From XML External Entity to NTLM Domain Hashes
https://ift.tt/2vlbO8Z
Submitted April 17, 2018 at 06:00PM by 0xdea
via reddit https://ift.tt/2JUB9Ki
https://ift.tt/2vlbO8Z
Submitted April 17, 2018 at 06:00PM by 0xdea
via reddit https://ift.tt/2JUB9Ki
Security In 5: Episode 218 - Mini Series Top 10 Reasons To Pen Test - 4 - Test Your Controls
https://ift.tt/2qyZlK7
Submitted April 17, 2018 at 06:43PM by BinaryBlog
via reddit https://ift.tt/2ERxEk0
https://ift.tt/2qyZlK7
Submitted April 17, 2018 at 06:43PM by BinaryBlog
via reddit https://ift.tt/2ERxEk0
Libsyn
Security In Five Podcast: Episode 218 - Mini Series Top 10 Reasons To Pen Test - 4 - Test Your Controls
Continuing with the mini series Top 10 Reasons To Run Penetration Tests. Number four talks about using the tests to not just check for the target apps failures but test the controls you have in place. This episode goes into the details. Be aware, be safe.…
stay secure
https://ift.tt/2vmDSbV
Submitted April 17, 2018 at 07:00PM by Hazelwood6a
via reddit https://ift.tt/2qFNABB
https://ift.tt/2vmDSbV
Submitted April 17, 2018 at 07:00PM by Hazelwood6a
via reddit https://ift.tt/2qFNABB
T-Shirts, Hoodies, Mugs - online store
Mug Anonymous
Buy Mug with unique design Anonymous
Stay secure
https://ift.tt/2vmDSbV
Submitted April 17, 2018 at 07:15PM by Hazelwood6a
via reddit https://ift.tt/2HHAE5k
https://ift.tt/2vmDSbV
Submitted April 17, 2018 at 07:15PM by Hazelwood6a
via reddit https://ift.tt/2HHAE5k
T-Shirts, Hoodies, Mugs - online store
Mug Anonymous
Buy Mug with unique design Anonymous
Ransomware XIAOBA Repurposed as File Infector and Cryptocurrency Miner
https://ift.tt/2J2wDb7
Submitted April 17, 2018 at 07:46PM by EvanConover
via reddit https://ift.tt/2ET259x
https://ift.tt/2J2wDb7
Submitted April 17, 2018 at 07:46PM by EvanConover
via reddit https://ift.tt/2ET259x
Trendmicro
Ransomware XIAOBA Repurposed as File Infector and Cryptocurrency Miner - TrendLabs Security Intelligence Blog
Currently, cryptocurrency miners are heavily used by malware—we’ve seen miners injected onto ad platforms, on popular mobile devices, and servers. Malware creators change payloads to maximize their chances to make a profit, and in this volatile cryptocurrency…
Black Carbon users
Has anyone been running Carbon Black as an AV solution? Can you share your experience with me?Many thanks !
Submitted April 17, 2018 at 08:48PM by oliland1
via reddit https://ift.tt/2ESycWX
Has anyone been running Carbon Black as an AV solution? Can you share your experience with me?Many thanks !
Submitted April 17, 2018 at 08:48PM by oliland1
via reddit https://ift.tt/2ESycWX
reddit
Black Carbon users • r/security
Has anyone been running Carbon Black as an AV solution? Can you share your experience with me? Many thanks !
UK NCSC identifies IoT as a main cyber threat to UK business
https://ift.tt/2JU0S5u
Submitted April 17, 2018 at 08:13PM by Iot_Security
via reddit https://ift.tt/2vpqHqU
https://ift.tt/2JU0S5u
Submitted April 17, 2018 at 08:13PM by Iot_Security
via reddit https://ift.tt/2vpqHqU
www.ncsc.gov.uk
The cyber threat to UK business 2017-2018 report
A report examining how nefarious cyber activity over the past 12 months has impacted UK businesses.
Eau Claire InfoSec. Cyber Security Meetup this Monday April 23rd.
