URLhaus - the purpose of the project is to collect, track and share malware URLs, helping network administrators and security analysts to protect their network and customers from cyber threats

submitted by TheRealPanzer from urlhaus.abuse.ch

If you see one of these area codes don’t answer — It’s probably a scam

submitted by TheRealPanzer from komando.com

Accidental $70k Google Pixel Lock Screen Bypass

submitted by Drewski from bugs.xdavidhu.me

Your Neighborhood Locksmith

submitted by youneighborhoodlocks from self.Security

"Anyone running an (Mastodon) instance can see your hashed password and all user data, read all of your DMs and take over your account."

submitted by TheRealPanzer from twitter.com

Usenix Security 22 videos released

submitted by TheRealPanzer from usenix.org

The Various Pros and Cons of Shared and VPS Hosting

submitted by iton12344 from sktthemes.org

Patch OpenSSL on November 1 to avoid “Critical” Security Vulnerability

submitted by Drewski from globalsign.com

Big Tech is Demanding Our Personal Cell Phone Numbers but No One is Talking About it.

submitted by raven9 from self.Security

Linux Foundation, Not ‘Supply Chain’ Nonsense, is Becoming the Biggest Threat to Linux Security and Computing Security (It’s Deliberate)

submitted by TheRealPanzer from techrights.org

Phishing works so well crims won't bother with deepfakes

submitted by TheRealPanzer from theregister.com

Everyone going to the World Cup must have this app - experts are now sounding the alarm

submitted by TheRealPanzer from nrk.no

Critical Remote Code Execution Vulnerability in JXPath Library (CVE-2022-41852)

submitted by majk from hackinglab.cz

Heat from fingertips can be used to crack passwords

submitted by TheRealPanzer from archive.ph

Signal is secure, as proven by hackers

submitted by TheRealPanzer from kaspersky.co.uk

Popular YouTube Channel Caught Distributing Malicious Tor Browser Installer

submitted by TheRealPanzer from thehackernews.com

Security Vulnerabilities in Covert CIA Websites

submitted by TheRealPanzer from schneier.com

Serious vulnerabilities in Matrix’s end-to-end encryption have been patched

submitted by Drewski from arstechnica.com

Google, Microsoft can get your passwords via web browser's spellcheck

submitted by TheRealPanzer from bleepingcomputer.com

Security Threats of Public Wi-Fi - Is It Just Fearmongering?

submitted by TheRealPanzer from zitadel.com

The most secure cloud is your computer

submitted by TheRealPanzer from anita-app.com

Blocking Ads and malware with Pi-hole

submitted by TheRealPanzer from allthingstech.ch

PETEP (Open-Source TCP Proxy for Hacking)

submitted by majk from self.Security

Hacker shows why TSA is “security theater” | Evan Booth for Heretics (5:00) ~ Freethink

submitted by JasonCarswell from youtube.com

Hackers steal crypto from Bitcoin ATMs by exploiting zero-day bug

submitted by Drewski from bleepingcomputer.com

Streaming Service Crunchyroll Blocks Privacy-Focused Email Tutanota Because "Hackers use it"

submitted by TheRealPanzer from news.itsfoss.com

An encrypted ZIP file can have two correct passwords

submitted by TheRealPanzer from bleepingcomputer.com

We can make our phones harder to hack but complete security is a pipe dream

submitted by TheRealPanzer from theguardian.com

Unhide is a forensic tool to find hidden processes and TCP/UDP ports by rootkits/LKMs or by another hidden technique.

submitted by TheRealPanzer from unhide-forensics.info

Erik Prince wants to sell you a “secure” smartphone that’s too good to be true

submitted by TheRealPanzer from technologyreview.com

The world's best password advice

submitted by TheRealPanzer from michaelhorowitz.com

iOS VPNs have leaked traffic for more than 2 years, researcher claims

submitted by TheRealPanzer from arstechnica.com

NthLink VPN found to be using same pre-shared keys for all users

submitted by TheRealPanzer from twitter.com

Complete guide for the paranoid user

submitted by TheRealPanzer from eldritchdata.neocities.org

Firefox & AppArmor hardening - Custom rules

submitted by TheRealPanzer from dedoimedo.com

Wi-Fine - it is fine to use public Wi-Fi

submitted by TheRealPanzer from wifine.gitlab.io

More Pixel 6a owners find that any fingerprint can unlock the phone

submitted by TheRealPanzer from 9to5google.com

Router Security

submitted by TheRealPanzer from routersecurity.org

Discovery of new UEFI rootkit exposes an ugly truth: The attacks are invisible to us

