Hot in Security:
Latest Security Threads
This report highlights a rarely-discussed but crucially important attack surface: security vendors themselves.
New
Episode 251 of Thinking Elixir. News includes a critical Unauthenticated Remote Code Execution vulnerability in Erlang/OTP SSH, José Vali...
New
Episode 250 of Thinking Elixir. News includes EEF board elections with voting beginning May 9th, Gleam v1.10.0 enhancing security with SB...
New
A new Rust blog post/announcement has been posted!
Get the full details here: crates.io security incident: improperly stored session co...
New
I believe this topic is not really well discussed online – and often with multiple misunderstandings. There seems to be this general beli...
New
Episode 248 of Thinking Elixir. News includes a new Elixir case study about Cyanview’s camera shading technology used at major events lik...
New
A new Django blog post/announcement has been posted!
New
Episode 245 of Thinking Elixir. News includes a new library called phoenix_sync for real-time sync in Postgres-backed Phoenix application...
New
How Apple’s new CPU cores can guess which code to run, and which data to load from memory. How those speculative techniques can be exploi...
New
A new Django blog post/announcement has been posted!
Get the full details here: Django security releases issued: 5.1.7, 5.0.13 and 4.2....
New
HOT IN Security THIS WEEK!
Episode 251 of Thinking Elixir. News includes a critical Unauthenticated Remote Code Execution vulnerability in Erlang/OTP SSH, José Vali...
New
This report highlights a rarely-discussed but crucially important attack surface: security vendors themselves.
New
HOT IN Security THIS MONTH!
I believe this topic is not really well discussed online – and often with multiple misunderstandings. There seems to be this general beli...
New
Episode 250 of Thinking Elixir. News includes EEF board elections with voting beginning May 9th, Gleam v1.10.0 enhancing security with SB...
New
A new Rust blog post/announcement has been posted!
Get the full details here: crates.io security incident: improperly stored session co...
New
Episode 248 of Thinking Elixir. News includes a new Elixir case study about Cyanview’s camera shading technology used at major events lik...
New
A new Django blog post/announcement has been posted!
New
HOT IN Security THIS YEAR!
Ars chats with law philosopher Scott Shapiro about his new book, Fancy Bear Goes Phishing.
New
The Backbone of Cybersecurity: Hardware Security Modules | join.tech Blog.
Discover how Hardware Security Modules (HSMs) provide robust ...
New
Microsoft CEO Satya Nadella is now personally responsible for security flaws.
New
Open source maintainers underpaid and going gray.
AI-coded contributions? Most would rather skip the bot’s work
New
A recent security incident involving Dropbox Sign - Dropbox Sign.
Information on a security incident involving Dropbox Sign.
New
Decoding US Government Plans to Shift the Software Security Burden.
US government officials discussed plans on how to incentivize securi...
New
New
GitHub - orhun/flawz: A Terminal UI for browsing security vulnerabilities (CVEs).
A Terminal UI for browsing security vulnerabilities (C...
New
A new Ruby blog post/announcement has been posted!
Get the full details here: https://www.ruby-lang.org/en/news/2025/02/26/security-adv...
New
Chair: Addressing BGP flaws will “help make our Internet routing more secure.”
New
It is the first time I saw BSOD in a mass scale.
New
GitHub - TzuHuanTai/RaspberryPi_WebRTC: Native WebRTC uses v4l2 hardware h264 and software openh264 encoder for live streaming on Raspber...
New
New Zealand Company’s ‘Impossible-to-Hack’ Security Turns Out to Be No Security at All.
Teammate App had a publicly exposed database and...
New
How Apple’s new CPU cores can guess which code to run, and which data to load from memory. How those speculative techniques can be exploi...
New
GitHub - skerkour/black-hat-rust: Applied offensive security with Rust - https://kerkour.com/black-hat-rust.
Applied offensive security...
New
HOT IN Security THE LAST THREE YEARS!
Raspberry Pi security alarm — the basics.
In November last year — I started building a DIY security alarm system, using a Raspberry Pi a...
New
Process injection: breaking all macOS security layers with a single vulnerability.
If you have created a new macOS app with Xcode 13.2, ...
New
A new Rust blog post/announcement has been posted!
Get the full details here: Security advisories for Cargo (CVE-2022-36113, CVE-2022-3...
New
Episode 173 of Thinking Elixir. We delve into the tricky world of cybersecurity with our guest, Michael Lubas. We touch on the widely-dis...
New
A jargon-busting guide to the key concepts, terminology, and technologies of cybersecurity. Perfect for anyone planning or implementing a...
