Multiple 0days in MacOS discovered and used in a red team exercise at Dropbox Security News & Discussion

---

• Multiple 0days in MacOS discovered and used in a red team exercise at Dropbox
• Signature bypass vulnerability in library used for online German ID card authentication (allows impersonating any citizen)
• Web Browser Address Bar Spoofing
• Mini-Internet using LXC
• Reverse Engineering Pokemon Go Plus
• Security recommendations for hosting on AWS
• out-of-tree kernel {module, exploit} development tool

Multiple 0days in MacOS discovered and used in a red team exercise at Dropbox Posted: 21 Nov 2018 05:39 AM PST submitted by /u/Glitch-is [link] [comments]

Signature bypass vulnerability in library used for online German ID card authentication (allows impersonating any citizen) Posted: 21 Nov 2018 03:39 AM PST submitted by /u/0x9000 [link] [comments]

Web Browser Address Bar Spoofing Posted: 20 Nov 2018 10:46 PM PST submitted by /u/ziyahanalbeniz [link] [comments]

Mini-Internet using LXC Posted: 21 Nov 2018 04:14 AM PST submitted by /u/mariuz [link] [comments]

Reverse Engineering Pokemon Go Plus Posted: 21 Nov 2018 02:14 PM PST submitted by /u/cbolat [link] [comments]

Security recommendations for hosting on AWS Posted: 21 Nov 2018 01:38 PM PST submitted by /u/iamcoolc [link] [comments]

out-of-tree kernel {module, exploit} development tool Posted: 20 Nov 2018 08:58 PM PST submitted by /u/jollheef [link] [comments]

You are subscribed to email updates from /r/netsec - Information Security News & Discussion. To stop receiving these emails, you may unsubscribe now.	Email delivery powered by Google
Google, 1600 Amphitheatre Parkway, Mountain View, CA 94043, United States