Hot in Security:
Latest Security Threads

This report highlights a rarely-discussed but crucially important attack surface: security vendors themselves.
New

Episode 251 of Thinking Elixir. News includes a critical Unauthenticated Remote Code Execution vulnerability in Erlang/OTP SSH, José Vali...
New

Episode 250 of Thinking Elixir. News includes EEF board elections with voting beginning May 9th, Gleam v1.10.0 enhancing security with SB...
New

A new Rust blog post/announcement has been posted!
Get the full details here: crates.io security incident: improperly stored session co...
New

I believe this topic is not really well discussed online – and often with multiple misunderstandings. There seems to be this general beli...
New

Episode 248 of Thinking Elixir. News includes a new Elixir case study about Cyanview’s camera shading technology used at major events lik...
New

A new Django blog post/announcement has been posted!
New

Episode 245 of Thinking Elixir. News includes a new library called phoenix_sync for real-time sync in Postgres-backed Phoenix application...
New

How Apple’s new CPU cores can guess which code to run, and which data to load from memory. How those speculative techniques can be exploi...
New

A new Django blog post/announcement has been posted!
Get the full details here: Django security releases issued: 5.1.7, 5.0.13 and 4.2....
New
HOT IN Security THIS WEEK!

Episode 251 of Thinking Elixir. News includes a critical Unauthenticated Remote Code Execution vulnerability in Erlang/OTP SSH, José Vali...
New

This report highlights a rarely-discussed but crucially important attack surface: security vendors themselves.
New
HOT IN Security THIS MONTH!

I believe this topic is not really well discussed online – and often with multiple misunderstandings. There seems to be this general beli...
New

Episode 250 of Thinking Elixir. News includes EEF board elections with voting beginning May 9th, Gleam v1.10.0 enhancing security with SB...
New

A new Rust blog post/announcement has been posted!
Get the full details here: crates.io security incident: improperly stored session co...
New

Episode 248 of Thinking Elixir. News includes a new Elixir case study about Cyanview’s camera shading technology used at major events lik...
New

A new Django blog post/announcement has been posted!
New
HOT IN Security THIS YEAR!

Ars chats with law philosopher Scott Shapiro about his new book, Fancy Bear Goes Phishing.
New

The Backbone of Cybersecurity: Hardware Security Modules | join.tech Blog.
Discover how Hardware Security Modules (HSMs) provide robust ...
New

Microsoft CEO Satya Nadella is now personally responsible for security flaws.
New

Open source maintainers underpaid and going gray.
AI-coded contributions? Most would rather skip the bot’s work
New

A recent security incident involving Dropbox Sign - Dropbox Sign.
Information on a security incident involving Dropbox Sign.
New

Decoding US Government Plans to Shift the Software Security Burden.
US government officials discussed plans on how to incentivize securi...
New

New

GitHub - orhun/flawz: A Terminal UI for browsing security vulnerabilities (CVEs).
A Terminal UI for browsing security vulnerabilities (C...
New

A new Ruby blog post/announcement has been posted!
Get the full details here: https://www.ruby-lang.org/en/news/2025/02/26/security-adv...
New

Chair: Addressing BGP flaws will “help make our Internet routing more secure.”
New

It is the first time I saw BSOD in a mass scale.
New

GitHub - TzuHuanTai/RaspberryPi_WebRTC: Native WebRTC uses v4l2 hardware h264 and software openh264 encoder for live streaming on Raspber...
New

New Zealand Company’s ‘Impossible-to-Hack’ Security Turns Out to Be No Security at All.
Teammate App had a publicly exposed database and...
New

How Apple’s new CPU cores can guess which code to run, and which data to load from memory. How those speculative techniques can be exploi...
New

GitHub - skerkour/black-hat-rust: Applied offensive security with Rust - https://kerkour.com/black-hat-rust.
Applied offensive security...
New
HOT IN Security THE LAST THREE YEARS!

