Security News

Daily Security News

Exploits

Tools

Vulnerabilities

Reversing/I like ASM

Malware/APT

Crypto

Podcasts

Threat Intel

Privacy/VPNs

Help Wanted

Locks/Social Engineering

Security Blogs

Mainstream Media

Thirsty for more

Daily Security News

PacketStorm
Facebook's Zuckerberg Accused Of Setting Dangerous Precedent Over Trump new
G Suite Marketplace Primed For A Privacy Scandal new
Amtrak Breach Causes Potential Leak Of Customer Account Data new
Apple Jailbreak Zero-Day Gets A Patch new
Provider's Database Of Crooked Customers Leaked
FB Employees Revolt Over Zuckerberg's Stance On Trump
Anonymous Hackers Re-Emerge Amid US Unrest
Researcher Lands $100,000 Bounty For Apple Login Bypass
New Trickbot Malware Update Makes It Even Harder To Detect
Test Platform Leaks Bank Of America's Clients' Covid-19 PPP Loan Applications
Twitter Hides White House Tweet Calling For Killings Of Protestors
NSA Warns Of New Sandworm Attacks On Email Servers
The Register
Office supplies biz owned by UK council shrugs off ransomware demand for 102 Bitcoin new
'Beyond stupid': Linus Torvalds trashes 5.8 Linux kernel patch over opt-in Intel CPU bug mitigation new
Contact-tracer spoofing is already happening – and it's dangerously simple to do new
Had a bad weekend? Probably, if you're a Sectigo customer, after root cert expires and online chaos ensues new
Get rich quick! Work from home! Earn $100,000 easy – just find a critical flaw in Apple's sign-in system new
REvil ransomware gang publishes 'Elexon staff's passports' after UK electrical middleman shrugs off attack
UK.gov dangles £400k over makers of IoT Things: Go on, let's see how you'd make a security cert scheme
The inevitable coronavirus-inspired cyber-attacks are stepping up. Are you ready?
Cisco hacked: Six backend servers used by customer VIRL-PE deployments compromised via SaltStack
Remember when Republicans said Dems hacked voting systems to rig Georgia's election? There were no hacks
Great news. Patch load drops 20% for the first time in 10 years. Bad news: Well, you've heard about coronavirus?
It's not every day the NSA publicly warns of attacks by Kremlin hackers – so take this critical Exim flaw seriously
Reddit - NetSec
System logging (SysMon) & SCOM new
Certified Ethical Hacker Training and Exam (Master Level) – EC Council new
Active Directory Security Assessment Checklist new
Attacker Group Predictor new
Fuzzing Left4Dead 2 with CERT’s Basic Fuzzing Framework new
Using Syscalls to Inject Shellcode on Windows new
In-depth analysis of the new Team9 malware family new
Chimichurri Reloaded - Giving a Second Life to a 10-year old Windows Vulnerability new
Full infrastructure takeover of VMware Cloud Director (CVE-2020-3956) - analysis, exploitation and PoC exploit new
Shodan Dojo 🥋: Learning Shodan through katas new
Maze: Ransomware with Added Benefits new
Sodinokibi, Cobalt Strike, and Ursnif: A Long-Awaiting Relationship new
Bleeping Computer
REvil ransomware creates eBay-like auction site for stolen data new
Tor Browser 9.5 lets websites promote their Onion addresses new
Apple pushes fix across ALL devices for “unc0ver” jailbreak flaw new
Google Search bug prevents new content from being indexed new
Firefox 77 rolls out WebRender to more Windows 10 laptops new
Critical Exim bugs being patched but many servers still at risk new
Twitter shuts down legacy site and forces new theme on everyone
Google brings the Advanced Protection Program to Nest devices
Over 460 million records exposed in breach incidents reported in May
Joomla data breach leaks 2,700 user records via exposed backups
Microsoft starts notifying users if Windows 10 2004 is blocked
"Sign in with Apple" vulnerability earns researcher $100,000
The Hacker News
Critical VMware Cloud Director Flaw Lets Hackers Take Over Corporate Servers new
How to Create a Culture of Kick-Ass DevSecOps Engineers
Joomla Resources Directory (JRD) Portal Suffers Data Breach
Critical 'Sign in with Apple' Bug Could Have Let Attackers Hijack Anyone's Account
New Noise-Resilient Attack On Intel and AMD CPUs Makes Flush-based Attacks Effective
Exclusive – Any Mitron (Viral TikTok Clone) Profile Can Be Hacked in Seconds
A New Free Monitoring Tool to Measure Your Dark Web Exposure
Researchers Uncover Brazilian Hacktivist's Identity Who Defaced Over 4800 Sites
Chinese Researchers Disrupt Malware Attack That Infected Thousands of PCs

