Pic of the Day #infosec #cybersecurity #pentesting #oscp #informationsecurity #Developers #cissp #engineer #CyberSec #jokes #Memes

New exploit on Friday, as is tradition: Researchers have discovered Log4J version 2.16 is vulnerable to DoS via "${${::-${::-$${::-j}}}}" More info:

Why ignore Intel Xeon/i9/i7/i3 HyperThreading -Cores Matter: * Patches for Spectre/Meltdown/L1TF decrease performance by 30% * OpenBSD disabled HT * L1TF security flaw fix is to disable HT on EsXi servers #infosec #CyberSecurity https://t.co/mcOnKLjdzR https://t.co/Frftx87G3T

A PoC for the Apache Struts Framework (CVE-2018-11776): https://t.co/ryVCgDTlVv #infosec #CyberSecurity #InformationSecurity #MondayMotivation

1.7 Tbps DDoS Attack 💣 — ​Memcached UDP Reflection Attack Sets New Record https://t.co/cNlwNSSOs4 Just 5-days after #Github hit with record-high 🚀1.35 Tbps attack.

The Hash Crack: Password Cracking Manual v2.0 is an expanded refer https://t.co/3BhsmpoJY0 #Cybersecurity #Bitcoin

RT OnexteC "CVE-2018-4878 - Adobe Flash vulnerability patched earlier is being exploited in a phishing campaign using Microsoft Word documents https://t.co/C73f38Xh0F #infosec #CyberSecurity https://t.co/adyS9Br4nA"

If you hold cryptocurrency online, you should always enable 2FA, & also get in the habit of always “mistyping” the first attempt. This will prevent even sophisticated MiTM attacks- because if your first intentionally mistaken 2FA token doesn’t error, you are on the wrong site!

"The cyber expert in battle seeks his victory from strategic advantage and does not demand it from his SOC." - The Art of Cyber War

#Android OS has become one the world's most popular operating systems. How do we keep it safe? Find out here: https://t.co/VZt7FiXZms #infosec

How To Troubleshoot SSH, a detailed guide: https://t.co/RLUU91ImZm

#Evrial Trojan Switches Bitcoin Addresses Copied to Windows Clipboard. It monitors Windows clipboard for certain strings and replaces them with the attacker's. #infosec #CyberSecurity https://t.co/lrqUEP5WsR

#RubyMiner targeting web servers to mine #Monero #cryptocurrency The attacker attempts to use multiple web server #vulnerabilities to inject the malicious code on PHP, Microsoft IIS, and Ruby on Rails. #infosec #CyberSecurity #MondayMotivation https://t.co/PsKmA6NL4G

Importance of Vulnerability Management - https://t.co/sEHjx3CNQa

Planning for Disaster Recovery - https://t.co/KySQKpcQMg

Mitigate performance loss due to Microcode patches for #Meltdown and #Spectre #Exploits by #RedHat 🤠 https://t.co/9BP1JRP07l More benchmarks on performance impacts: https://t.co/Axe0Qx628w #infosec #CyberSecurity #CyberMonday #CyberSec

CPU Exploits: Understanding Meltdown & Spectre - https://t.co/AVriazMXDX

#Secure your #SDN controller #Networking #Virtualization https://t.co/gaqZF7feey #StarWind

Financial Impact of Cyber Threats - https://t.co/1LhsAqDE6D

Lack of C-level Oversight in Security - https://t.co/djswwEGzfo