Morningstar Security News gathers all the most popular infosec and cyber security news headlines into a single page that auto-updates 24/7.
Most Popular Security News
Reddit - NetSec
Pending motion for investigation in federal case over prosecutors planting trojan malware in emailed discovery documents!
IRCP: A robust information gathering tool for large scale reconnaissance on Internet Relay Chat servers
The Hacker News
Packet Storm Exploits
Exploit-DB Local and Privilege Escalation
GUEST BLOG: Governments Across The World Are Mandating Vulnerability Disclosure So Why Are Companies Sitting On Their Hands?
GUEST BLOG: Vulnerability Disclosure Adoption In The Consumer IoT space Is Lagging, But What About Elsewhere?
Reddit - BugBounty
An open letter on the state of affairs regarding the API pricing and third party apps and how that will impact moderators and communities.
how the medium article/twitter guys find straight forward P1 issue. Meanwhile I have to dig deep and spend more and more time on a single…
Defense in depth -- the Microsoft way (part 85): escalation of privilege plus remote code execution with HVCISCAN.exe
[CVE-2023-29459] FC Red Bull Salzburg App "at.redbullsalzburg.android.AppMode.Default.Splash.SplashActivity" Arbitrary URL Loading
Reddit - Exploit Dev
Reversing/I like ASM
Reddit - Reverse Engineering
'Wireshark for Android Binder' - tool for reverse engineering and intercepting/ parsing Android Binder messages
GitHub - wader/fq: jq for binary formats - tool, language and decoders for working with binary and text formats
A simple static Reverse Engineering challenge I created with Intervee - can you solve it? [should take ~15min]
Reddit - Game Hacks
Reddit - REGames
A game I love is being shut down, but I really want to keep playing it. Is it possible to create a private server for…
StackExchange - ReverseEngineering
In the IDA xrefs window, can I filter by unique addresses? Or is there an alternative view providing that?
Reddit - Malware
Recent Trends in Internet Threats: Common Industries Impersonated in Phishing Attacks, Web Skimmer Analysis and More
FireEye Threat Research
Reddit - Crypto
FHE.org Meetup: "Differential Privacy for Free? Harnessing the Noise In Approximate HE" with Tabitha Ogilvie, Thu, Jun 8, 2023, 4:00 PM CEST
StackExchange - Crypto
Any SuperSingular curve or similar with Fp = Fq which is not badly broken unless big field orders are used?
ChatGPT continues to become more human, this time through hallucinations. Following Cl0p. Instagram works against CSAM. And data protection advice from an expert in attacking… new
PowerDrop’s capabilities are up in the air. A Russian cyberespionage campaign channels their inner 007. A disconnect between law firms and cybersecurity protections.
Cl0p moves their way into the systems of major European companies. Notes from a highly active cyber underworld. And hybrid war updates.
Need a Lyft? Not if Anonymous Sudan has anything to say about it. Closing time, open all the doors and let KillNet into the world.
Hackers like to move it, move it. Skimmers observed targeting Americas and Europe. Hybrid war activity.
Firmware comes in through the back door. Leveraging Adobe for credential harvesting. C2C market notes. Hybrid war updates.
Two RAT infestations. Ghosts of sites past. Trends in identity security. Detecting deepfakes may prove more difficult than you think.
Mirai’s new variant targets IoT devices. Volt Typhoon investigation continues. Hacktivism in Senegal. Lessons learned from Ukraine.
ISC Daily Stormcast
Reddit - Onions
Reddit - Pwned
/r/pwned will be going dark from June 12 in protest against Reddit's API changes which will kill 3rd party apps & tools
Western Digital says criminals stole data in 'network security' breach; led to disruption of business operations and services including My Cloud online NAS
Fresh produce giant Dole discloses employee data breach after February ransomware attack that resulted in delays and shortages of Dole products on store shelves for…
Slashdot - Rights
Reddit - Privacy
Amazon’s Ring doorbell was used to spy on customers, FTC says in privacy case | Amazon | The Guardian new
With the world government's central banks going to digital currency and preventing and limiting the use of cash, how do I protect my privacy from… new
Business texted me after browsing their website and not buying anything or sharing any info. How? new
Reddit - VPN
Prime Video not letting me stream content from other countries when using VPN, can't access certain websites when using VPN
EFF and Allies Send Letters to Senate Judiciary Opposing Bill to Require Messaging Platforms to Report Users to the DEA new
Victory! New Jersey Court Rules Police Must Give Defendant the Facial Recognition Algorithms Used to Identify Him
The Foreign Intelligence Surveillance Court Has Made a Mockery of the Constitutional Right to Privacy
Reddit - AskNetSec
Scanning AWS private instances: can a vulnerability scan performed from a bastion host considered a form of external/non-credentialed scan?
Since Cybersecurity isn't entry level, what should I choose between Dev and IT Support as first job ?
Reddit - Netsec Students
Stackoverflow - Security
I have an AWS EC2 instance. I want to download a few Python packages, but I want to scan each package/file before they are installed.… new
HeaderWriterFilter - Spring Security adding default Content-type ISO-8859-1 in response header resulting in No converter exception new
Nscurl result , what could be reasons of failing TLSv3 when not using --bg , when i use API to execute the request it pass?
Reddit - Lockpicking
The VSR 2 Row is a lot of fun in a small package and similar in general layout to some High-Pin-Count locks. Ranked at Blue,… new
Reddit - Social Engineering
How Can I Manipulate A New Internet Provider to Give Me a Better Deal? (ASAP replies extremely appreciated) new
Adam Shostack & friends
Security Bloggers Network
Velociraptor 0.6.9 Release: Digging Even Deeper with SMB Support, Azure Storage and Lockdown Server Mode
Hacker News (YCombinator) - Security
Hacker Noon #Security
Wired - Security
Krebs on Security
Schneier on Security