Login
FreshRSS
Login
About FreshRSS
Main stream
Favourites (0)
Security
/r/netsec - Information Security News & Discussion
Dark Reading:
http://blog.trendmicro.com/feed
ICS-CERT Alert Feed
Infosec Island Latest Articles
InfoSec Resources
Krebs on Security
McAfee Blogs
Naked Security
News β Packet Storm
Paul's Security Weekly
SANS Internet Storm Center, InfoCON: green
Security β Cisco Blog
SecurityFocus News
The first stop for security news | Threatpost
The Hacker News
The Register - Security
Threatpost | The first stop for security news
Troy Hunt
Verisign Blog
WeLiveSecurity
WIRED
ZDNet | security RSS
Tools
Security Tool Files β Packet Storm
ToolsWatch.org β The Hackers Arsenal Tools Portal
Vulnerabilities
Advisory Files β Packet Storm
Exploit-DB Updates
Full Disclosure
SecurityFocus Vulnerabilities
There are new available articles, click to refresh the page.
Before yesterday
Naked Security
Naked Security
Supply chain blunder puts 3CX telephone app users at risk
March 30
th
2023 at 20:36Β
Supply chain blunder puts 3CX telephone app users at risk
By
Paul Ducklin
Booby-trapped app, apparently signed and shipped by 3CX itself after its source code repository was broken into.
Related tags
β
Malware
3CX
Electron
git
malware
suuply
chain
March 30
th
2023 at 20:36
Naked Security
GitHub code-signing certificates stolen (but will be revoked this week)
January 31
st
2023 at 11:35Β
GitHub code-signing certificates stolen (but will be revoked this week)
By
Paul Ducklin
There was a breach, so the bad news isn't great, but the good news isn't too bad...
Related tags
β
Data
loss
Microsoft
Vulnerability
certificate
breach
Code
signing
compromise
github
January 31
st
2023 at 11:35
Naked Security
TikTok βInvisible Challengeβ porn malware puts us all at risk
November 29
th
2022 at 19:58Β
TikTok βInvisible Challengeβ porn malware puts us all at risk
By
Paul Ducklin
An injury to one is an injury to all. Especially if the other people are part of your social network.
Related tags
β
Malware
Privacy
Social
networks
github
malware
supply
chain
Tik
Tok
TikTok
November 29
th
2022 at 19:58
Naked Security
S3 Ep95: Slack leak, Github onslaught, and post-quantum crypto [Audio + Text]
August 11
th
2022 at 14:34Β
S3 Ep95: Slack leak, Github onslaught, and post-quantum crypto [Audio + Text]
By
Paul Ducklin
Latest episode - listen now! (Or read the transcript if you prefer.)
Related tags
β
Cryptography
Data
loss
Law
&
order
Malware
Microsoft
Podcast
Privacy
Cybercrime
github
hacking
malware
Naked
Security
Podcast
quantum
computing
August 11
th
2022 at 14:34
Naked Security
GitHub blighted by βresearcherβ who created thousands of malicious projects
August 3
rd
2022 at 23:06Β
GitHub blighted by βresearcherβ who created thousands of malicious projects
By
Paul Ducklin
If you spew projects laced with hidden malware into an open source repository, don't waste your time telling us "no harm done" afterwards.
Related tags
β
Law
&
order
github
malware
supply
chain
August 3
rd
2022 at 23:06
Naked Security
S3 Ep81: Passwords (still with us!), Github, Firefox at 100, and network worms [Podcast]
May 5
th
2022 at 14:16Β
S3 Ep81: Passwords (still with us!), Github, Firefox at 100, and network worms [Podcast]
By
Paul Ducklin
Latest episode - listen now!
Related tags
β
Podcast
Cybercrime
Firefox
github
hacking
Naked
Security
Podcast
May 5
th
2022 at 14:16
Naked Security
GitHub issues final report on supply-chain source code intrusions
April 29
th
2022 at 16:15Β
GitHub issues final report on supply-chain source code intrusions
By
Paul Ducklin
Learn how to find out which apps you've given access rights to, and how to revoke those rights immediately in an emergency.
Related tags
β
Data
loss
Microsoft
github
oauth
supply
chain
zero
trust
April 29
th
2022 at 16:15
Naked Security
Critical cryptographic Java security blunder patched β update now!
April 20
th
2022 at 16:43Β
Critical cryptographic Java security blunder patched β update now!
By
Paul Ducklin
Either know the private key and use it scrupulously in your digital signature calculation.... or just send a bunch of zeros instead.
Related tags
β
Cryptography
Java
Oracle
Vulnerability
CVE-2022-21449
digital
signature
vulnerability
April 20
th
2022 at 16:43
Naked Security
Adafruit suffers GitHub data breach β donβt let this happen to you
March 7
th
2022 at 12:47Β
Adafruit suffers GitHub data breach β donβt let this happen to you
By
Paul Ducklin
Training data stashed in GitHub by mistake... unfortunately, it was *real* data
Related tags
β
Data
loss
adafruit
data
breach
ex-employee
github
March 7
th
2022 at 12:47
There are no more articles
β
Mark all as read
Login
FreshRSS 