Using the Office 365 Activities API to Investigate Business Email Compromises
https://ift.tt/2K8tpHC
Submitted June 28, 2018 at 06:47PM by BeanBagKing
via reddit https://ift.tt/2IzzMii
https://ift.tt/2K8tpHC
Submitted June 28, 2018 at 06:47PM by BeanBagKing
via reddit https://ift.tt/2IzzMii
Crowdstrike
Using the Office 365 Activities API to Investigate Business Email Compromises
Learn how CrowdStrike Services used the Office 365 Activities API to investigate Business Email Compromises (BECs) involving cyber fraud and theft.
This popular Facebook app publicly exposed your data for years
https://ift.tt/2KtH2hh
Submitted June 28, 2018 at 07:37PM by albinowax
via reddit https://ift.tt/2KeI0lr
https://ift.tt/2KtH2hh
Submitted June 28, 2018 at 07:37PM by albinowax
via reddit https://ift.tt/2KeI0lr
Medium
This popular Facebook app publicly exposed your data for years
Ever took a personality test on Facebook? For years, anyone could have accessed your private information, friends, posts and photos.
The ultimate honeypot
https://ift.tt/2IA2e3r
Submitted June 28, 2018 at 07:32PM by Captain_Zurich
via reddit https://ift.tt/2KvOBE6
https://ift.tt/2IA2e3r
Submitted June 28, 2018 at 07:32PM by Captain_Zurich
via reddit https://ift.tt/2KvOBE6
Telegraph.co.uk
CIA plot led to huge blast in Siberian gas pipeline
A CIA operation to sabotage Soviet industry by duping Moscow into stealing booby-trapped software was spectacularly successful when it triggered a huge explosion in a Siberian gas pipeline.
Frida Engage: Shellcoding an Arm64 In-Memory Reverse TCP Shell with Frida
https://ift.tt/2lHUGTo
Submitted June 28, 2018 at 08:28PM by marketingversprite
via reddit https://ift.tt/2KopFlp
https://ift.tt/2lHUGTo
Submitted June 28, 2018 at 08:28PM by marketingversprite
via reddit https://ift.tt/2KopFlp
VerSprite | Integrated Security Services and Consulting
Shellcoding an Arm64 In-Memory Reverse TCP Shell with Frida | VerSprite
In part two of the series we are going to explore and leverage Frida's new Arm64Writer API to build an in-memory reverse TCP shell.
Reverse Engineering WebAssembly Applications
https://ift.tt/2MxcLPn
Submitted June 28, 2018 at 07:15PM by CyberBullets
via reddit https://ift.tt/2Ki3YUP
https://ift.tt/2MxcLPn
Submitted June 28, 2018 at 07:15PM by CyberBullets
via reddit https://ift.tt/2Ki3YUP
Forcepoint
Analyzing WebAssembly binaries
We recently published a blog post on security issues and fundamental concepts of WebAssembly (Wasm). As a follow-up, this post will give an introduction to reverse engineering of Wasm applications. Think about a scenario where you come across an unknown Wasm…
CVE-2018-0296 Cisco ASA - Exploited ITW & POC avail
Vulnerability in the web interface of the Cisco Adaptive Security Appliance (ASA) could allow an unauthenticated, remote attacker to cause an affected device to reload unexpectedly, resulting in a denial of service (DoS) condition. It is also possible on certain software releases that the ASA will not reload, but an attacker could view sensitive system information without authentication by using directory traversal techniques.Patched June 6th by cisco: https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180606-asaftdCisco says exploits observed ITW. POC available at https://github.com/yassineaboukir/CVE-2018-0296 and elsewhere.
Submitted June 28, 2018 at 08:35AM by thehoodedidiot
via reddit https://ift.tt/2tNbVGn
Vulnerability in the web interface of the Cisco Adaptive Security Appliance (ASA) could allow an unauthenticated, remote attacker to cause an affected device to reload unexpectedly, resulting in a denial of service (DoS) condition. It is also possible on certain software releases that the ASA will not reload, but an attacker could view sensitive system information without authentication by using directory traversal techniques.Patched June 6th by cisco: https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180606-asaftdCisco says exploits observed ITW. POC available at https://github.com/yassineaboukir/CVE-2018-0296 and elsewhere.
