Facebook is reportedly trying to analyze encrypted data without decrypting it

submitted by panzerF from techspot.com

Molly is a hardened version of Signal for Android

submitted by panzerF from github.com

Windscribe VPN servers seized by Ukrainian authorities weren’t encrypted

submitted by Drewski from arstechnica.com

With help from Google, impersonated Brave.com website pushes malware

submitted by panzerF from arstechnica.com

We can't believe people use browsers to manage their passwords, says maker of password management tools

submitted by panzerF from theregister.com

HTTP Security Headers: Why? How? What?

submitted by panzerF from kerkour.com

Do a Security Checklist for Your Digital Life

submitted by panzerF from brianlovin.com

Is Microsoft a National Security Threat?

submitted by panzerF from techrights.org

VisibleV8 allows users to track and record the behavior of JavaScript programs without alerting the websites that run those programs

submitted by panzerF from kapravelos.com

JavaScript will probably ruin your life. Disable it, block it, and stay safe from the most common vector of malware infection.

submitted by panzerF from youtube.com

Lantern - fast, reliable and secure access to the open internet (no logging, no cooperation with law enforcement)

submitted by panzerF from getlantern.org

Ybits - Firefox send alternative with malware protection

submitted by panzerF from ybits.io

APKPure app contained malicious adware, say researchers

submitted by Drewski from techcrunch.com

+Link - a simple link shortening service to combat phishing

submitted by panzerF from plus.link

How to Secure and Optimize your Website or Blog

submitted by panzerF from cyberhost.uk

Passwords cross all boundaries, how can we manage them?

submitted by panzerF from viewfromtheweb.com

Carrier suspected of injecting ads into two-factor SMS messages

submitted by panzerF from xda-developers.com

Yes, we want cryptographic protection for email

submitted by panzerF from sequoia-pgp.org

How to Make Sure Your Browser Extensions Are Safe

submitted by panzerF from archive.is

Tinfoil Chat - onion-routed, endpoint secure messaging system

submitted by panzerF from github.com

Mirotalk - free browser based real-time video calls

submitted by panzerF from mirotalk.up.railway.app

Hey Signal! Great Encryption Needs Great Authentication

submitted by Drewski from sequoia-pgp.org

ESET SysRescue Live disc - a malware cleaning tool that runs independent of the operating system from a CD, DVD, or a USB. It has direct access to the disc and the file system, and therefore is capable of removing the most persistent threats.

submitted by panzerF from eset.com

1ty.me - One Time Self Destructing Links For Sharing Sensitive Information

submitted by panzerF from 1ty.me

sploitus - exploits & tools search engine

submitted by panzerF from sploitus.com

DerivePass - compute secure passwords without storing them anywhere

submitted by panzerF from derivepass.com

Trackmedown - Identify potential scammers to safeguard yourself and others

submitted by panzerF from trackemdown.com

SpiderFoot provides an easy-to-use interface that enables you to automatically collect Open Source Intelligence about IP addresses, domain names, e-mail addresses, usernames, names, subnets and ASNs from many sources such as AlienVault, HaveIBeenPwned, SecurityTrails, SHODAN and more

submitted by panzerF from spiderfoot.net

A Western Digital Vulnerability is Being Actively Exploited to Wipe Connected Devices

submitted by panzerF from arstechnica.com

D3FEND - a knowledge graph of cybersecurity countermeasures

submitted by panzerF from d3fend.mitre.org

Grugq - from in-depth papers on forensics and anti-forensics, to detailed analysis of events that skirt both international espionage and cyber security

submitted by panzerF from gru.gq

Cellphone Security - critical app functions blocking

submitted by panzerF from dt.gl

The Auditor - validate the integrity of the operating system from another Android device

submitted by panzerF from attestation.app

Irish police to be given powers over passwords

submitted by Drewski from bbc.com

How governments and spies text each other: Matrix has become the messaging app of choice for top-secret communications

submitted by Drewski from wired.co.uk

Pi.Alert - WIFI/LAN intruder detector. Check the devices connected and alert you with unknown devices. It also warns of the disconnection of "always connected" devices

submitted by panzerF from github.com

Tracking One Year of Malicious Tor Exit Relay Activities (Part II)

submitted by [deleted] from archive.is

passworDDD - unique passwords for every website

submitted by [deleted] from passworddd.com

How to configure Noscript for ordinary users

submitted by [deleted] from dedoimedo.com

Your Old Phone Number Could Get You Hacked, Researchers Say

submitted by [deleted] from gizmodo.com

A team o computer science researchers has uncovered a line of attack that breaks all Spectre defenses

submitted by [deleted] from sciencedaily.com

What is Lacking in Linux Security and What Are or Should We be Doing about This

submitted by [deleted] from youtube.com

Despite popular belief, OpenBSD's security is actually lacking in a lot of ways

submitted by [deleted] from madaidans-insecurities.github.io

The Universal Radio Hacker - investigate unknown wireless protocols

submitted by [deleted] from github.com

Morpheus Turns a CPU Into a Rubik’s Cube to Defeat Hackers

submitted by [deleted] from spectrum.ieee.org

HTTPS Everywhere? Let's not

submitted by [deleted] from changelog.com

Secure Network - tools to protect yourself

submitted by [deleted] from matteoguadrini.github.io

Scientists harness chaos to protect devices from hackers

submitted by [deleted] from news.osu.edu

sowing discord: reaping the benefits of collaboration app abuse

submitted by DeWhoDeWho from blog.talosintelligence.com

Google’s Project Zero Finds a Nation-State Zero-Day Operation

submitted by [deleted] from schneier.com

ShieldWall embraces the zero-trust principle and instruments your server firewall to block inbound connections from every IP on any port, by default

submitted by [deleted] from shieldwall.me

Zenlogin - suspicious login detection in minutes

submitted by [deleted] from zenlogin.co

How to bypass CloudFlare bot protection

submitted by [deleted] from jychp.medium.com

Cloaker.mobi - a simple in-browser file encryption

submitted by [deleted] from cloaker.mobi

MITRE ATT&CK is a globally-accessible knowledge base of adversary tactics and techniques based on real-world observations

submitted by [deleted] from attack.mitre.org

Endgame for end-to-end encryption

submitted by [deleted] from openrightsgroup.org

Snort is an Open Source network intrusion prevention system capable of performing real-time traffic analysis and packet logging on IP networks.

