Small intro to XSS and details to take into consideration when developing websites using the Django Framework

tonybaloney.github.io/posts/xs

KeePassXC for beginners – setup and basic usage:

infosec-handbook.eu/blog/keepa

In this tutorial for beginners, we set up and show a typical use case of KeePassXC, an open-source password manager.

#KeePassXC #PasswordManagement #Passwords #InfoSec #Security #cybersecurity

"The European Court of Justice has declared invalid one of the two legal methods companies use to transfer EU citizens' data to the United States."

bbc.com/news/technology-534188

"13% of my website visitors block Google Analytics"

markosaric.com/google-analytic

The real value can be even bigger, since the other analytics tool, used in the comparison, could also have been blocked.

"Cultivate good ideas. But don't be in a rush to execute on all of them; let the bad ideas fall away. Wait until you feel the strong pull of the market; then start executing."

justinjackson.ca/good-ideas

"django-two-factor-auth versions 1.11 and before store the user's password in clear text in the user session (base64-encoded)."

github.com/advisories/GHSA-vhr

Malicious JavaScript in image metadata used to steal data; then, images are used again to exfiltrate data:

blog.malwarebytes.com/threat-a

– Malware uses Exif metadata to inject JavaScript that steals data.
– Afterward, the data is exfiltrated as an image via GET/POST to another server.
– As a server admin, frequently update the server software, and monitor file integrity + network traffic. Moreover, set a strict Content Security Policy.

#malware #image #metadata #exif #infosec #security

Show more
Social feed

This is a personal and private instance.