Sharon Goldberg is the CEO/Co-Founder of Commonwealth Crypto, a Boston blockchain startup that is making cryptocurrency trading more secure. She is also an associate professor in the Computer Science Department at Boston University, where her research focuses on securing the protocols that provide many of the global internet’s core functions. Full Show NotesVisit http://securityweekly.com/category/ssw for […]
The post Sharon Goldberg, Commonwealth Crypto – Business Security Weekly #96 appeared first on Security Weekly.
Attackers can abuse URL requests processed by an email program for Mac to steal files from the victim — sometimes without user interaction.
Dark Tequila, which has been active since 2013, is highly modular and targets victims in Mexico.
This is the Hacker Summer Camp 2018 edition of Tradecraft Security Weekly. In this week’s episode Beau Bullock (@dafthack) talks about some of the more interesting items he saw come out of the Black Hat and DEF CON conferences this year. Links: ZigDiggity – https://github.com/BishopFox/zigdiggity Humble Chameleon – https://github.com/claissg/humble_chameleon WHID Injector – https://github.com/whid-injector/WHID Chiron – https://github.com/aatlasis/Chiron ExchangeRelayX blog – https://blog.quickbreach.io/one-click-to-owa/ […]
The post Black Hat & DEF CON 2018 – Tradecraft Security Weekly #28 appeared first on Security Weekly.
Kali 2018.3 brings the kernel up to version 4.17.0 and while 4.17.0 did not introduce many changes, 4.16.0 had a huge number of additions and improvements including more Spectre and Meltdown fixes, improved power management, and better GPU support.New Tools and Tool UpgradesSince our last release, we have added a number of new tools to the repositories, including:idb – An iOS research / penetration testing toolgdb-peda – Python Exploit Development Assistance for GDBdatasploit – OSINT Framework to perform various recon techniqueskerberoast – Kerberos assessment toolsIn addition to these new packages, we have also upgraded a number of tools in our repos including aircrack-ng, burpsuite, openvas,wifite, and wpscan.For the complete list of updates, fixes, and additions, please refer to the Kali Bug Tracker Changelog.Download Kali Linux 2018.3If you would like to check out this latest and greatest Kali release, you can find download links for ISOs and Torrents on the Kali Downloads page along with links to the Offensive Security virtual machine and ARM images, which have also been updated to 2018.3. If you already have a Kali installation you’re happy with, you can easily upgrade in place as follows.root@kali:~# apt update && apt -y full-upgradeIf you come across any bugs in Kali, please open a report on our bug tracker. It’s more than a little challenging to fix what we don’t know about.Making sure you are up-to-dateTo double check your version, first make sure your network repositories is enabled.root@kali:~# cat
DeltaV Versions 11.3.1, 12.3.1, 13.3.0, 13.3.1, and R5 is vulnerable to a buffer overflow exploit through an open communication port to allow arbitrary code execution.
DeltaV Versions 11.3.1, 12.3.1, 13.3.0, 13.3.1, and R5 is vulnerable due to improper path validation which may allow an attacker to replace executable files.
Improper input sanitization within the restricted administration shell on UCOPIA Wireless Appliance devices using firmware version 5.1.x before 5.1.13 allows authenticated remote attackers to…