The /r/netsec Monthly Discussion Thread - April 2019 Security News & Discussion

---

• The /r/netsec Monthly Discussion Thread - April 2019
• Security alert: pipdig insecure, DDoSing competitors
• One of our users requested a behind-the-scenes look at the ProtonVPN team in action. Our team answered.
• Exploiting signed bootloaders to circumvent UEFI Secure Boot
• What you see is not what you get: when homographs attack (full-chain homograph attack in Signal, Telegram and Tor Browser)
• GitHub - righettod/poc-graphql: Research on GraphQL from an AppSec point of view.

The /r/netsec Monthly Discussion Thread - April 2019 Posted: 31 Mar 2019 09:36 PM PDT Overview Questions regarding netsec and discussion related directly to netsec are welcome here. Rules & Guidelines Always maintain civil discourse. Be awesome to one another - moderator intervention will occur if necessary. Avoid NSFW content unless absolutely necessary. If used, mark it as being NSFW. If left unmarked, the comment will be removed entirely. If linking to classified content, mark it as such. If left unmarked, the comment will be removed entirely. Avoid use of memes. If you have something to say, say it with real words. All discussions and questions should directly relate to netsec. No tech support is to be requested or provided on /r/netsec. As always, the content & discussion guidelines should also be observed on /r/netsec. Feedback Feedback and suggestions are welcome, but don't post it here. Please send it to the moderator inbox. submitted by /u/AutoModerator [link] [comments]

Security alert: pipdig insecure, DDoSing competitors Posted: 01 Apr 2019 02:25 AM PDT submitted by /u/hacktvist [link] [comments]

One of our users requested a behind-the-scenes look at the ProtonVPN team in action. Our team answered. Posted: 01 Apr 2019 11:13 AM PDT submitted by /u/ProtonMail [link] [comments]

Exploiting signed bootloaders to circumvent UEFI Secure Boot Posted: 01 Apr 2019 03:27 AM PDT submitted by /u/ValdikSS [link] [comments]

What you see is not what you get: when homographs attack (full-chain homograph attack in Signal, Telegram and Tor Browser) Posted: 01 Apr 2019 08:43 AM PDT submitted by /u/juliocesarfort [link] [comments]

GitHub - righettod/poc-graphql: Research on GraphQL from an AppSec point of view. Posted: 01 Apr 2019 04:52 AM PDT submitted by /u/Mempodipper [link] [comments]

You are subscribed to email updates from /r/netsec - Information Security News & Discussion. To stop receiving these emails, you may unsubscribe now.	Email delivery powered by Google
Google, 1600 Amphitheatre Parkway, Mountain View, CA 94043, United States