Difference between revisions of "Template:ASW117NewsMikeShema"

From Security Weekly Wiki
Jump to navigationJump to search
(Added By Paul's Craptastic PPWorks Code)
 
 
Line 1: Line 1:
 
===Articles===
 
===Articles===
 +
* [https://eclypsium.com/2020/07/29/theres-a-hole-in-the-boot/ There's a hole in the boot] that breaks the root of trust needed by systems to attest to their integrity.
 +
* [https://threatpost.com/okcupid-security-flaw-threatens-intimate-dater-details/157809/ OkCupid Security Flaw Threatens Intimate Dater Details] is a story about XSS meets mobile, mobile meets Same Origin Policy, accounts meet threat models.
 +
* [https://arstechnica.com/tech-policy/2020/07/florida-teen-arrested-charged-with-being-mastermind-of-twitter-hack/ Florida teen charged as “mastermind” in Twitter hack hitting Biden, Bezos, and others], which we only revisit to highlight that threat modeling should focus on the "what" and "how" rather than "who" might attack a system.
 +
* [https://fly.io/blog/sandboxing-and-workload-isolation/ Sandboxing and Workload Isolation] talks through a brief history of protecting workloads and what effective modern techniques are evolving to.
 +
* [https://www.zdnet.com/article/microsoft-to-remove-all-sha-1-windows-downloads-next-week/ Microsoft to remove all SHA-1 Windows downloads next week], which is either small news for the prepared or a surprise for the supply chain stragglers.

Latest revision as of 20:20, 2 August 2020

Articles