AZORult spreads as a fake ProtonVPN installer
7
votes
Showing only topics with the tag "security".
Back to normal view
-
-
OpenSSH 8.2 released - disables the legacy "ssh-rsa" algorithm, adds support for FIDO/U2F hardware tokens
12 votes -
Analysis of Voatz mobile voting app by MIT researchers finds elementary security flaws
11 votes -
Security researchers partner with Chrome to take down over 500 browser extensions in a fraud network affecting 1.7 million users
12 votes -
Dangerous Domain Corp.com Goes Up for Sale
21 votes -
Firefox will start deprecating TLS 1.0 and 1.1 with Firefox 74, releasing on March 10, 2020
16 votes -
Reverse engineering Blind's API and client side encryption
4 votes -
Sometimes you have to stick a screwdriver in it (or how to liberate a Chromebook in ten easy steps)
8 votes -
How Twitter's default settings enabled a security researcher to discover phone numbers for over 17 million accounts
10 votes -
Hey Cortana, how do I do a crime?
9 votes -
Building a simple VPN with WireGuard and a Raspberry Pi
6 votes -
Transparent and verifiable electronic elections are technically feasible, but the techniques used are not actually viable for running most elections—and definitely not for remote voting
5 votes -
LPE and RCE in OpenSMTPD (CVE-2020-7247)
6 votes -
Locking down the EC2 Instance Metadata Service: Announcing imds-filterd
2 votes -
Apple dropped plan for encrypting backups after FBI complained
21 votes -
Regarding Reuters’s Report That Apple Dropped Plan for Encrypting iCloud Backups
5 votes -
Smart homes will turn dumb overnight as Charter kills security service
17 votes -
Heathrow Airport Installs Anti-Drone System to Detect Threats
8 votes -
Exploiting the Windows CryptoAPI vulnerability
6 votes -
Critical Windows 10 exploit discovered which allows arbitrary software to be installed under the guise of Windows updates
20 votes -
CVE-2020-0601 - Windows CryptoAPI spoofing vulnerability
16 votes -
Billions of medical images available online
10 votes -
Hackers Are Breaking Directly Into Telecom Companies to Take Over Customer Phone Numbers
10 votes -
The Bug That Exposed Your PayPal Password
17 votes -
Tricky Phish Angles for Persistence, Not Passwords
3 votes -
Multiple vulnerabilities discovered in TikTok enabling sending arbitrary links through SMS, exposing private account data, and more
11 votes -
reCAPTCHA: Is there method in monotony?
What started out as a little facetious in my own head leads me now to a serious question. Is there some meaningful reason why Google has to use a subsection of images for reCAPTCHA? I really...
What started out as a little facetious in my own head leads me now to a serious question. Is there some meaningful reason why Google has to use a subsection of images for reCAPTCHA? I really dislike having to do this and at the very least would appreciate some variation.
- Traffic Lights
- Buses
- Bicycles
- Cars
- Crosswalks
Is there something special about these things in this context? Is the visual noise they're usually associated with what makes them good candidates? Are Google just really into urban planning? Who knows...I'm hoping some Tilder smarter than I can help me out.
10 votes -
BusKill: A kill cord for your laptop
13 votes -
Promiscuous cookies and their impending death via the SameSite policy
10 votes -
On Privacy versus Freedom
9 votes -
Breaking Into a Smart Home With A Laser - Smarter Every Day 229
12 votes -
What we know about you when you click on this article—Vox has a pretty typical privacy policy. That doesn’t make it great.
11 votes -
The strange story of “Extended Random”
8 votes -
Why electronic voting is still a bad idea
17 votes -
Generated passwords, UX and security absolutism
17 votes -
Military Grade Encryption Won’t Save You, or Your Business
4 votes -
WireGuard VPN slated for inclusion in Linux 5.6
11 votes -
[CVE-2019-14899] Inferring and hijacking VPN-tunneled TCP connections
7 votes -
Firefox Private Network
30 votes -
Email authentication: SPF, DKIM and DMARC out in the wild
8 votes -
Beware of shell globs
9 votes -
Kaspersky vulnerabilities: uninstalling any Chrome extension, tracking users in incognito or different browsers, and controlling functionality with links
9 votes -
Multiple Fortinet products communicate with FortiGuard services while only "encrypting" sensitive user data using XOR with a hardcoded key
9 votes -
It’s Time To Plan For A Future Beyond Passwords
11 votes -
A new tracking technique using CNAME aliases to circumvent third-party cookie restrictions is blockable using a Firefox DNS API, but not in Chrome
18 votes -
Bad Binder: A use-after-free exploit in Binder in the Android kernel that was being exploited in the wild
5 votes -
Explanation and proof-of-concept exploitation of a vulnerability in the "docker cp" command that enabled full container escape and root control of the host
6 votes -
Android exploit of system camera apps enabled a malicious app to record and upload photos, video and audio with only "storage" permission
10 votes -
Cybercrime Booms As Scammers Hack Human Nature To Steal Billions
8 votes -
Infectious Executable Stacks and GCC's extension that allows closures in C
7 votes