Tuesday, March 19, 2019

Python for Reverse Engineering #1: ELF Binaries

submitted by /u/Icyphox

Fileless UAC Bypass in Windows Store Binary

submitted by /u/IUsedToBeACave

RCE on Steam Client via buffer overflow in Server Info

submitted by /u/eexiled

Extracting BitLocker keys from a TPM

submitted by /u/fuckup1337

WordPress 5.1 CSRF to RCE

submitted by /u/albinowax

DLL Hijacking with Ghidra – Practical Examples

submitted by /u/_creosote

N Ways to Unpack Mobile Malware

submitted by /u/wtfse

Penetration Testing Active Directory, Part II

submitted by /u/Hausec

F5 Networks Acquires NGINX For $670 Million

submitted by /u/Dormidera

Hack The Box – Ethereal write-up by 0xRick

submitted by /u/Ahm3d_H3sham
SC Magazine

Norwegian aluminum producer Norsk Hydro hit by an unspecified cyberattack

Norwegian aluminum producer Norsk Hydro was hit by a cyber attack which began Monday evening and escalated into the night. The Norwegian National Security Authority (NSM) declined to comment on what type of attack it was but said the extent...
SC Magazine

Glitch exposes Sprint customer data to other users

A bug has allowed some Sprint customers to see the personal data of other customers from their online accounts. The information visible includes names, cell phone numbers as well as calls made by other users and, and a Tech Crunch report cited...

6 Ways Mature DevOps Teams Are Killing It in Security

New survey shows where "elite" DevOps organizations are better able to incorporate security into application security.
The Register

Ransomware drops the Lillehammer on Norsk Hydro: Aluminium giant forced into manual mode after systems scrambled

Norway the power and metals wrangler could have seen this one coming Norwegian power and metals giant Norsk Hydro is battling an extensive ransomware infection on its computers.…

Old Tech Spills Digital Dirt on Past Owners

Researcher buys old computers, flash drives, phones and hard drives and finds only two properly wiped devices out of 85 examined.