Podcasts

Chrome Defaults to HTML5 over Adobe Flash Starting in Q4 | Threatpost | The first stop for security news
https://threatpost.com/chrome-defaults-to-html5-over-adobe-flash-startin...

Google Set to Kill SSLv3, RC4 in SMTP, Gmail in June | Threatpost | The first stop for security news
https://threatpost.com/google-set-to-kill-sslv3-and-rc4-in-smtp-gmail-in...

Tavis Ormandy on Twitter: "Kernel memory corruption in Symantec/Norton antivirus, CVE-2016-2208 (more patches soon). https://t.co/Sqhm0a48Fp https://t.co/F22xDIelSU"
https://twitter.com/taviso/status/732365178872856577

Patrick Gray on Twitter: "Inspecting malicious code in the kernel? That's like the bomb squad bringing a suspicious package into a kindergarten to open it. CC @taviso"
https://twitter.com/riskybusiness/status/732374512449277952

TeslaCrypt shuts down and Releases Master Decryption Key
http://www.bleepingcomputer.com/news/security/teslacrypt-shuts-down-and-...

The Intercept
https://theintercept.com/snowden-sidtoday/

2011 7 27 Culture Shock NSA From the Perspective of Summer Interns
https://www.documentcloud.org/documents/2830624-2011-7-27-Culture-Shock-...

The curious case of Besa Mafia | All Things VICE
https://allthingsvice.com/2016/05/14/the-curious-case-of-besa-mafia/

Hitting on the Aussies - the Besa Mafia files | All Things VICE
https://allthingsvice.com/2016/05/15/hitting-on-the-aussies-the-besa-maf...

Breach of Nulled.io crime forum could cause a world of pain for members | Ars Technica
http://arstechnica.com/security/2016/05/breach-of-nulled-io-crime-forum-...

Tumblr Requires Password Reset | Threatpost | The first stop for security news
https://threatpost.com/tumblr-accounts-must-reset-passwords/118084/

That time a patient's heart procedure was interrupted by a virus scan | Ars Technica
http://arstechnica.com/security/2016/05/faulty-av-scan-disrupts-patients...

Hacker fans give Mr. Robot website free security checkup | Ars Technica
http://arstechnica.com/security/2016/05/hacker-fans-give-mr-robot-websit...

That Insane, $81M Bangladesh Bank Heist? Here's What We Know | WIRED
https://www.wired.com/2016/05/insane-81m-bangladesh-bank-heist-heres-know/

SWIFT Warns of Second Bank Attack via PDF Malware | Threatpost | The first stop for security news
https://threatpost.com/swift-warns-of-second-bank-attack-via-pdf-malware...

U.S. banks scrutinize SWIFT security after hacks: reports | Reuters
http://www.reuters.com/article/us-cyber-heist-swift-banks-idUSKCN0Y82HW

Exclusive: UK banks ordered to review cyber security after SWIFT heist | Reuters
http://www.reuters.com/article/us-cyber-heist-bankofengland-idUSKCN0Y92KR

Judge Changes Mind, Says FBI Doesn't Have to Reveal Tor Browser Hack | Motherboard
http://motherboard.vice.com/read/judge-changes-mind-says-fbi-doesnt-have...

Motion Filed Asking FBI To Disclose Tor Browser Zero Day | Threatpost | The first stop for security news
https://threatpost.com/motion-filed-asking-fbi-to-disclose-tor-browser-z...

Academics Make Theoretical Breakthrough in Random Number Generation | Threatpost | The first stop for security news
https://threatpost.com/academics-make-theoretical-breakthrough-in-random...

Gaping Security Hole in Android Platform Grows Larger, Researchers Claim | Threatpost | The first stop for security news
https://threatpost.com/scope-of-gaping-android-security-hole-grows/118161/

Banking Trojan Outwits Google Play Malware Scanner | Threatpost | The first stop for security news
https://threatpost.com/banking-trojan-outwits-google-verify-apps-scanner...

Malware-Laced Porn Apps Behind Wave of Android Lockscreen Attacks | Threatpost | The first stop for security news
https://threatpost.com/malware-laced-porn-apps-behind-wave-of-android-lo...

Don't Use Allo | Motherboard
http://motherboard.vice.com/read/dont-use-google-allo

John McAfee Apparently Tried to Trick Reporters Into Thinking He Hacked WhatsApp
http://gizmodo.com/john-mcafee-apparently-tried-to-trick-reporters-into-...

Adobe Emergency Update Patches Flash Zero Day | Threatpost | The first stop for security news
https://threatpost.com/emergency-flash-update-patches-public-zero-day/11...

Major Remote SSH Security Issue in CoreOS Linux Alpha, Subset of Users Affected
https://coreos.com/blog/alpha-security-incident-subset-of-users-affected...

