Electron Chromium RCE
http://ift.tt/2fRMLQL

Submitted September 28, 2017 at 05:19PM by SladeyMcNuggets
via reddit http://ift.tt/2xIjOAf

Solar fencing
http://ift.tt/2tEVmeE

Submitted September 28, 2017 at 06:24PM by smartfence
via reddit http://ift.tt/2wYKDRS

Recent NVR and CCTV Hack
I work at a security company. This week a lot of our clients' (including some of the employees who work here) CCTV systems have been hacked. When they view the cameras on the monitor, the device has been dimmed and the camera name has been changed to HACKED.Haven't seen anything on the news but this seems like it could be a problem nationwide

Submitted September 28, 2017 at 06:05PM by bGriffLocksmith
via reddit http://ift.tt/2fsLwqs

Security In 5: Episode 78 - Learning From Equifax - Application Security
http://ift.tt/2yvldaK

Submitted September 28, 2017 at 06:33PM by BinaryBlog
via reddit http://ift.tt/2ytSl2I

Playing with kernel TLS in Linux 4.13 and Go
http://ift.tt/2xPjBsY

Submitted September 28, 2017 at 07:15PM by pheedrus
via reddit http://ift.tt/2wmJCyK

[Whitepaper] Subverting Trust in Windows - Bypass Windows digital signature
http://ift.tt/2yj4MOz

Submitted September 28, 2017 at 08:20PM by Palaksa
via reddit http://ift.tt/2fTDlUY

Knowledge Sharing: Folks who respond to client security inquiries (i.e. fill out questionnaires), what tools do you use? What tips and trick can you offer?
Part of my current role has me responding to security questionnaires from clients/customers. I currently use an Excel spreadsheet to catalog all of the questions and responses I encounter. Since questions are rarely worded the same way, it is tedious to find similar questions that have been answered previously, thus making the process incredibly cumbersome. Especially when questionnaires have hundreds of questions.So, for those of you in a similar role, what tools do you use? Do you have any tips or tricks that you can offer me and possibly anyone else reading this who does the same thing?

Submitted September 28, 2017 at 08:47PM by ghostmanure
via reddit http://ift.tt/2xDDy65

DerbyCon 2017 CTF Write Up
http://ift.tt/2yISBMb

Submitted September 28, 2017 at 09:32PM by eth_
via reddit http://ift.tt/2wlYi0Q

Is your grammar software a security risk?
http://ift.tt/2fC1aUm

Submitted September 28, 2017 at 09:27PM by speckz
via reddit http://ift.tt/2xIYeeP

Inferring Fine-grained Control Flow Inside SGX Enclaves with Branch Shadowing (this is Bad)
http://ift.tt/2xDLFRM

Submitted September 28, 2017 at 10:22PM by Syonyk
via reddit http://ift.tt/2xIWFO0

Banking Trojan Attempts To Steal Brazillion$
http://ift.tt/2xF1nuo

Submitted September 28, 2017 at 11:04PM by majorllama
via reddit http://ift.tt/2xAylPe

Entrapass programming
I recently had a Kantech system installed. I am playing around with the smartlink task builder which does not have much in terms of documentation.Is there any way to add logic (IF ELSE) in programming?I have a door that is normally unlocked by schedule, however we have it programmed to lock for certain events.I have another event that needs for the door to be unlocked. If it is locked for a certain event, it is temporary unlocked and then automatically relocks. However if it is unlocked by schedule, a temporary unlock will relock the door and not return to schedule.So I kind of need: If door state locked, temporary unlock otherwise leave it alone.Any ideas on how to implement this?

Submitted September 28, 2017 at 11:17PM by Jfmuller
via reddit http://ift.tt/2yJvVvf

Over The Air - Vol. 2, Pt. 1: Exploiting The Wi-Fi Stack on Apple Devices
http://ift.tt/2xNy9vE

Submitted September 28, 2017 at 11:21PM by giomke
via reddit http://ift.tt/2xJmhue

Exploiting insecure file extraction in Python for code execution
http://ift.tt/2wmSGn4

Submitted September 29, 2017 at 02:09AM by ajinabraham
via reddit http://ift.tt/2yvUHhv

We need to talk about TLS 1.2 Session Tickets
http://ift.tt/2yvvzaK

Submitted September 29, 2017 at 01:36AM by quarrelyank
via reddit http://ift.tt/2fVaY8Y

Over The Air - Vol. 2, Pt. 1: Exploiting The Wi-Fi Stack on Apple Devices
http://ift.tt/2hztAip

Submitted September 28, 2017 at 10:21PM by xvipr
via reddit http://ift.tt/2xJ5cAs

This links (change your@email.com to your email) will make it look like you've received money from someone to your Paypal. You haven't. Paypal aren't doing anything about it.
http://ift.tt/2fuoiQP

Submitted September 29, 2017 at 03:31AM by FatsDominosDomino
via reddit http://ift.tt/2xOHy6b

Borrowing Microsoft Code Signing Certificates
http://ift.tt/2x0uprv

Submitted September 29, 2017 at 04:00AM by spehno
via reddit http://ift.tt/2xF0BgT

Question about firewalls
My company is currently looking into sophos firewalls. We have 4 offices, but all of the data is at the main office. People will need to access the data from the remote sites. What are the pros and cons to only putting a firewall at our main office and using vpn login for the 3 offsite locations as opposed to firewalls at all locations? I can't seem to find anything on this.

Submitted September 29, 2017 at 06:37AM by AlSharptonIsWorthles
via reddit http://ift.tt/2k7yGDe

Browser plugin that anonymizes my location?
As I do a lot of OSINT work, (mostly social media and background investigations), both in the office and in the field. Our IT department for our company is not interested in solutions such as what I run at home, and our field investigators are concerned about the use of VPN's and how they tend to slow down the laptops they are working on, so, other than a decent browser anonymizer plugin, what's an ideal solution to provide both anonymity and will keep my IT guys happy? If the browser plugin is the ideal solution, then what would one recommend for our needs?Thanks!

Submitted September 29, 2017 at 06:14AM by Calgary_PI
via reddit http://ift.tt/2hBasRb

Introducing Cloudflare Warp: Hide Behind The Edge
http://ift.tt/2hAkUbm

Submitted September 29, 2017 at 11:21AM by thel3l
via reddit http://ift.tt/2hzPWQU