2018-10-03 | KRACK researchers are back, NIST’s Risk management framework v2, and Not Kylo Ren

Wednesday, October 3

TOP STORY

• Auditing KRACK attacks on Wi-Fi. Follow up research from the team that wrote about reinstallation attacks in WPA2 last year.

TWEET OF THE DAY

• This malware imports the entire zlib library to compress some data with the flag Z_NO_COMPRESSION. - @MalwareTechBlog

OTHER ARTICLES WE’RE READING

• NIST’s Risk Management Framework v2 updates in and comments open til Oct 31.

• Show me, says Rep. Speier. The California lawmaker says she wants a demo of election hacking. Funny, that just happened.

• Time to disconnect Facebook Connect?

• Who would do such a thing to Star Wars? New paper says social media troll accounts targeted The Last Jedi and poured on the negative spin

ABOUT ZERO DAILY

Zero Daily is a daily newsletter that highlights application security, bug bounty, and hacker focused topics. The content is curated with love by @luketucker and brought to you by HackerOne.

Friends don’t keep good things to themselves - forward this to your homies and co-workers. BTW, want to see who runs bug bounties?

Have a news tip / story to highlight? We’d love to hear about it. Email: zerodaily@hackerone.com

For the time being I would still keep him dual-hatted, given that there's nothing equal to NSA when it comes to intelligence gathering, signals, cyber and some other domains.

CIA Director David Petraeus on splitting Cyber Command from the NSA