The Bank Job
https://boris.in/blog/2016/the-bank-job/

Stewart Baker - Wikipedia, the free encyclopedia
https://en.wikipedia.org/wiki/Stewart_Baker

RSS Feed
http://www.steptoe.com/feed-Cyberlaw.rss

France votes to penalize companies for refusing to decrypt devices, messages | Ars Technica
http://arstechnica.com/tech-policy/2016/03/france-votes-to-penalise-comp...

complementing_avaya_fabric_connect_with_senetas_encryption_dn7794.pdf
https://www.avaya.com/usa/documents/complementing_avaya_fabric_connect_w...

UPDATE: When these notes were first posted the link to the php bugs discussed wasn't in them. Here it is:

https://github.com/dyntopia/exploits

--

$1B Bangladesh heist: Officials say SWIFT technicians left bank vulnerable | Ars Technica
http://arstechnica.com/security/2016/05/1b-bangladesh-heist-officials-sa...

You Don't See This Often: Simultaneous FBI, DHS, and DoD Cyber Espionage Alerts | Motherboard
http://motherboard.vice.com/read/rare-simultaneous-fbi-dhs-and-dod-cyber...

Yahoo Releases Second Wave Unsealed FISA Documents | Threatpost | The first stop for security news
https://threatpost.com/yahoo-releases-second-wave-of-unsealed-fisc-docum...

Twitter Denies Intelligence Community Fire Hose Access Via Dataminr | Threatpost | The first stop for security news
https://threatpost.com/twitter-turns-off-fire-hose-for-intelligence-comm...

How a security pro's ill-advised hack of a Florida elections site backfired | Ars Technica
http://arstechnica.com/security/2016/05/how-a-security-pros-ill-advised-...

PwnedList Shutdown Unrelated to Parameter Tampering Vulnerability | Threatpost | The first stop for security news
https://threatpost.com/pwnedlist-shutdown-unrelated-to-recent-vulnerabil...

Another Day, Another Hack: Passwords and Sexual Desires for Dating Site 'Fling' | Motherboard
http://motherboard.vice.com/read/another-day-another-hack-passwords-and-...

Another Day, Another Hack: Is Your Fisting Site Updating Its Forum Software? | Motherboard
http://motherboard.vice.com/read/rosebuttboard-ip-board

No more get-out-of-jail-free card for CryptXXX ransomware victims | Ars Technica
http://arstechnica.com/security/2016/05/no-more-get-out-of-jail-free-car...

Someone Replaced Notorious 'Locky' Ransomware With a Dud File | Motherboard
http://motherboard.vice.com/read/someone-replaced-notorious-locky-ransom...

Microsoft and Adobe warn of separate zero-day vulnerabilities under attack | Ars Technica
http://arstechnica.com/security/2016/05/beware-of-in-the-wild-0day-attac...

New Windows 10 build kills controversial password-sharing Wi-Fi Sense | ExtremeTech
http://www.extremetech.com/computing/228259-new-windows-10-build-kills-c...

New Security Flaw Found in Lenovo Solution Center Software | Threatpost | The first stop for security news
https://threatpost.com/new-security-flaw-found-in-lenovo-solution-center...

Tavis Ormandy on Twitter: "Many remote stack overflows in Symantec Endpoint. No big deal, because /GS is the default since 2005, right? Hahaha. https://t.co/ac40M0Ki90"
https://twitter.com/taviso/status/730249521247068162

Critical Qualcomm security bug leaves many phones open to attack | Ars Technica
http://arstechnica.com/security/2016/05/5-year-old-android-vulnerability...

Chinese ARM vendor left developer backdoor in kernel for Android, "Pi" devices | Ars Technica
http://arstechnica.com/security/2016/05/chinese-arm-vendor-left-develope...

Viking Horde Malware Co-Ops Android Devices for Ad Fraud | Threatpost | The first stop for security news
https://threatpost.com/viking-horde-malware-co-ops-android-devices-for-a...

SS7 Attack Circumvents WhatsApp and Telegram Encryption
http://news.softpedia.com/news/ss7-attack-leaves-whatsapp-and-telegram-e...

Feds probe mobile phone industry over the sad state of security updates | Ars Technica
http://arstechnica.com/security/2016/05/feds-probe-mobile-industrys-secu...

Security researcher Stefan Esser releases iPhone & iPad jailbreak detection tool in iOS App Store | 9to5Mac
http://9to5mac.com/2016/05/10/security-research-stefan-esser-releases-ip...

Microsoft Security Intelligence Report: Top Takeaways | Threatpost | The first stop for security news
https://threatpost.com/old-exploits-die-hard-says-microsoft-report/117918/

Attackers Targeting Critical SAP Flaw Since 2013 | Threatpost | The first stop for security news
https://threatpost.com/attackers-targeting-critical-sap-flaw-since-2013/...

Facebook Capture The Flag Platform Open Source | Threatpost | The first stop for security news
https://threatpost.com/facebook-makes-its-ctf-platform-freely-available/...

