Port 22

Learn how to use and scale osquery to detect evasive or fileless malware, stealthy persistence, unseen attacks etc. (Free Video Training)

/u/dimitrios_eLSReddit NetSec

Researcher banned from Valve's bug bounty program publishes 2nd Steam Local Privilege Escalation 0-day

/u/tubularobotReddit NetSec

New FISMA Report Shows Progress, Gaps in Federal Cybersecurity

Curtis Franklin Jr. Senior Editor at Dark ReadingDark Reading - Threat Intelligence

MoviePass Leaves Credit Card Numbers, Personal Data Exposed Online

Kelly Sheridan Staff Editor, Dark ReadingDark Reading - Threat Intelligence

Attack (with) Jupyter!

/u/inf0junki3Reddit NetSec

'Box Shield' Brings New Security Controls

Kelly Sheridan Staff Editor, Dark ReadingDark Reading - Threat Intelligence

First half 2019 sees 4,000 data breaches exposing 4B records

/u/magenta_placentaReddit NetSec

privilege escalation attacks on Windows.

/u/ghostnilReddit NetSec

State-Sponsored Cyberattacks Target Medical Research

Robert Lemos Contributing WriterDark Reading - Threat Intelligence

Forced Password Reset? Check Your Assumptions

BrianKrebsKrebs on Security

Google Finds 20-Year-Old Microsoft Windows Vulnerability

Bruce SchneierSchneier on Security

XSLT Injection Basics with Saxon+- Ektron CMS rce PoC

/u/hunniccyberReddit NetSec

Education and privacy legislation at ChannelCon

Lysa MyersESET

Duolingo Learning Full Unlocked + Mod for android - APKROOK

/u/blackmafia009Reddit NetSec

7 Big Factors Putting Small Businesses At Risk

Kelly Sheridan Staff Editor, Dark ReadingDark Reading - Threat Intelligence

Google and Mozilla Block Kazakhstans Root CA Certificates to Prevent Spying

noreply@blogger.com (Unknown)The Hackers News

Russian Hacking Group Targeting Banks Worldwide With Evolving Tactics

noreply@blogger.com (Swati Khandelwal)The Hackers News

Release out-of-tree v1.0.0 kernel {module, exploit} development tool

/u/jollheefReddit NetSec

CISOs Struggle with Diminishing Tools to Protect Assets from Growing Threats

Dark Reading StaffDark Reading - Threat Intelligence

Automating pentests with WebDriver

/u/inf0junki3Reddit NetSec

Ransomware wave hits 23 towns in Texas

Tom FoltnESET

rest-client Gem Hijacked

/u/The_Giant_PandaReddit NetSec

The Age of Surveillance Capitalism and The Price We Pay

/u/WoodenStableReddit NetSec

Use This Privacy Tool to View and Clear Your 'Off-Facebook Activity' Data

noreply@blogger.com (Swati Khandelwal)The Hackers News

Dont Be a Menace to ROKKEX: Example of An Impersonation Attack

/u/SkullarkalReddit NetSec

Surveillance as a Condition for Humanitarian Aid

Bruce SchneierSchneier on Security

Cyberthreats Against Financial Services Up 56%

Dark Reading StaffDark Reading - Threat Intelligence

AuthCov: Open source web app authorization crawling & scanning tool (SPA-compatible!)

/u/moneroplace3Reddit NetSec

Getting Start with AppSec: Updated

/u/Eta-MesonReddit NetSec

An unintentional insider threat (UIT) is a current or former employee, contractor, or business

/u/Eta-MesonReddit NetSec

Do Not Pay Ransomware A Lesson for Municipalities

/u/sandrozcReddit NetSec

Zebra Industrial Printers

Advisory DocumentICS-Cert Advisories

iOS 12.4 jailbreak released after Apple accidentally un-patches an old flaw

noreply@blogger.com (Wang Wei)The Hackers News

The Common Vulnerability Scoring System (CVSS) provides an open framework for communicating the characteristics and impacts of IT vulnerabilities. A newer version presents changes in the scoring system that reflects more accurately the vulnerabilities that fall under the web application domain.

