Category: News Feed Stuff

Today’s Principle to Follow:
Principle #12: Value Knowledge and Practices That Have Stood the Test of Time.
   Humans are constantly learning and teaching each other the new things that we learn. But we have to keep in mind our track record. At one time we thought the Earth was flat. At one time we didn’t realize germs were spread through contact and that we should wash our hands. At another time many people believed the same creatures had always lived on the planet (rather than evolution). Of course, often newer findings may be accurate, but it can be a mistake to assume that all newer findings are accurate. In science, often one study appears to confirm something radical. A problem happens when further studies try to confirm those findings and fail – and we are forced to realize that the original experiment had an error. Also, you keep in mind that the media often reports on new findings either with wrong facts and interpretations, or they may exaggerate the implications of a minor finding to try to gain readers. If you stay up to date with the latest findings, maintain your skepticism.

---

---

Microsoft Patch Tuesday — January 2019 Security Updates Released
https://thehackernews.com/2019/01/windows-security-updates.html
#hackerstuff #HackThePlanet

---

20-Year-Old Man Arrested For Carrying Out Germany’s Biggest Data Leak
https://thehackernews.com/2019/01/germany-data-leak-arrested.html
#hackerstuff #HackThePlanet

---

Zerodium is paying $2 million for Apple iOS remote jailbreak

Zerodium is paying $2 million for Apple iOS remote jailbreak

#hackerstuff #HackThePlanet

---

Page Cache Attacks
https://arxiv.org/pdf/1901.01161.pdf
#hackerstuff #HackThePlanet

---

‘Spoofing’ Google Search results
https://wietzebeukema.nl/blog/spoofing-google-search-results
#hackerstuff #HackThePlanet

---

LeakLooker: Find Open Databases in Seconds
https://hackernoon.com/leaklooker-find-open-databases-in-a-second-9da4249c8472
#hackerstuff #HackThePlanet

---

Gradle Plugin Portal: Clickjacking & Cross-Site Request Forgery enabling Account Takeover
https://medium.com/@jonathan.leitschuh/gradle-plugin-portal-clickjacking-cross-site-request-forgery-enabling-account-takeover-d65c2e43082b
#hackerstuff #HackThePlanet

---

HackerOne – XSS in steam react chat client
https://hackerone.com/reports/409850
#hackerstuff #HackThePlanet

---

polkit: temporary auth hijacking via PID reuse and non-atomic fork
https://bugs.chromium.org/p/project-zero/issues/detail?id=1692
#hackerstuff #HackThePlanet

---

Today’s Principle to Follow:
Principle #11: Engage in Personal Experiments with the World Around You.
   Do not rely fully on the experiments of scientists, or the word of the media. Science although very valuable to society, is not perfect. Science is run by scientists with their own biases and expectations, and their own careers to run. They are biased to finding what they want to find just as much as you’re biased to want to succeed in your own life. In the long run science takes us in the right direction, but the most recent findings should be taken in somewhat skeptically. Rather than rely fully on the new findings of scientists and the media, who use populations that may not even represent you (often rats or college students), you can run your own experiments. It is as simply as trial and error. Try something and see if it works. Start small, don’t risk too much on your personal experiments.
   
   The world is constantly changing and evolving, and everyone is in such a unique circumstance, that you may be better off testing for yourself what works and what doesn’t, rather than reading what worked for other people who could be completely different from you. When you experiment, continue to try different things. Take mental or written notes on what works more often, and what doesn’t work. When you figure out one problem, move on to the next experiment. It is fun, entertaining, and you will learn fast from it. Finding interesting experiments to perform in your daily life can be quite interesting and rewarding.

---

---

Zerodium Offers to Buy Zero-Day Exploits at Higher Prices Than Ever
https://thehackernews.com/2019/01/zero-day-exploit-market.html
#hackerstuff #HackThePlanet

---

Ethereum Classic (ETC) Hit by Double-Spend Attack Worth $1.1 Million
https://thehackernews.com/2019/01/ethereum-double-spend-attack.html
#hackerstuff #HackThePlanet

---

XSSOauthPersistence – Advance XSS Persistence With Oauth
https://github.com/dxa4481/XSSOauthPersistence
#hackerstuff #HackThePlanet

---

Looks like, at the moment, I’m ranked 146 in the world… 😛 Even though that’s only for people who have signed up. 😉
https://pwnhead.com/profile/charlesbastian/
#hackerstuff #HackThePlanet

---

Buffer Overflow Practical Examples, metasploit, gdb and objdump! – protostar stack3
https://0xrick.github.io/binary-exploitation/bof3/
#hackerstuff #HackThePlanet

---

Today’s Principle to Follow:
Principle #10: Be Aware of Where Your Advice is Coming From.
   It is human nature to want to give advice and help others. It makes us feel important and good, much of the time. We have to be careful who we take advice from, as not all advice is good. In general, you can figure that if the advice is too general then it isn’t really all that useful anyway. If you receive advice that is very specific, or very radical in some way, you should be careful in how you proceed. That kind of advice should only be considered from an expert, or someone with tremendous experience in an area. If there is a possibility for negative consequences, be even more careful with the advice. Advice that is fairly mild, probably doesn’t makes much of a difference. You’ve probably heard it before anyway. Be kind, be helpful, eat well, etc.
   