Snowden's Surveillance Leaks Made People Less Likely to Read About Surveillance | Motherboard
http://motherboard.vice.com/read/snowdens-surveillance-leaks-made-people...

lcamtuf's blog: Clearing up some misconceptions around the "ImageTragick" bug
https://lcamtuf.blogspot.com.br/2016/05/clearing-up-some-misconceptions-...

.:: Phrack Magazine ::.
http://www.phrack.org/issues/69/1.html

Untitled
https://threatbutt.com/press/Threatbutt-DZIR-2016.pdf

Craig Wright is not Satoshi Nakamoto - New Web Order
https://www.nikcub.com/posts/craig-wright-is-not-satoshi-nakamoto/

Extraordinary Claims Require Extraordinary Proof - Dr. Craig Wright BlogDr. Craig Wright Blog
http://www.drcraigwright.net/extraordinary-claims-require-extraordinary-...

I am Craig Wright, inventor of Craig Wright \u2022 The Register
http://www.theregister.co.uk/2016/05/03/bitcoin_craig_wright/

ImageMagick Security Issue - ImageMagick
https://www.imagemagick.org/discourse-server/viewtopic.php?t=29588

Public Exploits Available for ImageMagick Vulnerabilities | Threatpost | The first stop for security news
https://threatpost.com/public-exploits-available-for-imagemagick-vulnera...

Bipartisan Committee Leaders Seek Briefings from Communications Providers on Vulnerabilities of SS7 | Energy and Commerce Committee
https://energycommerce.house.gov/news-center/press-releases/bipartisan-c...

So \u2026 Now the Government Wants to Hack Cybercrime Victims | WIRED
https://www.wired.com/2016/05/now-government-wants-hack-cybercrime-victims/

Tuesday 10 May: Lauri Love ruling may create dangerous new police powers | Courage Love
https://freelauri.com/2016/04/28/tuesday-10-may-lauri-love-ruling-may-cr...

Eurocops get new cyber powers to hunt down terrorists, criminals | Ars Technica
http://arstechnica.com/tech-policy/2016/05/eurocops-get-new-cyber-powers...

Brazilian Judge Overturns 72-Hour WhatsApp Suspension | Threatpost | The first stop for security news
https://threatpost.com/brazilian-judge-overturns-72-hour-whatsapp-suspen...

Privacy Activists Cheer Passage of Email Privacy Act, Brace for Senate Battle | Threatpost | The first stop for security news
https://threatpost.com/privacy-activists-cheer-passage-of-email-privacy-...

Please Don't Pay Ransoms, FBI Urges - DataBreachToday
http://www.databreachtoday.com/blogs/please-dont-pay-ransoms-fbi-urges-p...

Hacking Slack accounts: As easy as searching GitHub | Ars Technica
http://arstechnica.com/security/2016/04/hacking-slack-accounts-as-easy-a...

Rainbow Six: Siege reportedly reveals your IP address to potential attackers | Ars Technica
http://arstechnica.com/gaming/2016/04/rainbow-six-siege-reportedly-revea...

Fraudsters Steal Tax, Salary Data From ADP - Krebs on Security
http://krebsonsecurity.com/2016/05/fraudsters-steal-tax-salary-data-from...

How the Pwnedlist Got Pwned - Krebs on Security
http://krebsonsecurity.com/2016/05/how-the-pwnedlist-got-pwned/

A Dramatic Rise in ATM Skimming Attacks - Krebs on Security
http://krebsonsecurity.com/2016/04/a-dramatic-rise-in-atm-skimming-attacks/

Dental Assn Mails Malware to Members - Krebs on Security
http://krebsonsecurity.com/2016/04/dental-assn-mails-malware-to-members/

10-Year-Old Hacks Instagram; Wins $10K From Facebook - Forbes
http://www.forbes.com/sites/thomasbrewster/2016/05/03/facebook-10-year-o...

Unskilled Pro-ISIS Hackers A Growing Threat | Threatpost | The first stop for security news
https://threatpost.com/unskilled-pro-isis-hackers-a-growing-threat/117726/

Q1 Summary from Chrome Security - Google Groups
https://groups.google.com/a/chromium.org/forum/#!topic/security-dev/2e-bkPdHvfE

Scourge of Android Overlay Malware on Rise | Threatpost | The first stop for security news
https://threatpost.com/scourge-of-android-overlay-malware-on-rise/117720/

Google Patches More Trouble in Mediaserver | Threatpost | The first stop for security news
https://threatpost.com/google-patches-more-trouble-in-mediaserver/117758/

Office 365 Vulnerability Exposed Any Federated Account | Threatpost | The first stop for security news
https://threatpost.com/office-365-vulnerability-exposed-any-federated-ac...

