Enabling any service managed by Google Cloud Platform's Service Management ($5k bug bounty)
https://ift.tt/2vjAm29

Submitted April 17, 2018 at 02:53AM by epereiralopez
via reddit https://ift.tt/2EQC8rb

US, UK warn of Russian hackers targeting millions of routers
https://ift.tt/2H6LRLT

Submitted April 17, 2018 at 04:06AM by wewewawa
via reddit https://ift.tt/2EOTLHD

Response Policy Zones (RPZ) Introduction - Turning your DNS into a DNS Firewall
https://ift.tt/2qGCpbc

Submitted April 17, 2018 at 03:43AM by cleanbrowsing
via reddit https://ift.tt/2H5QcTL

Windows servers running IIS 6.0 targeted by crypto-mining hackers
https://ift.tt/2qCYBmf

Submitted April 17, 2018 at 05:12AM by chull2058
via reddit https://ift.tt/2qCgX6W

Centrify: Secure the 2018 Vote with Zero Trust Security
https://ift.tt/2H5yCz8

Submitted April 17, 2018 at 04:55AM by ApprehensiveActuator
via reddit https://ift.tt/2qBOi1S

Your business-critical data could get exposed. Are you prepared?
https://ift.tt/2J0pHv9

Submitted April 17, 2018 at 11:05AM by wadetomtesting
via reddit https://ift.tt/2HFc4SP

Roaming Mantis uses DNS hijacking to infect Android smartphones
https://ift.tt/2vgRohx

Submitted April 17, 2018 at 01:34AM by Goovscoov
via reddit https://ift.tt/2qCSX4p

Russian State-Sponsored Cyber Actors Targeting Network Infrastructure Devices
https://ift.tt/2HDhKg5

Submitted April 17, 2018 at 03:19AM by Eplox
via reddit https://ift.tt/2vjADC6

Backups Question
Is it good practice to backup things like master passwords. If so, how/where can multiple copies be stored without storing them near the thing they unlock.For example, if I have a GPG key at home, I wouldn't want the symmetric key password at home too. (Is this even reasonable?)I can comfortably store a master password in my head but if I was to be really paranoid, I would worry about things like head injuries that give me memory loss.My issue is then; if I have forgotten my password, I may have also forgotten where it's backed up. This leads me to think that I would need to store the backup somewhere obvious and potentially insecure.For arguments sake, say that my threat model is being secure from the NSA, is it just best to have one master password remembered, without backups?

Submitted April 17, 2018 at 12:25PM by Joshua-Cooper
via reddit https://ift.tt/2qErZsf

Intel patches SPI Flash Flaw that lets attackers alter or delete BIOS/UEFI firmware
https://ift.tt/2GEe3VZ

Submitted April 17, 2018 at 02:08PM by ttelephone
via reddit https://ift.tt/2qDLPVA

Would you pay 1$/year to get an XMPP account in a full featured XMPP server?
https://ift.tt/2ENKRdF

Submitted April 17, 2018 at 02:55PM by xzsun
via reddit https://ift.tt/2JT7VLV

Security is failing - 2.6 billion records were exposed in 2017
https://ift.tt/2J17MEI

Submitted April 17, 2018 at 04:15PM by htbridgedigital
via reddit https://ift.tt/2ETJQR9

Podcast: Benefits and Challenges of Cyber Risk Quantification
https://ift.tt/2J1dBly

Submitted April 17, 2018 at 05:04PM by Uminekoshi
via reddit https://ift.tt/2HGI1Kn

Gryffin Solutions – Detention
https://ift.tt/2JTVrUg

Submitted April 17, 2018 at 05:36PM by gryffinau
via reddit https://ift.tt/2ETAqFi

Best way to protect copyrighted work
Good morning all,I am an author of a training book or guide that I currently sell on Amazon. The training guide is a question and answer form guide to help students pass a particular exam. I was presented with an opportunity by a National training center. They proposed that I give them permission to use my training material, the questions that is, and in return they would have a link to where the students can purchase the full guide on Amazon. They would need access to my material in some format (MSWord) where they can copy and paste my questions. What would be the best way of sharing this material to prevent unauthorized access from copying? Please share some options. I was thinking of uploading to a secure server, creating a login and sharing that with the person.

Submitted April 17, 2018 at 06:12PM by gsurface
via reddit https://ift.tt/2qDaUjr

Does banning IP-ranges with millions of IPs cause lots of extra CPU load?
This is for a Linux (no specific distro) server with Apache, MySQL, PHP. Some standard stuff. :) We're talking about low budgetservers. Lets say a VPS, with Dual CPU @ 1.6 GHZ, 2 GB RAM.IPTables, is that what most people use for banning ranges? I don't really know what most people use for this since it's normally nothing I work with. Please, tell me if there's a better way. I need to block the full server from these ranges. Not just 1 domains.If I for example want to ban: 101.16.0.0/12 Which is 1,048,576 IPs. Does this cause the server to spike up the CPU a lot more or is it a quick check for the server and just compare some numbers?What if I have ~20 more IP-ranges like it and it comes up to a couple of million, should any server handle this with ease?Another last question: Is it easier for the server to check the banlist if I only specify for example: "123...*"? I guess it doesn't have to calculate the IPs the same way then and only have to check the first 3 digits?I'm thankful for all the help I can get. :)

Submitted April 17, 2018 at 06:07PM by KlLLED
via reddit https://ift.tt/2EWHr8A

From XML External Entity to NTLM Domain Hashes
https://ift.tt/2vlbO8Z

Submitted April 17, 2018 at 06:00PM by 0xdea
via reddit https://ift.tt/2JUB9Ki

Security In 5: Episode 218 - Mini Series Top 10 Reasons To Pen Test - 4 - Test Your Controls
https://ift.tt/2qyZlK7

Submitted April 17, 2018 at 06:43PM by BinaryBlog
via reddit https://ift.tt/2ERxEk0

stay secure
https://ift.tt/2vmDSbV

Submitted April 17, 2018 at 07:00PM by Hazelwood6a
via reddit https://ift.tt/2qFNABB

Stay secure
https://ift.tt/2vmDSbV

Submitted April 17, 2018 at 07:15PM by Hazelwood6a
via reddit https://ift.tt/2HHAE5k

Ransomware XIAOBA Repurposed as File Infector and Cryptocurrency Miner
https://ift.tt/2J2wDb7

Submitted April 17, 2018 at 07:46PM by EvanConover
via reddit https://ift.tt/2ET259x