vendredi 26 février 2016
"Breaking CSRF: ASP.NET MVC"
via AppSec Street Fighter - SANS Institute http://bit.ly/1WNcWVr
jeudi 25 février 2016
Intégrité des scripts tiers chargés dans le navigateur http://bit.ly/1p78vKD #appsecfr #appsec #lk
Intégrité des scripts tiers chargés dans le navigateur http://bit.ly/1p78vKD #appsecfr #appsec #lk #blog
— Sebastien Gioria (@SPoint) February 25, 2016
from Twitter https://twitter.com/SPoint
February 25, 2016 at 09:13AM
via IFTTT
mercredi 24 février 2016
Apache Tomcat Security Manager Bypass
via Advisory Files ≈ Packet Storm http://bit.ly/1LFu35O
mardi 23 février 2016
Implementing Content Security Policy
via Mozilla Hacks – the Web developer blog http://mzl.la/1PUm0Ge
jeudi 18 février 2016
CVE-2015-7547: glibc getaddrinfo stack-based buffer overflow
via Google Online Security Blog http://bit.ly/1Ts0qfT
Researcher hacks medical devices and the whole hospital with ease
Sergey Lozhkin, a security expert at Kaspersky Lab demonstratd how it is easy for hackers to compromise medical devices and critical healthcare infrastructure. The ascent in the Internet of Things (IoT) has left gadgets more associated, yet much of the time more vulnerable, than at any other time. From auto hacking to digital assaults against […]
The post Researcher hacks medical devices and the whole hospital with ease appeared first on Security Affairs.
via Security Affairs http://bit.ly/1SAGes6
La protection de la vie privée du salarié dans l'entreprise s'étend à sa messagerie personnelle. Par Yves Léopold Kouahou, Avocat.
via Village de la Justice http://bit.ly/1RPUFaM
mardi 2 février 2016
Joseph Graceffa : le CLUSIR Nord de France fédère les RSSI de la région
via Global Security Mag Online http://bit.ly/1PSQz2f
La valorisation astronomique d'une start-up
via Global Security Mag Online http://bit.ly/1SCTCKx
WAF-FLE – Graphical ModSecurity Console Dashboard
via Darknet – The Darkside http://bit.ly/1SCTCue
Critical OpenSSL Flaw that Allows HTTPS-Traffic to be Decrypted Patched
Developers of the OpenSSL cryptographic code library have patched yet another high-severity vulnerability that made it possible for attackers to decrypt communications secured over HTTPS connections and other TLS channels by obtaining the secret key. While the OpenSSL vulnerability is critical and could do damage if exploited, a number of variables must first be in [...]
Source: Critical OpenSSL Flaw that Allows HTTPS-Traffic to be Decrypted Patched appeared first on Freedom Hacker the number one source for hacking news, security news & everything cyber.
via Freedom Hacker http://bit.ly/1JUFDhX
Microsoft Edge : son mode de navigation privée ne serait pas privé... du tout http://bit.ly/1TyIZt5 via @01net #appsecfr #appsec #lk
Microsoft Edge : son mode de navigation privée ne serait pas privé... du tout http://bit.ly/1TyIZt5 via @01net #appsecfr #appsec #lk #blog
— Sebastien Gioria (@SPoint) February 2, 2016
from Twitter https://twitter.com/SPoint
February 02, 2016 at 06:44AM
via IFTTT