Forwarded from SysAdmin 24x7
[URGENTE] Campaña masiva de correos phishing suplantando a Bankia
https://t.co/Ij6OpEtcOW https://t.co/aRGBAmMRdI
https://t.co/Ij6OpEtcOW https://t.co/aRGBAmMRdI
Twitter
CSIRT-CV
[URGENTE] Campaña masiva de correos phishing suplantando a Bankia https://t.co/Ij6OpEtcOW
Forwarded from SysAdmin 24x7
Burpsuite. Solución al error "SEC_ERROR_UNKNOWN_ISSUER"
#burpsuite
https://hacking-etico.com/2017/09/11/burpsuite-problema-hsts/
#burpsuite
https://hacking-etico.com/2017/09/11/burpsuite-problema-hsts/
Hacking-Etico
Burpsuite. Solución al error "SEC_ERROR_UNKNOWN_ISSUER"
El siguiente artículo va a intentar aclarar una manera bastante rápida y sencilla para evitar problemas cuando pasamos Burpsuite a nuestro sitio Web.
Forwarded from Cristina
El Confidencial
Grave ciberataque ruso a EEUU: roban documentos altamente secretos a la NSA
Ciberseguridad: Grave ciberataque ruso a EEUU: roban documentos altamente secretos a la NSA. Noticias de Tecnología. Este gravísimo ataque podría haber ayudado a los piratas a infiltrarse en los sistemas del país americano sin ser vistos.
Forwarded from Fran
Stylometry otra herramienta por la cual se te puede identificar https://medium.com/cryptomuse/how-the-nsa-caught-satoshi-nakamoto-868affcef595 estacioninformatica.blogspot.com.es/2017/08/stylometry-o-como-identifican-satoshi.html?m=1
Medium
How the NSA identified Satoshi Nakamoto
The ‘creator’ of Bitcoin, Satoshi Nakamoto, is the world’s most elusive billionaire (worth more than $7B as of November 2017). Very few…
https://www.solvetic.com/page/noticias/s/seguridad/gestores-gratis-enviar-correos-cifrados-y-seguros
Solvetic
Gestores gratis para enviar correos cifrados y seguros
Conoce estos dos servicios de correo electrónico que te van a permitir enviar tus mensajes cifrados de extremos a extremo de forma gratuita.
Forwarded from canyoupwn.me
Popular Commenting System "Disqus" Hacked — More than 17.5 Million Users' Details Stolen in 2012 Breach
https://thehackernews.com/2017/10/disqus-comment-system-hacked.html
https://thehackernews.com/2017/10/disqus-comment-system-hacked.html
The Hacker News
Disqus Hacked: More than 17.5 Million Users' Details Stolen in 2012 Breach
Disqus comment system was hacked in 2012 and hacker stole more than 17.5 million users' details
Forwarded from SysAdmin 24x7
Some Motherboards Plagued by BIOS Firmware Implementation Flaws
https://www.bleepingcomputer.com/news/security/some-motherboards-plagued-by-bios-firmware-implementation-flaws/
https://www.bleepingcomputer.com/news/security/some-motherboards-plagued-by-bios-firmware-implementation-flaws/
BleepingComputer
Some Motherboards Plagued by BIOS Firmware Implementation Flaws
Alex Matrosov, a security researcher for Cylance, has discovered several flaws in how some motherboard vendors implemented Intel's UEFI BIOS firmware into their products.
Forwarded from SysAdmin 24x7
Corregidas múltiples vulnerabilidades en Trend Micro OfficeScan
http://unaaldia.hispasec.com/2017/10/corregidas-multiples-vulnerabilidades.html
http://unaaldia.hispasec.com/2017/10/corregidas-multiples-vulnerabilidades.html
Hispasec
Corregidas múltiples vulnerabilidades en Trend Micro OfficeScan
Boletín de noticias de seguridad informática unaaldia, ofrecido por Hispasec
Forwarded from canyoupwn.me
Analysis of a malicious DOC used by Turla APT group; hunting persistence via PowerShell
http://blog.angelalonso.es/2017/10/analysis-of-malicious-doc-used-by-turla.html
http://blog.angelalonso.es/2017/10/analysis-of-malicious-doc-used-by-turla.html
blog.angelalonso.es
Analysis of a malicious DOC used by Turla APT group; hunting persistence via PowerShell
Yesterday, John Lambert (@JohnLaTwC ), from Microsoft Threat Intelligence Center twitted about some malicious document used by Turla ATP g...
Forwarded from St3C4nB5T25
RT @Dinosn: POC - Hiding Your Process From SysInternals https://t.co/8bP0w8X18c
Riscy Business
Hiding Your Process from Sysinternals
Malicious.exe running, but does not show up in Procexp.exe I was researching ways to not just do anti-analysis, but to rather run executables in spite of analysis, while evading analysis. I …
Forwarded from St3C4nB5T25
Gerben Javado
Manual SQL injection discovery tips
According to bugbountyforum.com's AMA format one of the most popular questions is How do you test for Server Side vulnerabilities such as SQLi?. Up until recently I was struggling with this question (especially towards SQLi) as well. The SQLi's I did find…
Un informático en el lado del mal: "ChromeCrash" o cómo jugar con tu Google Chromecast sin autenticarse
http://www.elladodelmal.com/2017/10/chromecrash-o-como-jugar-con-tu-google.html?m=1
http://www.elladodelmal.com/2017/10/chromecrash-o-como-jugar-con-tu-google.html?m=1
Elladodelmal
"ChromeCrash" o cómo jugar con tu Google Chromecast sin autenticarse
Blog personal de Chema Alonso, consultor de seguridad en Informática 64, sobre seguridad, hacking, hackers, Cálico Electrónico y sus paranoias.
Forwarded from followthewhiterabbit
Próximas CONS:
- Navaja Negra (Albacete) 5-7 Oct.
- 8.8 (Uruguay) 16-17 Oct.
- 8.8 (Perú) 19-20 Oct.
- 8.8 (Bolivia) 23 -24 Oct.
- 8.8 (Chile) 26-27 Oct.
- HoneyCon (Guadalajara) 9-11 Nov.
- Qurtuba (Córdoba) 17-18 Nov.
- SecAdmin (Sevilla) 24-25 Nov.
- NoCOName (Barcelona) 24-25 Nov.
- Cybercamp (Santander) 30-3 Dic.
- CCN-CERT (Madrid) 13-14 Dic.
By @fwhibbit
- Navaja Negra (Albacete) 5-7 Oct.
- 8.8 (Uruguay) 16-17 Oct.
- 8.8 (Perú) 19-20 Oct.
- 8.8 (Bolivia) 23 -24 Oct.
- 8.8 (Chile) 26-27 Oct.
- HoneyCon (Guadalajara) 9-11 Nov.
- Qurtuba (Córdoba) 17-18 Nov.
- SecAdmin (Sevilla) 24-25 Nov.
- NoCOName (Barcelona) 24-25 Nov.
- Cybercamp (Santander) 30-3 Dic.
- CCN-CERT (Madrid) 13-14 Dic.
By @fwhibbit