Microsoft Expands Bug Bounty Program, Preps Windows Server 2016 for Final Release | Threatpost | The first stop for security news
https://threatpost.com/nano-server-added-to-microsoft-bug-bounty-program...

Linux Foundation Badge Program Boost Open Source Security | Threatpost | The first stop for security news
https://threatpost.com/linux-foundation-badge-program-to-boost-open-sour...

Aging and bloated OpenSSL is purged of 2 high-severity bugs | Ars Technica
http://arstechnica.com/security/2016/05/aging-and-bloated-openssl-is-pur...

Commercial software chokkas with ancient brutal open source vulns \u2022 The Register
http://www.theregister.co.uk/2016/05/04/commercial_software_chokkas_with...

NIST readies 'post-quantum' crypto competition \u2022 The Register
http://www.theregister.co.uk/2016/05/04/nist_readies_postquantum_crypto_...

Flaws in Samsung's 'Smart' Home Let Hackers Unlock Doors and Set Off Fire Alarms | WIRED
https://www.wired.com/2016/05/flaws-samsungs-smart-home-let-hackers-unlo...

Defence bankrolls Oz Govt's infosec threat sharing strategy \u2022 The Register
http://www.theregister.co.uk/2016/05/04/defence_bankrolls_oz_govts_infos...

Wi-Fi network named 'mobile detonation device' grounds plane \u2022 The Register
http://www.theregister.co.uk/2016/05/03/wifi_hotspot_named_mobile_detona...

A Note on the Verizon DBIR 2016 Vulnerabilities Claims | OSVDB
https://blog.osvdb.org/2016/04/27/a-note-on-the-verizon-dbir-2016-vulner...

Collaborative Data Science - Inside the 2016 Verizon DBIR Vulnerability Section. - Kenna Blog
http://blog.kennasecurity.com/2016/05/collaborative-data-science-inside-...

James Clapper: Snowden sped up sophistication of crypto, "it's not a good thing" | Ars Technica
http://arstechnica.com/tech-policy/2016/04/top-intelligence-official-sno...

Viber Heats Up Crypto-Debate: Adds Encryption to 711 Million Users | Threatpost | The first stop for security news
https://threatpost.com/viber-heats-up-cypto-debate-adds-encryption-to-71...

UK intel agencies spy indiscriminately on millions of innocent folks | Ars Technica
http://arstechnica.com/tech-policy/2016/04/uk-secret-police-surveillance...

FBI paid at least $1.3M for zero-day to get into San Bernardino iPhone | Ars Technica
http://arstechnica.com/tech-policy/2016/04/fbi-paid-at-least-1-3m-for-ze...

The Other Reason the FBI Doesn't Want to Reveal Its Hacking Techniques | Motherboard
http://motherboard.vice.com/read/fbi-hacking-techniques

In a first, US military plans to drop "cyberbombs" on ISIS, NYT says | Ars Technica
http://arstechnica.com/security/2016/04/us-military-plans-to-drop-cyberb...

Hacking group "PLATINUM" used Windows' own patching system against it | Ars Technica
http://arstechnica.com/security/2016/04/hacking-group-platinum-used-wind...

The Uber scammers who take users for a (very expensive) ride | Money | The Guardian
http://www.theguardian.com/money/2016/apr/22/uber-scam-hacking-account-p...

German nuclear plant's fuel rod system swarming with old malware | Ars Technica
http://arstechnica.com/security/2016/04/german-nuclear-plants-fuel-rod-s...

Active drive-by exploits critical Android bugs, care of Hacking Team | Ars Technica
http://arstechnica.com/security/2016/04/active-drive-by-attacks-exploit-...

SpyEye Makers Get 24 Years in Prison - Krebs on Security
http://krebsonsecurity.com/2016/04/spyeye-makers-get-24-years-in-prison/

PoS Attack Net Crooks 20 Million Bank Cards, Up to $400 Million | Threatpost | The first stop for security news
https://threatpost.com/pos-attacks-net-crooks-20-million-stolen-bank-car...

New Decryptor Unlocks CryptXXX Ransomware | Threatpost | The first stop for security news
https://threatpost.com/new-decryptor-unlocks-cryptxxx-ransomware/117668/

Latest TeslaCrypt Targets New File Extensions, Invests Heavily in Evasion | Threatpost | The first stop for security news
https://threatpost.com/latest-teslacrypt-targets-new-file-extensions-inv...

Empty DDoS Threats: Meet the Armada Collective
https://blog.cloudflare.com/empty-ddos-threats-meet-the-armada-collective/

Core Windows Utility Can Be Used to Bypass AppLocker | Threatpost | The first stop for security news
https://threatpost.com/core-windows-utility-can-be-used-to-bypass-apploc...

One Million Access Facebook Over Tor | Threatpost | The first stop for security news
https://threatpost.com/one-million-access-facebook-over-tor/117653/

DRAM bitflipping exploits that hijack computers just got easier | Ars Technica
http://arstechnica.com/security/2016/04/dram-bitflipping-exploits-that-h...

