Microsoft has released a security advisory about a remote code execution vulnerabilities affecting all currently supported versions of Windows and Windows Server operating systems.

Mimikatz is a famous post-exploitation tool written in C by Benjamin Delpy: it allows a local attacker to dump secrets from memory exploiting Windows single sign-on functionality.

Valerio Mulas published an interesting analysis about the security of Android-based Smart TVs.

The Signal protocol is provides end-to-end encryption for instant messaging in WhatsApp, Wire, and Facebook Messenger among many others, serving well over 1 billion active users.

Since Windows 8, Microsoft has moved to a new commercial strategy: in addition with traditional selling of OS licenses, started got revenues from searches, apps and games.
But to do this, MS has started the collection of “telemetry” data, considered by many users as privacy-relevant.

Security firms inadvertently leaked info about a 0-Day ‘wormable’ vulnerability found in the SMBv3 protocol.

Many processors made by Intel are vulnerable to a new type of attack named Load Value Injection.

Do you need a secure and private messenger? You shouldn’t be use Telegram!

In 2008, a team of students and researchers from Princeton University, Wind River Systems and the Electronic Frontier Foundation published a research paper [3] examining the phenomena of computer memory remanence.
That paper has confirmed what had long been theorized by computer security practitioners: the volatile memory of computer systems is less volatile than expected.

A research team has recently discovered a new attack method that enables remote users to interact with voice-controlled device using ultrasonic waves transmitted through (for example) the surface on which is placed the target device.