Border Control, Russia, & Scams – Paul’s Security Weekly #609

In the Security News, how not to prevent a cyberwar with Russia, the case against knee-jerk installation of Windows patches, U.S. customs and Border Protection data breach is the result of a supply chain attack, and a phishing scam that hacks 2 factor authentication! Paul’s Stories 5 Keys to Improve Your Cybersecurity Censorship vs. the […]
The post Border Control, Russia, & Scams – Paul’s Security Weekly #609 appeared first on Security Weekly.

Link: http://feedproxy.google.com/~r/securityweekly/Lviv/~3/2n2fKlQFUpc/

Video: A Perfect Crime: The Tech and Psych of Effective Phishing

See the Attack They Can’t Refuse!
Video and Slide Deck from EH-Net Live! Jan 2019
The InfoSec industry has done a pretty good job over the last couple of decades in protecting internal corporate infrastructure and the endpoints that made up the traditional perimeter. With the ever-increasing blur of those perimeters with BYOD, the cloud and remote working, it’s more evident than ever that the weakest link in any organization is the human. And one of the most effective techniques on humans is phishing!
The post Video: A Perfect Crime: The Tech and Psych of Effective Phishing appeared first on The Ethical Hacker Network.

Link: https://www.ethicalhacker.net/members-only/

Cryptocurrency, Disney, and Adobe – Application Security Weekly #36

Hackers hide Cryptocurrency malware in Adobe flash updates, the government is finally rolling out 2 Factor Authentication for Federal Agency Domains, and Disney is helping women from across their company to become Developers! Full Show NotesFollow us on Twitter: https://www.twitter.com/securityweekly Hosts
The post Cryptocurrency, Disney, and Adobe – Application Security Weekly #36 appeared first on Security Weekly.

Link: http://feedproxy.google.com/~r/securityweekly/Lviv/~3/YJAoOKif6rQ/

DerbyCon, Russians, and Next Story – Paul’s Security Weekly #578

New Apple and Microsoft security flaws at Black Hat Europe, CCTV makers leaves at least 9 million cameras public, upset Google+ users are sueing Google, US weapons systems apparently can be easily hacked, not all multifactor authentication is created equal, and Kanye’s ‘000000’ password makes iPhone security great again! Paul’s Stories Security warning: Attackers are […]
The post DerbyCon, Russians, and Next Story – Paul’s Security Weekly #578 appeared first on Security Weekly.

Link: http://feedproxy.google.com/~r/securityweekly/Lviv/~3/FgFwFOsAuKY/

Evilginx2 Man-in-the-Middle Attacks – Tradecraft Security Weekly #29

Evilginx2 is a man-in-the-middle framework that can be utilized to intercept credentials including two-factor methods victims utilize when logging in to a web application. Instead of just duplicating the target web application it proxies traffic to it making the experience seamless to the victim. In this episode Ralph May (@ralphte1) joins Beau Bullock to demo […]
The post Evilginx2 Man-in-the-Middle Attacks – Tradecraft Security Weekly #29 appeared first on Security Weekly.

Link: http://feedproxy.google.com/~r/securityweekly/Lviv/~3/ZzWhS1W1NOM/