Wikileaks releases CIA hacking tools. Malware uses DNS TXT records as C&C. HackerOne free for open-source projects.
Dropbox introduces a security bot. Slack showing how to handle vulnerability reports. Google releases another Microsoft exploit.
Critical flaw in Cloudflare discovered. Google announced the first SHA-1 collision. Netflix open-sources Stethoscope, advising on mobile security.
This week: 1.5M Wordpress sites defaced. Research in reading your passwords through Wifi signals. Protecting Google employee access without firewalls.
This week: Wordpress exploit used en masse to deface sites. How Google helped out Brian Krebs. Eight rules to prevent targeted attacks.
Wordpress has a huge exploit fixed, silently. Gitlab has a huge backup failure. Netgear exploits, again. And LeakedSource shut down.
Brians Krebs might have discovered the creator of the Mirai botnet, researchers describe a dormant Twitter botnet, Facebook support Yubikey, and more.
Disputed backdoor in Whatsapp, a new and very convincing Gmail phishing attack, getting fingerprints from a high-resolution picture, and more.
MongoDB attacks are spiking to 33.000 compromised installations. Pacemaker security. FTC files complaint against D-link.
Netgear launches bug bounty program. FTC calls for IoT patching solutions. Unsecured MongoDB databases being hijacked.