Equifax reveals full horror of its data breach - "146.6 million names, 146.6 million dates of birth, 145.5 million social security numbers, 99 million address information and 209,000 payment cards (number and expiry date). There were also 38,000 US drivers' licenses and 3,200 passport details."
https://ift.tt/2I4hV3t

Submitted May 08, 2018 at 06:40PM by md5sumo
via reddit https://ift.tt/2rsLaWI

How secure is your data when it’s stored in the cloud?
https://ift.tt/2rsV4aC

Submitted May 08, 2018 at 05:16PM by BrRafique1
via reddit https://ift.tt/2KKXBWK

Podcast: The Evolving Role of the CTO
https://ift.tt/2K3fTB9

Submitted May 08, 2018 at 05:10PM by Uminekoshi
via reddit https://ift.tt/2rtlqt3

Are your IoT devices are mining cryptocurrencies in their spare time?
https://ift.tt/2FXM8zu

Submitted May 08, 2018 at 04:59PM by Iot_Security
via reddit https://ift.tt/2KLI6NZ

Running yara rules on malware app
I have bunch of yara rules (https://yara.readthedocs.io/en/v3.7.0/) which help me match certain patterns inside an APK. I have local installation of androguard with yara to help me with this regard. My question is, is there a service that I can use that can replace this task?I have seen https://koodous.com/. You can submit your own yara rules and they will attempt to run them whenever a new app is submitted to their system. I attempted to create my own rules but its not working. Moreover, I don't think koodous will run all rule set submitted by all users.Is there an alternative solution?Am also wondering how one might approach such problem?

Submitted May 08, 2018 at 07:44PM by sirackh
via reddit https://ift.tt/2rvfxvt

Making and Impact in InfoSec
Hello!I wanted to reach out and see if other people are feeling the way I do and/or get some advice.I have been working in the security community for half a decade now. Lately I have been dealing with this dreadful feeling that the work I am doing is useless. I still like my field. I study new things almost every night and am constantly learning. My company is pretty great to me, but I work for a single customer on a daily basis, and the work feels worthless (for various reasons that I am not going to get into). Like if I disappeared right now, there would be know negative impact to the projects we work on. My mgrs know I want something different, but it may be some time before I sneak out.I know not every job is like this and, when I do make the switch, this may not be a problem anymore. But I'm curious, do others feel this way? Or have felt this way? How do you stay motivated? Or do you not care? Is it worth risking giving up a job at a company that I fit in at and enjoy for someplace that might have more interesting work? Interested in hearing your thoughts.Thanks!

Submitted May 08, 2018 at 08:17PM by wheatless12
via reddit https://ift.tt/2I5NmKL

Caroline Wong talks with Kevin E. Greene about how he got his handle Kevtorious, firewalls, Secure Coding by Nature, SWAMP, DevOps, and more on the newest episode of Humans of InfoSec.
https://ift.tt/2ruAYwz

Submitted May 08, 2018 at 09:06PM by ju1i3k
via reddit https://ift.tt/2K6DlOa

Don’t Share Email with Scripts and Macros
https://ift.tt/2HVJwrs

Submitted May 08, 2018 at 09:28PM by volci
via reddit https://ift.tt/2wnGVBl

FBI: Cyber-Fraud Losses Rise to Reach $1.4B | Threatpost
https://ift.tt/2rt9uaN

Submitted May 08, 2018 at 09:24PM by LindseyOD123
via reddit https://ift.tt/2HZlmfF

Clickjacking Google YOLO
https://ift.tt/2JX9RC2

Submitted May 08, 2018 at 09:14PM by albinowax
via reddit https://ift.tt/2rumqNJ

GNU Wget (1.7 thru 1.19.4) Cookie Injection [CVE-2018-0494]
https://ift.tt/2KH1WtP

Submitted May 08, 2018 at 10:29PM by xBytez
via reddit https://ift.tt/2IqRpoe

"Equi-Facts": Equifax Clarifies the Numbers for Its Massive Breach | Threatpost
https://ift.tt/2HYFVsW

Submitted May 08, 2018 at 10:43PM by LindseyOD123
via reddit https://ift.tt/2rskTI3

Adobe Patches Critical Bugs In Flash Player, Creative Cloud | Threatpost
https://ift.tt/2HYA9r6

Submitted May 08, 2018 at 10:38PM by LindseyOD123
via reddit https://ift.tt/2HZ5F8n

SynAttack Ransomware Now Using Process Doppelgänging
https://ift.tt/2rskFRd

Submitted May 08, 2018 at 10:28PM by coldsystem
via reddit https://ift.tt/2HZ5FFp

Asus Control Center – An Information Disclosure and a database connection Clear-Text password leakage Vulnerability
https://ift.tt/2FV8Ecc

Submitted May 08, 2018 at 10:27PM by SymbianSyMoh
via reddit https://ift.tt/2rtOyjP

The US Is Unprepared for Election-Related Hacking in 2018
https://ift.tt/2jHXZJa

Submitted May 08, 2018 at 10:16PM by volci
via reddit https://ift.tt/2K54Rvj

NTLMv1 Multitool - Modifies NTLMv1/NTLMv1-ESS/MSCHAPv2 Hashes so they can be cracked with DES Mode 14000 in Hashcat
https://ift.tt/2FDRfUZ

Submitted May 08, 2018 at 10:58PM by TechLord2
via reddit https://ift.tt/2K0rSzt

Any options like #VeraCrypt that don't require a GUI?
I love using VeraCrypt on various desktop systems I have.I'd like to be able to use it (or something like it) on headless devices - but it seems it requires a GUI to setup and run.What tools like it exist that are usable via the commandline?

Submitted May 08, 2018 at 11:02PM by volci
via reddit https://ift.tt/2FUWJv3

[Analysis + How-to] OffensiveSplunk vs Grep: Utilising Splunk on the Red Team!
https://ift.tt/2wkKLLz

Submitted May 08, 2018 at 11:59PM by vysec
via reddit https://ift.tt/2I1cjea

Hiding Metasploit Shellcode to Evade Windows Defender
https://ift.tt/2HMiKlv

Submitted May 09, 2018 at 12:27AM by PeterG45
via reddit https://ift.tt/2FW0f88

GDI Data-Only Attack from Win32k TypeIsolation Resurrected Again in Windows 10 RS3
https://ift.tt/2Ii1nZ1

Submitted May 09, 2018 at 12:26AM by PeterG45
via reddit https://ift.tt/2Iptky0