Quarantine edition.
Microsoft patches the newest SMB flaw. Stop using SMB.
https://nake...
Read More
SMBv3 is borked. Block port 445.
https://portal.msrc.microsoft.com/en-US/security-guidance/adv...
Read More
NordVPN has yet another interesting application security vulnerability.
https://www.theregister.co.u...
Read More
From @baskarmib on Twitter, we have an example of malware that will steal your Google authenticator...
Read More
Portswigger (the company that makes Burp Suite) is out with their Top 10 web application hacking tec...
Read More
From the Absolute AppSec Podcast - learned about a really great article on how Account Enumeration i...
Read More
Christian Pedersen wrote a cool scanner for the Netscaler Gateway flaw, and is hosting it on Azure.&...
Read More
Simon Bennetts reminds me that OWASP ZAP also has a shiny new web presence, and an upgraded executab...
Read More
You know that open S3 buckets are one of my pet peeves - well guess what. Azure isn't any...
Read More
Good Twitter thread on JavaScript based redirection and Cross-site Scripting.
https://twitter.com/ha...
Read More
Austin Schertz won the CodeMash CTF this year, and he dropped off his answers to all 19 challenges.&...
Read More
Post-CodeMash edition!
The Government of Gibraltar had a SQL Injection vulnerability in the s...
Read More