Threat Wire

Exploits

Packet Storm Exploits
Microsoft Windows SMBGhost Remote Code Execution new
QuickBox Pro 2.1.8 Remote Code Execution new
VMware vCenter Server 6.7 Authentication Bypass new
Packet Storm New Exploits For May, 2020
Avast Array.prototype.toString Out-Of-Bounds Copy
We-Com OpenData CMS 2.0 SQL Injection
We-Com Municipality Portal CMS 2.1.x Cross Site Scripting / SQL Injection
WordPress BBPress 2.5 Privilege Escalation
Crystal Shard http-protection 0.2.0 IP Spoofing Bypass
WordPress Multi-Scheduler 1.0.0 Cross Site Request Forgery
PanaceaSoft Shell Upload
Pi-Hole 4.3.2 DHCP MAC OS Command Execution
Exploit-DB Webapps
[webapps] Clinic Management System 1.0 - Authentication Bypass new
[webapps] OpenCart 3.0.3.2 - Stored Cross Site Scripting (Authenticated) new
[webapps] Wordpress Plugin BBPress 2.5 - Unauthenticated Privilege Escalation
[webapps] VMware vCenter Server 6.7 - Authentication Bypass
[webapps] QuickBox Pro 2.1.8 - Authenticated Remote Code Execution
[webapps] WordPress Plugin Multi-Scheduler 1.0.0 - Cross-Site Request Forgery (Delete User)
[webapps] Crystal Shard http-protection 0.2.0 - IP Spoofing Bypass
[webapps] Online-Exam-System 2015 - 'fid' SQL Injection
[webapps] NOKIA VitalSuite SPM 2020 - 'UserName' SQL Injection
[webapps] EyouCMS 1.4.6 - Persistent Cross-Site Scripting
[webapps] QNAP QTS and Photo Station 6.0.3 - Remote Command Execution
[webapps] osTicket 1.14.1 - 'Saved Search' Persistent Cross-Site Scripting
Exploit-DB Local and Privilege Escalation
[local] StreamRipper32 2.6 - Buffer Overflow (PoC)
[local] GoldWave - Buffer Overflow (SEH Unicode)
[local] Druva inSync Windows Client 6.6.3 - Local Privilege Escalation
[local] VUPlayer 2.49 .m3u - Local Buffer Overflow (DEP,ASLR)
[local] CloudMe 1.11.2 - Buffer Overflow (SEH,DEP,ASLR)
[local] Dameware Remote Support 12.1.1.273 - Buffer Overflow (SEH)
[local] Remote Desktop Audit 2.3.0.157 - Buffer Overflow (SEH)
[local] LanSend 3.2 - Buffer Overflow (SEH)
[local] MacOS 320.whatis Script - Privilege Escalation
[local] SolarWinds MSP PME Cache Service 1.1.14 - Insecure File Permissions
[local] Oracle Database 11g Release 2 - 'OracleDBConsoleorcl' Unquoted Service Path
[local] Outline Service 1.3.3 - 'Outline Service ' Unquoted Service Path
Exploit-DB DoS
[dos] Konica Minolta FTP Utility 1.0 - 'NLST' Denial of Service (PoC)
[dos] Konica Minolta FTP Utility 1.0 - 'LIST' Denial of Service (PoC)
[dos] Filetto 1.0 - 'FEAT' Denial of Service (PoC)
[dos] AbsoluteTelnet 11.21 - 'Username' Denial of Service (PoC)
[dos] BIND - 'TSIG' Denial of Service
[dos] Extreme Networks Aerohive HiveOS 11.0 - Remote Denial of Service (PoC)
[dos] FlashGet 1.9.6 - Denial of Service (PoC)
[dos] VirtualTablet Server 3.0.2 - Denial of Service (PoC)
[dos] AbsoluteTelnet 11.12 - 'SSH1/username' Denial of Service (PoC)
[dos] ZOC Terminal 7.25.5 - 'Script' Denial of Service (PoC)
[dos] dnsmasq-utils 2.79-1 - 'dhcp_release' Denial of Service (PoC)
[dos] Nsauditor 3.2.0.0 - 'Name' Denial of Service (PoC)
Exploit-DB Shellcode
Exploit-DB Papers
Exploit-DB Remote
[remote] Microsoft Windows - 'SMBGhost' Remote Code Execution new
[remote] Plesk/myLittleAdmin - ViewState .NET Deserialization (Metasploit)
[remote] Synology DiskStation Manager - smart.cgi Remote Command Execution (Metasploit)
[remote] WebLogic Server - Deserialization RCE - BadAttributeValueExpException (Metasploit)
[remote] Pi-Hole - heisenbergCompensator Blocklist OS Command Execution (Metasploit)
[remote] HP LinuxKI 6.01 - Remote Command Injection
[remote] Saltstack 3000.1 - Remote Code Execution
[remote] Apache Shiro 1.2.4 - Cookie RememberME Deserial RCE (Metasploit)
[remote] CloudMe 1.11.2 - Buffer Overflow (PoC)
[remote] Neowise CarbonFTP 1.4 - Insecure Proprietary Password Encryption
[remote] Unraid 6.8.0 - Auth Bypass PHP Code Execution (Metasploit)
[remote] Nexus Repository Manager - Java EL Injection RCE (Metasploit)

LiveOverflow

Vulnerabilities

Tools

Exploit Dev

Reversing/I like ASM

Reddit - Reverse Engineering
Reverse Engineers' Hex Editor - Second beta new
An Empirical Study on ARM Disassembly Tools [PDF] new
Malware Analysis with Visual Pattern Recognition new
I see this as an absolute challenge "Secure storage anywhere: DataLocker Sentry K300 encrypted micro SSD" waiting for your updates about it. new
Pakkero: a packer written in Go
IRC Botnet Reverse Engineering Part 1 - Preparing Binary for Analysis in IDA PRO (OALabs Tutorial)
Die analysis of the 8087 math coprocessor's fast bit shifter
Angry Gadget: Find the one gadget RCE in libc using angr
Join a new community. Have fun!
Enriching IDA Analysis with Emulated (Zelos) Instruction Trace
[ANNOUCEMENT] Bareflank Community Call - 3pm UTC on 6/12/2020 · Issue #915 · Bareflank/hypervisor · GitHub
/r/ReverseEngineering's Weekly Questions Thread
Reddit - Game Hacks
RUST SCRIPTS/MACROS 2020 UNDETECTED PRIVATE (REGULAR UPDATES - ACTIVE DEV SUPPORT - TRUSTED SELLER W/ VOUCHES - GUARANTEED BEST ON MARKET)
PRIVATE CODED UNDETECTABLE HACKS AND SCRIPTS FOR FORTNITE, LEAGUE OF LEGENDS, RUST only $15 for lifetime unlimited access
Skips Roblox Hack Full Featured
Rainbow six Hack
FiveMock for FiveM | Lua Executor, Resource Dumper, Anti-cheat Blocker and More!
PRIVATE CODED UNDETECTABLE HACKS AND SCRIPTS FOR FORTNITE, LEAGUE OF LEGENDS, RUST only $15 for lifetime unlimited access
PRIVATE CODED UNDETECTABLE HACKS AND SCRIPTS FOR FORTNITE, LEAGUE OF LEGENDS, RUST only $15 for lifetime unlimited access
PRIVATE CODED UNDETECTABLE HACKS AND SCRIPTS FOR FORTNITE, LEAGUE OF LEGENDS, RUST only $15 for lifetime unlimited access
RUST SCRIPTS/MACROS 2020 UNDETECTED PRIVATE (REGULAR UPDATES - ACTIVE DEV SUPPORT - TRUSTED SELLER W/ VOUCHES - GUARANTEED BEST ON MARKET)
PRIVATE CODED UNDETECTABLE HACKS AND SCRIPTS FOR FORTNITE, LEAGUE OF LEGENDS, RUST only $15 for lifetime unlimited access
PRIVATE CODED UNDETECTABLE HACKS AND SCRIPTS FOR FORTNITE, LEAGUE OF LEGENDS, RUST, AND GTA V
THE BEST CHEAP RUST CHEATS/HACKS/SCRIPTS/MACROS (undetected) (UPDATED) with ESP+ and aim assistance
Reddit - REGames
Looking for someone who knows how to remove CD-checks
Reverse engineering an ancient game on an ancient engine
Lamentation Sword / Akuma Demon Spawn texture ripping
Found "uuid" in mobile game request. How useful is it for REing?
Unpacking .blob file
Packer
My first guide on MMO Hacking
Hey can someone help me on reverse engineering an api from this website tomis.in ,or atleast tell me if it is possible or not
Can anyone identify this compression method?
No More Heroes: World Ranker defunct server
Reverse-Enginerring A Tony hawk Game Server.
SilentPatch for The Wonderful 101: Remastered, fixing frame pacing issues
StackExchange - ReverseEngineering
Best way to quickly mark all lines as code in IDA? new
Anti-Debugging Access Violation Exception (x64dbg) new
How to clear all comments created in ida using funcap? new
ACCESS_VIOLATION_EXCEPTION when Scanning for a Memory Pattern in a C++ DLL new
Why would VGA port 03CC respond with bit 3 set and bit 2 not? new
What does 'test al, al' mean?
How do I implement register pages in Sleigh?
Two copies to store values
Load a *.dylib or *.so object into the Javascript V8 runtime?
Dealing with obfuscated PUSH PUSH RET instructions
Force debug Administrator Malware
Ghidra c code to python

