This site uses cookies to improve your experience. By viewing our content, you are accepting the use of cookies. To help us insure we adhere to various privacy regulations, please select your country/region of residence. If you do not select a country we will assume you are from the United States. View our privacy policy and terms of use.

Remove tag do-not-call
Remove Events Remove Government Remove Workshop Related Topics
Libraries Education Mining Manufacturing Military Energy and Utilities Computer and Electronics Security Financial Services Insurance More Related Topics >
article thumbnail

The JavaScript Supply Chain Paradox: SRI, CSP and Trust in Third Party Libraries

Troy Hunt

FEBRUARY 11, 2018

This tag was in the source code over at secure.donaldjtrump.com/donate-homepage yet it was pulling script directly off Igor Escobar's GitHub repository for the project. What could you do if you could modify that script and subsequently cause your own arbitrary JavaScript to execute on Trump's website? It was the US Courts too.

Libraries 97
Libraries Risk Government IT 97
article thumbnail

Project Svalbard: The Future of Have I Been Pwned

Troy Hunt

JUNE 10, 2019

All of these things combined – the prevalence of breaches, the analysis I was doing and the scale of Adobe – got me thinking: I wonder how many people know? Do they realise they were breached? Do they realise they were breached? Do they realise how many times they were breached? I have work to do, thank you guys.

Data breaches 111
Data breaches Passwords IT Mining 111
Insiders

Sign Up for our Newsletter

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

Trending Sources

article thumbnail

Is India's Aadhaar System Really "Hack-Proof"? Assessing a Publicly Observable Security Posture

Troy Hunt

JANUARY 10, 2018

It's operating in an era of increasingly large repositories of personal data held by both private companies and governments alike. Many people are doing that just now, including myself regarding that "hack-proof" claim. But claiming the service is "hack-proof", that's something I definitely have an issue with.

Security 111
Security Government Encryption Risk 111
article thumbnail

The Hacker Mind Podcast: Hacking Diversity

ForAllSecure

APRIL 7, 2021

million InfoSec professionals, as of early 2021 How can that be part of the problem lies in the training pipeline, we really have to do a much better job with that. What organization wouldn't call her, at least for an interview. Tennisha: In my mind I'm saying, why aren't they calling me back right. Apparently plenty.

Cybersecurity 40
Cybersecurity Information Security IT Security 40
article thumbnail

The Hacker Mind Podcast: Hacking Diversity

ForAllSecure

APRIL 7, 2021

million InfoSec professionals, as of early 2021 How can that be part of the problem lies in the training pipeline, we really have to do a much better job with that. What organization wouldn't call her, at least for an interview. Tennisha: In my mind I'm saying, why aren't they calling me back right. Apparently plenty.

Cybersecurity 40
Cybersecurity Information Security IT Security 40
This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

 

Stay Connected

Join 55,000+ Insiders by signing up for our newsletter

About
Webinars
Awards
About
Editions
Webinars
Awards
Editions
Topics
Twitter
Powered by Aggregage | Terms and Conditions | Your California Rights and Privacy Policy
© Aggregage 2024