submitted by [deleted] from snort.org

Dropbox Passwords will soon be free for all users

submitted by [deleted] from techradar.com

Whistleblower: Ubiquiti Breach “Catastrophic”

submitted by Drewski from krebsonsecurity.com

“netmask” npm package, used by 270,000+ projects, vulnerable to octal input data: server-side request forgery, remote file inclusion, local file inclusion, and more (CVE-2021-28918)

submitted by Drewski from sick.codes

This Android update is really nasty spyware — what you need to know

submitted by [deleted] from tomsguide.com

(in)security - Yet another blog with some security related posts

submitted by [deleted] from insecurity.blog

Plain Text Offenders - Did you just email me back my own password?!

submitted by [deleted] from plaintextoffenders.com

DARPA takes step toward 'holy grail of encryption'

submitted by [deleted] from livescience.com

purple fox rootkit now propagates as a worm

submitted by DeWhoDeWho from guardicore.com

HIBPOfflineCheck - Keepass plugin that performs offline and online checks against HaveIBeenPwned passwords

submitted by [deleted] from github.com

Today's Cyberattacks Foreshadow Wars to Come

submitted by [deleted] from spectrum.ieee.org

Hacker dumps Guns.com database with customers, admin data

submitted by Drewski from hackread.com

Nzyme is a free and open WiFi defense system that detects and physically locates threats using an easy to build and deploy sensor system

submitted by [deleted] from nzyme.org

Firejail is a SUID program that reduces the risk of security breaches by restricting the running environment of untrusted applications

submitted by [deleted] from firejail.wordpress.com

Secure Password reGenerator

submitted by [deleted] from 22.00-59.com

Flatpak - a security nightmare

submitted by [deleted] from flatkill.org

computer giant acer hit by $50 million ransomware attack

submitted by DeWhoDeWho from bleepingcomputer.com

Phone app can figure out the shape of your house key by listening to you use it

submitted by [deleted] from boingboing.net

Credential Stuffing Attacks-How to Secure Your Identity?

submitted by jackforbes from 4shared.com

Digital Security

submitted by [deleted] from riseup.net

Lynis is a battle-tested security tool. It performs an extensive health scan of your systems to support system hardening and compliance testing.

submitted by [deleted] from cisofy.com

Can We Stop Pretending SMS Is Secure Now?

submitted by [deleted] from krebsonsecurity.com

Bitwarden Send - a trusted way to securely share information directly with anyone

submitted by [deleted] from bitwarden.com

A Hacker Got All My Texts for $16

submitted by Drewski from vice.com

Voting Machine Hashcode Testing: Unsurprisingly insecure, and surprisingly insecure

submitted by [deleted] from freedom-to-tinker.com

Privacy Plus 2.0 - a non-caching security proxy based on the open-source software Privoxy

submitted by [deleted] from nextvectorsecurity.com

Link Lock is a tool for adding a password to a link; in other words, for encrypting and decrypting URLs.

submitted by [deleted] from github.com

Fake Security From Linux Foundation and the Monopolies It’s Fronting for

submitted by [deleted] from techrights.org

How git servers actually work, and how to keep yours secure

submitted by [deleted] from gemini.nytpu.com

Authelia is an open-source full-featured authentication server

submitted by [deleted] from authelia.com

Hetzner Cloud Firewall

submitted by [deleted] from console.hetzner.cloud

The Secret Security Wiki

submitted by [deleted] from doubleoctopus.com

Going from bad to worse: from Internet voting to blockchain voting

submitted by [deleted] from academic.oup.com

Phishing Your Own Employees With COVID-19 Lures Is Evil

submitted by [deleted] from blog.kolide.com

OWASP Cheat Sheet Series

submitted by [deleted] from cheatsheetseries.owasp.org

If you use Encryptr password manager app, today is the last day for users to migrate their data off

submitted by [deleted] from spideroak.support

Security Researchers Probed 90,194 Amazon Alexa Skills—The Results Were Shocking

submitted by [deleted] from forbes.com

vx-underground - the largest collection of malware source code, samples, and papers on the internet

submitted by [deleted] from vx-underground.org

isitphish utilises machine learning to detect phishing URLs in real-time. It is able to detect zero-day phishing attacks without the use of blocklists, with an accuracy of 97%.

submitted by [deleted] from isitphish.com

Are Xiaomi browsers spyware? Yes, they are …

submitted by [deleted] from palant.info

Free ImmuniWeb community edition now offers continuous security monitoring, phishing and Dark Web exposure detection

submitted by [deleted] from immuniweb.com

Spectre exploits in the "wild"

submitted by Drewski from dustri.org

Cybersecurity: What I know that you should too

submitted by [deleted] from centeradiv.com

How us shady geeks put others off security

submitted by [deleted] from consult.sauvik.me

view more: next ›