Guided Hacking

Malware/APT

Reddit - Malware
Cyber bootcamp and now I have more questions new
Netwalker Ransomware – From Static Reverse Engineering to Automatic Extraction
JS:AnarchyGrabber
AnarchyGrabber; A new malware affecting Discord on macs.
Trickbot Banking Malware Updates Detection Evasion Techniques
Malware on chrome
This Week in Malware - 25 May 2020
MalwareMustDie's new repository of open-shared codes & tools
PSHOST.ni.exe put in virus chest by Avast.
New .NET malware - OZH RAT
Zero2Automated Malware Analysis Course
Suspected AppDataLocalTemp folder
Unit42
Goodbye Mworm, Hello Nworm: TrickBot Updates Propagation Module
Rootless Containers: The Next Trend in Container Security
Eleethub: A Cryptocurrency Mining Botnet with Rootkit for Self-Hiding
Mirai and Hoaxcalls Botnets Target Legacy Symantec Web Gateways
Updated BackConfig Malware Targeting Government and Military Organizations in South Asia
COVID-19 Themed Malware Within Cloud Environments
Threat Brief: Maze Ransomware Activities
SilverTerrier: New COVID-19 Themed Business Email Compromise Schemes
COVID-19: Cloud Threat Landscape
Anatomy of Formjacking Attacks
Studying How Cybercriminals Prey on the COVID-19 Pandemic
Malicious Attackers Target Government and Medical Organizations With COVID-19 Themed Phishing Campaigns
FireEye Threat Research
Using Real-Time Events in Investigations
Analyzing Dark Crystal RAT, a C# backdoor
Navigating the MAZE: Tactics, Techniques and Procedures Associated With MAZE Ransomware Incidents
Excelerating Analysis, Part 2 — X[LOOKUP] Gon’ Pivot To Ya
Putting the Model to Work: Enabling Defenders With Vulnerability Intelligence — Intelligence for Vulnerability Management, Part Four
Vietnamese Threat Actors APT32 Targeting Wuhan Government and Chinese Ministry of Emergency Management in Latest Example of COVID-19 Related Espionage
Separating the Signal from the Noise: How Mandiant Intelligence Rates Vulnerabilities — Intelligence for Vulnerability Management, Part Three
Think Fast: Time Between Disclosure, Patch Release and Vulnerability Exploitation — Intelligence for Vulnerability Management, Part Two
Limited Shifts in the Cyber Threat Landscape Driven by COVID-19
Thinking Outside the Bochs: Code Grafting to Unpack Malware in Emulation
Zero-Day Exploitation Increasingly Demonstrates Access to Money, Rather than Skill — Intelligence for Vulnerability Management, Part One
FakeNet Genie: Improving Dynamic Malware Analysis with Cheat Codes for FakeNet-NG

Bug Bounties

HackerOne
100 Hacking Tools and Resources
The Journey in Data: HackerOne Hits 100 Million Dollars in Bounties
$100 Million Paid - One Billion in Sight for Hackers
Thanks For Being Part Of The Journey to $100 Million in Bounties!
10 Ways to Hack Your “New Normal” Workweek
How Federal Agencies Use Vulnerability Disclosure Policies to Level Up Security
Security by the People: Announcing HackerOne’s FedRAMP Authorization
Cognitive Behavioral Therapy for Mental Health Awareness Month
Stay Ahead of Threats With Hacker-Powered Retesting
PayPal on Creating Strong Relationships with Security Researchers
Hackers take on San Francisco for the 4th Year in a Row
Shopify Celebrates 5 Years on HackerOne
Reddit - BugBounty
Participate in our research on bug bounty programs! new
Weekly Discussion, June 01, 2020: Ask all your bugbounty questions!
My Expense Report resulted in a Server-Side Request Forgery (SSRF) on Lyft
Zero-day in Sign in with Apple - $100,000 bounty
IDOR in session cookie leading to Mass Account Takeover
Worth $20K+ Android privilege escalation techniques.
My own basic bounty methodology: Bug Bounty Bytes
I am a security researcher who has found hundreds of bugs and vulnerabilities. Ask me anything about the best methods for finding bugs and spotting…
Bug bounties & Research paper legal issue
Weekly Discussion, May 25, 2020: Ask all your bugbounty questions!
LPT: you can import scope directly from hackerOne into burp
Remote Code Execution - Be The H.A.C.R. - Ep - 05
Pentester Land
The 5 Hacking NewsLetter 107
The 5 Hacking NewsLetter 106
The 5 Hacking NewsLetter 105
The 5 Hacking NewsLetter 104
The 5 Hacking NewsLetter 103
The 5 Hacking NewsLetter 102
The 5 Hacking NewsLetter 101
Free online conferences calendar
The 5 Hacking NewsLetter 100
The 5 Hacking NewsLetter 99
The 5 Hacking NewsLetter 98
The 5 Hacking NewsLetter 97
Portswigger
A one million milestone for the Web Security Academy

