Port 22

AI: Artificial Ignorance

Jake MooreESET

Confidential company documents exposed in public sandboxes

/u/TyphoonEURReddit NetSec

Behind the Scenes at ICS Village

Curtis Franklin Jr. Senior Editor at Dark ReadingDark Reading - Threat Intelligence

Vulners NMAP v1.4-beta pre-release: Now it can detect web software vulnerabilities by version detect regexes #sorrynessus

/u/isox_xxReddit NetSec

Listing registry keys in HKEY_LOCAL_MACHINE users can create symbolic links in

/u/DankirkReddit NetSec

European Central Bank Shuts Down 'BIRD Portal' After Getting Hacked

noreply@blogger.com (Swati Khandelwal)The Hackers News

Patches for 2 Severe LibreOffice Flaws Bypassed Update to Patch Again

noreply@blogger.com (Swati Khandelwal)The Hackers News

Trend Micro Password Manager Flaws Revealed

/u/paulthemankindReddit NetSec

Bluetana App Quickly Detects Hidden Bluetooth Card Skimmers at Gas Pumps

noreply@blogger.com (Swati Khandelwal)The Hackers News

Dr.Semu - Malware Detection and Classification Tool Based on Dynamic Behavior

/u/khasaiaReddit NetSec

NSA Researchers Talk Development, Release of Ghidra SRE Tool

Kelly Sheridan Staff Editor, Dark ReadingDark Reading - Threat Intelligence

Adware, Trojans Hit Education Sector Hard

Robert Lemos Contributing WriterDark Reading - Threat Intelligence

Huge Survey of Firmware Finds No Security Gains in 15 Years

/u/Bardo_PondReddit NetSec

RouterOS Post Exploitation

/u/chicksdigthelongrunReddit NetSec

Microsoft warns of new BlueKeeplike flaws

Tom FoltnESET

Fuzzy Tester for HTTP header parser (OpenSource)

/u/monotype_corsivaReddit NetSec

Analysis: New Remcos RAT Arrives Via Phishing Email

Trend MicroTrend Micro

Bypassing Apple FaceID's Liveness Detection Feature

Bruce SchneierSchneier on Security

Johnson Controls Metasys

Advisory DocumentICS-Cert Advisories

Art of Anti Detection 4 Self-Defense

/u/wtfseReddit NetSec

Fuji Electric Alpha5 Smart Loader

Advisory DocumentICS-Cert Advisories

Siemens SCALANCE Products

Advisory DocumentICS-Cert Advisories

Siemens SINAMICS

Advisory DocumentICS-Cert Advisories

7 Biggest Cloud Security Blind Spots

Ericka Chickowski Contributing WriterDark Reading - Threat Intelligence

5 Things to Know About Cyber Insurance

Edge Editors Dark ReadingDark Reading - Threat Intelligence

In Kubernetes, pod security policies are a powerful tool for mitigating security risks and enforcing secure configurations within your Kubernetes environment. This is how to get the most out of Kubernetes pod security policies.

/u/xjueldtaReddit NetSec

Kaspersky Anti-Virus puts users at risk

/u/FingolasReddit NetSec

Kaspersky Antivirus Flaw Exposed Users to Cross-Site Tracking Online

noreply@blogger.com (Swati Khandelwal)The Hackers News

Key Negotiation Of Bluetooth (KNOB) Attack

/u/franconezappaReddit NetSec

Apache Thrift, Jinja, JMESPath: Qrator Filtering Network Configuration Delivery

/u/atomlib_comReddit NetSec

Threat hunting using DNS firewalls and data enrichment

/u/adamziaja_comReddit NetSec

Financial Phishing Grows in Volume and Sophistication in First Half of 2019

Curtis Franklin Jr. Senior Editor at Dark ReadingDark Reading - Threat Intelligence

Side-Channel Attack against Electronic Locks

Bruce SchneierSchneier on Security

Simple & Interactive SSRF tutorial

/u/kerberosmansourReddit NetSec

Public exploits RSS feed

/u/i_bo0omReddit NetSec

GitHub - tg12/rapid7_OSINT: All the tools you need to make your own mind up from the Open Data Sets

/u/JS_NS_ArticleReddit NetSec

Stronger Defenses Force Cybercriminals to Rethink Strategy

Kelly Sheridan Staff Editor, Dark ReadingDark Reading - Threat Intelligence

Cybercriminals have turned hundreds of organizations into victims of ransomware, read more about how it can affect you.