   Always keep in mind where the advice is coming from. The people you can trust the most are those with great experience and great success. Often times, these people are too busy to give much advice, and you have to learn from their actions rather than their words. Either way, remember that every situation is different. Think it through for yourself and decide if any advice is worth pursuing. If it is, it is your choice entirely. The person who gave you the advice cannot be expected to help with any negative outcomes that arise from your taking the advice.

---

---

I’m sure it has no back doors built in…;)
NSA to release its GHIDRA reverse engineering tool for free
https://thehackernews.com/2019/01/ghidra-reverse-engineering-tool.html
#hackerstuff #HackThePlanet

---

2018’s Top hacks and data breaches

2018’s Top hacks and data breaches

#hackerstuff #HackThePlanet

---

The Advantages of a More Secure and Safer Blockchain

The Advantages of a More Secure and Safer Blockchain

#hackerstuff #HackThePlanet

---

HackTheBox — Mischief Writeup
https://medium.com/@TheShahzada/hackthebox-mischief-writeup-b8de136d48b

#hackerstuff #HackThePlanet

---

Today’s Principle to Follow:
Principle #9: Read a Wide Range of Material, and Learn Broadly.
   Even if you goal is to be an expert in one field, the world is becoming increasingly multidisciplinary. The people that make the greatest breakthrough discoveries often have some understanding of other fields. Einstein was a fantastic violinist in addition to being a leading physicist, for example. Often, what holds back some of the world’s experts is that they become so fixated on a narrow subarea within their field, and they don’t learn and grow in other areas.
   
   This can be a mistake, because the world is naturally all interrelated. Biology and physics are related, Physics and math are related. Math and music are related. And music and sculpture are related. You get the idea. You can even make the jump that biology and sculpture are interrelated, as da Vinci did, one of the greatest artists, inventors, engineers, and polymaths of all time. He used this understanding of human anatomy to make his paintings and sculptures more vivid and real, and this is what captured people’s imaginations when they saw his work,. Imagine if he hadn’t learned broadly. He may have never become the great artists that we’ve all heard of.

---

---

Adobe Issues Emergency Patches for Two Critical Flaws in Acrobat and Reader
https://thehackernews.com/2019/01/adobe-reader-vulnerabilities.html
#hackerstuff #HackThePlanet

---

Abine Blur Password Manager exposed data of 2.4M users

Abine Blur Password Manager exposed data of 2.4M users

#hackerstuff #HackThePlanet

---

Discovering and Hacking IoT Devices Using Web-Based Attacks
https://www.netsparker.com/blog/web-security/discovering-hacking-iot-devices-using-web-based-attacks/
#hackerstuff #HackThePlanet

---

Open redirects – the vulnerability class no one but attackers cares about
https://stevetabernacle.github.io/blog/open-redirects-the-vulnerability-class-no-one-but-attackers-cares-about/
#hackerstuff #HackThePlanet

---

Free Burp Tutorials and Cheat-Sheets for Penetration Testing
https://www.secureit.com/blogs/5-free-burp-tutorials-and-cheat-sheets-for-penetration-testing/
#hackerstuff #HackThePlanet

---

Today’s Principle to Follow:
Principle #8: The Knowledge You Acquire On Your Own Is The Most Valuable.
   Geniuses don’t wait around for information to fall on their laps. They also don’t rely on one source to tell them everything. For example, they will not just listen to one news station and wait for the information to come to them through that one channel. A genius will pursue all kinds of ways of finding knowledge. They will ask questions and do research to find answers. When they find a direct answer to the question given by an expert, they will not necessarily believe the response without further evidence. They will seek more and more information to see if hey truly understand what they think they understand. The knowledge that you seek out and work to find and learn is the most useful and helpful of all. If it comes to you in a pamphlet or through a media station and finds you, then you are more likely to take it in passively and not make must use of it. Also, of course, information that find you is more likely to be biased. The best you can do is seek out the answers to your own questions.

---

---

Google Partially Patches Flaw in Chrome for Android 3 Years After Disclosure
https://thehackernews.com/2019/01/google-chrome-android-privacy.html
#hackerstuff #HackThePlanet

---

Crackers Hackers play PewDiePie ad on thousands of hacked Chromecasts & Smart TVs

Hackers play PewDiePie ad on thousands of hacked Chromecasts & Smart TVs

#hackerstuff #HackThePlanet

---

EU launches Bug Bounty program for 14 free open-source products

EU launches Bug Bounty program for 14 free open-source products

#hackerstuff #HackThePlanet

---

Dark Overlord hackers vow to leak 9/11 related data stolen from law firm

Dark Overlord hackers vow to leak 9/11 related data stolen from law firm

#hackerstuff #HackThePlanet

---

Smart Contract Security
https://blog.avatao.com/Smart-Contract-Security/
#hackerstuff #HackThePlanet

---

Top Ten Bug Bounty Payouts of 2018
https://www.htbridge.com/blog/top-ten-bug-bounty-payouts-of-2018.html
#hackerstuff #HackThePlanet

---

hackxor – web application hacking challenges
https://hackxor.net/
#hackerstuff #HackThePlanet

---