New
The encrypted app will refuse to comply with the Online Safety Bill if required to scan messages.
New
A new Rust blog post/announcement has been posted!
Get the full details here: Security advisory for Cargo (CVE-2022-46176) | Rust Blog
New
A new Django blog post/announcement has been posted!
Get the full details here: Django security releases issued: 4.0.7 and 3.2.15 | Web...
New
A new Rust blog post/announcement has been posted!
Get the full details here: Security advisory: malicious crate rustdecimal | Rust Blog
New
It’s important to learn safe coding practices. As developers, we want people to love our products and happily pay to use them. We also wa...
New
Users of some models of iPhone, iPad and Mac are being urged to run “important” security update.
New
A new Rust blog post/announcement has been posted!
Get the full details here: Security advisory for Cargo (CVE-2023-38497) | Rust Blog
New
Objective-See: Tools.
Free, open-source tools to protect your Mac
New
Securing our apps is our responsibility as developers. We are the custodians and the guardians of our user’s data. We met up again with M...
New
A new Django blog post/announcement has been posted!
Get the full details here: Django security releases issued: 4.0.6 and 3.2.14 | Web...
New
HOT IN Security THIS Over 3 Years!
2020 has seen a significant uptick in the number of companies looking at adding Digital Wallets and tokenization to their offerings. On o...
New
This past weekend saw the latest competition take place and the newest iPhone, the iPhone 13 Pro running the latest and fully patched ver...
New
Things like smart speakers (such Amazon Alexa), smart TVs or other devices with built in microphones, cameras or with other features that...
New
Cybersecurity leaders discuss business resiliency and identity challenges during a session at VMworld 2020.
https://www.techrepublic.co...
New
Following this news: https://forum.devtalk.com/t/silver-sparrow-new-malware-found-on-30k-macs-has-security-pros-stumped/7241 just wondere...
New
I had a bit of a mini-adventure following Sobelow’s advice on adding a CSP to a Phoenix App. If you want to follow along, or want to add ...
New
Just discovered this:
Wireshark is the world’s foremost and widely-used network protocol analyzer. It lets you see what’s happening on...
New
A new PostgreSQL blog post/announcement has been posted!
Get the full details here: PostgreSQL: PostgreSQL JDBC 42.3.2/42.2.25 Security...
New
We engineered a wearable microphone jammer that is capable of disabling microphones in its user’s surroundings, including hidden micropho...
New
Cyber-criminals have your web applications in their crosshairs. They exploit common security mistakes in your web application to steal us...
New
Computer security is a complex issue. But you don’t have to be an expert in all the esoteric details to prevent many common attacks. Atta...
New
TLDR
Hacking 30 Mobile Apps and their APIs with consent of some of the major providers in the area.
100% success rate in hacking the AP...
New
A new Rust blog post/announcement has been posted!
Get the full details here: Security advisory for the regex crate (CVE-2022-24713) | ...
New
For those that are interested, Snyk (developer security tool) announced support for Elixir earlier this week:
Just thought I’d pass it...
New
In episode 81 of Thinking Elixir, we talk with Digit and Quinn Wilton about the Burrito project. It wraps up Elixir to a single binary, e...
New
Security
Classification:
Topic
Forum Category:
General
Threads:
211
Posts:
241
"Our portal about all things security related."
- Follow
- Join
- Shape
the conversation
Portal Stewards
Latest Security Jobs
Featured Security Book
Latest Security Learning Resources
Sanitizing HTML with HtmlSanitizeEx - ElixirCasts
Backend Learning ResourcesMaking Sense of Cybersecurity (Manning)
Backend Learning ResourcesCyber Security Career Guide (Manning)
Backend Learning ResourcesSecure Your Node.js Web Application (PragProg)
General Learning ResourcesPractical Security (PragProg)
General Learning ResourcesSecurity Events (WIP)
Get money off!
The Pragmatic Bookshelf
35% off any eBook
Manning Publications
45% off any item
The Pragmatic Studio
20% off any course
Simply use coupon code "devtalk.com" at checkout. Where applicable this coupon can be used for an many items and as many times as you like!
Filter by Type:
My Saved Portals
-
None saved yet
Similar Portals
Devtalk Sponsors
Practical resources that improve the lives of professional developers.
We build trusted fault-tolerant systems that scale to billions of users.
Develop your skills with books, videos, and courses.
Catch errors, track performance, monitor hosts and more.
Enabling companies to succeed by building software people love.
Courses that'll move you from confusion to "Aha, now I get it!"