Thursday, July 19, 2018

Evading CSP with DOM-based dangling markup

submitted by /u/albinowax

Modelling APT32 in CALDERA

submitted by /u/Wietze-

PrestaShop 1.6 Privilege Escalation (CVE-2018-13784)

submitted by /u/cfambionics

Pentester demonstrates how to hack SAML

submitted by /u/Quackledork

airgapping a MacBook air, a Broadcom15700a2 mystery

submitted by /u/nullified-

Frida 12.0 is out

submitted by /u/oleavr

Military Reaper Drone Documents Leaked on the Dark Web

submitted by /u/mynameis_neo

Why the Best Defense Is a Good Offensive Security Strategy

When many people think about offensive security, they picture a mysterious figure wearing a hoodie, sitting behind a black-and-green terminal, diligently typing away as he probes enterprise networks. But the cybersecurity world has evolved well beyond this Hollywood hacker...

Google hit with $5.1b fine in EU’s Android antitrust case

This could mean the end of free Android. In the meantime, Google plans to appeal.

Privacy Advocates Say Kelsey Smith Act Gives Police Too Much Power

This bill making its way through Congress would allow law enforcement to more easily uncover location data for cell phones from mobile carriers in an emergency.

IDG Contributor Network: Hack like a CISO

I have written several times over the last couple of years about how the role of today’s CISOs have changed and are now more tuned to support business activities and the management of enterprise risk. Serving an organization as...

Cisco patches critical vulnerabilities in Policy Suite

One of the worst security flaws permits attackers to act as root and execute arbitrary code.