Hackers Threaten to Release 9/11 Insurance Documents
http://bit.ly/2C33QkS
Submitted January 04, 2019 at 12:50AM by Fantastic_Fix
via reddit http://bit.ly/2BWomDY
http://bit.ly/2C33QkS
Submitted January 04, 2019 at 12:50AM by Fantastic_Fix
via reddit http://bit.ly/2BWomDY
InfoSec-IT
Hackers Threaten to Release 9/11 Insurance Documents | InfoSec-IT
Hackers are threatening to release documents in relation to the 9/11 attacks, which relate to insurance claims and other secret documentation.
Inter-application vulnerabilities and HTTP header issues - my summary of 2018 in Bug Bounty programs
http://bit.ly/2R4kMBS
Submitted January 04, 2019 at 03:01AM by Keeseeel
via reddit http://bit.ly/2F5Ag27
http://bit.ly/2R4kMBS
Submitted January 04, 2019 at 03:01AM by Keeseeel
via reddit http://bit.ly/2F5Ag27
Medium
Inter-application vulnerabilities and HTTP header issues. My summary of 2018 in Bug Bounty programs.
In 2018 I managed to report 27 unique vulnerabilities in web apps of well-known companies. I’m sharing my thoughts on the reported…
It Appears China is Building a Massive Espionage Database on America
http://bit.ly/2CMdRVn
Submitted January 04, 2019 at 02:58AM by danielrm26
via reddit http://bit.ly/2GRoV7u
http://bit.ly/2CMdRVn
Submitted January 04, 2019 at 02:58AM by danielrm26
via reddit http://bit.ly/2GRoV7u
Daniel Miessler
It Appears China is Building a Massive Espionage Database on America | Daniel Miessler
I've mentioned this in numerous places for the last few years, so I decided it was time to finally put it into a formal piece. It seems obvious at this
Adobe patches two critical vulnerabilities [CVE-2018-16011/CVE-2018-19725]
https://adobe.ly/2GViWyT
Submitted January 04, 2019 at 11:26AM by Dormidera
via reddit http://bit.ly/2QjJbOF
https://adobe.ly/2GViWyT
Submitted January 04, 2019 at 11:26AM by Dormidera
via reddit http://bit.ly/2QjJbOF
Adobe
Adobe Security Bulletin
Security Bulletin for Adobe Acrobat and Reader | APSB19-02
Open redirects - the vulnerability class no one but attackers cares about
http://bit.ly/2At9IUw
Submitted January 04, 2019 at 09:06AM by steven-tabernacle
via reddit http://bit.ly/2LP8PKy
http://bit.ly/2At9IUw
Submitted January 04, 2019 at 09:06AM by steven-tabernacle
via reddit http://bit.ly/2LP8PKy
stevetabernacle.github.io
Open redirects - the vulnerability class no one but attackers cares about - Steve Tabernacle
NIST CSRC is down due to shutdown
https://csrc.nist.gov/
Submitted January 04, 2019 at 06:55AM by ejmart1n
via reddit http://bit.ly/2BX15BQ
https://csrc.nist.gov/
Submitted January 04, 2019 at 06:55AM by ejmart1n
via reddit http://bit.ly/2BX15BQ
csrc.nist.gov
NIST Computer Security Resource Center | CSRC
CSRC provides access to NIST's cybersecurity- and information security-related projects, publications, news and events.
