Today’s Principle to Follow:
Principle #13: Practice Questioning the Things in Life That we Tend to Take for Granted as Being Normal and Sensible.
   Seek answers for yourself or from those around you. For example, consider your cultural traditions and practices, your religion, the layout of your towns, etc. When you question deeply, yo sometimes find that there are many possible ways to approach any given topic or field. For example, some cultures have gotten along fine without technology even in modern times. There are so many ways a town or city could be built, that way do they all pretty much have the same setup? Sometimes when we question enough, we can find a better way to do things. Perhaps we can even think up an invention or a whole new way of doing things that most people missed.

---

---

New Systemd Privilege Escalation Flaws Affect Most Linux Distributions
https://thehackernews.com/2019/01/linux-systemd-exploit.html
#hackerstuff #HackThePlanet

---

Hackers Using Zero-Width Spaces to Bypass MS Office 365 Protection
https://thehackernews.com/2019/01/phishing-zero-width-spaces.html
#hackerstuff #HackThePlanet

---

Google DNS Service (8.8.8.8) Now Supports DNS-over-TLS Security
https://thehackernews.com/2019/01/google-dns-over-tls-security.html
#hackerstuff #HackThePlanet

---

Top 10 GDPR Violations and Incidents of 2018
https://www.htbridge.com/blog/top-10-gdpr-violations-and-incidents-of-2018.html
#hackerstuff #HackThePlanet

---

How Chinese hackers pulled off the Italian con job, a Rs 130-crore heist
https://economictimes.indiatimes.com/tech/internet/how-chinese-hackers-pulled-off-the-italian-con-job-a-rs-130-crore-heist/articleshow/67464588.cms
#hackerstuff #HackThePlanet

---

Detecting All the Things with Limited Data
https://www.redcanary.com/blog/detecting-all-the-things-with-limited-data/
#hackerstuff #HackThePlanet

---

Modchips of the State – Technical Feasibility of the Bloomberg/Supermicro Hardware Implants
https://trmm.net/Modchips
#hackerstuff #HackThePlanet

---

#Metasploit Framework 5.0 Released!
https://blog.rapid7.com/2019/01/10/metasploit-framework-5-0-released/
#hackerstuff #HackThePlanet

---

Today’s Principle to Follow:
Principle #12: Value Knowledge and Practices That Have Stood the Test of Time.
   Humans are constantly learning and teaching each other the new things that we learn. But we have to keep in mind our track record. At one time we thought the Earth was flat. At one time we didn’t realize germs were spread through contact and that we should wash our hands. At another time many people believed the same creatures had always lived on the planet (rather than evolution). Of course, often newer findings may be accurate, but it can be a mistake to assume that all newer findings are accurate. In science, often one study appears to confirm something radical. A problem happens when further studies try to confirm those findings and fail – and we are forced to realize that the original experiment had an error. Also, you keep in mind that the media often reports on new findings either with wrong facts and interpretations, or they may exaggerate the implications of a minor finding to try to gain readers. If you stay up to date with the latest findings, maintain your skepticism.

---

---

Microsoft Patch Tuesday — January 2019 Security Updates Released
https://thehackernews.com/2019/01/windows-security-updates.html
#hackerstuff #HackThePlanet

---

20-Year-Old Man Arrested For Carrying Out Germany’s Biggest Data Leak
https://thehackernews.com/2019/01/germany-data-leak-arrested.html
#hackerstuff #HackThePlanet

---

Zerodium is paying $2 million for Apple iOS remote jailbreak

Zerodium is paying $2 million for Apple iOS remote jailbreak

#hackerstuff #HackThePlanet

---

Page Cache Attacks
https://arxiv.org/pdf/1901.01161.pdf
#hackerstuff #HackThePlanet

---

‘Spoofing’ Google Search results
https://wietzebeukema.nl/blog/spoofing-google-search-results
#hackerstuff #HackThePlanet

---

LeakLooker: Find Open Databases in Seconds
https://hackernoon.com/leaklooker-find-open-databases-in-a-second-9da4249c8472
#hackerstuff #HackThePlanet

---

Gradle Plugin Portal: Clickjacking & Cross-Site Request Forgery enabling Account Takeover
https://medium.com/@jonathan.leitschuh/gradle-plugin-portal-clickjacking-cross-site-request-forgery-enabling-account-takeover-d65c2e43082b
#hackerstuff #HackThePlanet

---

HackerOne – XSS in steam react chat client
https://hackerone.com/reports/409850
#hackerstuff #HackThePlanet

---

polkit: temporary auth hijacking via PID reuse and non-atomic fork
https://bugs.chromium.org/p/project-zero/issues/detail?id=1692
#hackerstuff #HackThePlanet

---

Today’s Principle to Follow:
Principle #11: Engage in Personal Experiments with the World Around You.
   Do not rely fully on the experiments of scientists, or the word of the media. Science although very valuable to society, is not perfect. Science is run by scientists with their own biases and expectations, and their own careers to run. They are biased to finding what they want to find just as much as you’re biased to want to succeed in your own life. In the long run science takes us in the right direction, but the most recent findings should be taken in somewhat skeptically. Rather than rely fully on the new findings of scientists and the media, who use populations that may not even represent you (often rats or college students), you can run your own experiments. It is as simply as trial and error. Try something and see if it works. Start small, don’t risk too much on your personal experiments.
   