Crypto

Reddit - Crypto
Sagemath with secp256k1 new
Software or method to compare efficiency of two (both symmetric and asymmetric) encryption algorithms? new
شركة بينانس أكبر الشركات العالمة في تداول العملات الرقمية new
Luks and elliptic-curve cryptography new
Does knowing the luks master key help inferring passphrases? new
Overkill disk encryption advice for a crypto noob new
Comparing two encryption algorithms?
TLS configuration generator by Mozilla
Why no end to end in smartphones?
Is it possible to detect when a plain dm-crypt volume is decrypted if there is another (or nothing) inside?
Finding SHA256 partial collisions via the Bitcoin blockchain
Orignal Schnorr Signature vs Discrete logarithmic Schnorr Signature
StackExchange - Crypto
Itoh Tsuji algorithm new
Finding collisions for XOR of many hashes new
What does it mean that a semi-honest adversary can look at the internal state of a controlled party? new
How many possible settings did the 3-rotor M3 Enigma machine from 1939 have? new
Fixed point in RSA encryption new
How to Export Modulus Exponent From Giving Private And Public Keys? [C#, RSA] new
Computational trapdoor where the problem is tractable for both parties but easier for one new
Can I encrypt a message by swapping bits in the text?
Encrypt/Decrypt to 15byte strings [closed]
Using an uncomputable function as a one-way function?
Practical sources of entropy on an Android device?
Argon2 - How to set algorthm type [closed]

Podcasts

Security Weekly
Don't Hate the Player, Hate the Game - PSW #653
Heavily Loaded - PSW #652
Juicy Targets - PSW #651
It's Not Complicated, It's Syntax! - PSW #650
Nude Sunbathing In Your Backyard - PSW #649
Lube, Fire, & Hand Sanitizer - PSW #648
Secure Your Nipples - PSW #647
Exploitable By Design - PSW #646
Mad Skillz - PSW #645
The Idaho Experience - PSW #644
A Bunch of Old Farts - PSW #643
Balance of Power - PSW #642
Risky.Biz
Feature Podcast: Releasing the hounds with Bobby Chesney
Risky Business #585 -- UK mulls Huawei ban, NGOs urge COVID-19 hack de-escalation
Risky Business #584 -- Nation-backed attackers own easyJet, jump airgaps, hack ports
Risky Biz Soap Box: ExtraHop CTO Jesse Rothstein talks network monitoring
Risky Business #583 -- COVID-19 collection intensifies, tensions mount
Risky Business #582 -- Germans indict APT28 operator
Snake Oilers 11 part 2: Go passwordless with Okta, why Crowdstrike customers need Airlock
Risky Business #581 -- Chinese telcos under fire in USA, spy firms pitch COVID-19 surveillance
Risky Business #580 -- Czech spear phishing spurs fightin' words from Pompeo
Snake Oilers 11 part 1: MongoDB's new encryption plus AlphaSOC and SecureStack
Risky Business #579 -- Apple and Google go all in on contact tracing
Risky Business #578 -- ASD launches offensive campaign against criminals
The CyberWire
Current forms of hacktivism, misinformation, and disinformation. More recommendations from the Cyberspace Solarium. Fraud accompanies Test and Trace. new
Cyberattacks and hacktivism around Minnesota’s unrest. Amtrak breach. Port scanning. Some lessons from the pandemic.
Extending security tools to the at home workforce during the pandemic.
Twofold snooping venture.
Sandworm is out and about, so patch already. Steganography used in attacks on industrial targets. An Executive Order on Preventing Online Censorship. Breaches, ransomware, and…
Hackers for hire. A bulk power distribution risk? An Executive Order on social media is under consideration. COVID-19 and cybersecurity.
Berserk Bear is back, and still loves that critical infrastructure honey. COVID-19 apps: good, bad, and bogus. Android issues discovered. A FIN7 arrest. Mr. Faraday’s…
The evolution of malware, both criminal and state-run.
Naming and shaming is the worst thing we can do.
An election database leaks. Phishing from Firebase. Shiny Hunters sell Mathway user records. COVID-19-themed scams. On that return to the office thing...
Cyberwar, cybercrime, and hacktivism: updates on all three. Contact tracing and its discontents. Cybersecurity economic trends during the pandemic.
Cyber espionage: many operations and many targets. Misinformation and online fraud during the pandemic. Beer and conviviality versus operational security.
Cyber Security Interviews
#089 – Ed Bellis: Complexity is the Enemy
#088 – Mikko Hyppönen: You Might Have an Enemy In the Future
#087 – Steve Moore: It’s a Balancing Act
#086 – Dave Kennedy: The Basics Are Still Challenging
#085 – John Strand: Making the Industry Better
#084 – Adam Hunt: A Game We Play
ISC Daily Stormcast
ISC StormCast for Tuesday, June 2nd 2020 new
ISC StormCast for Monday, June 1st 2020
ISC StormCast for Friday, May 29th 2020
ISC StormCast for Thursday, May 28th 2020
ISC StormCast for Wednesday, May 27th 2020
ISC StormCast for Tuesday, May 26th 2020
ISC StormCast for Friday, May 22nd 2020
ISC StormCast for Thursday, May 21st 2020
ISC StormCast for Wednesday, May 20th 2020

Threat Intel

Reddit - Onions
luk new
Welcome to the newly established community to discuss various research chemicals. new
Is it just me, or others can't acces Facebook over Tor as well? new
thepiratebay csv dump (2004-2019) new
VPN? new
torum mirror links new
Newbie Tuesdays - Don't know where to start? Worried about your security? Other questions? Post in here! new
Hello fellow onion members!
Hacker leaks database of dark web hosting provider Daniel's Hosting
Oh no im a new hacker
Ablative.Hosting | Free .onion hosting Tier
Is Empire still reliable?
Reddit - Pwned
Home Chef announces data breach after hacker sells 8M user records
Hackers' private chats leaked in stolen WeLeakData database
ULMON (Maps2Go) USER ACCOUNT DATA BREACH - 778K Accounts Compromised
Dating app MobiFriends silent on security breach impacting 3.6 million users | ZDNet
11 million Unacademy user accounts were hacked in January — and they are now up for sale on Dark Web
Australian logistics giant Toll suffers SECOND ransomware attack in 3 months
Live streaming adult site leaves 7 terabytes of private data exposed
GoDaddy Hack Breaches Hosting Account Credentials
Hacker leaks 15 million records from Tokopedia, Indonesia's largest online store | ZDNet
Nintendo confirms 160,000 Nintendo Accounts accessed in hacking attempts
Hacker leaks 23 million usernames and passwords from Webkinz children's game | ZDNet
SFO Websites Hacked: Airport Discloses Data Breach
HaveIBeenPwned
Wishbone (2020) - 9,705,172 breached accounts
LiveJournal - 26,372,781 breached accounts
PetFlow - 990,919 breached accounts
Artsy - 1,079,970 breached accounts
Lifebear - 3,670,561 breached accounts
Nulled.ch - 43,491 breached accounts
Covve - 22,802,117 breached accounts
Ulmon - 777,769 breached accounts
Elanic - 2,325,283 breached accounts
TaiLieu - 7,327,477 breached accounts
Tokopedia - 12,115,583 breached accounts
Vianet - 94,353 breached accounts