A Summary of Planned Improvements to the Security of the PHP Ecosystem (and Beyond) for 2019
http://bit.ly/2F6iRpm
Submitted January 04, 2019 at 01:27PM by sarciszewski
via reddit http://bit.ly/2s9Ieif
http://bit.ly/2F6iRpm
Submitted January 04, 2019 at 01:27PM by sarciszewski
via reddit http://bit.ly/2s9Ieif
Paragonie
Our PHP Security Roadmap for the Year 2019 - Paragon Initiative Enterprises Blog
We have a lot of work ahead of us in 2019, and we hope it benefits the entire PHP community
Discovering and Hacking IoT Devices Using Web-Based Attacks
http://bit.ly/2VnvoKR
Submitted January 04, 2019 at 01:26PM by ziyahanalbeniz
via reddit http://bit.ly/2LNNscJ
http://bit.ly/2VnvoKR
Submitted January 04, 2019 at 01:26PM by ziyahanalbeniz
via reddit http://bit.ly/2LNNscJ
Netsparker
Discovering and Hacking IoT Devices Using Web-Based Attacks
This article discusses recent university level research on web-based attacks involving the discovery, hacking and remote control of Internet of Things (IoT) devices. We examine the duration and phases of these attacks, and conclude by suggesting some web…
Major hack of German politicians’ private data
http://bit.ly/2AvFaSp
Submitted January 04, 2019 at 04:16PM by yesnoornext
via reddit http://bit.ly/2Qopgyf
http://bit.ly/2AvFaSp
Submitted January 04, 2019 at 04:16PM by yesnoornext
via reddit http://bit.ly/2Qopgyf
threader.app
A thread written by @JulianRoepcke
#BREAKINGGermany faces the biggest hacker attack in its history.Private data of almost 1000 German #Bundestag, #Regional Parliament & #EU delegates was leaked.I worked through the leaked data all night. It's shocking!Not affected so far: #AfD.https://t.c…
Easily convert your APK into an Android Studio Project with APC, version 1.1 release notes!
http://bit.ly/2TnW2Be
Submitted January 04, 2019 at 10:32PM by ThisIsLibra
via reddit http://bit.ly/2COzGU1
http://bit.ly/2TnW2Be
Submitted January 04, 2019 at 10:32PM by ThisIsLibra
via reddit http://bit.ly/2COzGU1
reddit
r/netsec - Easily convert your APK into an Android Studio Project with APC, version 1.1 release notes!
2 votes and 0 comments so far on Reddit
Phishing template uses fake fonts to decode content and evade detection
http://bit.ly/2RdgB6T
Submitted January 05, 2019 at 01:07AM by cwardnet
via reddit http://bit.ly/2AtQ76U
http://bit.ly/2RdgB6T
Submitted January 05, 2019 at 01:07AM by cwardnet
via reddit http://bit.ly/2AtQ76U
Proofpoint
Phishing template uses fake fonts to decode content and evade
Proofpoint researchers describe a new phishing template that uses a previously undocumented font trick to decode and display pages.
BEC-International Slack Channel Aims at Impacting Fraud Across the Globe. TLP:White Information Sharing
http://bit.ly/2LQLI2e
Submitted January 05, 2019 at 02:36AM by iHeartMalware
via reddit http://bit.ly/2F9eNWh
http://bit.ly/2LQLI2e
Submitted January 05, 2019 at 02:36AM by iHeartMalware
via reddit http://bit.ly/2F9eNWh
Medium
BEC-International Slack Channel
Hello world!
Sensitive data captured in screenshots taken by Air Canada mobile application
http://bit.ly/2TsUMNi
Submitted January 05, 2019 at 07:41PM by kahunalu
via reddit http://bit.ly/2AyLGaT
http://bit.ly/2TsUMNi
Submitted January 05, 2019 at 07:41PM by kahunalu
via reddit http://bit.ly/2AyLGaT
New Town of Salem breach - already 27% cracked hashes available publicly
http://bit.ly/2LUe4IM
Submitted January 05, 2019 at 08:54PM by s3inlc
via reddit http://bit.ly/2RayVxI
http://bit.ly/2LUe4IM
Submitted January 05, 2019 at 08:54PM by s3inlc
via reddit http://bit.ly/2RayVxI
hashes.org
Hashes.org - Leak 'Blankmediagames.com (Town of Salem)'
Hashes.org is a community recovering password from submitted hashes.
