When Going in Reverse Moves You Forward
Reverse engineering to find the root cause of vulnerabilities can be a frustrating task, but even the analyses that go wrong can produce lessons and new skills.
SEARCH
The DoH Continues to Rise
Adoption of DNS over HTTPS (DoH) continues to rise, but so do concerns about network visibility and centralization of DNS...
Microsoft Patches Zero Days Used in Targeted Attacks
Microsoft on Tuesday patched flaws in Internet Explorer an Windows that have been used in active attacks.
Hacking Medical Devices to Hijack Secure Facilities
Security researchers have demonstrated in the past how implanted medical devices such as insulin pumps and pacemakers can be...
Amazon Fixes Five Flaws in AWS Encryption Client
Amazon has patched five vulnerabilities in its AWS Encryption Client, including a CBC padding oracle flaw.
US and EU May Try for Another Privacy Shield
The United States is trying to hammer out another data transfer agreement with the European Union after the EU Court of Justice...
Decipher Podcast: Robert Hansen
Dennis Fisher is joined by Robert Hansen, CTO of Bit Discovery, to talk about finding forgotten network assets, breaking...
Google Rolls Out SameSite Cookie Changes to Chrome
Google has finished its rollout of the changes to the SameSite cookie in its Chrome web browser. Site owners need to explicitly...
Facebook Releases Static Code Analysis Tool for Python
Facebook has open-sourced Python Static Analyzer, an internally-developed static code analyzer for finding and fixing flaws in...
Dennis Has Some Questions About…2FA
Two-factor authentication is a vital part of many corporate security strategies, and is now offered by lots of consumer apps,...
UCSF Pays Portion of $1.14M Ransom to Regain Medical School Data
The University of California San Francisco paid some of the $1.14 million ransom to regain access to data encrypted by...
Evil Corp Deploys New WastedLocker Ransomware
The Evil Corp group responsible for the Dridex malware is using a new ransomware called WastedLocker that targets cloud...
No Rest For the Wicked as Ransomware Attacks Persist
Ransomware operators have begun using long-held positions inside corporate networks to deploy ransomware.