Privacy/VPNs

Slashdot - Rights
Publishers File Suit Against Internet Archive for Systematic Mass Scanning and Distribution of Literary Works
Are News Outlets Responsible For Comments Left On Their Facebook Pages?
What Would The Internet Look Like If America Repeals Section 230?
As Coronavirus Hospitalizations Rise in the US, Many States Hide Their Data
Many Scientists Warn CDC's New Death Rate Estimates Far Too Low
Western Digital Gets Sued For Sneaking SMR Disks Into Its NAS Channel
Amazon Will No Longer Support the Echo Look, Encourages Owners To Recycle Theirs
Senator Ted Cruz Calls For Criminal Investigation of Twitter
Joe Biden Doesn't Like Trump's Twitter Order, But Still Wants To Revoke Section 230
Twitter Flags Trump and White House Tweets About Minneapolis Protests for 'Glorifying Violence'
Twitter Flags Trump Tweet About Minneapolis Protests for 'Glorifying Violence'
ACLU Accuses Clearview AI of Privacy 'Nightmare Scenario'
Reddit - Privacy
How to Lock Down Your Phone for a Protest new
gain access to marshallaria.xyz new
COVID-19 privacy protection bill introduced with bipartisan support new
What's the opposite sub of this? I wanna see whay they're doing. Helps to know thy enemy. new
Attorney General Becerra Submits Proposed Regulations for Approval Under the California Consumer Privacy Act new
How would you go about ensuring as much privacy as possible when selling clothing/merch to an audience that values privacy/anonymity? new
NetIQ Advanced Authenticator alternatives new
Hacktivism forums and privacy discussion outside reddit? new
Introducing P2P (peer-to-peer) Matrix | Matrix.org new
From RealPlayer to Toshiba, Tech Companies Cash in on the Facial Recognition Gold Rush new
Most secure/private browser? new
My wifi got hacked. I need help. new
Reddit - VPN
Anyone else’s VPN blow up this morning around 7:00am PST? new
Get my laptop out of isp jail? new
Share Cisco AnyConnect VPN connection to another device. new
OpenConnect (ocsesrv) in Production new
Work Desktop VPN Ethernet Only Need Crossover Cable To Connect? new
VPN connectivity issue new
Can a Regular Person Track You While Using a VPN? new
Vpn client question new
Choose TCP or UDP? new
Can you request your Internet Provider to delete your data when your contract is done in Europe? new
Looking for a reliable VPN. Any suggestions? new
New to VPN looking for some help. new

Help Wanted

Reddit - AskNetSec
What can someone exploit if they are able to perform a DNS lookup on a publically exposed website? new
Do I interpret correctly those logs by saying they are related to referrer spam? new
Is "CSV Formula Injection" web attack still relevant? new
Security Architects (infosec) of reddit new
How do 3rd parties determine how many bots are on Twitter? new
How do services like VPNs, proxies, and datacenters get access to many residential IPs? new
Are the algorithms of these hashes correct? new
Is it a good idea to protect my passwords using PBKDF2 or a similar function? new
Alfa awus036ach drivers broken?
How bad it is showing others, from a selfhosted server, the configuration files of that server?
What non-college certifications/programs are recognized by the industry enough to get your foot in the door?
When using Burpsuite for android it doesn't load stuff as same as on pc, Why is that?
Reddit - Netsec Students
15 Best Network Security Courses to Learn 2020 new
Crypto mining- deep, dark and profitable - SecBI new
Why it takes so long to patch a vulnerability and how you can speed up the process new
pfsense installation & initial Configuration 🔥Open source Firewall🔥 new
A Guide to macOS Threat Hunting and Incident Response
how to use iptables to change NAT policies
how to configure a VM with 2 NICs?
Low Level Payloads
[video] IR Plans
Sentinel ATT&CK (v1.4 just released) aims to simplify the rapid deployment of a threat hunting capability that leverages Sysmon and MITRE ATT&CK on Azure Sentinel.
10 Reasons to Ditch Zoom
The CISO’s Quick Guide to Verizon's 2020 Data Breach Investigations Report
Stackoverflow - Security
Security Impact of using strncmp()? new
Best practice for storing external API secrets in server using AWS? new
Can a logic app or function be triggered when a blob is scanned by Azure Advanced Threat Protection new
Is it safe to store developer tokens on the client for the Apple Music API? new
How to prevent an attacker from resending the same encrypted request? new
Need to type https:// awlays after adding SSL certificate new
Blank username in Django allauth new
How to lock down a program that only uses stdin and stdout with podman run? new
How to enable cookies and security? new
EncryptedSharedPreferences biometric prompt not showing new
UserPrincipal Security. Disabling unwanted smart card prompt? new
How to secure scripts containing passwords for MacOS? new
Stack Exchange
Somebody signed up for Facebook using my email. Disabling does not work new
Why doesn't the PIN become part of the encryption key in bitlocker with TPM? new
Was I hacked? Does the Apple Mail App on Desktop trigger a Google "signed-in device"? new
Scheduling method for guest network in TPlink (TD-W8960N) ADSL modem new
Do the Secret Chats of Telegram really support Perfect Forward Secrecy? new
Security of bank account using a 8 digit password new
Wordpress Backups and Security new
Php intermediate shell new
How can I change HTTP header parameters to test a website with automatic tools? [closed] new
Unexpected requests from within my Kubernetes cluster new
How do maintainers calculate x number of accounts compromised by hack? [closed] new
Is macOS installing known bad Certificate Authorities by default? new

Locks/Social Engineering

Reddit - Lockpicking
Does anyone know what lock this is? I can’t find it online. I didn’t get it in the pic but it says 20 on the… new
Got this in the mail today! Just look at that bitting! new
Any ideas for a better pick? I would like a pick like on the bottom (same hook shape and handle length) but a higher quality… new
New to the hobby new
These chinese dimple picks appear to be good quality. The profile of each pick is well finished. I just have to do a little bit… new
Mako 427 put up a pretty good fight! new
Best Video Setup for Belt Proof new
Trouble with master 410 new
Feels great to get back into picking, glad I was able to pop this one open. I still have a lot to learn new
I've been trying to get this open for weeks but have failed miserably. Any advice from the community? The first pin feels like it is… new
1st set of picks? new
3 American 1100 in Under 3 Mins for Lock Pickings Gals Giveaway new
Reddit - Social Engineering
The deadly consequence of sex work stigmatization new
Where do I learn how to verbally answer and defend myself against those who abuse their authority?
An SE who I always suggest his podcast on this sub, to anyone interested in the field i suggest looking him up
News and removing content
Spiritual effects on society 2.0
Rand Waltzman - Disinformation Its the Thought that Counts - DEF CON 27 AI Village
Small choices become actions, actions become habits, and habits become our way of life.
Why Kindness is powerful than intelligence ?
How do I deal with an insecure guy who tries too hard to be "alpha and assertive" and who's always "ironic" and never takes a…
Social interactions, status, and enjoying yourself
Why Consumers Are More Willing To Share Personal Info On Phones vs Laptops
https://www.reddit.com/r/SocialEngineering/

