Critical DoS Bug Bubbles Up in Facebook Fizz TLS 1.3 Project
Users of the open-source project should upgrade immediately.
Source: Threat Post – Web Security – Critical DoS Bug Bubbles Up in Facebook
[...]
AuthorTara Seals
Mac-Focused Malvertising Campaign Abuses Google Firebase DBs
Researchers said 1 million user sessions could have been exposed to the campaign, which downloads the Shlayer trojan.
Source: Threat Post –
[...]
Post-Perimeter Security: Addressing Evolving Mobile Enterprise Threats
Experts from Gartner, Lookout and Google talk enterprise mobile security in this webinar replay.
Source: Threat Post – Mobile Security – Post-Perimeter
[...]
Researcher Says NSA’s Ghidra Tool Can Be Used for RCE
Researchers have released a proof-of-concept showing how a XXE vulnerability can be exploited to attack Ghidra project users.
Source: Threat Post –
[...]
Fourth Major Credential Spill in a Month Hits DreamMarket
Gnosticplayers has released about 26 million records from what he said are breaches of six new companies.
Source: Threat Post – Web
[...]
Google Gives Users More Choice with Location-Tracking Apps
Developers will have a new option to for Android apps too track location only when in use.
Source: Threat Post – Mobile
[...]
MAGA ‘Safe Space’ App Developer Threatens Security Researcher
The mobile app, dubbed a “Yelp for Conservatives,” was found with an open API leaking reams of user data.
Source: Threat Post
[...]
RSAC 2019: TLS Markets Flourish on the Dark Web
The certificates are often paired with ancillary products, like Google-indexed “aged” domains, after-sale support, web design services and even integration with a range
[...]
RSA Conference 2019: How to Be Better, on Trust, AI and IoT
Tuesday’s keynotes kicking off RSA tackled both light and dark visions of the future, the imperative to become obsessed with trust, IoT and
[...]
RSAC 2019: Joomla! Mail Flaw Exploited to Create Mass Phishing Infrastructure
The Jmail Breaker attack leverages an old vulnerability in Joomla! along with a newly found flaw in the mail module.
Source: Threat
[...]