Security-Portal.cz je internetový portál zaměřený na počítačovou bezpečnost, hacking, anonymitu, počítačové sítě, programování, šifrování, exploity, Linux a BSD systémy. Provozuje spoustu zajímavých služeb a podporuje příznivce v zajímavých projektech.

Kategorie

Two Chinese APT Groups Ramp Up Cyber Espionage Against ASEAN Countries

The Hacker News - 27 Březen, 2024 - 05:20
Two China-linked advanced persistent threat (APT) groups have been observed targeting entities and member countries affiliated with the Association of Southeast Asian Nations (ASEAN) as part of a cyber espionage campaign over the past three months. This includes the threat actor known as Mustang Panda, which has been recently linked to cyber attacks against Myanmar as well as
Kategorie: Hacking & Security

Two Chinese APT Groups Ramp Up Cyber Espionage Against ASEAN Countries

The Hacker News - 27 Březen, 2024 - 05:20
Two China-linked advanced persistent threat (APT) groups have been observed targeting entities and member countries affiliated with the Association of Southeast Asian Nations (ASEAN) as part of a cyber espionage campaign over the past three months. This includes the threat actor known as Mustang Panda, which has been recently linked to cyber attacks against Myanmar as well as Newsroomhttp://www.blogger.com/profile/[email protected]
Kategorie: Hacking & Security

Sketchy NuGet Package Likely Linked to Industrial Espionage Targets Developers

The Hacker News - 26 Březen, 2024 - 17:54
Threat hunters have identified a suspicious package in the NuGet package manager that's likely designed to target developers working with tools made by a Chinese firm that specializes in industrial- and digital equipment manufacturing. The package in question is SqzrFramework480, which ReversingLabs said was first published on January 24, 2024. It has been downloaded 
Kategorie: Hacking & Security

Sketchy NuGet Package Likely Linked to Industrial Espionage Targets Developers

The Hacker News - 26 Březen, 2024 - 17:54
Threat hunters have identified a suspicious package in the NuGet package manager that's likely designed to target developers working with tools made by a Chinese firm that specializes in industrial- and digital equipment manufacturing. The package in question is SqzrFramework480, which ReversingLabs said was first published on January 24, 2024. It has been downloaded Newsroomhttp://www.blogger.com/profile/[email protected]
Kategorie: Hacking & Security

Virus Melissa před 25 lety ochromil internet. Lákal na nahotinky, šířil se jako lavina

Zive.cz - bezpečnost - 26 Březen, 2024 - 16:15
Přesně před 25 lety, 26. března 1999, vypustil David L. Smith do té doby nejrychleji se šířící počítačový virus Melissa. Do světa si našel cestu přes usenetovou diskuzní skupinu alt.sex, kam Smith publikoval nevinně vyhlížející soubor list.doc. Měl obsahovat seznam s přístupovými údaji k 80 ...
Kategorie: Hacking & Security

U.S. Charges 7 Chinese Nationals in Major 14-Year Cyber Espionage Operation

The Hacker News - 26 Březen, 2024 - 13:06
The U.S. Department of Justice (DoJ) on Monday unsealed indictments against seven Chinese nationals for their involvement in a hacking group that targeted U.S. and foreign critics, journalists, businesses, and political officials for about 14 years. The defendants include Ni Gaobin (倪高彬), Weng Ming (翁明), Cheng Feng (程锋), Peng Yaowen (彭耀文), Sun Xiaohui (孙小辉), Xiong Wang (熊旺), and Zhao Guangzong (
Kategorie: Hacking & Security

U.S. Charges 7 Chinese Nationals in Major 14-Year Cyber Espionage Operation

The Hacker News - 26 Březen, 2024 - 13:06
The U.S. Department of Justice (DoJ) on Monday unsealed indictments against seven Chinese nationals for their involvement in a hacking group that targeted U.S. and foreign critics, journalists, businesses, and political officials for about 14 years. The defendants include Ni Gaobin (倪高彬), Weng Ming (翁明), Cheng Feng (程锋), Peng Yaowen (彭耀文), Sun Xiaohui (孙小辉), Xiong Wang (熊旺), and Zhao Guangzong (Newsroomhttp://www.blogger.com/profile/[email protected]
Kategorie: Hacking & Security

Crafting Shields: Defending Minecraft Servers Against DDoS Attacks

The Hacker News - 26 Březen, 2024 - 12:29
Minecraft, with over 500 million registered users and 166 million monthly players, faces significant risks from distributed denial-of-service (DDoS) attacks, threatening server functionality, player experience, and the game’s reputation. Despite the prevalence of DDoS attacks on the game, the majority of incidents go unreported, leaving a gap in awareness and protection. This article explains
Kategorie: Hacking & Security

Crafting Shields: Defending Minecraft Servers Against DDoS Attacks

The Hacker News - 26 Březen, 2024 - 12:29
Minecraft, with over 500 million registered users and 166 million monthly players, faces significant risks from distributed denial-of-service (DDoS) attacks, threatening server functionality, player experience, and the game’s reputation. Despite the prevalence of DDoS attacks on the game, the majority of incidents go unreported, leaving a gap in awareness and protection. This article explains The Hacker Newshttp://www.blogger.com/profile/[email protected]
Kategorie: Hacking & Security

Highlights & Takeaways from SCALE 21x: A Community Event Beyond Linux

LinuxSecurity.com - 26 Březen, 2024 - 12:00
The Southern California Linux Expo (SCALE) 21x is a massive community-run open-source and free software conference. This year's event showcased various workshops, presentations, and networking events.
Kategorie: Hacking & Security

