Week 3 in Information #Security, 2019

Week 3 in Information Security, 2019 35-year-old vulnerability has been discovered in the SCP file transfer utility. According to the advisory impact section, “Malicious scp server can write arbitrary files to scp target directory, change the target directory permissions and to spoof the client output.”https://sintonen.fi/advisories/scp-client-multiple-vulnerabilities.txt Multiple U.S. government websites SSL certificates have expired and some sites are inaccessible due to properly used HTTP Strict Transport Security. There’s nobody there to renew them due to a government shutdown.https://news.netcraft.com/archives/2019/01/10/gov-security-falters-during-u-s-shutdown.html Researchers found a new kind of Windows malware using encrypted messaging app Telegram…

Read More

Is #Security+ even worth anything to HR/recruiters in the #Security feild?

Is Security+ even worth anything to HR/recruiters in the security feild? It seems like I kinda wasted my time and money on this thing. I don’t see the Sec+ anywhere under recommend skills for security jobs in both red and blue team all they want is the CISSP (even for junior positions). I’m a student and I applied for 30+ security internships and got rejected on all of them (not even a interview call). And yes I have a good gpa, clean resume, IT experience, and security projects under my…

Read More