It isn't a matter IF your company will be compromised by hackers, it is only a matter of WHEN your company will be compromised! What should you be doing now to prepare your company for a cyber security incident?We are excited to have Crystal Rice present on "Incident Response: Prior Planning Prevents Poor Performance" this coming Monday the 23rd @ the Lazy Monk!RSVP Here: https://www.meetup.com/ecinfosec/events/249061911/Crystal Rice considers herself a corporate information security chiropractor - finding ways to align the needs of the business and the end-user with the responsibility to secure information in an increasingly mobile-centric and data-centric global business environment. She is an Information Security and Assurance professional with complementary skills including: incident response; ethical hacking; public speaking; training; technical writing; leadership; and a firm understanding of the vulnerabilities that exist in systems as a result of the inability to apply security patches to the human members of those systems.Here are the details on our next Meetup. Hope you can make it!Who: Anyone who is interested in any facet of Information Security is welcome to come! What: Lets get together, hang out, learn something new, and chat about Information Security. Where: Lazy Monk Brewery. 97 W Madison St, Eau Claire, WI 54702. When: Monday, April 23rd! Mingling will start at 6 PM. There will be an information security presentation at 6:30 PM. Followed by more mingling. Register: If you would like to attend, you must RSVP using MeetUp link: https://www.meetup.com/ecinfosec/events/249061911/
Submitted April 17, 2018 at 08:04PM by Gui4life
via reddit https://ift.tt/2JU0Tq4
It isn't a matter IF your company will be compromised by hackers, it is only a matter of WHEN your company will be compromised! What should you be doing now to prepare your company for a cyber security incident?We are excited to have Crystal Rice present on "Incident Response: Prior Planning Prevents Poor Performance" this coming Monday the 23rd @ the Lazy Monk!RSVP Here: https://www.meetup.com/ecinfosec/events/249061911/Crystal Rice considers herself a corporate information security chiropractor - finding ways to align the needs of the business and the end-user with the responsibility to secure information in an increasingly mobile-centric and data-centric global business environment. She is an Information Security and Assurance professional with complementary skills including: incident response; ethical hacking; public speaking; training; technical writing; leadership; and a firm understanding of the vulnerabilities that exist in systems as a result of the inability to apply security patches to the human members of those systems.Here are the details on our next Meetup. Hope you can make it!Who: Anyone who is interested in any facet of Information Security is welcome to come! What: Lets get together, hang out, learn something new, and chat about Information Security. Where: Lazy Monk Brewery. 97 W Madison St, Eau Claire, WI 54702. When: Monday, April 23rd! Mingling will start at 6 PM. There will be an information security presentation at 6:30 PM. Followed by more mingling. Register: If you would like to attend, you must RSVP using MeetUp link: https://www.meetup.com/ecinfosec/events/249061911/
Submitted April 17, 2018 at 08:04PM by Gui4life
via reddit https://ift.tt/2JU0Tq4
Meetup
EC InfoSec #5 - Incident Response: Prior Planning Prevents Poor Performance
We are excited to have Crystal Rice present on "Incident Response: Prior Planning Prevents Poor Performance" at 6:30 PM on Monday April 23rd @ The Lazy Monk. Crystal is a Senior Security Analyst at Ne
Password Spraying with DoxyCannon - No cloud infrastructure init needed
https://ift.tt/2EUpibc
Submitted April 17, 2018 at 08:39PM by audibleBLiNK
via reddit https://ift.tt/2vp7DZX
https://ift.tt/2EUpibc
Submitted April 17, 2018 at 08:39PM by audibleBLiNK
via reddit https://ift.tt/2vp7DZX
sec.alexflor.es
Password Spraying with DoxyCannon - SecBlog
Things have been OK for me except that I'm a zombie now
Good for him: “Privacy is not for sale,” Telegram founder says after being banned in Russia
https://ift.tt/2HkaIz7
Submitted April 17, 2018 at 08:56PM by Majortom80
via reddit https://ift.tt/2J4vik2
https://ift.tt/2HkaIz7
Submitted April 17, 2018 at 08:56PM by Majortom80
via reddit https://ift.tt/2J4vik2
Ars Technica
“Privacy is not for sale,” Telegram founder says after being banned in Russia
Russian authorities are demanding a universal key. Telegram says it doesn’t exist.
Home security Ideas
We have a diplomat that will be staying at an apartment. The apartment is a duplex covering the first and second floor. What security measures do you recommend ? You can go crazy with any security system and also offensive security measures. Thanks in advance !!
Submitted April 17, 2018 at 11:31PM by Loop165
via reddit https://ift.tt/2qKqMQz
We have a diplomat that will be staying at an apartment. The apartment is a duplex covering the first and second floor. What security measures do you recommend ? You can go crazy with any security system and also offensive security measures. Thanks in advance !!
Submitted April 17, 2018 at 11:31PM by Loop165
via reddit https://ift.tt/2qKqMQz
reddit
Home security Ideas • r/security
We have a diplomat that will be staying at an apartment. The apartment is a duplex covering the first and second floor. What security measures do...
A guy on Reddit had over 20 websites hacked.
https://ift.tt/2H730Jd
Submitted April 17, 2018 at 11:27PM by ded1cated
via reddit https://ift.tt/2qFScqC
https://ift.tt/2H730Jd
Submitted April 17, 2018 at 11:27PM by ded1cated
via reddit https://ift.tt/2qFScqC
WebARX
CASE STUDY: My website got hacked, what to do?
Some website owners have no idea their site is vulnerable or website got hacked until the worst-case scenario has happened - revenue and potential clients are lost. These things happen on a daily basis and there are thousands of such stories.
