[ Attack ]  State-sponsored hackers stole data from a half-billion accounts, @ yahoo confirms https://threatpost.com/500-million-yahoo-accounts-stolen-by-state-sponsored-hackers/120818/ via @ threatpost

[ Browser ]  Just compiled a list of sensitive Windows APIs which MS Edge marks as invalid indirect call targets for CFG: https://gist.github.com/fdfalcon/ba8cbd042752c915ef2e1159917a33f4

[ Crypto ]  tl;dr video of the sweet32 attack: On the Practical (In-)Security of 64-bit Block Ciphers https://www.cryptologie.net/article/373/tldr-of-the-sweet32-paper-on-the-practical-in-security-of-64-bit-block-ciphers/

[ Hardware ]  Open source CANBadger for car hacking (but gee, what else has a CANBus ?) here: https://gutenshit.github.io/CANBadger/ https://twitter.com/k8em0/status/778911155154776064

[ Linux ]  Our #KASLR bypass #CCS16 paper online already https://gruss.cc/files/prefetch.pdf @ anders_fogh @ BloodyTangerine @ mlqxyz… https://twitter.com/i/web/status/778944479529021440

[ macOS ]  https://blog.flanker017.me/cve-2016-4697-buffer-overrun-in-macos-kernel-driver/ writeup for CVE-2016-4697 credited in macOS 10.12 bulletin

[ macOS ]  OS X-KVM : Running Mac OS X El Capitan on KVM and QEMU : https://github.com/kholia/OSX-KVM https://t.co/XEbGKzh9gM

[ Malware ]  Malware Evades Detection with Novel Technique https://threatpost.com/malware-evades-detection-with-novel-technique/120787/

[ NetworkDevice ]  Porting an exploit to a Netgear Router : http://www.contextis.com/resources/blog/porting-exploits-netgear-wnr2200/ https://t.co/eXQJnGP7jo

[ OpenSourceProject ]  OpenSSL Security Advisory [22 Sep 2016] : https://www.openssl.org/news/secadv/20160922.txt

[ Popular Software ]  VMWare vprintproxy.exe heap buffer overflow TrueType font https://bugs.chromium.org/p/project-zero/issues/detail?id=849

[ Tools ]  SSH-Weak-DH - SSH Weak Diffie-Hellman Group Identification Tool http://www.kitploit.com/2016/09/ssh-weak-dh-ssh-weak-diffie-hellman.html

[ Web Security ]  .@ Drupal Patches Three Vulnerabilities in Core Engine: https://threatpost.com/drupal-patches-three-vulnerabilities-in-core-engine/120816/ via @ threatpost

[ Windows ]  #Windows #Exploit interesting papers https://github.com/enddo/awesome-windows-exploitation/blob/master/README.md

[ WirelessSecurity ]  RF Signals - Automating the #Reverse Engineering Process https://github.com/tresacton/dspectrum http://ethicalhacker.io/post/150536211195/rf-signals-automating-the-reverse-engineering #SDR https://t.co/z4uKoWCJg9