/u/allidoispkReddit NetSec

Trend Micro Password Manager - Privilege Escalation to SYSTEM

/u/ikotlerReddit NetSec

InQuest Labs Website Release: open access to threat feeds, deep file inspection, and yara/regex tools

/u/amuscianoReddit NetSec

Meet Bluetana, the Scourge of Pump Skimmers

BrianKrebsKrebs on Security

The Chinese State Is Allegedly Sponsoring Attacks on Cryptocurrency Firms

/u/Ichi_MokuMReddit NetSec

Multiple pre-auth RCE vulnerabilities in RDP in every version of Windows including modern Windows

/u/InvinciblexReddit NetSec

BioStar 2 Leak Exposes 23GB Data, 1M Fingerprints

Dark Reading StaffDark Reading - Threat Intelligence

Attorney General Barr and Encryption

Bruce SchneierSchneier on Security

butthax: lovense hush buttplug exploit chain

/u/TitokhanReddit NetSec

New Bluetooth Vulnerability Lets Attackers Spy On Encrypted Connections

noreply@blogger.com (Unknown)The Hackers News

In the Balkans, businesses are under fire from a doublebarreled weapon

Zuzana HromcovESET

You Gotta Reach 'Em to Teach 'Em

Kacy Zurkus Contributing WriterDark Reading - Threat Intelligence

August Patch Tuesday: Update Fixes Wormable Flaws in Remote Desktop Services, VBScript Gets Disabled by Default

Trend MicroTrend Micro

Tavis Ormandy: Down the Rabbit-Hole of ancient Windows inter-window communication protocol (or: violating NT security boundaries via MSCTF)

/u/mrkootReddit NetSec

8 New HTTP/2 Implementation Flaws Expose Websites to DoS Attacks

noreply@blogger.com (Unknown)The Hackers News

How to prevent Google, Apple and Amazon from listening to your conversations

/u/tk_tamaniReddit NetSec

Patch Tuesday, August 2019 Edition

BrianKrebsKrebs on Security

[GoogleProjectZero] Windows Privilege Escalation affecting all versions since XP by leveraging obscur CTF protocol

/u/xlash9Reddit NetSec

Several DoS conditions in certain HTTP/2 implementations

/u/idlelineReddit NetSec

LLMNR Poisoning and WPAD Spoofing

/u/Eta-MesonReddit NetSec

SILENTTRINITY v0.3.0: Now Multi-User & Multi-Server

/u/byt3bl33d3rReddit NetSec

Does Personality Make You Vulnerable to Cybercrime?

Kelly Sheridan Staff Editor, Dark ReadingDark Reading - Threat Intelligence

From email to phone number. A new OSINT approach

/u/_yowie_Reddit NetSec

Showing Vulnerability to a Machine: Automated Prioritization of Software Vulnerabilities

Evan Wright (noemail@noemail.org)Fire Eye Threat Research

Microsoft Patches Wormable RCE Vulns in Remote Desktop Services

Kelly Sheridan Staff Editor, Dark ReadingDark Reading - Threat Intelligence

Generating Personalized Wordlists with NLP For Password Guessing Attacks

/u/utku1337Reddit NetSec

Barracuda Buys Bot-Battling Tech from InfiSecure

Dark Reading StaffDark Reading - Threat Intelligence

tshark.dev: Capture Lifecycle on the CLI

/u/ScrabbiliskReddit NetSec

Port 22

~ 16 Aug 2019 ~

AI: Artificial Ignorance

Confidential company documents exposed in public sandboxes

Behind the Scenes at ICS Village

Vulners NMAP v1.4-beta pre-release: Now it can detect web software vulnerabilities by version detect regexes #sorrynessus