HackTheBox — Mischief Writeup
http://bit.ly/2CRZVcs
Submitted January 05, 2019 at 11:57PM by TheShahzada
via reddit http://bit.ly/2Ty4hel
http://bit.ly/2CRZVcs
Submitted January 05, 2019 at 11:57PM by TheShahzada
via reddit http://bit.ly/2Ty4hel
Medium
HackTheBox — Mischief Writeup
This is one of my favorite Machine. And it’s my first CTF & HackTheBox write-up. If you read this please give me feedback, How was the…
Tool release: Universal Phishing Reverse Proxy "Modlishka" (2FA support)
http://bit.ly/2GQxEa6
Submitted January 06, 2019 at 03:36PM by piotrd_
via reddit http://bit.ly/2C5Arqj
http://bit.ly/2GQxEa6
Submitted January 06, 2019 at 03:36PM by piotrd_
via reddit http://bit.ly/2C5Arqj
GitHub
drk1wi/Modlishka
Modlishka. Reverse Proxy. Phishing NG. Contribute to drk1wi/Modlishka development by creating an account on GitHub.
Vidar and GandCrab: stealer and ransomware combo observed in the wild - Malwarebytes Labs
http://bit.ly/2F90nob
Submitted January 07, 2019 at 12:43AM by Papopoulis
via reddit http://bit.ly/2C6UG79
http://bit.ly/2F90nob
Submitted January 07, 2019 at 12:43AM by Papopoulis
via reddit http://bit.ly/2C6UG79
Malwarebytes
Vidar and GandCrab: stealer and ransomware combo observed in the wild
Threat actors combine new stealer Vidar and GandCrab ransomware in one-two punch.
PVS-Studio and Bug Bounties on Free and Open Source Software with the total bounty amount of about €850,000
http://bit.ly/2SExfJr
Submitted January 07, 2019 at 01:23AM by Muscat1992
via reddit http://bit.ly/2TrUypC
http://bit.ly/2SExfJr
Submitted January 07, 2019 at 01:23AM by Muscat1992
via reddit http://bit.ly/2TrUypC
Medium
PVS-Studio and Bug Bounties on Free and Open Source Software
n January, the EU is launching another big hunt for bugs in open-source software projects with the total bounty amount of about €850,000…
Pass the Cookie (Cloud Pivot) - Cheat Sheet
http://bit.ly/2VxENPQ
Submitted January 07, 2019 at 08:51AM by tomiknocker24
via reddit http://bit.ly/2C8UN2a
http://bit.ly/2VxENPQ
Submitted January 07, 2019 at 08:51AM by tomiknocker24
via reddit http://bit.ly/2C8UN2a
reddit
r/netsec - Pass the Cookie (Cloud Pivot) - Cheat Sheet
7 votes and 1 comment so far on Reddit
Australian Emergency Warning System hack leads to potential phishing message broadcast to thousands
https://ab.co/2CV8raz
Submitted January 07, 2019 at 03:48PM by Sgt_Splattery_Pants
via reddit http://bit.ly/2H1iKOk
https://ab.co/2CV8raz
Submitted January 07, 2019 at 03:48PM by Sgt_Splattery_Pants
via reddit http://bit.ly/2H1iKOk
ABC News
Emergency text and email service hacked, thousands receive warning messages about their personal data
A hacker sends malicious messages via text, email, and landline to tens of thousands of people across Australia after an emergency warning alert service, used by councils, is hacked.
SlackPirate - The Slack Enumeration and Extraction Tool
http://bit.ly/2TzbDOr
Submitted January 07, 2019 at 04:30PM by emtunc
via reddit http://bit.ly/2SNbUNK
http://bit.ly/2TzbDOr
Submitted January 07, 2019 at 04:30PM by emtunc
via reddit http://bit.ly/2SNbUNK
GitHub
emtunc/SlackPirate
Slack Enumeration and Extraction Tool - extract sensitive information from a Slack Workspace - emtunc/SlackPirate