Hak5

Security Blogs

Security Bloggers Network
Looks Can Be Deceiving: Context and the New Normative in Log and Event Analysis new
BSidesATL 2020 – Connect: Nawwar Kabbani’s ‘Exploiting OAuth 2.0 And OpenID Connect’ new
The Joy of Tech® ‘Will You Use A Contact Tracing App?’ new
How to Easily Modernize Access to Your PeopleSoft Applications new
5 Best Practices for TLS Certificate Management | Keyfactor new
Black Duck Audits: Not just for M&A new
BSidesATL 2020 – Connect: Eddie Glenn’s ‘Software Supply Chains And Code-To-Code Combat’ new
Five Step UEBA to Detect and Stop Insider Attacks new
We Stand Together Against Racism: Black Lives Matter new
How to catalog vendors with access to your network new
Experts Discuss: Where Data Security and Data Privacy Meet new
Abandoned Mobile Apps Are a Security Problem, Research Finds new
ThreatPost
Two Critical Android Bugs Open Door to RCE new
Severe Cisco DoS Flaw Can Cripple Nexus Switches new
Octopus Scanner Sinks Tentacles into GitHub Repositories new
Podcast: Why Identity Access Management is the New Perimeter new
Apple Pays $100K Bounty for Critical ‘Sign in With Apple’ Flaw
Minneapolis Police Department Hack Likely Fake, Says Researcher
Hosting Provider’s Database of Crooked Customers Leaked
Steganography Anchors Pinpoint Attacks on Industrial Targets
NTT Communications Data Breach Affects Customers, Threatens Supply Chain
NSA Warns of Sandworm Backdoor Attacks on Mail Servers
‘Hack-For-Hire’ Firms Spoof WHO To Target Google Credentials
ACLU Sues Clearview AI Over Faceprint Collection, Sale
digitalmunition
PE-backed WatchGuard Technologies buys Panda Security new
Botnet leicht erklärt new
Continuous Improvements in Cloud Technology Expected to Bolster Growth Until 2025 new
How to Sell Scrap Metal new
Ubuntu Security Notice USN-4377-2 ≈ Packet Storm new
Severe Cisco DoS Flaw Can Cripple Nexus Switches – Threatpost new
#Infosec20: Resilience Required to Survive #COVID19 Pandemic, Says UBER CIO new
New Android vulnerability called StrandHogg 2.0 identified (Includes interview) new
What Do Hacking And Malware Have To Do With Ad Fraud? new
Flush+Reload Attacks new
The 2020 Guide To SEO For Technology Companies new
Important Things You Should Know About Windows And Shutters new
eHacking News
Germany threatened Russia with sanctions for a hacker attack on the Bundestag new
Apple Plans to Expand Cloud-Based Services, Enters Cloud Computing Space
Is Data Science loosing all that hype?
A Series Of Cyber Essentials Toolkits Released To Address Cyber-Security Risks
Github Escapes from Octopus Malware that Affected its 26 Software Projects
Religion Biased Algorithms Continue to Depict How Facebook Doesn't Believe in Free Speech
Russian hackers attacked Poland due to NATO exercises
StrandHogg is Back and Stronger As a More Sophisticated Vulnerability
Telegram has withdrawn its appeal against the ban on issuing Gram tokens
WhatsApp Scam: Hackers stealing Verification Codes from Users
German Intelligence Warns Companies of Potential Hacking Threats from Russia
The voting site of the United Russia party was attacked by hackers
Wired - Security
Facebook 'Manage Activity' Is a Long Overdue Privacy Feature new
This Bot Hunts Software Bugs for the Pentagon
How to Protest Safely in the Age of Surveillance
This $350 "Anti-5G" Device Is Apparently Just a USB Stick
NSA: Russia's Sandworm Hackers Have Hijacked Mail Servers
Google Chrome Is Getting a Bunch of New Privacy Features
Shadowserver, an Internet Guardian, Finds a Lifeline
State-Based Contact Tracing Apps Could Be a Mess
Trump's New Intelligence Chief Spells Trouble
Don't Be Fooled by Covid-19 Contact-Tracing Scams
The DHS Prepares for Attacks Fueled by 5G Conspiracy Theories
Now's The Perfect Time to Start Using a Password Manager
Krebs on Security
REvil Ransomware Gang Starts Auctioning Victim Data new
UK Ad Campaign Seeks to Deter Cybercrime
Report: ATM Skimmer Gang Had Protection from Mexican Attorney General’s Office
Riding the State Unemployment Fraud ‘Wave’
Ukraine Nabs Suspect in 773M Password ‘Megabreach’
This Service Helps Malware Authors Fix Flaws in their Code
U.S. Secret Service: “Massive Fraud” Against State Unemployment Insurance Programs
Microsoft Patch Tuesday, May 2020 Edition
Meant to Combat ID Theft, Unemployment Benefits Letter Prompts ID Theft Worries
Tech Support Scam Uses Child Porn Warning
Europe’s Largest Private Hospital Operator Fresenius Hit by Ransomware
How Cybercriminals are Weathering COVID-19
Naked Security
The mystery of the expiring Sectigo web certificate new
Hacker posts database stolen from Dark Net free hosting provider DH new
Crime agency turns to Google ads to deter teen DDoS hackers new
No password required! “Sign in with Apple” account takeover flaw patched
Github uncovers malicious ‘Octopus Scanner’ targeting developers
Facebook to verify identities on accounts that churn out viral posts
Monday review – the hot 15 stories of the week
Clearview AI facial recogition sued again – this time by ACLU
COVID-19 tests, PPE and antivirual drugs find a home on the dark web
Windows 10 adds new security and privacy features in May update
Google sued by Arizona for tracking users’ locations in spite of settings
Inside a ransomware gang’s attack toolbox
Schneier on Security
"Sign in with Apple" Vulnerability new
Friday Squid Blogging: Humboldt Squid Communication
Bogus Security Technology: An Anti-5G USB Stick
Facebook Announces Messenger Security Features that Don't Compromise Privacy
Thermal Imaging as Security Theater
Websites Conducting Port Scans
Bluetooth Vulnerability: BIAS
Friday Squid Blogging: Squid Can Edit Their Own Genomes
Ann Mitchell, Bletchley Park Cryptanalyst, Dies
Bart Gellman on Snowden
Criminals and the Normalization of Masks
AI and Cybersecurity
Linux Security
Linux: An OS Capable of Effectively Meeting the US Government’s Security Needs Heading into 2020> new
Linux Kernel Security in a Nutshell: How to Secure Your Linux System> new
Latest BlackArch Linux ISO Adds More Than 150 New Hacking Tools, Linux 5.6> new
Ubuntu Linux Overtakes Windows XP, Only Sky Is the Limit Now> new
Github uncovers malicious ‘Octopus Scanner’ targeting developers>
New software security tool to detect bugs in OS>
Google sued by Arizona for tracking users’ locations in spite of settings>
National Security Agency Exposes Tool Used By Russian Hackers>
Removing A False Sense Of (open source) Security>
New fuzzing tool finds 26 USB bugs in Linux, Windows, macOS, and FreeBSD>
Linux Creator Linus Torvalds Ditches Intel CPU Over AMD Threadripper>