How I Hacked Facebook, and Found Someone's Backdoor Script | DEVCORE \u6234\u592b\u5bc7\u723e
http://devco.re/blog/2016/04/21/how-I-hacked-facebook-and-found-someones...

The Ingenious Way Iranians Are Using Satellite TV to Beam in Banned Internet | WIRED
http://www.wired.com/2016/04/ingenious-way-iranians-using-satellite-tv-b...

Hector Martin on Twitter: "How to panic a current @grsecurity kernel as any user: $ script /dev/null
https://www.reddit.com/r/programming/comments/4gn0dr/hector_martin_on_tw...

Trent Smith on Twitter: "@riskybusiness I'm hoping @NSAGov just missed April Fools day by a couple of weeks https://t.co/CXe8dd0Isc"
https://twitter.com/TrentatESD/status/724598800921194496

Here are a bunch of links related to SWIFT:

$10 router blamed in Bangladesh bank hack - BBC News
http://www.bbc.com/news/technology-36110421

BAE Systems Threat Research Blog: Two bytes to $951m
http://baesystemsai.blogspot.com.br/2016/04/two-bytes-to-951m.html

CyberCrime & Doing Time: Is the Bank of Bangladesh ready for the Global Economy?
http://garwarner.blogspot.com.br/2016/04/is-bank-of-bangladesh-ready-for...

Exclusive: SWIFT warns customers of multiple cyber fraud cases | Reuters
http://in.reuters.com/article/us-cyber-banking-swift-exclusive-idINKCN0X...

Lessons Learned from Biggest Bank Heist in History -- CIO Update
http://www.cioupdate.com/trends/article.php/3600126/Lessons-Learned-from...

Bangladesh Bank hackers compromised SWIFT software, warning issued | Reuters
http://www.reuters.com/article/us-usa-nyfed-bangladesh-malware-exclusiv-...

'Crypto Wars' timeline: A history of the new encryption debate
http://www.dailydot.com/politics/encryption-crypto-wars-backdoors-timeli...

Brazilian Cybercrime Bills Threaten Open Internet for 200 Million People
https://theintercept.com/2016/04/26/brazilian-cybercrime-bills-threaten-...

How Hacking Team got hacked | Ars Technica
http://arstechnica.com/security/2016/04/how-hacking-team-got-hacked-phin...

How hackers eavesdropped on a US Congressman using only his phone number | Ars Technica
http://arstechnica.com/security/2016/04/how-hackers-eavesdropped-on-a-us...

Apple stops patching QuickTime for Windows despite 2 active vulnerabilities | Ars Technica
http://arstechnica.com/security/2016/04/apple-stops-patching-quicktime-f...

Adobe warns that uninstalling vulnerable QuickTime for Windows can break Creative Cloud | ZDNet
http://www.zdnet.com/article/adobe-warns-that-uninstalling-vulnerable-qu...

Microsoft Wins Widespread Support in Privacy Clash With Govt. | Threatpost | The first stop for security news
https://threatpost.com/microsoft-wins-widespread-support-in-privacy-clas...

Apple and FBI Faceoff at House Encryption Hearing | Threatpost | The first stop for security news
https://threatpost.com/apple-and-fbi-faceoff-at-house-encryption-hearing...

BlackBerry CEO Defends Lawful Access Principles, Supports Phone Hack | Threatpost | The first stop for security news
https://threatpost.com/blackberry-ceo-defends-lawful-access-principles-s...

2015 Google Android Security Report | Threatpost | The first stop for security news
https://threatpost.com/android-security-report-29-percent-of-active-devi...

Cisco Talos Blog: Widespread JBoss Backdoors a Major Threat
http://blog.talosintel.com/2016/04/jboss-backdoor.html

IRS Chief: Agency Faces Loss of Key InfoSec Personnel
http://www.govinfosecurity.com/irs-chief-agency-faces-loss-key-infosec-p...

Matthew Keys Sentenced to Two Years for Aiding Anonymous | WIRED
http://www.wired.com/2016/04/journalist-matthew-keys-sentenced-two-years...

A Scheme to Encrypt the Entire Web Is Actually Working | WIRED
http://www.wired.com/2016/04/scheme-encrypt-entire-web-actually-working/

Researchers Crack Microsoft and Google's Shortened URLs to Spy on People | WIRED
http://www.wired.com/2016/04/researchers-cracked-microsoft-googles-short...

Flashback: Declassified 1970 DOD cybersecurity document still relevant | Ars Technica
http://arstechnica.com/security/2016/04/flashback-declassified-1970-dod-...

Underwriters Labs refuses to share new IoT cybersecurity standard | Ars Technica
http://arstechnica.com/security/2016/04/underwriters-labs-refuses-to-sha...