/u/Ozi1992Reddit NetSec

Application, Data And Host Security

/u/Edu_GuidanceReddit NetSec

5 Ways to Improve the Patching Process

Kacy Zurkus Contributing WriterDark Reading - Threat Intelligence

DejaBlue: Analyzing a RDP Heap Overflow

/u/ga-vuReddit NetSec

How Activity Logs Help WordPress Admins Better Manage Website Security

noreply@blogger.com (The Hacker News)The Hackers News

Hackers Planted Backdoor in Webmin, Popular Utility for Linux/Unix Servers

noreply@blogger.com (Unknown)The Hackers News

Webinar: How We Bypassed All NTLM Relay Mitigations

/u/borisdanReddit NetSec

GAME OVER: Detecting and Stopping an APT41 Operation

Alex Pennino (noemail@noemail.org)Fire Eye Threat Research

Exploiting A/B Testing for Fun and Profit (Part 1)

/u/raen120Reddit NetSec

Router Network Isolation Broken By Covert Data Exfiltration

/u/WhiteHatTXReddit NetSec

The Rise of Bulletproof Residential Networks

BrianKrebsKrebs on Security

Uncovering a MyKings Variant With Bootloader Persistence via Managed Detection and Response

Trend MicroTrend Micro

Influence Operations Kill Chain

Bruce SchneierSchneier on Security

CVSS v3 Creates New Challenges For Developers.

/u/dunrycReddit NetSec

IT threat evolution Q2 2019

David EmmSecure List

IT threat evolution Q2 2019. Statistics

Victor ChebyshevSecure List

Uploading web.config for Fun and Profit 2

/u/albinowaxReddit NetSec

Step by step guide to a full internal network pentest

/u/powershelltutorialsReddit NetSec

Hack The Box - Helpline Write-up

/u/htschadReddit NetSec

Hack The Box - Helpline Write-up by 0xRick

/u/Ahm3d_H3shamReddit NetSec

2019 Email Archiving Price Comparison - WebTitan

/u/hassan1234rReddit NetSec

0day remote code execution for webmin

/u/FiroSolutionsReddit NetSec

Core developer of WordPress proposes to remove existing Ed25519 signature checking of auto-updates from core in 5.3 and to only use HTTPS and hash checksum for security instead

/u/GenericBlueGemstoneReddit NetSec

Friday Squid Blogging: Robot Squid Propulsion

Bruce SchneierSchneier on Security

Offensive Lateral Movement

/u/HausecReddit NetSec

Bloodhound - Honing a Tradecraft

/u/ZephrX112Reddit NetSec

Picture Yourself Becoming a Hacker Soon (Beginners Guide)

/u/Eta-MesonReddit NetSec

Checking price doesnt always work!

/u/Eta-MesonReddit NetSec

Week in security with Tony Anscombe

Tom FoltnESET

Project Zero Turns 5: How Google's Zero-Day Hunt Has Grown

Kelly Sheridan Staff Editor, Dark ReadingDark Reading - Threat Intelligence

Adware Posing as 85 Photography and Gaming Apps on Google Play Installed Over 8 Million Times

Ecular Xu (Mobile Threat Response Engineer)Trend Micro

Software Vulnerabilities in the Boeing 787

Bruce SchneierSchneier on Security

Port 22

~ 21 Aug 2019 ~

Learn how to use and scale osquery to detect evasive or fileless malware, stealthy persistence, unseen attacks etc. (Free Video Training)

Researcher banned from Valve's bug bounty program publishes 2nd Steam Local Privilege Escalation 0-day

New FISMA Report Shows Progress, Gaps in Federal Cybersecurity

MoviePass Leaves Credit Card Numbers, Personal Data Exposed Online

Attack (with) Jupyter!