Linux Kodachi 7.0 ‘Katana’ Released: Browse The Internet Anonymously>
Dark Reading
Risk Assessment & the Human Condition new
Thycotic Buys Onion ID to Extend PAM Portfolio new
Cybersecurity Spending Hits 'Temporary Pause' Amid Pandemic new
Banking on Data Security in a Time of Insecurity new
Data on Indian Mobile Payments App Reportedly Exposed via Open S3 Bucket new
Apple Pays Researcher $100,000 for Critical Vulnerability
26 IoT Flaws Enable Denial-of-Service Attacks, Privilege Escalation
Rare NSA Advisory About Russia-Based Cyberattacks Unlikely to Stop Them
How AI and Automation Can Help Bridge the Cybersecurity Talent Gap
Bank of America Security Incident Affects PPP Applicants
Abandoned Apps May Pose Security Risk to Mobile Devices
Cisco Announces Patches to SaltStack
Securelist
The zero-day exploits of Operation WizardOpium
Whitehat Security Blog
HITB News
This Bot Hunts Software Bugs for the Pentagon new
Nest users now covered by Google’s ultra-secure Advanced Protection Program new
PS5 game reveal event has been delayed: “Not a time for celebration” new
George Floyd: Anonymous hackers re-emerge amid US unrest new
After a breach, users rarely change their passwords, study finds new
Meet ACE2, the Enzyme at the Center of the Covid-19 Mystery new
Lego brings out a $380, 3,969-piece Lamborghini Sián FKP 37 kit
Fortune 500 company NTT discloses security breach
Cisco security breach hits corporate servers that ran unpatched software
NSA: Russia's Sandworm Hackers Have Hijacked Mail Servers
A $350 “anti-5G” device is just a 128MB USB stick, teardown finds
Remote Work Has Its Perks, Until You Want a Promotion
The RISKS Digest
Death or Utopia in the Next Three Decades new
New Research Paper: "Privacy Threats in Intimate Relationships new
Live EPIC online policy panel: Privacy and the Pandemic new
Risks to Elections in the COVID-19 Era new
In virus-hit South Korea, AI monitors lonely elders new
How To Create A Culture of Kick-Ass #DevSecOps Engineers That Advocates Security Automation & Monitoring Throughout the #Software Development Life-cycle new
Critical 'Sign in with Apple' Bug Could Have Let Attackers Hijack Anyone's Account new
Re: Choosing 2FA authenticator apps can be hard. Ars did it so you don't have to new
Minnesota is now using contact tracing to track protestors, as demonstrations escalate new
Do Not Install/Use Centralized Server COVID-19 Contact Tracing Apps new
Resuscitate The Internet Fairness Doctrine new
Erik Prince Recruits Ex-Spies to Help Infiltrate Liberal Groups new
Kaspersky Blog
Adaptive cybersecurity training new
How to keep track of little ones on the loose
How to save on video games safely
How to deal with internal BEC
Transatlantic Cable podcast, episode 144
ATMs need quarantines too!
Raising digital parents
Turnkey protection as a service
Tax scams to watch out for in 2020
Transatlantic Cable podcast, episode 143
Social ratings: Be careful what you post
Ethical principles of vulnerability disclosure
Adam Shostack & friends
SLR as a Webcam
Code: science and production
How Are Computers Compromised (2020 Edition)
Models and Accuracy (Threat Modeling Thursday)
NCSC on Good Architecture Diagrams
SDL Article in CACM
Bounce and Range
The World Needs Hope
Threat Model Thursday: Data Flow Diagrams
Worthwhile Books (Q1 2020)
Power Dynamics in Threat Modeling
Answering “What Are We Working On” When Remote
Graham Cluley
What the NHS Test and Trace scheme could learn from banks about stopping scams
Prioritize alerts and jump-start your investigations with Recorded Future’s free browser extension. Sign up now.
Apparently Coronavirus-tracing scammers won’t sound professional… (Yeah, right!)
Pablo Escobar’s brother says FaceTime flaw revealed his address, sues Apple for a publicity stunt (and $2.6 billion)
OPSEC fail! “Super-hacker” accidentally outs himself through careless clues left on social media
Microsoft warns of PonyFinal ransomware attacks
NetWalker ransomware – what you need to know
Smashing Security podcast #180: Taking care of Clare
26 million LiveJournal users warned that their passwords have been breached
Password security is critical in a remote work environment – see where businesses are putting themselves at risk
How EasyJet customers could make money out of the airline being hacked
The Civil Service’s rogue tweet about “Truth Twisters”
Rapid7
Assessing Our New Security Landscape: Business Continuity Amid Shifting Priorities
The Masked SYNger: Investigating a Traffic Phenomenon
Finding Flexibility in Your Vulnerability Management Solution
Supporting Our Medical Professionals in the Age of COVID-19: Cybersecurity in the Healthcare Sector
Managing Cybersecurity in the Real Estate Industry: A Rapid7 Customer Story
Q&A from April 2020 Customer Webcast on InsightVM Dashboards & Executive Summary Report
Dancing With the Breaches: A Quick Step Through the 2020 Verizon Data Breach Investigations Report (DBIR)
Integrity Is Indispensable: Assessing Partnerships and Performance Metrics in a Crisis Response
Rapid7’s InsightVM Receives Five Stars from SC Magazine
Moving Toward a Better Signature Metric in SOCs: Detection Efficacy
How to Simplify InsightConnect Workflows Using Join Step
Patch Tuesday - May 2020
Hacker News (YCombinator) - Security
Police attacks against journalists across the U.S. since May 28 new
Civil rights leaders blast Facebook after meeting with Zuckerberg new
Lawmakers begin bipartisan push to cut off police access to military-style gear new
Ask HN: How does your company manage its encryption keys? new
Thousands Are Monitoring Police Scanners During the George Floyd Protests new
NSA Exposes Tool Used by Russian Hackers new
Turn Off All Security new
What Is The Insurrection Act? new
White nationalist group posing as antifa called for violence on Twitter new
De-Escalation Keeps Protesters and Police Safer new
The Police Data Accessibility Project new
How Not to Learn Cryptography (2014) new
Hacker Noon #Security
The Internet is Broken. Can Crypto Fix It? new
Why SaaS Companies Require Security Testing?
Is Your Zoom Meeting Really End-to-End Encrypted?
Thriving Scams amid Covid-19 Pandemic
Man In The Middle Attack Using Bettercap Framework
GitHub Security: How To Protect Your Company From Credential Leakage
4 Ways to Use the Cloud During this Crisis Period
Why You Should Use IAM Policies to Enforce MFA on AWS
With Telehealth on the Rise, Privacy Regulations are Imperative
How to Protect Folders And Files in Windows using Passwords
Aarogya Setu: How India’s Contact Tracing Tech Works? And How It Endangers Fundamental Rights
Can Data Automation Transform The Workplace?