submitted by TheRealPanzer from arstechnica.com

Critical flaws in GPS tracker enable “disastrous” and “life-threatening” hacks

submitted by TheRealPanzer from arstechnica.com

The US requests access to national databases of fingerprints and faces in exchange for visaless entry to the US for up to 90 days. At least 5 countries already gave the US access to their police databases.

submitted by TheRealPanzer from self.Security

Researchers have discovered a vulnerability in Honda vehicles that could allow hackers to unlock doors and start the cars remotely. Affects all Honda models released between 2012 and 2022.

submitted by TheRealPanzer from bogleheads.org

Threema: Three Strikes, You’re Out

submitted by Drewski from soatok.blog

Oblivious DNS-over-HTTPS - security engineers are proposing an experimental protocol that promises greater privacy in how DNS operates.

submitted by TheRealPanzer from portswigger.net

The HDMI firewall prevents devices from hacking HDMI equipment, and vice-versa.

submitted by TheRealPanzer from git.cuvoodoo.info

Mega says it can’t decrypt your files. New POC exploit shows otherwise.

submitted by TheRealPanzer from arstechnica.com

All Chromium browsers store passwords and sensitive data in clear text in memory

submitted by TheRealPanzer from borncity.com

LastPass no longer requires a password to access your vault, moving to flawed FIDO

submitted by SoCo from engadget.com

Add Privacy and Security Using Email Aliases With Bitwarden

submitted by TheRealPanzer from bitwarden.com

Netbird is an open-source VPN management platform built on top of WireGuard making it easy to create secure private networks for your organization or home.

submitted by TheRealPanzer from github.com

Defending against malicious bots with a zip bomb

submitted by TheRealPanzer from kerkour.com

Tor Browser in Tails 5.0 and earlier is unsafe to use. You should stop using Tails until the release of 5.1 (May 31) if you use Tor Browser for sensitive information (passwords, private messages, personal information, etc.).

submitted by TheRealPanzer from tails.boum.org

The passwords most used by CEOs are startlingly dumb

submitted by TheRealPanzer from pcgamer.com

Firefox debuts improved process isolation to reduce browser attack surface

submitted by TheRealPanzer from portswigger.net

NSA Swears It Won't Allow Backdoors in New Encryption Standards

submitted by Drewski from gizmodo.com

Some Cryptography Books I Like - Cronokirby

submitted by Drewski from cronokirby.com

Researchers Identify ‘Master Problem’ Underlying All Cryptography

submitted by Drewski from quantamagazine.org

deSEC is a free DNS hosting service, designed with security in mind

submitted by TheRealPanzer from desec.io

Mistborn is your own virtual private cloud platform and WebUI that manages self hosted services, and secures them with firewall, Wireguard VPN w/ PiHole-DNSCrypt, and IP filtering

submitted by TheRealPanzer from gitlab.com

WebApps provides a secure way to browse popular webapps by eliminating referrers, 3rd party requests, cookies, cross-site scripting, etc.

submitted by TheRealPanzer from f-droid.org

7-Zip up to 21.07 on Windows allows privilege escalation and command execution

submitted by Drewski from github.com

Researchers Uncover a Hardware Security Vulnerability on Android Phones

submitted by Drewski from cyberkendra.com

Lupinia Studios - I'm a Scam Prevention Expert, and I Got Scammed

submitted by Drewski from lupinia.net

Kicksecure - a secure by default operating system

submitted by TheRealPanzer from kicksecure.com

AppTotal - analyze suspicious OAuth apps to identify malicious apps, highlight risks, ...

