CVE-2017-10271: Oracle WebLogic Server RCE – Sleep detection payload
https://ift.tt/2m3DIyM

Submitted July 09, 2018 at 07:46PM by 0xdea
via reddit https://ift.tt/2KYypvo

Timehop disclosure of security incident
https://ift.tt/2NzHmNq

Submitted July 09, 2018 at 09:17PM by Natanael_L
via reddit https://ift.tt/2udIMUQ

Improving the Tastic Thief Long-Range RFID Reader
https://ift.tt/2J4HqRX

Submitted July 09, 2018 at 11:07PM by TastyHoneyBadger
via reddit https://ift.tt/2KVxLCi

Security Firm Sued for Failing to Detect Malware That Caused a 2009 Breach
https://ift.tt/2u7blEc

Submitted July 10, 2018 at 02:15AM by MisterCBax
via reddit https://ift.tt/2L00t4P

Finding Phishing: Tools and Techniques
https://ift.tt/2zqHWKy

Submitted July 10, 2018 at 02:32AM by patrikhudak
via reddit https://ift.tt/2J77HPF

Microsoft has finally provided a service that mitigates the single most critical password-related security risk in the enterprise today: common passwords. You should kick the tires on this new Active Directory capability today, so you can deploy it as soon as it reaches general availability.
https://ift.tt/2L40cuk

Submitted July 10, 2018 at 05:24AM by longevitytech
via reddit https://ift.tt/2m4AxqE

/r/netsec's Q3 2018 Information Security Hiring Thread
OverviewIf you have open positions at your company for information security professionals and would like to hire from the /r/netsec user base, please leave a comment detailing any open job listings at your company.We would also like to encourage you to post internship positions as well. Many of our readers are currently in school or are just finishing their education.Please reserve top level comments for those posting open positions.Rules & GuidelinesInclude the company name in the post. If you want to be topsykret, go recruit elsewhere.Include the geographic location of the position along with the availability of relocation assistance.If you are a third party recruiter, you must disclose this in your posting.Please be thorough and upfront with the position details.Use of non-hr'd (realistic) requirements is encouraged.While it's fine to link to the position on your companies website, provide the important details in the comment.Mention if applicants should apply officially through HR, or directly through you.Please clearly list citizenship, visa, and security clearance requirements.You can see an example of acceptable posts by perusing past hiring threads.FeedbackFeedback and suggestions are welcome, but please don't hijack this thread (use moderator mail instead.)

Submitted July 10, 2018 at 05:09AM by ranok
via reddit https://ift.tt/2ui9qMp

Troy Hunt: The 111 Million Record Pemiblanc Credential Stuffing List
https://ift.tt/2u7iLYk

Submitted July 10, 2018 at 10:41AM by Royal_SeaLion
via reddit https://ift.tt/2m4jHIl

This $39 Device Can Defeat iOS USB Restricted Mode
https://ift.tt/2Jaf5cP

Submitted July 10, 2018 at 10:28AM by numberbuzy
via reddit https://ift.tt/2zs2iD6

Patching & Unsupported Software Websites by Vendor
https://ift.tt/2J8OcGr

Submitted July 10, 2018 at 04:20PM by bonniek4t
via reddit https://ift.tt/2JeuOaO

Synner—A TCP SYN Client written in Rust
https://ift.tt/2ukYU7g

Submitted July 10, 2018 at 05:59PM by JDBHub
via reddit https://ift.tt/2usDMfx

AT&T acquires threat intelligence company AlienVault
https://ift.tt/2ugo1b6

Submitted July 10, 2018 at 07:24PM by rickyboone
via reddit https://ift.tt/2m5lD3p

Beyond LLMNR/NBNS Spoofing
https://ift.tt/2J9wq5V

Submitted July 10, 2018 at 08:51PM by _pdp_
via reddit https://ift.tt/2L4itLg

PLEAD Downloader Used by BlackTech
https://ift.tt/2M7W7qe

Submitted July 10, 2018 at 09:21PM by EvanConover
via reddit https://ift.tt/2umLwj3

Inside and Beyond Ticketmaster: The Many Breaches of Magecart
https://ift.tt/2m5DIhO

Submitted July 10, 2018 at 11:23PM by _0x3a_
via reddit https://ift.tt/2KYRVeG

Sniff-Paste: Pastebin OSINT Harvester
https://ift.tt/2L2tIkh

Submitted July 11, 2018 at 12:46AM by amusciano
via reddit https://ift.tt/2maXmJ7

Speculative Buffer Overflows: Attacks and Defenses
https://ift.tt/2NDFq6N

Submitted July 11, 2018 at 03:53AM by _pdp_
via reddit https://ift.tt/2u8EoHE

Hey Reddit, we made a free-as-in-beer Splunk alternative in Go - announcing Gravwell Community Edition
https://ift.tt/2m5w7j8

Submitted July 11, 2018 at 03:38AM by remasis
via reddit https://ift.tt/2NHJaEc

Neatly bypassing Content Security Policy. Why 'unsafe-inline' is almost always a full-fledged XSS
https://ift.tt/2KLc3S1

Submitted July 10, 2018 at 10:16PM by i_bo0om
via reddit https://ift.tt/2L8WmQW

Shutting down the BGP Hijack Factory
https://ift.tt/2JbhaoM

Submitted July 11, 2018 at 01:14PM by lormayna
via reddit https://ift.tt/2ulTeK5

Double Free in openslp 2.0.0, PoC DoS exploit available, patch available
https://ift.tt/2IzuOSy

Submitted July 11, 2018 at 12:45PM by magnusstubman
via reddit https://ift.tt/2KQjoQx