The Secure Edge: Daily Round-up of Infosec Blogs — Issue #8

Hola!!! Here is your fresh Today’s Newsletter packed with tons of informative things to keep you updated in the Information Security Industry and enhance knowledge! Have a Bright Day.

THOUGHTS THAT MATTER:

Keep it private until it’s done.
People love to ruin things.

Infosec Punch:

Advanced Error Based SQL Injection Exploitation — Manually — Yeah Hub — www.yeahhub.com
SQL Injection (aka Structured Query Language Injection) is the first step in the entry to exploiting or hacking websites. It is easily done and it is a great starting off point. SQLi is just basically injecting queries into a database or using queries to get authorization bypass as an administrator.

OWASP API Security Injection | ITSEC — itsec.ac.id
OWASP API Security Injection

What can a cyber criminal learn about you using your mobile number? | Proofpoint US — www.proofpoint.com
How often do you stop to think before you give out your phone number? Depending on who’s asking, it might not ever occur to you that, when you hand it over, you’re giving away the key to a huge amount of information about yourself. Information that could be dangerous in the wrong hands.

An Overview of Website Reinfection Vectors — blog.sucuri.net
The website security landscape is as complicated as it is treacherous. We often deal with clients who become reinfected over and over again. Once the attackers establish a foothold in an environment and recognize that a website is vulnerable, you can guarantee that they will be back to try to reinfect the website.

Dependency Confusion — Speaker Deck — speakerdeck.com
DAMNCON, the cyber conference. This will provide you with meaningful insights and the right knowledge for you to move to the next step. Speaker: Aditya Shende Topic: Dependency Confusion