Thaumaturgic Security
Thaumaturgic. Its Merriam-Webster definition is “performing miracles,” and in the context of expert penetration testing and white hat engagements, it seems a relevant term – and one that potential Randori customers are ...
Rules for Real APTs and Implications for Those Who Have to Defend Against Them (Part One)
There may be no stronger trend in talking about threat actors in infosec today than to describe anyone under the sun who appears to show any degree of competence as “advanced” or ...
Sennheiser Headset Software Could Allow Man-in-the-Middle SSL Attacks
Buyers of certain Sennheiser headset products may have inadvertantly installed a root certificate giving access to malicious actors ...
Cryptojacking Attack Targets Make-A-Wish Foundation
The Drupalgeddon 2 attack takes advantage of Drupal installations that have not patched CVE-2018-7600 and CVE-2018-7602, two vulnerabilities that have already been targeted this year ...
Building a Strong Security Foundation with RapidDeploy’s CISO Alex Kreilein
"When security is a shared responsibility, it trickles down to building a stronger culture, a stronger product and a stronger response team." ...
New Botnet Targets Unpatched Router Vulnerability, Because Of Course
Attackers thrive on old, unpatched vulnerabilities. They are not going to burn a zero-day exploit unless they absolutely have to and will look for known holes in devices and network configurations to ...
Hey Criminals! Don’t Trust Your Shady Encryption Providers
Given the technical bugs in IronChat's application, it already throws red flags as an insecure tool for use by a clandestine organization ...
It’s Hard to Find Android Malware in the Google Play Store
The rate of malware actually on people’s devices does not match Android’s reputation for being a hellpit of malicious apps and activity ...
Bluetooth Nightmares: Bleedingbit Bugs in Texas Instrument Chips
Bugs in the bluetooth make access points a sad boy.Source: ZDNetThe details: Two new zero-day vulnerabilities were discovered this year in Bluetooth Low Energy (aka Bluetooth Smart) chips produced by manufacturer Texas ...
Ecommerce “Formjacking” is Attackers New Kind of Card Skimming
"Every additional domain reference or third-party package is a risk multiplier. These days there isn’t a good way for most people to quantify the risk posed by any particular page." ...
