Evading CSP with DOM-based dangling markup
submitted by /u/albinowax
Modelling APT32 in CALDERA
submitted by /u/Wietze-
PrestaShop 1.6 Privilege Escalation (CVE-2018-13784)
submitted by /u/cfambionics
Cloudflare, Fastly, Mozilla and Apple working on SNI encryption for TLS 1.3
submitted by /u/SerSwimsALot
Pentester demonstrates how to hack SAML
submitted by /u/Quackledork
DNS-Over-TLS Built-In & Enforced – 1.1.1.1 and the GL.iNet GL-AR750S
submitted by /u/civicode
airgapping a MacBook air, a Broadcom15700a2 mystery
submitted by /u/nullified-
Mueller Indictment of 12 GRU Agents has Interesting Technical Details
submitted by /u/PrimeMover17
Advanced Mobile Malware Campaign in India uses Malicious MDM
submitted by /u/polar
RFID Thief v2.0 – Build & Tutorial for Long Range RFID Cloning
submitted by /u/Imperium89
Apple and Linux CUPS Local Privilege Escalation and Sandbox Escapes
submitted by /u/b1x3r
Postmortem for Malicious Packages Published on July 12th, 2018
submitted by /u/_pdp_
Single-click Exploitation of Apple Safari with CVE-2018-4192
submitted by /u/gaasedelen
Frida 12.0 is out
submitted by /u/oleavr
Fish Out of Water: How the Military Is an Impossible Place for Hackers, and What to Do About It
submitted by /u/jalospinoso
ZOHO – Password Manager Vault; A Story Of Where Not To Store Keys
submitted by /u/INIT_6
Military Reaper Drone Documents Leaked on the Dark Web
submitted by /u/mynameis_neo
Speculative Buffer Overflows: Attacks and Defenses
submitted by /u/_pdp_
Why the Best Defense Is a Good Offensive Security Strategy
When many people think about offensive security, they picture a mysterious figure wearing a hoodie, sitting behind a black-and-green terminal, diligently typing away as he probes enterprise networks. But the cybersecurity world has evolved well beyond this Hollywood hacker...
Google hit with $5.1b fine in EU’s Android antitrust case
This could mean the end of free Android. In the meantime, Google plans to appeal.
Privacy Advocates Say Kelsey Smith Act Gives Police Too Much Power
This bill making its way through Congress would allow law enforcement to more easily uncover location data for cell phones from mobile carriers in an emergency.
IDG Contributor Network: Hack like a CISO
I have written several times over the last couple of years about how the role of today’s CISOs have changed and are now more tuned to support business activities and the management of enterprise risk. Serving an organization as...
Cisco patches critical vulnerabilities in Policy Suite
One of the worst security flaws permits attackers to act as root and execute arbitrary code.
