From Security Weekly WikiJump to navigationJump to search
- One more reason for Apple to dump Intel processors: Another SGX, kernel data-leak flaw unearthed by experts who promptly named it the Platypus attack.
- DNS cache poisoning poised for a comeback: Sad DNS gives us another named attack! Here's another easily understood write-up.
- Bug hunter wins 'Researcher of the Month' award for DOD account takeover bug with an IDOR that bypassed authorization checks.
- Testing in Production 101 make us wonder if confidence in testing in prod gives confidence that code is resilient and easily adaptable -- properties that can be really good for security.
- 2 More Google Chrome Zero-Days Under Active Exploitation makes us wonder how best to think of properties of vulns that have no name.
- Facebook link preview feature used as a proxy in website-scraping scheme makes us think of this discussion in episode 128.
- How to Maintain Compliance — At the Speed of Kubernetes makes us happy to see more open source tools!