Cybersecurity

http://thehackernews.com/2016/08/http2-protocol-security.html?m=1 Some HTTP 1.x issues re-introduced and some new. Should you use web application firewall? →

https://www.linkedin.com/pulse/why-trusted-interfaces-should-mandatory-critical-sergiu?trk=hp-feed-article-title-like Check out this article to understand Network of Things security. →

http://mobile.eweek.com/security/risk-from-linux-kernel-hidden-in-windows-10-exposed-at-black-hat.html We get Windows and Linux risks combined. →

http://www.dailymail.co.uk/sciencetech/article-3722558/Hackers-inside-BRAIN-Experts-warn-growing-threat-monitoring-controlling-neural-signals.html When your brain is connected with IoT device… →

A CGI application vulnerability called httpoxy was announced in July with coordinated disclosure from many vendors. httpoxy is a set of vulnerabilities that affect application code running in CGI, or CGI-like environments.  The vulnerability allows an attacker to remotely set the HTTP_PROXY environment variable on affected servers which can lead to a number of bad →

http://www.geek.com/news/comcast-says-privacy-is-a-premium-feature-you-should-pay-for-1664668/ Some ISPs seem to want to spy users for profit from collected information – if you want to opt out from that they think you should pay extra. →

http://www.tripwire.com/state-of-security/featured/does-dropping-malicious-usb-sticks-really-work-yes-worryingly-well/ Yes, worrying well… according to this research. →

http://dfgr-ltd.com/cybersecurity-faces-critical-skill-gap/ There is lack of skilled people that can keep our networks safe. →

http://arstechnica.com/security/2016/08/new-attack-steals-ssns-e-mail-addresses-and-more-from-https-pages/ New attack against HTTPS. →

http://securityaffairs.co/wordpress/47179/hacking/hacking-ss7-protocol.html This article shows how to abuse SS7 to hack SMS authentication. →