The concept of True Single Sign-On™ is a powerful one. The premise is that it can enable end users to connect to virtually any IT resource throughout their core identity. Unfortunately, as most IT admins know, this kind of a setup with one platform has historically been far from reality. However, a SaaS True Single…
L0rdix is a multipurpose remote access tool (RAT) that was first discovered being sold on underground criminal forums in November 2018. Shortly after its discovery, Ben Hunter of enSilo analysed the RAT’s functionality. Although L0rdix’s author set the price of the RAT at 4000 RUB (64 USD), for many cyber criminals even this was too…
Trail of Bits recently completed a security assessment of Kubernetes, including its interaction with Docker. Felix Wilhelm’s recent tweet of a Proof of Concept (PoC) “container escape” sparked our interest, since we performed similar research and were curious how this PoC could impact Kubernetes. Quick and dirty way to get out of a privileged k8s…
Aspen, Colo.– CIA officials learned about a Russian hacking attempt targeting Senate candidates only when Microsoft publicly revealed the effort at a …
Yes, that means that hackers could potentially look through your webcam – it’s not an urban myth, but a very real danger to unwary users. Continue …
Hackers have breached SyTech, a contractor for FSB, Russia’s national intelligence service, from where they stole information about internal projects the company was working on behalf of the agency — including one for deanonymizing Tor traffic.
Get the latest insights into how to attack and defend platforms like iOS, MacOS, and Windows 10 at this upcoming August security conference.