Well it’s a hoax, no botnet based on toothbrushes yet, but we will get there someday…😎

For me the best part is the one with geolocation…😎

The results are in! We're proud to announce the Top 10 Web Hacking Techniques of 2023! portswigger.net/research/top-1…

Web Push Notifications are a good marketing tool, but are they #secure? In this article by Dawid Nastaj, you will discover why and how Web Push Notifications can be malicious and used for user-targeted attacks. #itsecurity #cybersec securing.pl/en/web-push-no…

🌪️Broken isolation - draining your credentials from popular macOS password managers by Wojciech Reguła at #TyphoonCon24! You still have a few more hours to submit your talk and join Wojciech in Seoul! Submit your talk at: typhooncon.com/call-for-paper…

Today, Securing turns 21! 🎉 We are thrilled to have you join us on this adventure of growth and sharing IT security knowledge!

How to discover vulnerabilities in code quickly and prevent security issues at your company? Security #Code #Review can improve the quality of your code, make it more secure and significantly reduce the number of vulnerabilities. securing.pl/en/service/app…

We are hiring Junior IT Security Specialists that are eager to advance their web and iOS skills. If you are searching for a #pentester career opportunity, check this job offer out! 🚀 securing.pl/en/job/junior-…

⚠️ Important iOS Security Suite 2.0.0 update: * new EULA license! * a new iOS 16+ lockdown mode module detector * privacy manifest compliance (thx LongXiangGuo) github.com/securing/IOSSe…

Do you use mObywatel? Are you sure you should? 👀 Szymon Chadam’s lecture includes an analysis of the security of the new mObywatel 2.0 and a live presentation of how the app can be used in practice in red-team operations. Join us: confidence-conference.org 🎫#CONFidenceConf

Does your company have a secure #Azure #SSO architecture? 🚨 This case study by Natalia Trojanowska will show you when an SSO misconfiguration becomes a vulnerability and how to prevent it 👇 securing.pl/en/azure-singl…

Join us at @TyphoonCon in Seoul on May 27-31! Wojciech Reguła will talk about broken isolation and draining credentials from popular macOS password managers. #typhooncon #itsec #cybersec typhooncon.com/blog/conitems/…

Lol 🤪

That’s hard - stopping the #pentest because you have the deadline and not being sure that you did everything and checked everywhere. Detailed scope and checklists help a bit but it’s still hard.

Ever wondered how experts tackle real-world security issues? 💡 Join us at confidenceconf and bridge the gap between theory and practice!

wait serverless applications run on WHAT??

Uwierzytelnienie użytkownika to sprawa trudna. Ostatnie lata przyniosły nam wysyp i coraz większą adopcję rozwiązań Single Sign On. 🔒 To i dobrze, i źle. Dlaczego? O tym dokładniej opowie Mateusz Mateusz Olejarka! Jego wykład zobaczycie już 26 listopada 🔜 omhconf.pl

🚨The new unauthenticated RCE affecting Aviatrix Controllers (CVE-2024-50603) is the real deal - with a single POST request 🫠 and a super trivial exploit, it takes less than 30 seconds to: 1. Collect all Aviatrix Controllers over the internet 2. Validate exploitability with

🛡️ We added #Aviatrix Controller OS command injection vulnerability CVE-2024-50603 to our Known Exploited Vulnerabilities Catalog. Visit go.dhs.gov/Z3Q & apply mitigations to protect your org from cyberattacks. #Cybersecurity #InfoSec