sec
Office of Inadequate Security
- Ca: Gatineau constable fired for looking up former friends in police database
- DNC hacker slams CrowdStrike, publishes opposition memo on Donald Trump
- Former Goldman Sachs Banker Barred From Industry Over Fed Leak
- IE: Police officer cleared of leaking personal details used in virtual reality dispute
- Over 2,100 servers in Malaysia hacked
- Two central Ohio men accused of stealing information from state
- Update on Chicago employees’ retirement account breach
- Walmart vendor error exposed limited patient information
Naked Security
- BadTunnel: a vulnerability all Windows users need to patch
- Facebook “Spam King” gets 2.5 years in the slammer
- Facebook will tell advertisers when you visit their offline stores
- Github hit by massive password guessing attack
- Hackers steal 45 million VerticalScope accounts
- Is the Angler exploit kit dead?
- Russian snoops ‘stole Democrats’ dossier on Donald Trump’
Full Disclosure
- Blindspot Advisory: HTTP Header Injection in Python urllib
- Authentication bypass in Ceragon FibeAir IP-10 web interface (<7.2.0)
- HP StoreEver MSL6480 Tape Library v4.10 - Multiple Vulnerabilities
- Papouch TME Temperature & Humidity Thermometers - Multiple Vulnerabilities
- Stack Overflow in BLAT
- CVE-2016-5709 - Use of Weak Encryption Algorithm in Solarwinds Virtualization Manager