Hot in Security:
Latest Security Threads
People tend to put a lot of trust into their phones. Those devices have access to no end of se […]
New
Many SaaS platforms need to run customer code securely and fast. Rather than building container infrastructure from scratch, you can use ...
New
Libxml2, an XML parser and toolkit, is an almost perfect example of the successes and failures […]
New
Episode 258 of Thinking Elixir. News includes the first CVE released under EEF’s new CNA program for an Erlang zip traversal vulnerabilit...
New
A new PostgreSQL blog post/announcement has been posted!
Get the full details here: PostgreSQL: PostgreSQL JDBC 42.7.7 Security update ...
New
Technology, Innovation and Great Power Competition is an international policy class at Stanford (taught by me, Eric Volmar and Joe Felter...
New
A new Django blog post/announcement has been posted!
Get the full details here: Django security releases issued: 5.2.2, 5.1.10, and 4.2...
New
A new Go blog post/announcement has been posted!
Get the full details here: Go Cryptography Security Audit - The Go Programming Language
New
A new Django blog post/announcement has been posted!
New
This report highlights a rarely-discussed but crucially important attack surface: security vendors themselves.
New
HOT IN Security THIS WEEK!
People tend to put a lot of trust into their phones. Those devices have access to no end of se […]
New
HOT IN Security THIS MONTH!
Many SaaS platforms need to run customer code securely and fast. Rather than building container infrastructure from scratch, you can use ...
New
HOT IN Security THIS YEAR!
Open source maintainers underpaid and going gray.
AI-coded contributions? Most would rather skip the bot’s work
New
A new Ruby blog post/announcement has been posted!
Get the full details here: https://www.ruby-lang.org/en/news/2025/02/26/security-adv...
New
A new PostgreSQL blog post/announcement has been posted!
Get the full details here: PostgreSQL: PostgreSQL JDBC 42.7.7 Security update ...
New
A new Django blog post/announcement has been posted!
New
A new Go blog post/announcement has been posted!
Get the full details here: Go Cryptography Security Audit - The Go Programming Language
New
Episode 250 of Thinking Elixir. News includes EEF board elections with voting beginning May 9th, Gleam v1.10.0 enhancing security with SB...
New
New Zealand Company’s ‘Impossible-to-Hack’ Security Turns Out to Be No Security at All.
Teammate App had a publicly exposed database and...
New
I believe this topic is not really well discussed online – and often with multiple misunderstandings. There seems to be this general beli...
New
A new Rust blog post/announcement has been posted!
Get the full details here: crates.io security incident: improperly stored session co...
New
Episode 245 of Thinking Elixir. News includes a new library called phoenix_sync for real-time sync in Postgres-backed Phoenix application...
New
A new Django blog post/announcement has been posted!
New
This report highlights a rarely-discussed but crucially important attack surface: security vendors themselves.
New
Episode 251 of Thinking Elixir. News includes a critical Unauthenticated Remote Code Execution vulnerability in Erlang/OTP SSH, José Vali...
New
A new Arch Linux blog post/announcement has been posted!
Get the full details here: Arch Linux - News: Critical rsync security release ...
New
A new Django blog post/announcement has been posted!
Get the full details here: Django security releases issued: 5.2.2, 5.1.10, and 4.2...
New
HOT IN Security THE LAST THREE YEARS!
Raspberry Pi security alarm — the basics.
In November last year — I started building a DIY security alarm system, using a Raspberry Pi a...
New
Process injection: breaking all macOS security layers with a single vulnerability.
If you have created a new macOS app with Xcode 13.2, ...
New
Episode 173 of Thinking Elixir. We delve into the tricky world of cybersecurity with our guest, Michael Lubas. We touch on the widely-dis...
New
A new Rust blog post/announcement has been posted!
Get the full details here: Security advisories for Cargo (CVE-2022-36113, CVE-2022-3...
New
A jargon-busting guide to the key concepts, terminology, and technologies of cybersecurity. Perfect for anyone planning or implementing a...
New
Ars chats with law philosopher Scott Shapiro about his new book, Fancy Bear Goes Phishing.
New
The encrypted app will refuse to comply with the Online Safety Bill if required to scan messages.
New
It’s important to learn safe coding practices. As developers, we want people to love our products and happily pay to use them. We also wa...