New MIT Scanner Finds Web App Flaws in a Minute | Threatpost | The first stop for security news
https://threatpost.com/new-mit-scanner-finds-web-app-flaws-in-a-minute/1...

VMware Patches Critical Session Handling Vulnerability | Threatpost | The first stop for security news
https://threatpost.com/vmware-patches-critical-session-handling-vulnerab...

'Blackhole' Exploit Kit Author Gets 7 Years - Krebs on Security
http://krebsonsecurity.com/2016/04/blackhole-exploit-kit-author-gets-8-y...

Badlock Windows, Samba Man-in-the-Middle Vulnerability | Threatpost | The first stop for security news
https://threatpost.com/badlock-vulnerability-falls-flat-against-its-hype...

Hyping vulnerabilities is no longer helping application security awareness | TechCrunch
http://techcrunch.com/2016/04/11/hyping-vulnerabilities-is-no-longer-hel...

That 'Badlock' Bug Is More Hype Than Hurt | WIRED
http://www.wired.com/2016/04/badlock-bug-hype-hurt/

Yes, Badlock bug was shamelessly hyped, but the threat is real | Ars Technica
http://arstechnica.com/security/2016/04/yes-badlock-bug-was-shamelessly-...

How Reporters Pulled Off the Panama Papers, the Biggest Leak in Whistleblower History | WIRED
http://www.wired.com/2016/04/reporters-pulled-off-panama-papers-biggest-...

The Panama papers: Australia leads OECD response as crime links emerge | afr.com
http://www.afr.com/news/policy/tax/the-panama-papers-oecd-emergency-meet...

The Senate's Draft Encryption Bill Is 'Ludicrous, Dangerous, Technically Illiterate' | WIRED
http://www.wired.com/2016/04/senates-draft-encryption-bill-privacy-night...

Adobe patches Flash bug that's being exploited to install ransomware | Ars Technica
http://arstechnica.com/security/2016/04/adobe-flash-update-ransomware-wi...

OK, panic-newly evolved ransomware is bad news for everyone | Ars Technica
http://arstechnica.com/security/2016/04/ok-panic-newly-evolved-ransomwar...

Meet The Cryptoworm, The Future of Ransomware | Threatpost | The first stop for security news
https://threatpost.com/meet-the-cryptoworm-the-future-of-ransomware/117330/

Crypto ransomware targets called by name in spear-phishing blast | Ars Technica
http://arstechnica.com/security/2016/04/crypto-ransomware-targets-called...

Locky Ransomware Variant Changes C2, Spread Via Nuclear Exploit Kit | Threatpost | The first stop for security news
https://threatpost.com/locky-variant-changes-c2-communication-found-in-n...

Experts crack nasty ransomware that took crypto-extortion to new heights | Ars Technica
http://arstechnica.com/security/2016/04/experts-crack-nasty-ransomware-t...

Google Online Security Blog: Improvements to Safe Browsing Alerts for Network Administrators
https://security.googleblog.com/2016/04/improvements-to-safe-browsing-al...

Apple Bug Exposed Chat History With a Single Click
https://theintercept.com/2016/04/12/apple-bug-exposed-chat-history-with-...

FBI: $2.3 Billion Lost to CEO Email Scams - Krebs on Security
http://krebsonsecurity.com/2016/04/fbi-2-3-billion-lost-to-ceo-email-scams/

"This is the IRS regarding your tax filings" says trio of overseas robocallers | Ars Technica
http://arstechnica.com/information-technology/2016/04/three-overseas-fra...

Hack Brief: Turkey Breach Spills Info on More Than Half Its Citizens | WIRED
http://www.wired.com/2016/04/hack-brief-turkey-breach-spills-info-half-c...

Bug Bounty Guru Katie Moussouris Will Help Hackers and Companies Play Nice | WIRED
http://www.wired.com/2016/04/bug-bounty-guru-katie-moussouris-will-help-...

Researchers help shut down spam botnet that enslaved 4,000 Linux machines | Ars Technica
http://arstechnica.com/security/2016/04/researchers-help-shut-down-spam-...

Neutered random number generator let man rig million dollar lotteries | Ars Technica
http://arstechnica.com/security/2016/04/neutered-random-number-generator...

Nation-wide radio station hack airs hours of vulgar "furry sex" ramblings | Ars Technica
http://arstechnica.com/security/2016/04/nation-wide-radio-station-hack-a...

BREACH Revived to Steal Private Messages from Gmail, Facebook | Threatpost | The first stop for security news
https://threatpost.com/breach-attacks-revived-to-steal-private-messages-...

WhatsApp is now most widely used end-to-end crypto tool on the planet | Ars Technica
http://arstechnica.com/tech-policy/2016/04/whatsapp-is-now-most-widely-u...

Steam hacker says more vulnerabilities will be found, but not by him | Ars Technica
http://arstechnica.com/gaming/2016/04/steam-hacker-says-more-vulnerabili...

