Login
FreshRSS
Login
Secure Planet Training Courses Updated For 2019 - Click Here
Main stream
Favourites (0)
My labels
Security
/r/netsec - Information Security News & Discussion
Dark Reading:
ICS-CERT Alert Feed
InfoSec Resources
Infosec Island Latest Articles
Krebs on Security
McAfee Blogs
Naked Security
News β Packet Storm
Paul's Security Weekly
SANS Internet Storm Center, InfoCON: green
Security β Cisco Blog
SecurityFocus News
The Hacker News
The Register - Security
The first stop for security news | Threatpost
Threatpost | The first stop for security news
Troy Hunt
Verisign Blog
WIRED
WeLiveSecurity
ZDNet | security RSS
http://blog.trendmicro.com/feed
Tools
KitPloit - PenTest Tools!
Security Tool Files β Packet Storm
ToolsWatch.org β The Hackers Arsenal Tools Portal
Vulnerabilities
Advisory Files β Packet Storm
Exploit-DB Updates
Full Disclosure
SecurityFocus Vulnerabilities
There are new available articles, click to refresh the page.
Before yesterday
Naked Security
Naked Security
S3 Ep98: The LastPass saga β should we stop using password managers? [Audio + Text]
September 1
st
2022 at 16:55Β
S3 Ep98: The LastPass saga β should we stop using password managers? [Audio + Text]
By:
Paul Ducklin
Latest episode - listen now!
π·οΈ
My labels
β
Article tags
β
Podcast
airgap
bugs
chrome
data loss
JavaScript
LastPass
vulnerability
September 1
st
2022 at 16:55
Naked Security
JavaScript bugs aplenty in Node.js ecosystem β found automatically
August 30
th
2022 at 16:59Β
JavaScript bugs aplenty in Node.js ecosystem β found automatically
By:
Paul Ducklin
How to get the better of bugs in all the possible packages in your supply chain?
π·οΈ
My labels
β
Article tags
β
Vulnerability
bug-hunting
cve
JavaScript
vulnerability
August 30
th
2022 at 16:59
Naked Security
S3 Ep80: Ransomware news, phishing woes, NAS bugs, and a giant hole in Java [Podcast]
April 28
th
2022 at 13:18Β
S3 Ep80: Ransomware news, phishing woes, NAS bugs, and a giant hole in Java [Podcast]
By:
Paul Ducklin
Latest episode - listen now!
π·οΈ
My labels
β
Article tags
β
Malware
Oracle
Podcast
Privacy
Ransomware
CIH
firewall
Java
Naked Security Podcast
ransomware
ZTNA
April 28
th
2022 at 13:18
Naked Security
Critical cryptographic Java security blunder patched β update now!
April 20
th
2022 at 16:43Β
Critical cryptographic Java security blunder patched β update now!
By:
Paul Ducklin
Either know the private key and use it scrupulously in your digital signature calculation.... or just send a bunch of zeros instead.
π·οΈ
My labels
β
Article tags
β
Cryptography
Java
Oracle
Vulnerability
CVE-2022-21449
digital signature
vulnerability
April 20
th
2022 at 16:43
Naked Security
βVMware Spring Cloud Functionβ Java bug gives instant remote code execution β update now!
March 30
th
2022 at 20:38Β
βVMware Spring Cloud Functionβ Java bug gives instant remote code execution β update now!
By:
Paul Ducklin
Easy unauthenticated remote code execution - PoC code already out
π·οΈ
My labels
β
Article tags
β
Uncategorized
CVE-2022-22963
Java
Log4She;;
SPEL
Spring
Spring Cloud
Spring Expression Resource
March 30
th
2022 at 20:38
Naked Security
JavaScript developer destroys own projects in supply chain βlessonβ
January 11
th
2022 at 00:54Β
JavaScript developer destroys own projects in supply chain βlessonβ
By:
Paul Ducklin
Two popular open source JavaScript packages recently got "hacked" in a symbolic gesture by the original project creator.
π·οΈ
My labels
β
Article tags
β
colors.js
faker.js
JavaScript
npm
supply chain
January 11
th
2022 at 00:54
Naked Security
Log4Shell-like security hole found in popular Java SQL database engine H2
January 7
th
2022 at 16:32Β
Log4Shell-like security hole found in popular Java SQL database engine H2
By:
Paul Ducklin
"It's Log4Shell, Jim, but not as we know it." How to find and fix a JNDI-based vuln in the H2 Database Engine.
π·οΈ
My labels
β
Article tags
β
Vulnerability
CVE-2021-42392
H2
Java
JNDI
Log4j
SQL
January 7
th
2022 at 16:32
Naked Security
Log4Shell vulnerability Number Four: βMuch ado about somethingβ
December 29
th
2021 at 16:12Β
Log4Shell vulnerability Number Four: βMuch ado about somethingβ
By:
Paul Ducklin
It's a Log4j bug, and you ought to patch it. But we don't think it's a critical crisis like the last one.
π·οΈ
My labels
β
Article tags
β
Vulnerability
Apache
CVE-2021-44228
CVE-2021-44832
Java
Log4j
Log4Shell
Patch
vulnerability
December 29
th
2021 at 16:12
Naked Security
βLog4Shellβ Java vulnerability β how to safeguard your servers
December 10
th
2021 at 16:22Β
βLog4Shellβ Java vulnerability β how to safeguard your servers
By:
Paul Ducklin
Just when you thought it was safe to relax for the weekend... a critical bug showed up in Apache's Log4j product
π·οΈ
My labels
β
Article tags
β
Vulnerability
Apache
CVE-2021-44228
Exploit
Java
Log4Shell
LOGJAM
rce
December 10
th
2021 at 16:22
There are no more articles
β
Mark all as read
Login
FreshRSS 