Login
FreshRSS
Login
About FreshRSS
Main stream
Favourites (0)
Security
/r/netsec - Information Security News & Discussion
Dark Reading:
http://blog.trendmicro.com/feed
ICS-CERT Alert Feed
Infosec Island Latest Articles
InfoSec Resources
Krebs on Security
McAfee Blogs
Naked Security
News β Packet Storm
Paul's Security Weekly
SANS Internet Storm Center, InfoCON: green
Security β Cisco Blog
SecurityFocus News
The first stop for security news | Threatpost
The Hacker News
The Register - Security
Threatpost | The first stop for security news
Troy Hunt
Verisign Blog
WeLiveSecurity
WIRED
ZDNet | security RSS
Tools
Security Tool Files β Packet Storm
ToolsWatch.org β The Hackers Arsenal Tools Portal
Vulnerabilities
Advisory Files β Packet Storm
Exploit-DB Updates
Full Disclosure
SecurityFocus Vulnerabilities
There are new available articles, click to refresh the page.
Before yesterday
Naked Security
Naked Security
Performance and security clash yet again in βCollide+Powerβ attack
August 2
nd
2023 at 23:36Β
Performance and security clash yet again in βCollide+Powerβ attack
By
Paul Ducklin
It's a real vulnerability, but the data leakage rate can be as low as... let's just say that an IMAX-quality copy of the new "Oppenheimer" movie could take you 4 billion years to exfiltrate.
Related tags
β
Data
loss
Vulnerability
amd
Collide+Power
CVE-2023-20538
intel
August 2
nd
2023 at 23:36
Naked Security
Urgent! Apple fixes critical zero-day hole in iPhones, iPads and Macs
July 10
th
2023 at 23:12Β
Urgent! Apple fixes critical zero-day hole in iPhones, iPads and Macs
By
Paul Ducklin
Don't delay, do it today. This is a code-implantation bug in WebKit that attackers already know how to exploit.
Related tags
β
Apple
Apple
Safari
iOS
OS
X
Uncategorized
Vulnerability
day
CVE-2023-37450
vulnerability
webkit
Zero
Day
July 10
th
2023 at 23:12
Naked Security
Belkin Wemo Smart Plug V2 β the buffer overflow that wonβt be patched
May 16
th
2023 at 17:59Β
Belkin Wemo Smart Plug V2 β the buffer overflow that wonβt be patched
By
Paul Ducklin
Yes, it's a buffer overflow bug. No, it's not going get fixed.
Related tags
β
belkin
Wemo
plug
May 16
th
2023 at 17:59
Naked Security
Popular JWT cloud security library patches βremoteβ code execution hole
January 10
th
2023 at 19:59Β
Popular JWT cloud security library patches βremoteβ code execution hole
By
Paul Ducklin
It's remotely triggerable, but attackers would already have pretty deep network access if they could "prime" your server for compromise.
Related tags
β
Cryptography
Vulnerability
JSON
jsonwebtoken
JWT
rce
vulnerability
January 10
th
2023 at 19:59
Naked Security
S3 Ep114: Preventing cyberthreats β stop them before they stop you! [Audio + Text]
December 22
nd
2022 at 19:56Β
S3 Ep114: Preventing cyberthreats β stop them before they stop you! [Audio + Text]
By
Paul Ducklin
Join world-renowned expert Fraser Howard, Director of Research at SophosLabs, for this fascinating episode on how to fight cybercrime.
Related tags
β
Malware
Podcast
Security
leadership
Cybercrime
fraser
howard
malware
Security
SOS
Week
sophoslabs
SOS
Week
threat
prevention
December 22
nd
2022 at 19:56
Naked Security
Online ticketing company βSeeβ pwned for 2.5 years by attackers
October 26
th
2022 at 19:58Β
Online ticketing company βSeeβ pwned for 2.5 years by attackers
By
Paul Ducklin
Don't be a cybersecurity slowcoach - you need to spot possible attacks as soon as you can.
Related tags
β
Data
loss
data
breach
See
Tickets
Web
Malware
October 26
th
2022 at 19:58
Naked Security
Fashion brand SHEIN fined $1.9m for lying about data breach
October 17
th
2022 at 18:50Β
Fashion brand SHEIN fined $1.9m for lying about data breach
By
Naked Security writer
Is "pay a small fine and keep on trading" a sufficient penalty for letting a breach happen, impeding an investigation, and hiding the truth?
