by Bill Sempf
24. March 2019 07:56
Bruce has some thoughts on a well-circulated article suggesting that application security isn't that important after all.
https://www.schneier.com/blog/archives/2019/03/an_argument_tha.html
Solid analysis of SimBad, a rogue malware campaign that infiltrated the Google Play store.
https://research.checkpoint.com/simbad-a-rogue-adware-campaign-on-google-play/
Terrifying tool that creates a spoofed cert for any website and signs an executable for AV Evasion.
https://github.com/paranoidninja/CarbonCopy
More awesome research from Rapid7, on deserialization bugs. A topic, as regular readers know, that is near and dear to my heart.
https://www.rapid7.com/research/report/exploiting-jsos/
And that's the news!
98257583-d633-4da4-bc94-2b74832358c5|0|.0|96d5b379-7e1d-4dac-a6ba-1e50db561b04
Tags:
Subscribe