April

The Future of Fraud (InfoRiskToday)

2016-04-01 18:00

#fraud

Steam hacker says more vulnerabilities will be found, but not by him (ArsTechnica)

2016-04-01 17:21

#hacker #vulnerabilities #steam

New Heap-Spray Exploit Tied To LZH Archive Decompression (Threatpost)

2016-04-01 17:07

Researchers found a vulnerability in the classic compression standard Lhasa, once a mainstay for game developers in the mid-90s and still in use today.

#exploit #threatpost

Why Are Law Firms Targeted by Cyberattacks? (SecurityWeek)

2016-04-01 16:45

#cyberattack #securityweek

PayPal plugs phishing-enabling vulnerability, stumps up $500 (The Register)

2016-04-01 16:45

#paypal #vulnerability #phishing

A Shift in the Wind - Securing Patient Portals (InfoRiskToday)

2016-04-01 16:30

Tips to influencing difficult teams (IT Toolbox Blogs)

2016-04-01 16:15

#teams

PHP, Python still fail to spot revoked TLS certificates (Help Net Security)

2016-04-01 16:04

In 2012, a group of researchers demonstrated that SSL certificate validation is broken in many applications and libraries, and pointed out the root causes for that situation: badly designed APIs...

#certificate #PHP #python #security #TLS

Reddit Removes NSL Warrant Canary from Transparency Report (Threatpost)

2016-04-01 15:44

Reddit has removed a warrant canary from its latest transparency report, indicating it has received its first National Security Letter.

#report #reddit #threatpost

Threatpost News Wrap, April 1, 2016 (Threatpost)

2016-04-01 15:27

The week in news is recapped, including how the FBI cracked that iPhone, ransomware hitting hospitals, and the Hack the Pentagon bug bounty trial program.

#threatpost