Show more

"Google is pressing on with new plans to hide all parts of web addresses except the domain name in Chrome 86, this time accompanied by an admittedly hover animation."

androidpolice.com/2020/08/13/g

No, thank you

Small intro to XSS and details to take into consideration when developing websites using the Django Framework

tonybaloney.github.io/posts/xs

KeePassXC for beginners – setup and basic usage:

infosec-handbook.eu/blog/keepa

In this tutorial for beginners, we set up and show a typical use case of KeePassXC, an open-source password manager.

#KeePassXC #PasswordManagement #Passwords #InfoSec #Security #cybersecurity

"The European Court of Justice has declared invalid one of the two legal methods companies use to transfer EU citizens' data to the United States."

bbc.com/news/technology-534188

"13% of my website visitors block Google Analytics"

markosaric.com/google-analytic

The real value can be even bigger, since the other analytics tool, used in the comparison, could also have been blocked.

"Cultivate good ideas. But don't be in a rush to execute on all of them; let the bad ideas fall away. Wait until you feel the strong pull of the market; then start executing."

justinjackson.ca/good-ideas

"django-two-factor-auth versions 1.11 and before store the user's password in clear text in the user session (base64-encoded)."

github.com/advisories/GHSA-vhr

Malicious JavaScript in image metadata used to steal data; then, images are used again to exfiltrate data:

blog.malwarebytes.com/threat-a

– Malware uses Exif metadata to inject JavaScript that steals data.
– Afterward, the data is exfiltrated as an image via GET/POST to another server.
– As a server admin, frequently update the server software, and monitor file integrity + network traffic. Moreover, set a strict Content Security Policy.

#malware #image #metadata #exif #infosec #security

Show more
Social feed

This is a personal and private instance.