Submitted June 28, 2018 at 08:35AM by thehoodedidiot
via reddit https://ift.tt/2tNbVGn
Cisco
Cisco Security Advisory: Cisco Adaptive Security Appliance Web Services Denial of Service Vulnerability
A vulnerability in the web interface of the Cisco Adaptive Security Appliance (ASA) could allow an unauthenticated, remote attacker to cause an affected device to reload unexpectedly, resulting in a denial of service (DoS) condition. It is also possible on…
RAMPAGE AND GUARDION Vulnerabilities in modern phones enable unauthorized access
https://ift.tt/2lKlzGa
Submitted June 29, 2018 at 02:49PM by thedataking
via reddit https://ift.tt/2yQ6kF3
https://ift.tt/2lKlzGa
Submitted June 29, 2018 at 02:49PM by thedataking
via reddit https://ift.tt/2yQ6kF3
[gentoo-announce] Gentoo Github Organization Compromised
https://ift.tt/2lI9kKo
Submitted June 29, 2018 at 05:58PM by Andrew-CS
via reddit https://ift.tt/2tR28Pu
https://ift.tt/2lI9kKo
Submitted June 29, 2018 at 05:58PM by Andrew-CS
via reddit https://ift.tt/2tR28Pu
archives.gentoo.org
[gentoo-announce] Gentoo Github Organization hacked. - gentoo-announce - Gentoo Mailing List Archives
The Gentoo Mailing List Archives
h1-search: Tool that will request the public disclosures on a specific HackerOne program and show them in a localhost webserver.
https://ift.tt/2NccIJF
Submitted June 29, 2018 at 08:53PM by s0pas
via reddit https://ift.tt/2KmBwkv
https://ift.tt/2NccIJF
Submitted June 29, 2018 at 08:53PM by s0pas
via reddit https://ift.tt/2KmBwkv
GitHub
dsopas/h1-search
h1-search - Tool that will request the public disclosures on a specific HackerOne program and show them in a localhost webserver.
Extracting Url's from DOC Macro (trickbot)
https://ift.tt/2IC1D1g
Submitted June 29, 2018 at 09:34PM by ericnyamu
via reddit https://ift.tt/2Ktt7Lj
https://ift.tt/2IC1D1g
Submitted June 29, 2018 at 09:34PM by ericnyamu
via reddit https://ift.tt/2Ktt7Lj
"DoublePulsar" Patched to Work on Windows IoT Systems
https://ift.tt/2yWakEb
Submitted June 29, 2018 at 09:27PM by CaptMeelo
via reddit https://ift.tt/2Kzq9F6
https://ift.tt/2yWakEb
Submitted June 29, 2018 at 09:27PM by CaptMeelo
via reddit https://ift.tt/2Kzq9F6
BleepingComputer
NSA Exploit "DoublePulsar" Patched to Work on Windows IoT Systems
An infosec researcher who uses the online pseudonym of Capt. Meelo has modified an NSA hacking tool known as DoublePulsar to work on the Windows IoT operating system (formerly known as Windows Embedded).
Breaking LTE on Layer Two
https://ift.tt/2Mvqru9
Submitted June 29, 2018 at 10:03PM by zexterio
via reddit https://ift.tt/2tP4u1h
https://ift.tt/2Mvqru9
Submitted June 29, 2018 at 10:03PM by zexterio
via reddit https://ift.tt/2tP4u1h
reddit
r/netsec - Breaking LTE on Layer Two
4 votes and 0 so far on reddit
Every Android device is susceptible to a hardware vulnerability called RAMpage
https://ift.tt/2yWTuVw
Submitted June 30, 2018 at 02:12AM by Goovscoov
via reddit https://ift.tt/2yXAciO
https://ift.tt/2yWTuVw
Submitted June 30, 2018 at 02:12AM by Goovscoov
via reddit https://ift.tt/2yXAciO
xda-developers
Every Android device is susceptible to a hardware vulnerability called RAMpage
Every Android device is susceptible to a hardware vulnerability called RAMpage. You can read all about it here, and how to test your own Android device.