   The world is constantly changing and evolving, and everyone is in such a unique circumstance, that you may be better off testing for yourself what works and what doesn’t, rather than reading what worked for other people who could be completely different from you. When you experiment, continue to try different things. Take mental or written notes on what works more often, and what doesn’t work. When you figure out one problem, move on to the next experiment. It is fun, entertaining, and you will learn fast from it. Finding interesting experiments to perform in your daily life can be quite interesting and rewarding.

---

---

Zerodium Offers to Buy Zero-Day Exploits at Higher Prices Than Ever
https://thehackernews.com/2019/01/zero-day-exploit-market.html
#hackerstuff #HackThePlanet

---

Ethereum Classic (ETC) Hit by Double-Spend Attack Worth $1.1 Million
https://thehackernews.com/2019/01/ethereum-double-spend-attack.html
#hackerstuff #HackThePlanet

---

XSSOauthPersistence – Advance XSS Persistence With Oauth
https://github.com/dxa4481/XSSOauthPersistence
#hackerstuff #HackThePlanet

---

Looks like, at the moment, I’m ranked 146 in the world… 😛 Even though that’s only for people who have signed up. 😉
https://pwnhead.com/profile/charlesbastian/
#hackerstuff #HackThePlanet

---

Buffer Overflow Practical Examples, metasploit, gdb and objdump! – protostar stack3
https://0xrick.github.io/binary-exploitation/bof3/
#hackerstuff #HackThePlanet

---

Today’s Principle to Follow:
Principle #10: Be Aware of Where Your Advice is Coming From.
   It is human nature to want to give advice and help others. It makes us feel important and good, much of the time. We have to be careful who we take advice from, as not all advice is good. In general, you can figure that if the advice is too general then it isn’t really all that useful anyway. If you receive advice that is very specific, or very radical in some way, you should be careful in how you proceed. That kind of advice should only be considered from an expert, or someone with tremendous experience in an area. If there is a possibility for negative consequences, be even more careful with the advice. Advice that is fairly mild, probably doesn’t makes much of a difference. You’ve probably heard it before anyway. Be kind, be helpful, eat well, etc.
   
   Always keep in mind where the advice is coming from. The people you can trust the most are those with great experience and great success. Often times, these people are too busy to give much advice, and you have to learn from their actions rather than their words. Either way, remember that every situation is different. Think it through for yourself and decide if any advice is worth pursuing. If it is, it is your choice entirely. The person who gave you the advice cannot be expected to help with any negative outcomes that arise from your taking the advice.

---

---

I’m sure it has no back doors built in…;)
NSA to release its GHIDRA reverse engineering tool for free
https://thehackernews.com/2019/01/ghidra-reverse-engineering-tool.html
#hackerstuff #HackThePlanet

---

2018’s Top hacks and data breaches

2018’s Top hacks and data breaches

#hackerstuff #HackThePlanet

---

The Advantages of a More Secure and Safer Blockchain

The Advantages of a More Secure and Safer Blockchain

#hackerstuff #HackThePlanet

---

HackTheBox — Mischief Writeup
https://medium.com/@TheShahzada/hackthebox-mischief-writeup-b8de136d48b

#hackerstuff #HackThePlanet

---

Today’s Principle to Follow:
Principle #9: Read a Wide Range of Material, and Learn Broadly.
   Even if you goal is to be an expert in one field, the world is becoming increasingly multidisciplinary. The people that make the greatest breakthrough discoveries often have some understanding of other fields. Einstein was a fantastic violinist in addition to being a leading physicist, for example. Often, what holds back some of the world’s experts is that they become so fixated on a narrow subarea within their field, and they don’t learn and grow in other areas.
   
   This can be a mistake, because the world is naturally all interrelated. Biology and physics are related, Physics and math are related. Math and music are related. And music and sculpture are related. You get the idea. You can even make the jump that biology and sculpture are interrelated, as da Vinci did, one of the greatest artists, inventors, engineers, and polymaths of all time. He used this understanding of human anatomy to make his paintings and sculptures more vivid and real, and this is what captured people’s imaginations when they saw his work,. Imagine if he hadn’t learned broadly. He may have never become the great artists that we’ve all heard of.

---

---

Adobe Issues Emergency Patches for Two Critical Flaws in Acrobat and Reader
https://thehackernews.com/2019/01/adobe-reader-vulnerabilities.html
#hackerstuff #HackThePlanet

---

Abine Blur Password Manager exposed data of 2.4M users

Abine Blur Password Manager exposed data of 2.4M users

#hackerstuff #HackThePlanet

---

Discovering and Hacking IoT Devices Using Web-Based Attacks
https://www.netsparker.com/blog/web-security/discovering-hacking-iot-devices-using-web-based-attacks/
#hackerstuff #HackThePlanet

---

Open redirects – the vulnerability class no one but attackers cares about
https://stevetabernacle.github.io/blog/open-redirects-the-vulnerability-class-no-one-but-attackers-cares-about/
#hackerstuff #HackThePlanet

---

Free Burp Tutorials and Cheat-Sheets for Penetration Testing
https://www.secureit.com/blogs/5-free-burp-tutorials-and-cheat-sheets-for-penetration-testing/
#hackerstuff #HackThePlanet

---