Linux Attack Surface Analysis -- dawgmon 1.0 release
http://ift.tt/2wpA4Hg
Submitted September 19, 2017 at 01:17AM by anvilventures
via reddit http://ift.tt/2ffrMtZ
http://ift.tt/2wpA4Hg
Submitted September 19, 2017 at 01:17AM by anvilventures
via reddit http://ift.tt/2ffrMtZ
Anvilventures
Linux Attack Surface Analysis
Linux attack surface analysis and monitoring -- dawgmon
Pytosquatting -- killing typosquatting+namesquatting threats in PyPI
http://ift.tt/2x7nAmt
Submitted September 19, 2017 at 01:08AM by KingdomOfBullshit
via reddit http://ift.tt/2xtkxW1
http://ift.tt/2x7nAmt
Submitted September 19, 2017 at 01:08AM by KingdomOfBullshit
via reddit http://ift.tt/2xtkxW1
DigitalOcean suffers 1-Click Setup vulnerability affecting debian-sys-maint MySQL user
http://ift.tt/2xbgFab
Submitted September 19, 2017 at 04:44AM by hp777us
via reddit http://ift.tt/2fgaAV8
http://ift.tt/2xbgFab
Submitted September 19, 2017 at 04:44AM by hp777us
via reddit http://ift.tt/2fgaAV8
GitHub
digitalocean/debian-sys-maint-roll-passwd
debian-sys-maint-roll-passwd - Script to update password for MySQL user "debian-sys-maint"
Ransomware Variant "Nyetya" Compromises Systems Worldwide
http://ift.tt/2tTcjlR
Submitted September 19, 2017 at 06:39AM by agb-101
via reddit http://ift.tt/2f795Vz
http://ift.tt/2tTcjlR
Submitted September 19, 2017 at 06:39AM by agb-101
via reddit http://ift.tt/2f795Vz
Talosintelligence
New Ransomware Variant "Nyetya" Compromises Systems Worldwide
A blog from the world class Intelligence Group, Talos, Cisco's Intelligence Group
World Wide Web Consortium abandons consensus, standardizes DRM with 58.4% support, EFF resigns and says "This is a bad day for the W3C: it's the day it publishes a standard designed to control, rather than empower, web users."
http://ift.tt/2wqQJdB
Submitted September 19, 2017 at 10:19AM by TheReelStig
via reddit http://ift.tt/2wCT4wX
http://ift.tt/2wqQJdB
Submitted September 19, 2017 at 10:19AM by TheReelStig
via reddit http://ift.tt/2wCT4wX
Boing Boing
World Wide Web Consortium abandons consensus, standardizes DRM with 58.4% support, EFF resigns
World Wide Web Consortium abandons consensus, standardizes DRM with 58.4% support, EFF resigns
If you can't patch soon and there's a zero day lurking, answer this and get some compensatory controls.
http://ift.tt/2fx6Fk1
Submitted September 19, 2017 at 11:40AM by xrna
via reddit http://ift.tt/2heDDW8
http://ift.tt/2fx6Fk1
Submitted September 19, 2017 at 11:40AM by xrna
via reddit http://ift.tt/2heDDW8
Cyber Sins
I know I haven't patched yet, and there's a zero-day knocking at my door
Patching is important, but let's agree it takes time. It takes time to test & validate the patch in your environment, check the application compatibility with the software and the underlying services. And then, one fine day, an adversary just hacks your server…
Want to Create Hotmail Account Or want Hotmail Toll-Free Number
http://ift.tt/2wstIXB
Submitted September 19, 2017 at 12:38PM by smithsgone
via reddit http://ift.tt/2ffsEie
http://ift.tt/2wstIXB
Submitted September 19, 2017 at 12:38PM by smithsgone
via reddit http://ift.tt/2ffsEie
Mezun
CGACC Social Network - Common Hotmail Issues That You Encounter on a Day to Day Basis
Hotmail is perhaps one of the oldest email platforms, which is still used by many. With an attractive user interface and a host of other benefits, it is certainly built to suit the individual needs and preferences. However, with the changing scenario, you...
