|[ News | Blogs | Reddits | Lists | Media | ? ] HoneyDB|
/r/netsec - Information Security News & Discussion
Abusing Public Infrastructure to Build Your Own VirusTotal for Email: An Open-Source Secure Email Gateway Evaluation Toolkit
Hi guys, we found a critical vulnerability (use after free in GPU) in Google Chrome. Google rewarded us $6K for it. We shared the story on how we found it from the blog post. Also, you can find the github repository if you want to check that out. Let me know your thoughts under here please!
Malware Analysis & Reports
Demonstration how Android malware steals recovery phrase from Trust Crypto Wallet without user interaction and restricts access to victims smartphone
Blackhat Library: Hacking techniques and research
No "free course" spam, paywalls, or anything else against the rules. This subreddit is for novel hacking techniques, projects, questions, and blackhat culture.
Vulnerability in OpenOffice/LibreOffice causes all unknown signature algorithms to result in valid document signatures
Discussion and Disclosure of Web Vulnerabilities
Has anyone ever worked for TransPerfect? If so, what was your experience and pay if you don’t mind sharing? I would be a Junior forensics role
XSS - Cross Site Scripting
What is a website that have list of functions of patterns that leave to reflected xss and reflected dom xss?
Codecov.io: "Unauthorized access and alterations to our Bash Uploader since Jan 31, 2021, which enabled them to potentially export information stored in our users' continuous integration (CI) environments"
CD Projekt Red 'EPICALLY pwned': Cyberpunk 2077 dev publishes ransom note after company systems encrypted
Florida city of Oldsmar's municipal water supply was almost poisoned during cyberattack, Sheriff says. A plant operator witnessed mouse movement on-screen and reverted the change
ENEL, Italian multinational manufacturer and distributor of electricity and gas with international customers, affected by data disclosure - 300,000 customers personal data leaked
Cryptography news and discussions
Remember Crown Sterling with their "TIME AI' cryptography nonsense at Blackhat? They now have a white paper (PDF).