Sources: Trump Hotels Breached Again - Krebs on Security
http://krebsonsecurity.com/2016/04/sources-trump-hotels-breached-again/

New Threat Can Auto-Brick Apple Devices - Krebs on Security
http://krebsonsecurity.com/2016/04/new-threat-can-auto-brick-apple-devices/

centos7 - Recovering from a rm -rf / - Server Fault
https://serverfault.com/questions/769357/recovering-from-a-rm-rf

The 'Darth Vader' of Cyberwar Sold Services to Canada | VICE News
https://news.vice.com/article/the-darth-vader-of-cyberwar-sold-services-...

The FBI Drops Its Case Against Apple After Finding a Way Into That iPhone | WIRED
http://www.wired.com/2016/03/fbi-drops-case-apple-finding-way-iphone/

iOS forensics expert's theory: FBI will hack shooter's phone by mirroring storage | Ars Technica
http://arstechnica.com/security/2016/03/ios-forensics-experts-theory-fbi...

63 Times the Feds Asked Apple and Google to Help Unlock Phones | Motherboard
http://motherboard.vice.com/en_au/read/63-times-the-feds-used-the-all-wr...

The Government Has Used the All Writs Act on Android Phones At Least 9 Times | Motherboard
http://motherboard.vice.com/en_au/read/google-has-helped-the-feds-access...

Dark Web's Got a Bad Rep: 7 in 10 People Want It Shut Down, Study Shows | WIRED
http://www.wired.com/2016/03/study-finds-7-10-people-want-dark-web-shut/

CloudFlare: 94 percent of the Tor traffic we see is "per se malicious" | Ars Technica
http://arstechnica.com/tech-policy/2016/03/new-data-suggests-94-percent-...

FBI: Er, no, we won't reveal how we unmask and torpedo Tor pedos \u2022 The Register
http://www.theregister.co.uk/2016/03/29/fbi_tor/

Pro-Tip: If You're a Suspected Dark Web Drug Dealer, Don't Trademark Your #Brand | Motherboard
http://motherboard.vice.com/en_au/read/suspected-dark-web-vendor-charged...

New ransomware installs in boot record, encrypts hard disk [Updated] | Ars Technica
http://arstechnica.com/security/2016/03/new-ransomware-installs-in-boot-...

Why Hospitals Are the Perfect Targets for Ransomware | WIRED
http://www.wired.com/2016/03/ransomware-why-hospitals-are-the-perfect-ta...

Crooks Steal, Sell Verizon Enterprise Customer Data - Krebs on Security
http://krebsonsecurity.com/2016/03/crooks-steal-sell-verizon-enterprise-...

Big-Name Law Firms Fall Victim To Hackers | Threatpost | The First Stop For Security News
https://threatpost.com/big-name-law-firms-fall-victim-to-hackers/117096/

Gumtree serves world's worst exploit kit to scores of Aussies \u2022 The Register
http://www.theregister.co.uk/2016/03/29/gumtree_aus_serving_angler/

Certified Ethical Hacker website caught spreading crypto ransomware | Ars Technica
http://arstechnica.com/security/2016/03/certified-ethical-hacker-website...

Mal Men men hit LiveJournal with Angler exploit kit \u2022 The Register
http://www.theregister.co.uk/2016/03/30/angler_malvertising_livejournal/

Stealthy malware targeting air-gapped PCs leaves no trace of infection | Ars Technica
http://arstechnica.com/security/2016/03/stealthy-malware-targeting-air-g...

Hype Around the Mysterious 'Badlock' Bug Raises Criticism | WIRED
http://www.wired.com/2016/03/hype-around-mysterious-badlock-bug-raises-c...

Cops: Lottery terminal hack allowed suspects to print more winning tickets | Ars Technica
http://arstechnica.com/security/2016/03/cops-lottery-terminal-hack-allow...

Phishing Victims Muddle Tax Fraud Fight - Krebs on Security
http://krebsonsecurity.com/2016/03/phishing-victims-muddle-tax-fraud-fight/

Microsoft Deploys Macro-Blocker In Office To Curb Malware | Threatpost | The First Stop For Security News
https://threatpost.com/microsoft-deploys-macro-blocking-feature-in-offic...

1,400+ Vulnerabilities Identified In Medical Supply System | Threatpost | The First Stop For Security News
https://threatpost.com/1400-vulnerabilities-to-remain-unpatched-in-medic...

Apple Intel HD3000 Graphics Kernel Driver Patch | Threatpost | The First Stop For Security News
https://threatpost.com/patched-apple-bug-paved-way-to-root-compromises/1...

Emergency Java Patch Re-Issued For 2013 Vulnerability | Threatpost | The First Stop For Security News
https://threatpost.com/emergency-java-patch-re-issued-for-2013-vulnerabi...

