Here’s a good summary of what is happening with two of the SSL VPN appliances this weekend.
Some of the largest companies, national infrastructure suppliers and government agencies in the world are still impacted. https://www.bankinfosecurity.com/hackers-hit-unpatched-pulse-secure-fortinet-ssl-vpns-a-12958
I realize this is a cheap shot. But a slightly less cheap shot is that these vulnerabilities are currently one of the most serious security problems facing Apple, and they haven’t given any indication that they’re prioritizing the kind of architectural fixes they need.
Building an AppSec Program with a Budget of $0: Beyond the OWASP Top 10 https://youtu.be/5RmHQKeXgk4
MITRE ATT&CK: The Play at Home Edition
#IT (and #InfoSec) titles and descriptions are mostly #BS https://blog.infosecworrier.dk/2018/07/it-and-infosec-titles-and-descriptions.html
Intro to Corteza, an open source alternative to Salesforce http://www.tuxmachines.org/node/126706
Ein Schönes Deutsches Volkslied von 1982 / A beautiful German folk song from 1982