'Box Shield' Brings New Security Controls

First half 2019 sees 4,000 data breaches exposing 4B records

privilege escalation attacks on Windows.

State-Sponsored Cyberattacks Target Medical Research

Forced Password Reset? Check Your Assumptions

Google Finds 20-Year-Old Microsoft Windows Vulnerability

XSLT Injection Basics with Saxon+- Ektron CMS rce PoC

Education and privacy legislation at ChannelCon

Duolingo Learning Full Unlocked + Mod for android - APKROOK

7 Big Factors Putting Small Businesses At Risk

Google and Mozilla Block Kazakhstans Root CA Certificates to Prevent Spying

Russian Hacking Group Targeting Banks Worldwide With Evolving Tactics

~ 20 Aug 2019 ~

Release out-of-tree v1.0.0 kernel {module, exploit} development tool

CISOs Struggle with Diminishing Tools to Protect Assets from Growing Threats

Automating pentests with WebDriver

Ransomware wave hits 23 towns in Texas

rest-client Gem Hijacked

The Age of Surveillance Capitalism and The Price We Pay

Use This Privacy Tool to View and Clear Your 'Off-Facebook Activity' Data

Dont Be a Menace to ROKKEX: Example of An Impersonation Attack

Surveillance as a Condition for Humanitarian Aid

Cyberthreats Against Financial Services Up 56%

AuthCov: Open source web app authorization crawling & scanning tool (SPA-compatible!)

Getting Start with AppSec: Updated

An unintentional insider threat (UIT) is a current or former employee, contractor, or business

Do Not Pay Ransomware A Lesson for Municipalities

Zebra Industrial Printers

iOS 12.4 jailbreak released after Apple accidentally un-patches an old flaw

The Common Vulnerability Scoring System (CVSS) provides an open framework for communicating the characteristics and impacts of IT vulnerabilities. A newer version presents changes in the scoring system that reflects more accurately the vulnerabilities that fall under the web application domain.

Application, Data And Host Security

5 Ways to Improve the Patching Process

DejaBlue: Analyzing a RDP Heap Overflow

How Activity Logs Help WordPress Admins Better Manage Website Security

Hackers Planted Backdoor in Webmin, Popular Utility for Linux/Unix Servers

~ 19 Aug 2019 ~

Webinar: How We Bypassed All NTLM Relay Mitigations

GAME OVER: Detecting and Stopping an APT41 Operation

Exploiting A/B Testing for Fun and Profit (Part 1)

Router Network Isolation Broken By Covert Data Exfiltration

The Rise of Bulletproof Residential Networks

Uncovering a MyKings Variant With Bootloader Persistence via Managed Detection and Response

Influence Operations Kill Chain

CVSS v3 Creates New Challenges For Developers.

IT threat evolution Q2 2019

IT threat evolution Q2 2019. Statistics

Uploading web.config for Fun and Profit 2

~ 18 Aug 2019 ~

Step by step guide to a full internal network pentest

~ 17 Aug 2019 ~

Hack The Box - Helpline Write-up

Hack The Box - Helpline Write-up by 0xRick

2019 Email Archiving Price Comparison - WebTitan

0day remote code execution for webmin

Core developer of WordPress proposes to remove existing Ed25519 signature checking of auto-updates from core in 5.3 and to only use HTTPS and hash checksum for security instead

~ 16 Aug 2019 ~

Friday Squid Blogging: Robot Squid Propulsion

Offensive Lateral Movement

Bloodhound - Honing a Tradecraft

Picture Yourself Becoming a Hacker Soon (Beginners Guide)

Checking price doesnt always work!

Week in security with Tony Anscombe

Project Zero Turns 5: How Google's Zero-Day Hunt Has Grown

Adware Posing as 85 Photography and Gaming Apps on Google Play Installed Over 8 Million Times

Software Vulnerabilities in the Boeing 787