Racist troll says he sent white supremacist flyers to public printers at colleges | Ars Technica
http://arstechnica.com/information-technology/2016/03/public-printers-at...

Let Me Get That Door for You: Remote Root Vulnerability in HID Door Controllers -
http://blog.trendmicro.com/let-get-door-remote-root-vulnerability-hid-do...

Senetas
http://www.senetas.com/

iOS forensics expert's theory: FBI will hack shooter's phone by mirroring storage | Ars Technica
http://arstechnica.com/security/2016/03/ios-forensics-experts-theory-fbi...

Judge: Order to Compel Apple Has Been 'Unenforceable' All Along | Motherboard
http://motherboard.vice.com/en_au/read/judge-order-to-compel-apple-has-b...

Attention Turns To FBI's 'Outside Party' | Threatpost | The First Stop For Security News
https://threatpost.com/attention-turns-to-fbis-outside-party/116931/

Hack Brief: Update iOS Now to Fix a Serious iMessage Crypto Flaw | WIRED
http://www.wired.com/2016/03/hack-brief-update-ios-fix-serious-imessage-...

'Apple Should Replace the Entirety of iMessage', Warn Encryption Researchers | Motherboard
http://motherboard.vice.com/en_au/read/apple-should-replace-imessage-enc...

Hack Brief: No Need to Freak Out Over That Chinese iPhone Malware | WIRED
http://www.wired.com/2016/03/hack-brief-no-need-freak-chinese-iphone-mal...

Android rooting bug opens Nexus phones to "permanent device compromise" | Ars Technica
http://arstechnica.com/security/2016/03/rooting-bug-in-android-opens-nex...

Stagefright Variant 'Metaphor' Puts Millions Of Samsung, LG And HTC Phones At Risk | Threatpost | The First Stop For Security News
https://threatpost.com/stagefright-variant-metaphor-puts-millions-of-sam...

A Government Error Just Revealed Snowden Was the Target in the Lavabit Case | WIRED
http://www.wired.com/2016/03/government-error-just-revealed-snowden-targ...

Emails show NSA rejected Hillary Clinton's request for secure smartphone - CBS News
http://www.cbsnews.com/news/emails-show-nsa-rejected-hillary-clinton-req...

The FBI Warns That Car Hacking Is a Real Risk | WIRED
http://www.wired.com/2016/03/fbi-warns-car-hacking-real-risk/

Uber Will Pay $10,000 'Bug Bounties' to Friendly Hackers | WIRED
http://www.wired.com/2016/03/uber-bug-bounties/

Paris terrorists used burner phones, not encryption, to evade detection | Ars Technica
http://arstechnica.com/tech-policy/2016/03/paris-terrorist-attacks-burne...

Once thought safe, DDR4 memory shown to be vulnerable to "Rowhammer" | Ars Technica
http://arstechnica.com/security/2016/03/once-thought-safe-ddr4-memory-sh...

Judge Won't Consider EFF's Arguments in FBI Mass Hacking Case | Motherboard
http://motherboard.vice.com/en_au/read/judge-in-fbi-mass-hacking-case-wo...

CanSecWest 2016 Attack Attribution False Flags | Threatpost | The First Stop For Security News
https://threatpost.com/apt-attackers-flying-more-false-flags-than-ever/1...

BinDiff Now Free, To Delight Of Security Researchers | Threatpost | The First Stop For Security News
https://threatpost.com/bindiff-now-free-to-delight-of-security-researche...

Home Depot Agrees $19.5 Million To Settle 2014 Breach | Threatpost | The First Stop For Security News
https://threatpost.com/home-depot-agrees-to-19-5-million-settlement-to-e...

Pwn2Own Day Two: Safari, Microsoft Edge Go Down Winner Announced | Threatpost | The First Stop For Security News
https://threatpost.com/pwn2own-day-two-safari-microsoft-edge-go-down-win...

Hospital Declares 'Internal State of Emergency' After Ransomware Infection - Krebs on Security
http://krebsonsecurity.com/2016/03/hospital-declares-internet-state-of-e...

How Pirates And Hackers Worked Together To Steal Millions Of Dollars In Diamonds - BuzzFeed News
http://www.buzzfeed.com/josephbernstein/how-pirates-and-hackers-worked-t...

How one developer just broke Node, Babel and thousands of projects in 11 lines of JavaScript \u2022 The Register
http://www.theregister.co.uk/2016/03/23/npm_left_pad_chaos?mt=1458722195866

Company behind the Badlock disclosure says pre-patch hype is good for business | CSO Online
http://www.csoonline.com/article/3047221/techology-business/company-behi...

Special Meetup with Thomas Dullien aka Halvar Flake - Null Singapore - YouTube
https://www.youtube.com/watch?v=fkDD2ea7SD8

HITBSecConf2016 - Amsterdam
http://conference.hitb.org/hitbsecconf2016ams/

Canary - know when it matters
https://canary.tools/