β Tianfu Cup Round-Up: Safari, Chrome, D-Link Routers and Office 365 Successfully Hacked β
π Read
via "Threatpost".
White-hat hackers using never-before-seen zero days against popular applications and devices against competed at two-day gathering in Chengdu.π Read
via "Threatpost".
Threat Post
Tianfu Cup Round-Up: Safari, Chrome, D-Link Routers and Office 365 Successfully Hacked
White-hat hackers using never-before-seen zero days against popular applications and devices against competed at two-day gathering in Chengdu.
π΄ 13 Security Pros Share Their Most Valuable Experiences π΄
π Read
via "Dark Reading: ".
From serving as an artillery Marine to working a help desk, a baker's dozen of security pros share experiences that had the greatest influence on their careers.π Read
via "Dark Reading: ".
Darkreading
13 Security Pros Share Their Most Valuable Experiences
From serving as an artillery Marine to working a help desk, a baker's dozen of security pros share experiences that had the greatest influence on their careers.
β Pipka Card Skimmer Removes Itself After Infecting eCommerce Sites β
π Read
via "Threatpost".
The web skimmer has been spotted on at least 17 popular eCommerce websites, a new Visa alert warns.π Read
via "Threatpost".
Threat Post
Pipka Card Skimmer Removes Itself After Infecting eCommerce Sites
The web skimmer has been spotted on at least 17 popular eCommerce websites, a new Visa alert warns.
π΄ Quantum Computing Breakthrough Accelerates the Need for Future-Proofed PKI π΄
π Read
via "Dark Reading: ".
Public key infrastructure is a foundational security tool that has evolved to become a critical base for future advancements. Today's generation of PKI can be coupled with quantum-resistant algorithms to extend the lifespan of digital certificates for decades.π Read
via "Dark Reading: ".
Dark Reading
Quantum Computing Breakthrough Accelerates the Need for Future-Proofed PKI
Public key infrastructure is a foundational security tool that has evolved to become a critical base for future advancements. Today's generation of PKI can be coupled with quantum-resistant algorithms to extend the lifespan of digital certificates for decades.
β βWildly Differentβ Privacy Regulations Causing Compliancy Chaos β
π Read
via "Threatpost".
Threatpost talks to Anthony di Bello with OpenText, at ENFUSE 2019, about the successes and failures of security regulations, and how companies are changing as they struggle to keep up with compliancy issues.π Read
via "Threatpost".
Threat Post
βWildly Differentβ Privacy Regulations Causing Compliance Chaos
Threatpost talks to Anthony di Bello with OpenText, at ENFUSE 2019, about the successes and failures of security regulations, and how companies are changing as they struggle to keep up with compliance issues.
π XSSer Penetration Testing Tool 1.8-2 π
π Go!
via "Security Tool Files β Packet Storm".
XSSer is an open source penetration testing tool that automates the process of detecting and exploiting XSS injections against different applications. It contains several options to try to bypass certain filters, and various special techniques of code injection.π Go!
via "Security Tool Files β Packet Storm".
Packetstormsecurity
XSSer Penetration Testing Tool 1.8-2 β Packet Storm
Information Security Services, News, Files, Tools, Exploits, Advisories and Whitepapers
π cryptmount Filesystem Manager 5.3.2 π
π Go!
via "Security Tool Files β Packet Storm".
cryptmount is a utility for creating and managing secure filing systems on GNU/Linux systems. After initial setup, it allows any user to mount or unmount filesystems on demand, solely by providing the decryption password, with any system devices needed to access the filing system being configured automatically. A wide variety of encryption schemes (provided by the kernel dm-crypt system and the libgcrypt library) can be used to protect both the filesystem and the access key. The protected filing systems can reside in either ordinary files or disk partitions. The package also supports encrypted swap partitions, and automatic configuration on system boot-up.π Go!
via "Security Tool Files β Packet Storm".
Packetstormsecurity
cryptmount Filesystem Manager 5.3.2 β Packet Storm
Information Security Services, News, Files, Tools, Exploits, Advisories and Whitepapers
β Office 365 Admins Targeted in Ongoing Phishing Scam β
π Read
via "Threatpost".
Using a real Office 365 account at a legitimate company to send out lures helps phishers evade email defenses.π Read
via "Threatpost".
Threat Post
Office 365 Admins Targeted in Ongoing Phishing Scam
Using a real Office 365 account at a legitimate company to send out lures helps phishers evade email defenses.
π΄ Facebook Discloses WhatsApp MP4 Video Vulnerability π΄
π Read
via "Dark Reading: ".
A stack-based buffer overflow bug can be exploited by sending a specially crafted video file to a WhatsApp user.π Read
via "Dark Reading: ".
Dark Reading
Facebook Discloses WhatsApp MP4 Video Vulnerability
A stack-based buffer overflow bug can be exploited by sending a specially crafted video file to a WhatsApp user.