Security in Mainstream Media

Google News Hacking
Hackers Plan to Use Stolen Cryptocurrency Exchange Data for SIM Swapping - VICE new
Apple releases iPhone update to patch ‘Unc0ver’ zero-day hack - The Independent new
Engel, Hack Formenbau Develop High-Volume System to Mold COVID-19 Test Swabs - Plastics Today new
What Do Hacking And Malware Have To Do With Ad Fraud? - Forbes new
Hackers are targeting the COVID-19 response and putting lives at risk | TheHill - The Hill new
Hackers Access PHI During Mat-Su Surgical Ransomware Attack - HealthITSecurity.com new
Hackers Move Another $800K in BTC Stolen From the 2016 Bitfinex Breach - Bitcoin News new
Microsoft throws weight behind machine learning hacking competition - The Daily Swig new
Hacker posts database stolen from Dark Net free hosting provider DH - Naked Security new
Hackers Using Steganography to Target Industrial Enterprises: Kaspersky - CISO MAG new
Elrond Invites Hackers to Stress Test Its Blockchain Network - Cointelegraph new
Crime agency turns to Google ads to deter teen DDoS hackers - Naked Security new
Google Cyber Security
GlobeX Data begins a social media influencers program for cyber security products - Proactive Investors USA & Canada new
iProov releases cybersecurity report, supplies bkynd with biometric authentication services - Biometric Update new
Jones Day Lands a Boston-Based Cybersecurity Crime Prosecutor - Bloomberg Law new
401k Cyber Security concerns are resulting in plan assessments - 401kTV new
European Cybersecurity Blogger Award Winners Announced - Infosecurity Magazine new
Sales Revenue of Automotive Cyber Security Market to Shoot Up Owing to Augmenting Demand During the Forecast Period - WaterCloud News new
Government Cybersecurity Funding: LEAP Act Seeks Breakthroughs - MSSP Alert new
NYC Cybersecurity Bootcamp Offers Free Training Nationwide - Infosecurity Magazine new
Cybersecurity Lessons From the Pandemic, or Pandemic Lessons From Cybersecurity - Lawfare new
Managing Cybersecurity Risks Up & Down the Supply Chain - Security Boulevard new
Building a Corporate Culture That Values Cybersecurity - BankInfoSecurity.com new
Building a Corporate Culture That Values Cybersecurity - GovInfoSecurity.com new

Thirsty for more

Hacker News (YCombinator)
A Debian bug caused by Playboy new
Bitcoin Mining’s Three Body Problem new
Jerry (YC S17) Roles in Engineering/Product (Toronto, SF Bay Area, China Remote) new
jwz: Everyone at Facebook is qwhite complicit new
“Today, I submitted my resignation to Facebook” new
Show HN: Street View Simple – Explore Street View Lidar Data in a Browser new
An Empirical Study on ARM Disassembly Tools [pdf] new
Running Awk in parallel to process 256M records new
P2P Matrix new
Police attacks against journalists across the U.S. since May 28 new
Civil rights leaders blast Facebook after meeting with Zuckerberg new
Stockton extends its monthly $500 UBI payment experiment new
Reddit - Cyberpunk
小 巷 by Z 4 new
Urban Ranger by Rafael Benedicto new
Food Delivery Crew by Shawn Lin new
Enough [Free for use] by João Antunes Jr. Antunesketch new
Microsoft replacing journalists with AI new
you look lonely new
The FCC on Friday approved 100 percent foreign ownership of U.S. broadcast properties, overturning long-standing 25 percent limit. new
Graphics looking good new
Glitched Covid-19 sign damaged by rioters in NY new
Cyberpunk poster (idk who is the author but if you know please share it) new
Classic cyberpunk law enforcement in the USA. new
Rant all you want, I don't care new
Reddit - Security CTF
CTF team new
EvilPWN CTF - Vulnerable VMs
High School Computer Science Server
HackTheBox - Resolute (10.10.10.169) video walkthrough
BruteShark - Network Forensic Analysis Tool
Resolute - Hack the Box Write-up [Windows]
Resolute: Hack The Box Walkthrough
Hack the Box - Resolute - Write-up
Cloud hosting for CTF event
Cryptopals Challenge 11 Confusion
New CTF website (SSHELL) ?
Cereal logger writeup | 247ctf.com
Reddit - Sysadmin
Library looking for MDM Solution new
Storing credentials for scheduled task Office 365 Powershell scripts new
ESXi Certificates - Questions Regarding Custom CA Certificate Installation new
Simple RDS with internal CA new
Intune 3rd party app compliance? new
Replacing LTO with cloud storage new
Just in case y'all missed this.. "Automate the Boring Stuff with Python" online course is free to sign up for the next few days with… new
Weird RDP situation via Citrix new
How do you all handle a phishing e-mails from obviously hijacked domains? new
Demo-2 systems question new
2FA for a shared Office365 mailbox new