Spurious #DB exceptions with the "POP SS" instruction (CVE-2018-8897)
https://ift.tt/2I6TgLu

Submitted May 09, 2018 at 01:42AM by 0xNemi
via reddit https://ift.tt/2wuUaQy

May Patch Tuesday Fixes Two Bugs Under Active Attack | Threatpost
https://ift.tt/2rs98lA

Submitted May 09, 2018 at 02:18AM by LindseyOD123
via reddit https://ift.tt/2wuqoMa

Sierra Wireless Patches Critical Vulns in Range of Wireless Routers | Threatpost
https://ift.tt/2jHcpcv

Submitted May 09, 2018 at 02:03AM by LindseyOD123
via reddit https://ift.tt/2KL7kw5

Kuik: a simple yet annoying piece of adware
https://ift.tt/2ryaESC

Submitted May 09, 2018 at 02:52AM by EvanConover
via reddit https://ift.tt/2rsWEdl

Privilege Escalation Through AWS IAM Instance Profile Role
https://ift.tt/2FXkNNx

Submitted May 09, 2018 at 05:33AM by gauravphoenix
via reddit https://ift.tt/2K4wUec

Xen Security Advisory CVE-2018-8897
https://ift.tt/2rvKoYH

Submitted May 09, 2018 at 05:09AM by Zolmeister1
via reddit https://ift.tt/2K6cz8e

Android OAT, VDEX, DEX, ART formats: How it works and how to use them with LIEF
https://ift.tt/2KP4XrU

Submitted May 09, 2018 at 07:14AM by str4k3
via reddit https://ift.tt/2jJjpFT

Raptor School Check-in System Security?
Our school is installing this. Anyone visiting the school will have to scan their govt. issued ID card to visit. Raptor says they only scan the part that has name, DOB and part of the ID number, to compare to the national sex offender database. I find this hard to believe. Once scanned, wouldn't Raptor have ALL the info contained on the card in their database? Raptor says they don't sell to 3rd parties. What about the US govt. accessing info - what about this info being subpoena'd? I don't feel good about this system, a web-based system. I don't have a good understanding on all this, though. Any insight on this?

Submitted May 09, 2018 at 10:05AM by cat_fox
via reddit https://ift.tt/2FZGs7Q

SIEM Management - High Level IT Security Management
https://ift.tt/2K2UEQ8

Submitted May 09, 2018 at 12:45PM by i_RobertJones
via reddit https://ift.tt/2rujjWU

Hacker Shuts Down Copenhagen’s Public City Bikes System
https://ift.tt/2KPqkts

Submitted May 09, 2018 at 02:00PM by Iot_Security
via reddit https://ift.tt/2rxhwPV

Every major OS maker misread Intel's docs. Now their kernels can be hijacked or crashed
https://ift.tt/2wqCndq

Submitted May 09, 2018 at 03:39PM by wfpoulet
via reddit https://ift.tt/2I712oJ

POP SS Vulnerability - Spurious #DB exceptions with the "POP SS" instruction (CVE-2018-8897)
https://ift.tt/2IrtNjk

Submitted May 09, 2018 at 06:37PM by TechLord2
via reddit https://ift.tt/2rwgLr2

Security In 5: Episode 234 - Tips For Patch Management
https://ift.tt/2I71of2

Submitted May 09, 2018 at 06:40PM by BinaryBlog
via reddit https://ift.tt/2rvbm3N

JavaScript Coinhive in Excel
https://ift.tt/2G00gYK

Submitted May 09, 2018 at 07:38PM by SamratAsh0k
via reddit https://ift.tt/2K3jKOH

Offline Object Detection and Tracking on a Raspberry Pi (For Security Purposes)
https://ift.tt/2FYcD7T

Submitted May 09, 2018 at 07:30PM by PeterG45
via reddit https://ift.tt/2IuOviB

Repository of various public white-box cryptographic implementations and their practical attacks
https://ift.tt/2hLy9o8

Submitted May 09, 2018 at 07:29PM by PeterG45
via reddit https://ift.tt/2K35bKQ

Backdoored Python Library Caught Stealing SSH Credentials
https://ift.tt/2rt8dRU

Submitted May 09, 2018 at 07:16PM by TechLord2
via reddit https://ift.tt/2G0y9IX

Thieves Activating New Cell Phones Despite Credit Freezes
https://ift.tt/2rvZ0HH

Submitted May 09, 2018 at 08:28PM by moonjeff
via reddit https://ift.tt/2I6L9mw

Beyond pty.spawn - use pseudoterminals in your reverse shells (DNScat2 example)
https://ift.tt/2Kaap7Y

Submitted May 09, 2018 at 09:01PM by gid0rah
via reddit https://ift.tt/2FYIrcN

A number of my accounts have been hacked - what should I do next?
Hi all,As I'm sure many of you can relate to, over the years I've created so many accounts across different platforms that I lost track of them all many years ago. I tend to (stupidly) use the same email-password combination when I create accounts - and inevitably, it has come back to bite me.A few months ago, my Amazon account was hacked. I was able to log back into it, change back the details, set up a new password and toggle two-step verification. Since then, it's been the same sequence of events with my Instagram account, EA account, and my Mojang account - with me realising each time after receiving an email saying my details have just been changed. Obviously, my details have been leaked from somewhere and it will likely be a matter of time before I don't hear about a breach, my account is permanently taken from me, my financial details are discovered, or something equally sinister.So, what steps should I be taking here? I have no idea how many accounts I have dotted around under this email-password combination. Should I just start by securing the most important/sensitive ones or is there someway I could find out what accounts my email address is registered to? Secondly, obviously, I need to start using unique passwords, I've heard people mention things like LastPass before. Would that be my best option? Could it be that someone is logged into my Chrome/Google account somewhere? If there is any other advice you can offer, please do! All help appreciated!

Submitted May 09, 2018 at 09:28PM by deadpigeon29
via reddit https://ift.tt/2FYMBkZ

A Georgia Hacking Bill Gets Cybersecurity All Wrong
https://ift.tt/2rlXtoj

Submitted May 09, 2018 at 09:05PM by speckz
via reddit https://ift.tt/2FYMDt7