submitted by TheRealPanzer from apptotal.io

North Korean hackers exploit Chrome zero-day weeks before patch

submitted by Drewski from bleepingcomputer.com

A team of Ukrainian software engineers have developed a game called “Play for Ukraine” that crowdsources and gamifies participation in DDOS attacks against selected Russian government and media websites

submitted by TheRealPanzer from fastcompany.com

Another data-leaking Spectre bug found, smashes Intel, Arm defenses

submitted by TheRealPanzer from theregister.com

"I can probably hack your password in MINUTES!"

submitted by TheRealPanzer from docs.aista.com

SentryPeer - a distributed peer to peer list of bad actor IP addresses and phone numbers collected via a SIP Honeypot

submitted by TheRealPanzer from sentrypeer.org

Merry Maker is a fully scalable tool to detect the presence of digital skimmers

submitted by TheRealPanzer from csoonline.com

LAN port scan forbidder - forbid untrusted web to scan localhost or LAN

submitted by TheRealPanzer from github.com

wolfBoot will secure the boot process of your device against malicious attacks that seek to replace your firmware and take control of your device, and/or steal its data

submitted by TheRealPanzer from wolfssl.com

Rogueport identifies network ports which are not supposed to be open

submitted by TheRealPanzer from github.com

JShelter - an anti-malware Web browser extension to mitigate potential threats from JavaScript, including fingerprinting, tracking, and data collection

submitted by TheRealPanzer from jshelter.org

SafeToOpen detects never-before-seen phishing websites by inspecting the visual and non-visual elements of the websites in real-time and preventing users give away their sensitive information

submitted by TheRealPanzer from safetoopen.com

Researchers shared technical details of NSA Equation Group’s 'Bvp47' Backdoor

submitted by infocom6502 from cybersecurityworldconference.com

Block malware, spyware, ads, and trackers across all apps with RethinkDNS

submitted by [deleted] from rethinkdns.com

ESSE - an open source encrypted peer-to-peer system for data security, and allow data to be sent securely from one terminal to another without going through third-party services

submitted by [deleted] from github.com

TOR Fone - p2p secure and anonymous VoIP tool

submitted by [deleted] from torfone.org

Are the Tutanota and Ctemplar Encrypted Email Providers, Honeypots?

submitted by raven9 from self.Security

Log4Shell: RCE 0-day exploit found in log4j2, a popular Java logging package

submitted by Drewski from lunasec.io

Public CDNs Are Useless and Dangerous

submitted by infocom6502 from news.ycombinator.com

A mysterious threat actor is running hundreds of malicious Tor relays

submitted by Drewski from therecord.media

Missouri Admits It Fucked Up In Exposing Teacher Data, Offers Apology To Teachers -- But Not To Journalists It Falsely Accused Of Hacking

submitted by Drewski from techdirt.com

Confessions of a ransomware negotiator

submitted by Drewski from theregister.com

Hackers claim significant Epik breach

submitted by Drewski from domainnamewire.com

Hackers leak passwords for 500,000 Fortinet VPN accounts

submitted by Drewski from bleepingcomputer.com

How I re-over-engineered my home network for privacy and security

submitted by [deleted] from ben.balter.com

Cambridge Locksmith 247

submitted by locksmithcambridgema from self.Security

“Worst cloud vulnerability you can imagine” discovered in Microsoft Azure

submitted by Drewski from arstechnica.com

Github Now Demanding Device Verification

submitted by raven9 from self.Security

GitHub Kisses Passwords Goodbye

submitted by [deleted] from thenewstack.io

Tinder Will Soon Require Users To Verify Their Account Using Local ID For Added Security Online

submitted by [deleted] from indiatimes.com

Wapiti allows you to audit the security of your websites or web applications

submitted by [deleted] from wapiti.sourceforge.io

Wanted: Disgruntled Employees to Deploy Ransomware

submitted by Drewski from krebsonsecurity.com

Secret terrorist watchlist with 2 million records exposed online

submitted by Drewski from bleepingcomputer.com

Should browsers remember 2FA codes?

submitted by [deleted] from shkspr.mobi

Apple's disregard for security and privacy is mind-boggling

submitted by [deleted] from evermeet.cx

Large batch of high score Vulnerabilities in Mozilla Firefox are disclosed. High risk for government, businesses, and targeted individuals who use Mozilla open sores.

submitted by infocom6502 from cisecurity.org

view more: next ›