Magnitude exploit kit switches to GandCrab ransomware
https://ift.tt/2H7gUqP
Submitted April 18, 2018 at 12:12AM by EvanConover
via reddit https://ift.tt/2H6BsUl
https://ift.tt/2H7gUqP
Submitted April 18, 2018 at 12:12AM by EvanConover
via reddit https://ift.tt/2H6BsUl
Malwarebytes Labs
Magnitude exploit kit switches to GandCrab ransomware - Malwarebytes Labs
After being faithful to its own Magniber ransomware for several months, Magnitude EK joins others to adopt GandCrab.
RAT utilizing GroupME REST API - Collaborative Remote Command Execution
https://ift.tt/2ETnwr5
Submitted April 18, 2018 at 01:37AM by brytonh
via reddit https://ift.tt/2JUHgOG
https://ift.tt/2ETnwr5
Submitted April 18, 2018 at 01:37AM by brytonh
via reddit https://ift.tt/2JUHgOG
GitHub
brytonh/rat-groupme
rat-groupme - RAT utilizing GroupME REST API and a PowerShell Implant
34 Tech Firms Sign Accord Not to Assist Government Hacking Operations
https://ift.tt/2ESNTxe
Submitted April 18, 2018 at 01:35AM by DJRWolf
via reddit https://ift.tt/2HbqIQR
https://ift.tt/2ESNTxe
Submitted April 18, 2018 at 01:35AM by DJRWolf
via reddit https://ift.tt/2HbqIQR
BleepingComputer
34 Tech Firms Sign Accord Not to Assist Government Hacking Operations
An industry group of 34 high-tech companies led by Microsoft, have signed today a tech accord, agreeing to defend customers at all costs from cybercriminal and nation-state cyber-attacks, but also not to provide any technical aid to governments looking to…
The IoT Hacker's Toolkit
https://ift.tt/2EQa9rF
Submitted April 18, 2018 at 01:46AM by Setaya69
via reddit https://ift.tt/2JU91a7
https://ift.tt/2EQa9rF
Submitted April 18, 2018 at 01:46AM by Setaya69
via reddit https://ift.tt/2JU91a7
System Overlord
The IoT Hacker's Toolkit - System Overlord
IoT and embedded devices provide new challenges to security engineers hoping to understand and evaluate the attack surface these devices add. From new interfaces to uncommon operating systems and software, the devices require both skills and tools just a…
Abusing CVE-2017-9506 to access internal services and hacking the Department of the Defense in the process
https://ift.tt/2J2iwCK
Submitted April 18, 2018 at 01:41AM by alyssathegryphon
via reddit https://ift.tt/2EURSsU
https://ift.tt/2J2iwCK
Submitted April 18, 2018 at 01:41AM by alyssathegryphon
via reddit https://ift.tt/2EURSsU
Crack the RSA conference F5 t-shirt challenge!
https://ift.tt/2qETvpL
Submitted April 18, 2018 at 02:35AM by KenchikkaKitsune
via reddit https://ift.tt/2H8jJMx
https://ift.tt/2qETvpL
Submitted April 18, 2018 at 02:35AM by KenchikkaKitsune
via reddit https://ift.tt/2H8jJMx
reddit
Crack the RSA conference F5 t-shirt challenge! • r/security
2 points and 0 comments so far on reddit
U.S. official warns of 'unintended consequences' of European data privacy law
https://ift.tt/2qG5TXa
Submitted April 18, 2018 at 02:33AM by wewewawa
via reddit https://ift.tt/2qG5OC1
https://ift.tt/2qG5TXa
Submitted April 18, 2018 at 02:33AM by wewewawa
via reddit https://ift.tt/2qG5OC1
reddit
U.S. official warns of 'unintended consequences' of... • r/security
1 points and 0 comments so far on reddit
Nova Scotia filled its public Freedom of Information Archive with citizens' private data, then arrested the teen who discovered it
https://ift.tt/2qEAbZB
Submitted April 18, 2018 at 06:24AM by BloodyIron
via reddit https://ift.tt/2HaWI7u
https://ift.tt/2qEAbZB
Submitted April 18, 2018 at 06:24AM by BloodyIron
via reddit https://ift.tt/2HaWI7u
Boing Boing
Nova Scotia filled its public Freedom of Information Archive with citizens' private data, then arrested the teen who discovered…
Nova Scotia filled its public Freedom of Information Archive with citizens' private data, then arrested the teen who discovered it
GPG Reaper - Obtain/Steal/Restore GPG Private Keys from gpg-agent cache/memory (See Comment)
https://ift.tt/2qFDfVy
Submitted April 18, 2018 at 09:06AM by TechLord2
via reddit https://ift.tt/2JU3XlT
https://ift.tt/2qFDfVy
Submitted April 18, 2018 at 09:06AM by TechLord2
via reddit https://ift.tt/2JU3XlT
GitHub
kacperszurek/gpg_reaper
gpg_reaper - GPG Reaper - Obtain/Steal/Restore GPG Private Keys from gpg-agent cache/memory