"Critical Windows 10 vulnerability used to Rickroll the NSA and Github"
"EU mulls five-year ban on facial recognition tech in public areas"
🤔 makes sense
"Six design patterns to avoid when designing computer systems."
"Even Google forgets to renew its domains"
"Writing Software to Last 50 Years"
SSH: Overview and pentesting guide.
"The Bug That Exposed Your PayPal Password"
"Are you ready to work remotely?"
Multiple vulnerabilities within the TikTok application:
* Get a hold of TikTok accounts and manipulate their content
* Delete videos
* Upload unauthorized videos
* Make private “hidden” videos public
* Reveal personal information saved on the account such as private email addresses
SHA-1 is a Shambles
> We have computed the very first chosen-prefix collision for SHA-1. In a nutshell, this means a complete and practical break of the SHA-1 hash function, with dangerous practical implications if you are still using this hash function. To put it in another way: all attacks that are practical on MD5 are now also practical on SHA-1.
"Promiscuous Cookies and Their Impending Death via the SameSite Policy"
"Xiaomi camera playing on Google home hub sends stills from other people's homes"
Privilege Escalation Methods in AWS
Nate Graham looks back at how 2019 went for KDE: Find out all the exciting stuff that happened to Plasma, Wayland and KDE's frameworks and applications over the last 12 months.
Encoding your WiFi access point password into a QR code
"Whoopsie-daisy: Chaining accidental features of Ubuntu’s crash reporter to get LPE"
Includes a nice overview of how the crash reporting system works.