π΄ How Medical Device Vendors Hold Healthcare Security for Ransom π΄
π Read
via "Dark Reading: ".
While being pummeled by ransomware attacks, healthcare centers also face growing IoT-related threats. Here's how they manage security amid a complex set of risks.π Read
via "Dark Reading: ".
Dark Reading
How Medical Device Vendors Hold Healthcare Security for Ransom
While being pummeled by ransomware attacks, healthcare centers also face growing IoT-related threats. Here's how they manage security amid a complex set of risks.
π PrivSec conference highlights CISO concerns and future data privacy laws π
π Read
via "Security on TechRepublic".
The conference, hosted by Columbia University, brought together CISOs, lawmakers, academics, and businesses to discuss GDPR, CCPA, and data privacy in all its forms.π Read
via "Security on TechRepublic".
TechRepublic
PrivSec conference highlights CISO concerns and future data privacy laws
The conference, hosted by Columbia University, brought together CISOs, lawmakers, academics, and businesses to discuss GDPR, CCPA, and data privacy in all its forms.
π Mastering DFIR: Digital Guardian for DFIR and Data Protection π
π Read
via "Subscriber Blog RSS Feed ".
In this post, the second of two blogs, Bill Bradley breaks down DG Wingman and Digital Guardian's data protection capabilities.π Read
via "Subscriber Blog RSS Feed ".
Digital Guardian
Mastering DFIR: Digital Guardian for DFIR and Data Protection
In this post, the second of two blogs, Bill Bradley breaks down DG Wingman and Digital Guardian's data protection capabilities.
β The Unhappiest Subscribers on Earth? Disney+ Accounts Hacked & Hijacked β
π Read
via "Threatpost".
Thousands of accounts showed up on the Dark Web -- and customers say Disney has been no help.π Read
via "Threatpost".
Threat Post
The Unhappiest Subscribers on Earth? Disney+ Accounts Hacked & Hijacked
Thousands of accounts showed up on the Dark Web β and customers say Disney has been no help.
β WhatsApp Remote Code Execution Triggered by Videos β
π Read
via "Threatpost".
The flaw can be trivially exploited.π Read
via "Threatpost".
Threat Post
WhatsApp Remote Code Execution Triggered by Videos
The flaw can be trivially exploited.
π How to manage site settings in Vivaldi for Android π
π Read
via "Security on TechRepublic".
Find out how to enable or disable permissions on a site-by-site basis in the Vivaldi browser.π Read
via "Security on TechRepublic".
TechRepublic
How to manage site settings in Vivaldi for Android
Find out how to enable or disable permissions on a site-by-site basis in the Vivaldi browser.
π΄ GitHub Initiative Seeks to Secure Open Source Code π΄
π Read
via "Dark Reading: ".
New Security Lab will give researchers, developers, code maintainers, and organizations a way to coordinate efforts on addressing vulnerabilities.π Read
via "Dark Reading: ".
Dark Reading
GitHub Initiative Seeks to Secure Open Source Code
New Security Lab will give researchers, developers, code maintainers, and organizations a way to coordinate efforts on addressing vulnerabilities.
π΄ Windows Hello for Business Opens Door to New Attack Vectors π΄
π Read
via "Dark Reading: ".
Researchers exploring Windows Hello for Business found an Active Directory backdoor and other attack vectors that could lead to privilege escalation.π Read
via "Dark Reading: ".
Dark Reading
Windows Hello for Business Opens Door to New Attack Vectors
Researchers exploring Windows Hello for Business found an Active Directory backdoor and other attack vectors that could lead to privilege escalation.
π΄ Disney+ Credentials Land in Dark Web Hours After Service Launch π΄
π Read
via "Dark Reading: ".
The credentials, priced from free to $11 per account, appear to be due to victims' re-use of logins and passwords.π Read
via "Dark Reading: ".
Darkreading
Disney+ Credentials Land in Dark Web Hours After Service Launch
The credentials, priced from free to $11 per account, appear to be due to victims' re-use of logins and passwords.
β Americans Concerned, Confused Over Privacy, Survey Reveals β
π Read
via "Threatpost".
Survey reveals that skepticism towards privacy issues remain at an all-time high.π Read
via "Threatpost".
Threat Post
Americans Concerned, Confused Over Privacy, Survey Reveals
Survey reveals that skepticism towards privacy issues remain at an all-time high.
π΄ Americans Fed Up With Lack of Data Privacy π΄
π Read
via "Dark Reading: ".
Eight out of every 10 US adults are worried over their inability to control how data about them is used, a new Pew Research survey shows.π Read
via "Dark Reading: ".
Dark Reading
Americans Fed Up With Lack of Data Privacy
Eight out of every 10 US adults are worried over their inability to control how data about them is used, a new Pew Research survey shows.