New
A new Rust blog post/announcement has been posted!
Get the full details here: Security advisory for Cargo (CVE-2022-46176) | Rust Blog
New
A new Rust blog post/announcement has been posted!
Get the full details here: Security advisory for Cargo (CVE-2023-38497) | Rust Blog
New
Users of some models of iPhone, iPad and Mac are being urged to run “important” security update.
New
A new Django blog post/announcement has been posted!
Get the full details here: Django security releases issued: 4.0.7 and 3.2.15 | Web...
New
Securing our apps is our responsibility as developers. We are the custodians and the guardians of our user’s data. We met up again with M...
New
The Backbone of Cybersecurity: Hardware Security Modules | join.tech Blog.
Discover how Hardware Security Modules (HSMs) provide robust ...
New
Objective-See: Tools.
Free, open-source tools to protect your Mac
New
HOT IN Security THIS Over 3 Years!
2020 has seen a significant uptick in the number of companies looking at adding Digital Wallets and tokenization to their offerings. On o...
New
This past weekend saw the latest competition take place and the newest iPhone, the iPhone 13 Pro running the latest and fully patched ver...
New
Things like smart speakers (such Amazon Alexa), smart TVs or other devices with built in microphones, cameras or with other features that...
New
Cybersecurity leaders discuss business resiliency and identity challenges during a session at VMworld 2020.
https://www.techrepublic.co...
New
Following this news: https://forum.devtalk.com/t/silver-sparrow-new-malware-found-on-30k-macs-has-security-pros-stumped/7241 just wondere...
New
Cyber-criminals have your web applications in their crosshairs. They exploit common security mistakes in your web application to steal us...
New
Just discovered this:
Wireshark is the world’s foremost and widely-used network protocol analyzer. It lets you see what’s happening on...
New
We engineered a wearable microphone jammer that is capable of disabling microphones in its user’s surroundings, including hidden micropho...
New
I had a bit of a mini-adventure following Sobelow’s advice on adding a CSP to a Phoenix App. If you want to follow along, or want to add ...
New
Computer security is a complex issue. But you don’t have to be an expert in all the esoteric details to prevent many common attacks. Atta...
New
A new PostgreSQL blog post/announcement has been posted!
Get the full details here: PostgreSQL: PostgreSQL JDBC 42.3.2/42.2.25 Security...
New
For those that are interested, Snyk (developer security tool) announced support for Elixir earlier this week:
Just thought I’d pass it...
New
TLDR
Hacking 30 Mobile Apps and their APIs with consent of some of the major providers in the area.
100% success rate in hacking the AP...
New
A new Rust blog post/announcement has been posted!
Get the full details here: Security advisory for the regex crate (CVE-2022-24713) | ...
New
In episode 81 of Thinking Elixir, we talk with Digit and Quinn Wilton about the Burrito project. It wraps up Elixir to a single binary, e...
New
Security
Classification:
Topic
Forum Category:
General
Threads:
220
Posts:
247
"Our portal about all things security related."
- Follow
- Join
- Shape
the conversation
Portal Stewards
Latest Security Jobs
Featured Security Book
Latest Security Learning Resources
Sanitizing HTML with HtmlSanitizeEx - ElixirCasts
Backend Learning ResourcesMaking Sense of Cybersecurity (Manning)
Backend Learning ResourcesCyber Security Career Guide (Manning)
Backend Learning ResourcesSecure Your Node.js Web Application (PragProg)
General Learning ResourcesPractical Security (PragProg)
General Learning ResourcesSecurity Events (WIP)
Get money off!
The Pragmatic Bookshelf
35% off any eBook
Manning Publications
45% off any item
The Pragmatic Studio
20% off any course
Simply use coupon code "devtalk.com" at checkout. Where applicable this coupon can be used for an many items and as many times as you like!
Filter by Type:
My Saved Portals
-
None saved yet
Similar Portals
Devtalk Sponsors
Practical resources that improve the lives of professional developers.
We build trusted fault-tolerant systems that scale to billions of users.
Real-time error tracking, performance insights, and observability for devs.
Develop your skills with books, videos, and courses.
Catch errors, track performance, monitor hosts and more.
Enabling companies to succeed by building software people love.
Courses that'll move you from confusion to "Aha, now I get it!"