Imagine having a Skype conference call will a bunch of potential business associates, and unbeknownst to you one of them can see everything you are typing even when you aren't sharing your screen. That is the malicious promise of a new type of attack researchers are calling Skype&Type. These Italian researchers plan to share their new attack methodolog at the upcoming … [Read more...]
Pen-Tester Arrested – Daily Security Byte EP. 260
A security researcher was arrested in Florida for publicly disclosing a SQL injection (SQLi) vulnerability in an election web server. Should we be up in arms that they're demonizing someone helping organizations patch flaws, or upset that the "hacker" is poking his nose where he shouldn't? Normally, I side immediately with researchers, but this case is a little gray. Watch … [Read more...]