PSA: Avoid the fake Android App Runtime (ARC Welder) extension (with over 32,000 installs!) on the Chrome Web Store, as it injects ads and trackers into every webpage you visit. It is the only one that shows up in search results and the real one appears to be installable, but delisted/"noindex"-ed
https://ift.tt/2MtHH2I
Submitted June 30, 2018 at 03:45AM by Walter_Bishop_PhD
via reddit https://ift.tt/2yV5LJZ
https://ift.tt/2MtHH2I
Submitted June 30, 2018 at 03:45AM by Walter_Bishop_PhD
via reddit https://ift.tt/2yV5LJZ
reddit
r/Android - PSA: Avoid the fake Android App Runtime (ARC Welder) extension (with over 32,000 installs!) on the Chrome Web Store…
114 votes and 2 so far on reddit
Transparent Proxy with squid and iptables.
https://ift.tt/2KzWvzF
Submitted June 30, 2018 at 01:09PM by Kythx
via reddit https://ift.tt/2tSxvt9
https://ift.tt/2KzWvzF
Submitted June 30, 2018 at 01:09PM by Kythx
via reddit https://ift.tt/2tSxvt9
LinuxConfig.net
[Manual] Creating Transparent Proxy With squid and IPTables
For creating transparent proxy we need edit squid.conf and add iptables rules. Edit /etc/squid.conf file with your favorite editor, example vi vi /etc/squid.conf Add or change this lines. http_port…
Windows Search service vulnerability - Bookworm
https://ift.tt/2tGGgY1
Submitted June 30, 2018 at 11:12PM by realitycorp
via reddit https://ift.tt/2tGiHOY
https://ift.tt/2tGGgY1
Submitted June 30, 2018 at 11:12PM by realitycorp
via reddit https://ift.tt/2tGiHOY
Ostensiblyrandom
Carl's security musings
A blog about cyber security topics.
In Memory Powershell Webdav Server
https://ift.tt/2z1GCNO
Submitted July 01, 2018 at 08:48PM by p3nt4
via reddit https://ift.tt/2KCYBf5
https://ift.tt/2z1GCNO
Submitted July 01, 2018 at 08:48PM by p3nt4
via reddit https://ift.tt/2KCYBf5
GitHub
p3nt4/Invoke-TmpDavFS
Invoke-TmpDavFS - In Memory Powershell WebDav Server
UAC Bypassing Using msdt.exe XML/Execution Via Feature in Msdt - & RawLog
https://ift.tt/2tK5Ds1
Submitted July 02, 2018 at 12:14AM by ericnyamu
via reddit https://ift.tt/2tVxbd0
https://ift.tt/2tK5Ds1
Submitted July 02, 2018 at 12:14AM by ericnyamu
via reddit https://ift.tt/2tVxbd0
reddit
r/netsec - UAC Bypassing Using msdt.exe XML/Execution Via Feature in Msdt - & RawLog
3 votes and 0 so far on reddit
Advice for beginners - feedback and pull requests are appreciated
https://ift.tt/2lKHNYx
Submitted July 02, 2018 at 03:57AM by _Exaybachay_
via reddit https://ift.tt/2lOO3ia
https://ift.tt/2lKHNYx
Submitted July 02, 2018 at 03:57AM by _Exaybachay_
via reddit https://ift.tt/2lOO3ia
GitHub
exaybachay-ak/SecurityAdvice
SecurityAdvice - Collection of advice to new IT security folks
Ticketmaster's UK hack shows consumers are the last to know about data breaches
https://ift.tt/2tY8JHY
Submitted July 02, 2018 at 06:32PM by johnedx
via reddit https://ift.tt/2KCS8DR
https://ift.tt/2tY8JHY
Submitted July 02, 2018 at 06:32PM by johnedx
via reddit https://ift.tt/2KCS8DR
Quartz
When your personal data is stolen, you’re the last to know
It's a process that's become depressingly routine.
Exposing the Secret Office 365 Forensics Tool | LMG Security
https://ift.tt/2tImZo8
Submitted July 02, 2018 at 04:03PM by k3170makan
via reddit https://ift.tt/2KBvZGd
https://ift.tt/2tImZo8
Submitted July 02, 2018 at 04:03PM by k3170makan
via reddit https://ift.tt/2KBvZGd
LMG Security
Exposing the Secret Office 365 Forensics Tool | LMG Security
An ethical crisis in the digital forensics industry came to a head last week with the release of new details on Microsoft’s undocumented “Activities” API. A previously unknown trove of access and activity logs held by Microsoft allows investigators to track…