Typechecking Django and DRF
Yikes. "The fingerprints of over 1 million people, as well as facial recognition information... was discovered on a publicly accessible database for a company used by the likes of the UK Metropolitan police, defence contractors and banks." https://www.theguardian.com/technology/2019/aug/14/major-breach-found-in-biometrics-system-used-by-banks-uk-police-and-defence-firms
Matrix of affected web servers: https://vuls.cert.org/confluence/pages/viewpage.action?pageId=56393752
"HTTP/2 Denial of Service Advisory"
"It turns out it was possible to reach across sessions and violate NT security boundaries for nearly twenty years, and nobody noticed."
Someone was able to put some ransomware in a DSLR Camera, exploiting the PTP protocol implementation.
Nice read about the incident response and investigation into a targeted attack.
"Detecting incognito mode in Chrome 76 with a timing attack"
Nice overview about docker "container" capabilities.
So the government of Kazakhstan is MITM'ing all SSL'ed traffic https://lobste.rs/s/uqj8nq/mitm_on_all_https_traffic_kazakhstan#c_0boxyk
The way they are doing this is by adding a Certificate Authority (CA) that allows them to snoop all traffic.
This is, by the way, why SSL is criticized as being "only as secure as the weakest CA in your system". Here it's deliberate, but that's a problem in general.