Listing registry keys in HKEY_LOCAL_MACHINE users can create symbolic links in

European Central Bank Shuts Down 'BIRD Portal' After Getting Hacked

Patches for 2 Severe LibreOffice Flaws Bypassed Update to Patch Again

Trend Micro Password Manager Flaws Revealed

Bluetana App Quickly Detects Hidden Bluetooth Card Skimmers at Gas Pumps

~ 15 Aug 2019 ~

Dr.Semu - Malware Detection and Classification Tool Based on Dynamic Behavior

NSA Researchers Talk Development, Release of Ghidra SRE Tool

Adware, Trojans Hit Education Sector Hard

Huge Survey of Firmware Finds No Security Gains in 15 Years

RouterOS Post Exploitation

Microsoft warns of new BlueKeeplike flaws

Fuzzy Tester for HTTP header parser (OpenSource)

Analysis: New Remcos RAT Arrives Via Phishing Email

Bypassing Apple FaceID's Liveness Detection Feature

Johnson Controls Metasys

Art of Anti Detection 4 Self-Defense

Fuji Electric Alpha5 Smart Loader

Siemens SCALANCE Products

Siemens SINAMICS

7 Biggest Cloud Security Blind Spots

5 Things to Know About Cyber Insurance

In Kubernetes, pod security policies are a powerful tool for mitigating security risks and enforcing secure configurations within your Kubernetes environment. This is how to get the most out of Kubernetes pod security policies.

Kaspersky Anti-Virus puts users at risk

Kaspersky Antivirus Flaw Exposed Users to Cross-Site Tracking Online

~ 14 Aug 2019 ~

Key Negotiation Of Bluetooth (KNOB) Attack

Apache Thrift, Jinja, JMESPath: Qrator Filtering Network Configuration Delivery

Threat hunting using DNS firewalls and data enrichment

Financial Phishing Grows in Volume and Sophistication in First Half of 2019

Side-Channel Attack against Electronic Locks

Simple & Interactive SSRF tutorial

Public exploits RSS feed

GitHub - tg12/rapid7_OSINT: All the tools you need to make your own mind up from the Open Data Sets

Stronger Defenses Force Cybercriminals to Rethink Strategy

Cybercriminals have turned hundreds of organizations into victims of ransomware, read more about how it can affect you.

Trend Micro Password Manager - Privilege Escalation to SYSTEM

InQuest Labs Website Release: open access to threat feeds, deep file inspection, and yara/regex tools

Meet Bluetana, the Scourge of Pump Skimmers

The Chinese State Is Allegedly Sponsoring Attacks on Cryptocurrency Firms

Multiple pre-auth RCE vulnerabilities in RDP in every version of Windows including modern Windows

BioStar 2 Leak Exposes 23GB Data, 1M Fingerprints

Attorney General Barr and Encryption

butthax: lovense hush buttplug exploit chain

New Bluetooth Vulnerability Lets Attackers Spy On Encrypted Connections

In the Balkans, businesses are under fire from a doublebarreled weapon

You Gotta Reach 'Em to Teach 'Em

August Patch Tuesday: Update Fixes Wormable Flaws in Remote Desktop Services, VBScript Gets Disabled by Default

Tavis Ormandy: Down the Rabbit-Hole of ancient Windows inter-window communication protocol (or: violating NT security boundaries via MSCTF)

8 New HTTP/2 Implementation Flaws Expose Websites to DoS Attacks

~ 13 Aug 2019 ~

How to prevent Google, Apple and Amazon from listening to your conversations

Patch Tuesday, August 2019 Edition

[GoogleProjectZero] Windows Privilege Escalation affecting all versions since XP by leveraging obscur CTF protocol

Several DoS conditions in certain HTTP/2 implementations

LLMNR Poisoning and WPAD Spoofing

SILENTTRINITY v0.3.0: Now Multi-User & Multi-Server

Does Personality Make You Vulnerable to Cybercrime?

From email to phone number. A new OSINT approach

Showing Vulnerability to a Machine: Automated Prioritization of Software Vulnerabilities

Microsoft Patches Wormable RCE Vulns in Remote Desktop Services

Generating Personalized Wordlists with NLP For Password Guessing Attacks

Barracuda Buys Bot-Battling Tech from InfiSecure

tshark.dev: Capture Lifecycle on the CLI