Raspberry Pi security alarm — the basics.
In November last year — I started building a DIY security alarm system, using a Raspberry Pi a...
New

Process injection: breaking all macOS security layers with a single vulnerability.
If you have created a new macOS app with Xcode 13.2, ...
New

A new Rust blog post/announcement has been posted!
Get the full details here: Security advisories for Cargo (CVE-2022-36113, CVE-2022-3...
New

Episode 173 of Thinking Elixir. We delve into the tricky world of cybersecurity with our guest, Michael Lubas. We touch on the widely-dis...
New

A jargon-busting guide to the key concepts, terminology, and technologies of cybersecurity. Perfect for anyone planning or implementing a...
New

The encrypted app will refuse to comply with the Online Safety Bill if required to scan messages.
New

A new Rust blog post/announcement has been posted!
Get the full details here: Security advisory for Cargo (CVE-2022-46176) | Rust Blog
New

A new Django blog post/announcement has been posted!
Get the full details here: Django security releases issued: 4.0.7 and 3.2.15 | Web...
New

A new Rust blog post/announcement has been posted!
Get the full details here: Security advisory: malicious crate rustdecimal | Rust Blog
New

It’s important to learn safe coding practices. As developers, we want people to love our products and happily pay to use them. We also wa...
New

Users of some models of iPhone, iPad and Mac are being urged to run “important” security update.
New

A new Rust blog post/announcement has been posted!
Get the full details here: Security advisory for Cargo (CVE-2023-38497) | Rust Blog
New

Objective-See: Tools.
Free, open-source tools to protect your Mac
New

Securing our apps is our responsibility as developers. We are the custodians and the guardians of our user’s data. We met up again with M...
New

A new Django blog post/announcement has been posted!
Get the full details here: Django security releases issued: 4.0.6 and 3.2.14 | Web...
New
HOT IN Security THIS Over 3 Years!

2020 has seen a significant uptick in the number of companies looking at adding Digital Wallets and tokenization to their offerings. On o...
New

This past weekend saw the latest competition take place and the newest iPhone, the iPhone 13 Pro running the latest and fully patched ver...
New

Things like smart speakers (such Amazon Alexa), smart TVs or other devices with built in microphones, cameras or with other features that...
New

Cybersecurity leaders discuss business resiliency and identity challenges during a session at VMworld 2020.
https://www.techrepublic.co...
New

Following this news: https://forum.devtalk.com/t/silver-sparrow-new-malware-found-on-30k-macs-has-security-pros-stumped/7241 just wondere...
New

I had a bit of a mini-adventure following Sobelow’s advice on adding a CSP to a Phoenix App. If you want to follow along, or want to add ...
New

Just discovered this:
Wireshark is the world’s foremost and widely-used network protocol analyzer. It lets you see what’s happening on...
New

A new PostgreSQL blog post/announcement has been posted!
Get the full details here: PostgreSQL: PostgreSQL JDBC 42.3.2/42.2.25 Security...
New

We engineered a wearable microphone jammer that is capable of disabling microphones in its user’s surroundings, including hidden micropho...
New

Cyber-criminals have your web applications in their crosshairs. They exploit common security mistakes in your web application to steal us...
New

Computer security is a complex issue. But you don’t have to be an expert in all the esoteric details to prevent many common attacks. Atta...
New

TLDR
Hacking 30 Mobile Apps and their APIs with consent of some of the major providers in the area.
100% success rate in hacking the AP...
New

A new Rust blog post/announcement has been posted!
Get the full details here: Security advisory for the regex crate (CVE-2022-24713) | ...
New

For those that are interested, Snyk (developer security tool) announced support for Elixir earlier this week:
Just thought I’d pass it...
New

In episode 81 of Thinking Elixir, we talk with Digit and Quinn Wilton about the Burrito project. It wraps up Elixir to a single binary, e...
New
Security
Classification:
Topic
Forum Category:
General
Threads:
211
Posts:
241
"Our portal about all things security related."
- Follow
- Join
- Shape
the conversation
Latest Security Jobs
Featured Security Book
Latest Security Learning Resources
Sanitizing HTML with HtmlSanitizeEx - ElixirCasts
Backend Learning ResourcesMaking Sense of Cybersecurity (Manning)
Backend Learning ResourcesCyber Security Career Guide (Manning)
Backend Learning ResourcesSecure Your Node.js Web Application (PragProg)
General Learning ResourcesPractical Security (PragProg)
General Learning ResourcesSecurity Events (WIP)
Get money off!

The Pragmatic Bookshelf
35% off any eBook

Manning Publications
45% off any item

The Pragmatic Studio
20% off any course
Simply use coupon code "devtalk.com" at checkout. Where applicable this coupon can be used for an many items and as many times as you like!

Filter by Type:
My Saved Portals
-
None saved yet