-
Jan 31, 2017
The vulnerability was disclosed last week Vulnerability researchers of Context has discovered a flaw in Samsung’s Galaxy S4, S4 Mini, S5 and Note 4 smartphones that could be exploited by remote attackers to reboot targeted devices. The security hole, already patched… read more »
-
Jan 30, 2017
“Sor played without nails. He generally used only the thumb, index and middle fingers.” I think that the blog of Rob MacKillop is inspiring and very useful. His research on the guitar technique is very interesting, especially regarding the use… read more »
-
Jan 27, 2017
My advice? Check often for updates! On January, 21 the security researcher Tavis Ormandy from Google Project Zero has disclosed a vulnerability the Webex Chrome extension that allows remote execution of commands on any computer with the extension installed (about 20… read more »
-
Jan 26, 2017
Hack like Mr. Robot, with Arduino! MalDuino is an Arduino-powered USB device which emulates a keyboard and has keystroke injection capabilities. MalDuino is an arduino-powered USB device which has keyboard injection capabilities. Once plugged in, MalDuino acts as a keyboard, typing… read more »
-
Jan 25, 2017
It seems possible: let’s analyze a recently published research Really interesting article by Martin Wagner about a technique that allows account hijacking on Whatsapp using the web interface of this messaging service. Whatsapp accounts are based on phone numbers. This… read more »
-
Jan 24, 2017
“Invest in yourself and try new things this year!” This article from Dan Musselman is very inspiring for me. 6 useful tips to be a more creative musician, 6 good propositions for 2017: As a musician, few things are more important… read more »
-
Jan 23, 2017
Free protection for freedom of speech Recently, DDoS attacks have become also a tool to silence independent journalists, small media and activist websites: also an attacker without much experience is now able to launch an attack that can take many small… read more »
-
Jan 20, 2017
“Uncovering the Inner Workings of EyePyramid”, from TrendMicro (…and a small gift for Italian readers) About EyePyramid I have already wrote something, bringing mainly analyzes conducted by researchers much more prepared than me. :-) But now I need to talk again about… read more »
-
Jan 19, 2017
“I need sugar to write good code!”
Funny strip from Commitstrip: how many calories do you need a day to write good code?
from http://www.commitstrip.com/en/2017/01/17/how-many-calories-do-you-need-a-day-to-write-good-code/
… read more »
-
Jan 18, 2017
A python script that reconstruct filesystem structures and recover files on NTFS filesystems RecuperaBit is a python script developed by Andrea Lazzarotto useful for attempting to reconstruct a corrupted NTFS filesystem. RecuperaBit attempts reconstruction of the directory structure regardless of:… read more »
-
Jan 17, 2017
A completely open-source mobile phone that you can assemble for 50$ You care about your privacy? You do not trust the manufacturers of smartphones and the backdoors that can be inserted into the firmware? You fear being intercepted? With just $50… read more »
-
Jan 16, 2017
The issue has nothing to do with the security of Signal encryption protocol, that continues to be one of the most secure encryption protocols. Recently an article published in April 2016 by security researcher Tobias Boelter has gained public attention:… read more »
-
Jan 13, 2017
In simple words: yes, if you care about privacy About the privacy implications related to the various instant messaging clients I have already wrote a few months ago in a rather terse. But this article by Romain Aubert instead treats the… read more »
-
Jan 12, 2017
“MongoDB apocalypse is here as Ransom Attacks” Recently, some attackers have performed a lot malicious attacks on unsecured instances of MongoDB running openly on the internet. The attacker erased the database and demanded a ransom be paid before restoring it. Cyberciti has… read more »
-
Jan 11, 2017
A useful recap by Federico Maggi The security researcher Federico Maggi has made a useful recap of all technical information currently available about EyePyramid, the malware used in the cyber-espionage campaign that involved some relevant Italian politicians. What happened? Sensitive information… read more »
-
Jan 2, 2017
And some tips to integrate it on XFCE4 Google Drive is definitely a great cloud storage service. However, it suffers from significant limitations, including the lack of an official sync client for Linux. Fortunately there are many tools that allow you… read more »
-
Dec 31, 2016
“Don’t try this if you don’t know what you do” A recently discovered bug can completely block the Messages app on any iPhone and iPad updated to iOS 8, iOS iOS 9 or 10. Just send a well crafted vcf file to… read more »
-
Dec 30, 2016
A critical vulnerability, tracked as CVE-2016–10033, affects all versions of PHPMailer before 5.2.18 Dawid Golunski, security expert from Legal Hackers, has discovered a flaw in PHPMailer that could be exploited by a remote attacker to execute arbitrary code in the context… read more »
-
Dec 28, 2016
5000 fun kilometers! A big ‘thank you’ to who tolerates this my insane passion, to those who see me back into the house in rainy days soaked and dripping, to those who has now got used to wake up the… read more »
-
Dec 23, 2016
My own shortlist One of the first steps that you need to perform when you deal with the forensic analysis of a compromised machine is to make a copy of volatile memory. This copy will be used for in-depth analysis… read more »