Guest Blog: Alissa Knight on ‘Playing with FHIR’

We are delighted to be hosting some unique content from our friend and recovering hacker Alissa Knight. This is the third blog in a series about the security risks exposed by the push to adopt FHIR APIs in US healthcare.
The post Guest Blog: Aliss… Continue reading Guest Blog: Alissa Knight on ‘Playing with FHIR’

API Keys Can Be Phished Too

Photo credit: iStock.com/Evkaz
We are all very aware of the issues around phishing of user credentials. But it is not only users that can be phished, apps can be too. In previous blogs we’ve shown you how you can make a MITM attack against an app…. Continue reading API Keys Can Be Phished Too

Majority of Sites Fail Mozilla’s Comprehensive Security Review

A thorough review of the top 1 million websites reveals 93 percent fail Mozilla’s Observatory security review. Continue reading Majority of Sites Fail Mozilla’s Comprehensive Security Review

Majority of Sites Fail Mozilla’s Comprehensive Security Review

A thorough review of the top 1 million websites reveals 93 percent fail Mozilla’s Observatory security review. Continue reading Majority of Sites Fail Mozilla’s Comprehensive Security Review

Wikileaks Unveils CIA’s Man-in-the-Middle Attack Tool

Wikileaks has published a new batch of the Vault 7 leak, detailing a man-in-the-middle (MitM) attack tool allegedly created by the United States Central Intelligence Agency (CIA) to target local networks.

Since March, WikiLeaks has published thousands… Continue reading Wikileaks Unveils CIA’s Man-in-the-Middle Attack Tool

St. Jude Patches Additional Cardiac Device

St. Jude Medical added another Merlin@home Transmitter medical device to its list of equipment vulnerable to a man-in-the-middle attack. Continue reading St. Jude Patches Additional Cardiac Device

Ettercap – A Suite For Man-In-The-Middle Attacks

Ettercap is a comprehensive suite for man-in-the-middle attacks (MiTM). It features sniffing of live connections, content filtering on the fly and many other interesting tricks. It also supports active and passive dissection of many protocols and inclu… Continue reading Ettercap – A Suite For Man-In-The-Middle Attacks