Vulnerability in SMS-based 2FA through security hole SS7
http://ift.tt/2ffn53C
Submitted September 19, 2017 at 01:26PM by Frank_Underweed
via reddit http://ift.tt/2xMCP5G
http://ift.tt/2ffn53C
Submitted September 19, 2017 at 01:26PM by Frank_Underweed
via reddit http://ift.tt/2xMCP5G
TechCrunch
Coinbase vulnerability is a good reminder that SMS-based 2FA can wreak havoc
Two days ago, a friend who invested in Bitcoin asked me how secure her Coinbase investment was. She had plans to put her coins in cold storage, but as a security stopgap was relying on two-factor…
Avast: Update to the CCleaner 5.33.6162 Security Incident
http://ift.tt/2f6Z7Us
Submitted September 19, 2017 at 04:04PM by campuscodi
via reddit http://ift.tt/2xiDp9P
http://ift.tt/2f6Z7Us
Submitted September 19, 2017 at 04:04PM by campuscodi
via reddit http://ift.tt/2xiDp9P
Avast
Update to the CCleaner 5.33.6162 Security Incident
Clarifying what happened and outlining our next steps in protecting CCleaner customers
Python utility to help developers identify fake typosquatted Python PyPI libraries
http://ift.tt/2fgUE5l
Submitted September 19, 2017 at 04:02PM by campuscodi
via reddit http://ift.tt/2xiKWpe
http://ift.tt/2fgUE5l
Submitted September 19, 2017 at 04:02PM by campuscodi
via reddit http://ift.tt/2xiKWpe
Bytelion
The PYPI Python Package Hack - Bytelion
There is a brand new hack out there that has very quietly affected many of people. Malicious developers uploaded slightly misspelled library names in Python’s package installer PyPi. Prominent examples include...
How Security Film Protects Schools | CWS
https://www.youtube.com/watch?v=gRdd3u0eE00&feature=share
Submitted September 19, 2017 at 05:21PM by RileyMorris088
via reddit http://ift.tt/2wDuiNn
https://www.youtube.com/watch?v=gRdd3u0eE00&feature=share
Submitted September 19, 2017 at 05:21PM by RileyMorris088
via reddit http://ift.tt/2wDuiNn
YouTube
How Security Film Protects Schools | CWS
http://www.commercialwindowshield.com/ : As violent school invasions increase, school districts all over America are upgrading security in their buildings. S...
X41 Browser Security White Paper (Chrome/Edge/IE)
http://ift.tt/2xadD8u
Submitted September 19, 2017 at 06:39PM by reknerxam
via reddit http://ift.tt/2ynetfO
http://ift.tt/2xadD8u
Submitted September 19, 2017 at 06:39PM by reknerxam
via reddit http://ift.tt/2ynetfO
X41 D-SEC GmbH
X41 D-Sec GmbH releases Browser Security White Paper, assessing Google Chrome, Microsoft Edge, and Internet Explorer
X41 D-Sec GmbH (“X41”) - a research driven IT-Security company - released an in-depth analysis of the three leading enterprise web browsers Google Chrome, Microsoft Edge, and Internet Explorer.
Browser Security White Paper
http://ift.tt/2xtSeXx
Submitted September 19, 2017 at 06:56PM by imr2017
via reddit http://ift.tt/2jEtQx0
http://ift.tt/2xtSeXx
Submitted September 19, 2017 at 06:56PM by imr2017
via reddit http://ift.tt/2jEtQx0
Surviving Apache Struts CVE-2017-5638
http://ift.tt/2xMf9hH
Submitted September 19, 2017 at 06:51PM by kingkilr
via reddit http://ift.tt/2xj6YYR
http://ift.tt/2xMf9hH
Submitted September 19, 2017 at 06:51PM by kingkilr
via reddit http://ift.tt/2xj6YYR
reddit
Surviving Apache Struts CVE-2017-5638 • r/netsec
1 points and 0 comments so far on reddit
Security In 5: Episode 71 - Learning From Equifax, Patch Your Systems
http://ift.tt/2wtjjuH
Submitted September 19, 2017 at 06:39PM by BinaryBlog
via reddit http://ift.tt/2ymuhzs
http://ift.tt/2wtjjuH
Submitted September 19, 2017 at 06:39PM by BinaryBlog
via reddit http://ift.tt/2ymuhzs
Libsyn
Security In Five Podcast: Episode 71 - Learning From Equifax, Patch Your Systems
The Equifax breach was the largest to date. As anyone in the security profession should do on a regular basis is learn from other's mistakes. As details emerge on all the components that lead to Equifax's failure, we can use those to improve our own programs.…
Read on the Web: IDG Contributor Network: A note to mom about cybersecurity
http://ift.tt/2w5gNXs
Submitted September 19, 2017 at 06:18PM by MicheeLengronne
via reddit http://ift.tt/2f7VmOE
http://ift.tt/2w5gNXs
Submitted September 19, 2017 at 06:18PM by MicheeLengronne
via reddit http://ift.tt/2f7VmOE
Limawi
Read on the Web: IDG Contributor Network: A note to mom about cybersecurity
Read on the Web: If you have to explain your mum basic steps for cybersecurity, what will you do ?
