Michael Cobb CISSP-ISSAP - SearchSecurity SearchSecurity How did an old, unpatched Firefox bug expose master passwords? 09 Jul 2018 SearchSecurity How can domain generation algorithms be used to bypass ad blockers? 08 Jun 2018 SearchSecurity How does a SAML vulnerability affect single sign-on systems? 07 Jun 2018 SearchSecurity How lattice-based cryptography will improve encryption 07 Jun 2018 SearchSecurity How did cryptomining malware exploit a Telegram vulnerability? 06 Jun 2018 SearchSecurity What risks do untrusted certificates pose to enterprises? 05 Jun 2018 SearchSecurity How bad is the iBoot source code leak for Apple security? 04 Jun 2018 SearchSecurity Are Meltdown and Spectre real vulnerabilities or mere flaws? 17 May 2018 SearchSecurity How will the new WPA3 protocol strengthen password security? 04 May 2018 SearchSecurity IoT botnets: How are new Mirai variants impacting systems? 03 May 2018 SearchSecurity How were Android Pixel vulnerabilities exploited? 02 May 2018 SearchSecurity How did an Electron framework flaw put Slack at risk? 01 May 2018 SearchSecurity What is included in the mPOS security standard from PCI SSC? 30 Apr 2018 SearchSecurity How a Blizzard DNS rebinding flaw put millions of gamers at risk 05 Apr 2018 SearchSecurity How can improper certificate pinning be stopped by the Spinner tool? 09 Mar 2018 SearchSecurity How does a WPAD attack work and how can it be prevented? 08 Mar 2018 SearchSecurity How can users deal with app trackers that collect customer data? 07 Mar 2018 SearchSecurity How does Tizi spyware affect Android apps? 06 Mar 2018 SearchSecurity The Keeper browser extension flaw: How can users stay secure? 05 Mar 2018 SearchSecurity Why the Bleichenbacher attack is still around 01 Mar 2018 SearchSecurity How to secure bitcoin: What are the best ways to keep it safe? 26 Feb 2018 SearchSecurity Fight a targeted cyberattack with network segmentation, monitoring 05 Feb 2018 SearchSecurity Bypassing facial recognition: The means, motive and opportunity 01 Feb 2018 SearchSecurity The ROCA vulnerability: How it works and what to do about it 04 Jan 2018 SearchSecurity How machine learning-powered password guessing impacts security 07 Dec 2017 SearchSecurity How does the GhostHook attack bypass Microsoft PatchGuard? 01 Dec 2017 SearchSecurity Use caution with OAuth 2.0 protocol for enterprise logins 30 Nov 2017 SearchSecurity How can Intel AMT be used to bypass the Windows firewall? 30 Nov 2017 SearchSecurity How do source code reviews of security products work? 29 Nov 2017 SearchSecurity How can attacks like the Cherry Blossom project be prevented? 28 Nov 2017 SearchSecurity How does the Stack Clash vulnerability target Unix-based OSes? 27 Nov 2017 SearchSecurity How to prepare for potential IPv6 DDoS attacks 09 Nov 2017 SearchSecurity What knowledge factors qualify for true two-factor authentication? 20 Oct 2017 SearchSecurity Running a private certificate authority: What are the risks? 19 Oct 2017 SearchSecurity How app libraries share user data, even without permission 19 Oct 2017 SearchSecurity How can Android app permissions be exploited by attackers? 18 Oct 2017 SearchSecurity How did an ImageMagick vulnerability endanger Yahoo servers? 17 Oct 2017 SearchSecurity How does Google Play Protect aim to improve Android security? 16 Oct 2017 SearchSecurity How the Docker REST API can be turned against enterprises 05 Oct 2017 SearchSecurity Securing endpoints with supplementary tools protects data 02 Oct 2017 SearchSecurity What risk do Windows 10 telemetry features pose enterprises? 15 Sep 2017 SearchSecurity How can users detect dangerous open ports in mobile apps? 14 Sep 2017 SearchSecurity How can memory corruption attacks threaten smartphones? 13 Sep 2017 SearchSecurity How do code-reuse attacks bypass Windows 10 security features? 12 Sep 2017 SearchSecurity How is Pegasus malware different on Android than on iOS? 11 Sep 2017 SearchSecurity How NotPetya ransomware used legitimate tools to move laterally 31 Aug 2017 WhatIs.com Melbourne shuffle algorithm 29 Aug 2017 SearchSecurity How did sensitive data from file-sharing website Docs.com get leaked? 11 Aug 2017 SearchSecurity Libpurple flaw: How does it affect connected IM clients? 10 Aug 2017 SearchSecurity Are biometric authentication methods and systems the answer? 09 Aug 2017 SearchSecurity What tools can bypass Google's CAPTCHA challenges? 