Related tags
β
Data
loss
GDPR
compliance
cover-up
data
breach
New
York
ROMWE
SHEIN
Zoetop
October 17
th
2022 at 18:50
Naked Security
Interested in cybersecurity? Join us for Security SOS Week 2022!
September 21
st
2022 at 14:24Β
Interested in cybersecurity? Join us for Security SOS Week 2022!
By
Paul Ducklin
Four one-on-one interviews with experts who are passionate about sharing their expertise with the community.
Related tags
β
Security
events
Security
leadership
Event
malware
SOS
Week
September 21
st
2022 at 14:24
Naked Security
URGENT! Apple slips out zero-day update for older iPhones and iPads
August 31
st
2022 at 18:42Β
URGENT! Apple slips out zero-day update for older iPhones and iPads
By
Paul Ducklin
Patch as soon as you can - that recent WebKit zero-day affecting new iPhones and iPads is apparently being used against older models, too.
Related tags
β
Apple
iOS
CVE-2022-32893
ios
spyware
webkit
Zero
Day
August 31
st
2022 at 18:42
Naked Security
Youβre invited! Join us for a live walkthrough of the βFollinaβ storyβ¦
June 13
th
2022 at 16:28Β
Youβre invited! Join us for a live walkthrough of the βFollinaβ storyβ¦
By
Paul Ducklin
Live demo, plain English, no sales pitch, just a chance to watch an attack dissected in safety. Join us if you can!
Related tags
β
Malware
Security
leadership
Vulnerability
CVE-2022-30190
Follina
webinar
June 13
th
2022 at 16:28
Naked Security
S3 Ep85: Now THATβS what I call a Microsoft Office exploit! [Podcast]
June 2
nd
2022 at 18:37Β
S3 Ep85: Now THATβS what I call a Microsoft Office exploit! [Podcast]
By
Paul Ducklin
Latest episode - listen now!
Related tags
β
Phishing
Podcast
Privacy
Vulnerability
CVE-2022-30190
Follina
Naked
Security
Podcast
smishing
SMS
webcam
June 2
nd
2022 at 18:37
Naked Security
Whoβs watching your webcam? The Screencastify Chrome extension storyβ¦
May 26
th
2022 at 12:41Β
Whoβs watching your webcam? The Screencastify Chrome extension storyβ¦
By
Paul Ducklin
When you really need to make exceptions in cybersecurity, specify them as explicitly as you can.
Related tags
β
Privacy
Chrome
store
need-to-know
Screencastify
webcam
May 26
th
2022 at 12:41
Naked Security
S3 Ep78: Darkweb hydra, Ruby, quantum computing, and a robot revolution [Podcast]
April 14
th
2022 at 13:39Β
S3 Ep78: Darkweb hydra, Ruby, quantum computing, and a robot revolution [Podcast]
By
Paul Ducklin
Latest episode - listen now!
Related tags
β
Cryptocurrency
Cryptography
Podcast
Vulnerability
darkweb
Hydra
iot
Naked
Security
Podcast
PQC
quantum
computing
robot
takedown
April 14
th
2022 at 13:39
Naked Security
Serious Security: Darkweb drugs market Hydra taken offline by German police
April 6
th
2022 at 16:22Β
Serious Security: Darkweb drugs market Hydra taken offline by German police
By
Paul Ducklin
Why are Tor sites hard to locate and therefore difficult to take down? We explain in plain English...
Related tags
β
Cryptocurrency
Law
&
order
bust
cryptocurrency
dark
web
darkweb
Hydra
takedown
April 6
th
2022 at 16:22
Naked Security
Serious Security: Apple Safari leaks private data via database API β what you need to know
January 18
th
2022 at 19:23Β
Serious Security: Apple Safari leaks private data via database API β what you need to know
By
Paul Ducklin
There's a tiny data leakage bug in the WebKit browser engine... but it could act as a "supercookie" identifier for your browsing
Related tags
β
Apple
Data
loss
Privacy
data
leakage
Safari
webkit
January 18
th
2022 at 19:23
Naked Security
Apacheβs other product: Critical bugs in βhttpdβ web server, patch now!
December 21
st
2021 at 19:57Β
Apacheβs other product: Critical bugs in βhttpdβ web server, patch now!
By
Paul Ducklin
The Apache web server just got an update - this one is nothing to do with Log4j!
Related tags
β
Vulnerability
Apache
CVE-2021-44224
CVE-2021-44790
httpd
web
server
December 21
st
2021 at 19:57
There are no more articles
β
Mark all as read
Login
FreshRSS 