🔥CVE-2019-2234
in 's app allowed third party apps to take pictures and video WITHOUT CAMERA PERMISSION.
Video PoC: youtu.be/XJAMJOVoVyw
Article of @Checkmarx Security Research Team who found the vulnerability: checkmarx.com/blog/how-attacke

Le CryptoMix Clop, a été confirmé comme source de l'attaque du CHU de Rouen.
Mais l’ampleur des dégâts réels reste inconnue.
lemagit.fr/actualites/25247428

Create a pocket platform with , a framework which turns a Zero W into a flexible, low-cost platform for pentesting, red teaming and physical engagements.
Read the article: gideonwolfe.com/posts/security

Remember these when you’re sad

• pain is part of growing

• everything in life is temporary

• every little struggle is a step forward

• other people’s negativity is not your problem

• what’s meant to be will eventually be

• the best thing you can do is keep going

💚

Via @depressionate

Iranian breached computers of the American technology industry with help from a fake website and an unsuspecting college professor. 
thedailybeast.com/iranian-hack

Bans Automatic Billing After Free Trials.
The credit card company now requires merchants to get a cardholder's approval, via text or email, at the end of a trial before they start billing.
pcmag.com/news/366051/masterca

Show more
Infosec Exchange

A Mastodon instance for info/cyber security-minded people.