email from Netflix which nearly caused caused me to add my card details to someone else’s Netflix account. Here I show that this is a new kind of phishing scam which is enabled by an obscure feature of Gmail called “the dots don’t matter”.…
Mythology about security…
https://ift.tt/2qi46HT
Submitted April 10, 2018 at 06:47PM by liotier
via reddit https://ift.tt/2IILnMv
https://ift.tt/2qi46HT
Submitted April 10, 2018 at 06:47PM by liotier
via reddit https://ift.tt/2IILnMv
jg's Ramblings
Mythology about security…
Ed Felton tweeted a few days ago: “Often hear that the reason today’s Internet is not more secure is that the early designers failed to imagine that security could ever matter. That is a myth…
Module 6 - Hacking Webservers - Free Ethical Hacking Course
https://ift.tt/2GLJT7l
Submitted April 10, 2018 at 06:36PM by gburu
via reddit https://ift.tt/2JyFvGJ
https://ift.tt/2GLJT7l
Submitted April 10, 2018 at 06:36PM by gburu
via reddit https://ift.tt/2JyFvGJ
en.gburu.net: Blog about technology, free courses, ethical hacking and more!
Module 6 - Hacking Webservers - Free Ethical Hacking Course - en.gburu.net
In this new module of the free hacking course, we will know more about hacking web servers!
Security In 5: Episode 213 - Mini-Series: Top 10 Reasons To Pen-Test - 3 - Justify Business Decisions
https://ift.tt/2H7dyHJ
Submitted April 10, 2018 at 06:33PM by BinaryBlog
via reddit https://ift.tt/2GOP02F
https://ift.tt/2H7dyHJ
Submitted April 10, 2018 at 06:33PM by BinaryBlog
via reddit https://ift.tt/2GOP02F
Libsyn
Security In Five Podcast: Episode 213 - Mini-Series: Top 10 Reasons To Pen-Test - 3 - Justify Business Decisions
Continuing with the Top 10 Reasons What You Should Pentest mini-series we are at number 3. Penetration tests will help you justify business decisions for your security initiatives. Regardless of the problems you find decisions needs to be made to spend time…
Similiar domain hijacked email thread and got paid
A customer of mine recently was involved in a scam and is asking what they can do to prevent it from happening again.My Customer is "apples.com"Thier Customer is "oranges.com"Scammer is "applles.com"There was an email thread going back and forth between apples.com and oranges.com with apples seeking payment for services already received. This was all legitimate traffic, however somewhere along the way the thread was hijacked? and the talks became between oranges.com and applles.com. Same exact names and looked very legitimate and oranges.com never noticed that the domain changed.The applles.com then said that thier banking institution was changed and to please send the payment to "applles bank". Unfortunetly oranges never noticed the domain change and made the payment.What, if anything, can be done on apples side to prevent this from happening again? How did applles get a hold of the email thread? or is this all on oranges to recognize this and apples can't do anything?
Submitted April 10, 2018 at 07:19PM by Adamal47
via reddit https://ift.tt/2v24O0H
A customer of mine recently was involved in a scam and is asking what they can do to prevent it from happening again.My Customer is "apples.com"Thier Customer is "oranges.com"Scammer is "applles.com"There was an email thread going back and forth between apples.com and oranges.com with apples seeking payment for services already received. This was all legitimate traffic, however somewhere along the way the thread was hijacked? and the talks became between oranges.com and applles.com. Same exact names and looked very legitimate and oranges.com never noticed that the domain changed.The applles.com then said that thier banking institution was changed and to please send the payment to "applles bank". Unfortunetly oranges never noticed the domain change and made the payment.What, if anything, can be done on apples side to prevent this from happening again? How did applles get a hold of the email thread? or is this all on oranges to recognize this and apples can't do anything?
Submitted April 10, 2018 at 07:19PM by Adamal47
via reddit https://ift.tt/2v24O0H
reddit
Similiar domain hijacked email thread and got paid • r/security
A customer of mine recently was involved in a scam and is asking what they can do to prevent it from happening again. My Customer is...
A radio flaw put cities' emergency alert sirens at risk of hijack
https://ift.tt/2EACLox
Submitted April 10, 2018 at 07:13PM by moooooky
via reddit https://ift.tt/2Hr8xqU
https://ift.tt/2EACLox
Submitted April 10, 2018 at 07:13PM by moooooky
via reddit https://ift.tt/2Hr8xqU
ZDNet
Radio flaw exposes cities' emergency alert sirens to hackers
San Francisco -- and other cities and campuses -- had hackable radio-controlled sirens.
Comprehensive guide to RSA Conference 2018 Parties
https://ift.tt/2uYOYUx
Submitted April 10, 2018 at 07:10PM by sheffus
via reddit https://ift.tt/2HpBu6Q
https://ift.tt/2uYOYUx
Submitted April 10, 2018 at 07:10PM by sheffus
via reddit https://ift.tt/2HpBu6Q
reddit
Comprehensive guide to RSA Conference 2018 Parties • r/security
1 points and 0 comments so far on reddit
Hackers have managed to deface an array of popular YouTube music videos, changing noscripts and thumbnail images.
https://ift.tt/2v0scM7
Submitted April 10, 2018 at 07:54PM by Majortom80
via reddit https://ift.tt/2HbhuHi
https://ift.tt/2v0scM7
Submitted April 10, 2018 at 07:54PM by Majortom80
via reddit https://ift.tt/2HbhuHi
WeLiveSecurity
The world's most popular YouTube video has been hacked
Hackers have managed to deface an array of popular YouTube music videos, changing noscripts and thumbnail images.