Wire, the Messenger, has opened up their server code
http://ift.tt/2jHn75o
Submitted September 19, 2017 at 06:09PM by _Ki_
via reddit http://ift.tt/2w5gPyy
http://ift.tt/2jHn75o
Submitted September 19, 2017 at 06:09PM by _Ki_
via reddit http://ift.tt/2w5gPyy
Medium
Wire server code now 100% open source — the journey continues
Earlier this year, we started open sourcing Wire server code under the AGPL license. Today, the code necessary to run Wire servers is…
Want to change Hotmail password and Hotmail Contact Number?
http://ift.tt/2f7cynl
Submitted September 19, 2017 at 05:53PM by smithsgone
via reddit http://ift.tt/2w5gRqa
http://ift.tt/2f7cynl
Submitted September 19, 2017 at 05:53PM by smithsgone
via reddit http://ift.tt/2w5gRqa
email-support-number.sitey.me
Hotmail Contact Number +1-855-855-3883
Hotmail Support Number +1-855-855-3883 provides best services around the globe, where you can do a live chat or talk with the Hotmail technicians
Kernel Driver mmap Handler Exploitation
http://ift.tt/2ybBzFp
Submitted September 19, 2017 at 07:39PM by maxxori
via reddit http://ift.tt/2xk8w4V
http://ift.tt/2ybBzFp
Submitted September 19, 2017 at 07:39PM by maxxori
via reddit http://ift.tt/2xk8w4V
First bounty, time to step up my game
http://ift.tt/2wtSOFm
Submitted September 19, 2017 at 08:02PM by kciredor_
via reddit http://ift.tt/2xjv7P0
http://ift.tt/2wtSOFm
Submitted September 19, 2017 at 08:02PM by kciredor_
via reddit http://ift.tt/2xjv7P0
Kciredor
First bounty, time to step up my game
What happened Hello again and thanks for reading my second blog post! After publishing my first blog I kept on trying to hack different companies and website...
Running An Application-Specific Trust Store?
I ran into this at one of my clients and I'm not sure this is possible/practical.This is a CentOS/RHEL environment with latest patches/CA bundles installed. However, this particular application team wants to NOT depend on the system trust store. They want a way for all their apps and tools to instead use a trust store they control in applications space.Is there a way to make something other than OS trust store the default so this will just work, or will they have custom configure every app and tool to do this?TIA
Submitted September 19, 2017 at 09:35PM by tundra
via reddit http://ift.tt/2yn1Bqb
I ran into this at one of my clients and I'm not sure this is possible/practical.This is a CentOS/RHEL environment with latest patches/CA bundles installed. However, this particular application team wants to NOT depend on the system trust store. They want a way for all their apps and tools to instead use a trust store they control in applications space.Is there a way to make something other than OS trust store the default so this will just work, or will they have custom configure every app and tool to do this?TIA
Submitted September 19, 2017 at 09:35PM by tundra
via reddit http://ift.tt/2yn1Bqb
reddit
Running An Application-Specific Trust Store? • r/security
I ran into this at one of my clients and I'm not sure this is possible/practical. This is a CentOS/RHEL environment with latest patches/CA...