Collaborate Disseminate
As many followers know, I run a workshop titled Hack Yourself First where I spend a couple of days with folks running through all sorts of common security issues and, of course, how to fix them. I must have run it 50 times by now so it’s a pretty well-known…
Continue reading New Pluralsight Play by Play: What You Need to Know About HTTPS Today
The healthcare industry must take security and privacy seriously. They collect and retain personal health information (PHI) and financial information while providing life-saving medical care. The protection of this information and the netw… Continue reading Encryption is a Double-Edged Sword for the Healthcare Industry
Researcher Troy Hunt discovers as far as the internet has come in adopting HTTPS, it still has a ways to go. Continue reading Taking HTTPS Denial to an Absurd Level
It seems that there is no limit to human ingenuity when it comes to working around limitations within one’s environment. For example, imagine you genuinely wanted to run a device requiring mains power in the centre of your inflatable pool – you’re flat out of luck, right? Wrong!
Or imagine…
Continue reading Bypassing Browser Security Warnings with Pseudo Password Fields
A malicious Google Chrome extension being spread in phishing emails steals any data posted online by victims. Continue reading Malicious Chrome Extension Steals Data Posted to Any Website
We took the most popular dating apps and analyzed what sort of user data they were capable of handing over to criminals and under what conditions. Continue reading Dangerous liaisons
It’s finally time: it’s time the pendulum swings further towards the “secure by default” end of the scale than what it ever has before. At least insofar as securing web traffic goes because as of this week’s Chrome 62’s launch, any website with an input box is now…
A2SV is a Python-based SSL Vulnerability focused tool that allows for auto-scanning and detection of the common and well-known SSL Vulnerabilities.
SSL Vulnerabilities Detected by A2SV
Planned for future:
Installation & Requirements for A2SV
A.
Continue reading A2SV – Auto Scanning SSL Vulnerability Tool For Poodle & Heartbleed
Google, through Google Domains, operates many TLDs, and this week said it would begin enforcing HSTS on those TLDs. HSTS forces secure client connections over HTTPS. Continue reading Google to Enforce HSTS on TLDs it Operates
Throughout the history of mankind, whether in warfare or crime, the advantage has swung between offense and defense, with new technologies and innovative tactics displacing old doctrines and plans. For example, the defensive advantage of the Greek phalanx was eventually outmaneuvered by the Roman legion. Later, improvements in fortifications and armor led to castles and […]
The post 2017’s 5 Most Dangerous DDoS Attacks & How to Mitigate Them (Part 1) appeared first on Radware Blog.
Continue reading 2017’s 5 Most Dangerous DDoS Attacks & How to Mitigate Them (Part 1)