Ubuntu LTS Gets 12 Years of Legacy Support: An Analysis for Security Practitioners

LinuxSecurity.com - 26 Březen, 2024 - 12:00
Canonical has announced extending Ubuntu's long-term support (LTS) to 12 years, providing security coverage from the initial release. While regular LTS releases receive 5 years of standard security updates, subscribing to Ubuntu Pro adds 5 years.
Kategorie: Hacking & Security

U.S. Sanctions 3 Cryptocurrency Exchanges for Helping Russia Evade Sanctions

The Hacker News - 26 Březen, 2024 - 09:31
The U.S. Department of the Treasury's Office of Foreign Assets Control (OFAC) sanctioned three cryptocurrency exchanges for offering services used to evade economic restrictions imposed on Russia following its invasion of Ukraine in early 2022. This includes Bitpapa IC FZC LLC, Crypto Explorer DMCC (AWEX), and Obshchestvo S Ogranichennoy Otvetstvennostyu Tsentr Obrabotki Elektronnykh Platezhey (
Kategorie: Hacking & Security

U.S. Sanctions 3 Cryptocurrency Exchanges for Helping Russia Evade Sanctions

The Hacker News - 26 Březen, 2024 - 09:31
The U.S. Department of the Treasury's Office of Foreign Assets Control (OFAC) sanctioned three cryptocurrency exchanges for offering services used to evade economic restrictions imposed on Russia following its invasion of Ukraine in early 2022. This includes Bitpapa IC FZC LLC, Crypto Explorer DMCC (AWEX), and Obshchestvo S Ogranichennoy Otvetstvennostyu Tsentr Obrabotki Elektronnykh Platezhey (Newsroomhttp://www.blogger.com/profile/[email protected]
Kategorie: Hacking & Security

CISA Alerts on Active Exploitation of Flaws in Fortinet, Ivanti, and Nice Products

The Hacker News - 26 Březen, 2024 - 05:54
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Monday placed three security flaws to its Known Exploited Vulnerabilities (KEV) catalog, citing evidence of active exploitation. The vulnerabilities added are as follows - CVE-2023-48788 (CVSS score: 9.3) - Fortinet FortiClient EMS SQL Injection Vulnerability CVE-2021-44529 (CVSS score: 9.8) - Ivanti
Kategorie: Hacking & Security

CISA Alerts on Active Exploitation of Flaws in Fortinet, Ivanti, and Nice Products

The Hacker News - 26 Březen, 2024 - 05:54
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Monday placed three security flaws to its Known Exploited Vulnerabilities (KEV) catalog, citing evidence of active exploitation. The vulnerabilities added are as follows - CVE-2023-48788 (CVSS score: 9.3) - Fortinet FortiClient EMS SQL Injection Vulnerability CVE-2021-44529 (CVSS score: 9.8) - Ivanti Newsroomhttp://www.blogger.com/profile/[email protected]
Kategorie: Hacking & Security

Linux Admins Beware: Malvertising Campaign Exploiting PuTTY Puts Security at Risk

LinuxSecurity.com - 25 Březen, 2024 - 16:00
A malvertising campaign has been discovered that deploys a fake PuTTY client to deliver the Rhadamanthys stealer, a dangerous malware . The attackers exploit the trust placed in PuTTY as a widely used SSH and Telnet client by presenting a counterfeit website through malicious ads that appear at the top of Google search results. Let's examine this significant security threat targeting Linux admins more deeply, emphasizing the need for heightened vigilance and robust Linux security measures.
Kategorie: Hacking & Security

Společnost Boeing opustí nejvyšší vedení. Když v trupu chybí šrouby a za letu upadne kus letadla, musí přijít změny

Zive.cz - bezpečnost - 25 Březen, 2024 - 14:30
Letecký průmysl je extrémně citlivý na bezpečnost, a tak když začnou za letu odpadávat z trupu panely a přistávají lidem na zahradách, musí se stát něco velkého. Podle BBC se to stalo právě teď. Nejvyšší vedení společnosti Boeing z posledních událostí vyvodilo důsledky: CEO společnosti Dave ...
Kategorie: Hacking & Security

Hackers Hijack GitHub Accounts in Supply Chain Attack Affecting Top-gg and Others

The Hacker News - 25 Březen, 2024 - 12:58
Unidentified adversaries orchestrated a sophisticated attack campaign that has impacted several individual developers as well as the GitHub organization account associated with Top.gg, a Discord bot discovery site. "The threat actors used multiple TTPs in this attack, including account takeover via stolen browser cookies, contributing malicious code with verified commits, setting up a custom
Kategorie: Hacking & Security

Hackers Hijack GitHub Accounts in Supply Chain Attack Affecting Top-gg and Others

The Hacker News - 25 Březen, 2024 - 12:58
Unidentified adversaries orchestrated a sophisticated attack campaign that has impacted several individual developers as well as the GitHub organization account associated with Top.gg, a Discord bot discovery site. "The threat actors used multiple TTPs in this attack, including account takeover via stolen browser cookies, contributing malicious code with verified commits, setting up a custom Newsroomhttp://www.blogger.com/profile/[email protected]
Kategorie: Hacking & Security

Key Lesson from Microsoft’s Password Spray Hack: Secure Every Account

The Hacker News - 25 Březen, 2024 - 12:37
In January 2024, Microsoft discovered they’d been the victim of a hack orchestrated by Russian-state hackers Midnight Blizzard (sometimes known as Nobelium). The concerning detail about this case is how easy it was to breach the software giant. It wasn’t a highly technical hack that exploited a zero-day vulnerability – the hackers used a simple password spray attack to take control of
Kategorie: Hacking & Security
Syndikovat obsah