09 Aug 2017 SearchSecurity How did a Moodle security vulnerability enable remote code execution? 08 Aug 2017 SearchSecurity How did flaws in WhatsApp and Telegram enable account takeovers? 07 Aug 2017 SearchSecurity Samsung Knox platform: Can it improve Android device security? 28 Jul 2017 SearchSecurity SHA-1 collision: How the attack completely breaks the hash function 27 Jul 2017 SearchSecurity Android sandboxing tools: How can work data separation be bypassed? 14 Jul 2017 SearchSecurity How are forged cookies used in attacks on online user accounts? 13 Jul 2017 SearchSecurity What made iOS apps handling sensitive data vulnerable to MitM attacks? 12 Jul 2017 SearchSecurity Ticketbleed flaw: How can SSL session identities be protected? 11 Jul 2017 SearchSecurity WordPress REST API flaw: How did it lead to widespread attacks? 10 Jul 2017 SearchSecurity How the use of invalid certificates undermines cybersecurity 22 Jun 2017 SearchSecurity How can a NULL pointer dereference flaw create a DoS attack? 09 Jun 2017 SearchSecurity The Apple Notify flaw: How does it allow malicious script injection? 08 Jun 2017 SearchSecurity How does Facebook's Delegated Recovery enable account verification? 07 Jun 2017 SearchSecurity Adobe Acrobat Chrome extension: What are the risks? 06 Jun 2017 SearchSecurity Cisco WebEx extension flaw: How does the patch fall short? 05 Jun 2017 SearchSecurity How SSH key management and security can be improved 25 May 2017 SearchSecurity Avoid privilege creep from the software development team 10 May 2017 SearchSecurity How effective is geofencing technology as a security method? 05 May 2017 SearchSecurity Why did the PHPMailer library vulnerability have to be patched twice? 04 May 2017 SearchSecurity Same-origin policy: How did Adobe Flash Player's implementation fail? 03 May 2017 SearchSecurity How can a distributed guessing attack obtain payment card data? 02 May 2017 SearchSecurity Panasonic Avionics IFE systems: How serious are the vulnerabilities? 01 May 2017 IoT Agenda Applying IoT security guidelines to device development and deployment 01 May 2017 SearchSecurity Identity and access management strategy: Time to modernize? 19 Apr 2017 SearchSecurity How have ARM TrustZone flaws affected Android encryption? 07 Apr 2017 SearchSecurity How serious is a malicious DLL file vulnerability for enterprises? 06 Apr 2017 SearchSecurity Insecure OAuth implementations: How are mobile app users at risk? 05 Apr 2017 SearchSecurity How does a WebKit framework flaw enable denial-of-service attacks? 04 Apr 2017 SearchSecurity How did firmware create an Android backdoor in budget devices? 03 Apr 2017 SearchSecurity 1024-bit encryption keys: How 'trapdoored' primes have caused insecurity 30 Mar 2017 SearchSecurity Attack by TIFF images: What are the vulnerabilities in LibTIFF? 10 Mar 2017 SearchSecurity CJIS Security Policy: How can companies ensure FIPS compliance? 09 Mar 2017 SearchSecurity How can attacks bypass ASLR protection on Intel chips? 08 Mar 2017 SearchSecurity How can the Dirty COW vulnerability be used to attack Android devices? 07 Mar 2017 SearchSecurity SHA-1 certificates: How will Mozilla's deprecation affect enterprises? 06 Mar 2017 SearchSecurity What caused the ClixSense privacy breach that exposed user data? 10 Feb 2017 SearchSecurity What global threat intelligence can and can't do for security programs 09 Feb 2017 SearchSecurity How did iOS 10 security checks open brute force risk on local backups? 09 Feb 2017 SearchSecurity HTTP public key pinning: Is the Firefox browser insecure without it? 08 Feb 2017 SearchSecurity How did a Signal app bug let attackers alter encrypted attachments? 07 Feb 2017 SearchSecurity How does Overseer spyware work on infected Android apps? 06 Feb 2017 SearchSecurity The consequences of removing PPTP support from iOS 10 31 Jan 2017 IoT Agenda Fight internet of things dangers through device awareness 10 Jan 2017 SearchSecurity How are hackers using Twitter as C&C servers for malware? 06 Jan 2017 SearchSecurity How can two-factor authentication systems be used effectively? 04 Jan 2017 SearchSecurity How does a Linux vulnerability allow attacks on TCP communications? 04 Jan 2017 SearchSecurity FIDO authentication standard could signal the passing of passwords 03 Jan 2017 SearchSecurity How can PGP short key IDs be protected from collision attacks? 03 Jan 2017 SearchSecurity How to buy digital certificates for your enterprise 03 Jan 2017 1 2 3 4 5 6 7 8 9
