Security-Portal.cz je internetový portál zaměřený na počítačovou bezpečnost, hacking, anonymitu, počítačové sítě, programování, šifrování, exploity, Linux a BSD systémy. Provozuje spoustu zajímavých služeb a podporuje příznivce v zajímavých projektech.

Kategorie

HellCat hackers go on a worldwide Jira hacking spree

Bleeping Computer - 23 min 34 sek zpět
Swiss global solutions provider Ascom has confirmed a cyberattack on its IT infrastructure as a hacker group known as Hellcat targets Jira servers worldwide using compromised credentials. [...]
Kategorie: Hacking & Security

Veeam and IBM Release Patches for High-Risk Flaws in Backup and AIX Systems

The Hacker News - 24 min 49 sek zpět
Veeam has released security updates to address a critical security flaw impacting its Backup & Replication software that could lead to remote code execution. The vulnerability, tracked as CVE-2025-23120, carries a CVSS score of 9.9 out of 10.0. It affects 12.3.0.310 and all earlier version 12 builds. "A vulnerability allowing remote code execution (RCE) by authenticated domain users," the Ravie Lakshmananhttp://www.blogger.com/profile/[email protected]
Kategorie: Hacking & Security

How to Protect Your Business from Cyber Threats: Mastering the Shared Responsibility Model

The Hacker News - 2 hodiny 42 min zpět
Cybersecurity isn't just another checkbox on your business agenda. It's a fundamental pillar of survival. As organizations increasingly migrate their operations to the cloud, understanding how to protect your digital assets becomes crucial. The shared responsibility model, exemplified through Microsoft 365's approach, offers a framework for comprehending and implementing effective cybersecurity [email protected]
Kategorie: Hacking & Security

Six Governments Likely Use Israeli Paragon Spyware to Hack IM Apps and Harvest Data

The Hacker News - 3 hodiny 11 min zpět
The governments of Australia, Canada, Cyprus, Denmark, Israel, and Singapore are likely customers of spyware developed by Israeli company Paragon Solutions, according to a new report from The Citizen Lab. Paragon, founded in 2019 by Ehud Barak and Ehud Schneorson, is the maker of a surveillance tool called Graphite that's capable of harvesting sensitive data from instant messaging applications Ravie Lakshmananhttp://www.blogger.com/profile/[email protected]
Kategorie: Hacking & Security

Why Continuous Compliance Monitoring Is Essential For IT Managed Service Providers

The Hacker News - 4 hodiny 7 min zpět
Regulatory compliance is no longer just a concern for large enterprises. Small and mid-sized businesses (SMBs) are increasingly subject to strict data protection and security regulations, such as HIPAA, PCI-DSS, CMMC, GDPR, and the FTC Safeguards Rule. However, many SMBs struggle to maintain compliance due to limited IT resources, evolving regulatory requirements, and complex security [email protected]
Kategorie: Hacking & Security

Why you’ll speak 20 languages by Christmas

Computerworld.com [Hacking News] - 4 hodiny 7 min zpět

I live in the future, at least as far as language translation technology is concerned. 

During the past couple of months, I’ve spent most of my time in Italy and Mexico. During all that time, I understood Italian and Spanish — thanks to the Live Translation feature of my Ray-Ban Meta glasses.

Announced in September, “Live Translation” is based on Meta’s Llama 3.2 AI model and is currently limited to US and Canada users enrolled in Meta’s Early Access Program. 

The feature translates audible French, Spanish, and Italian into audible English in the glasses and typed English on the app — and shows the wearer’s English translated into the selected language. 

When I first arrived at the Catania airport in Sicily, I turned on Live Translation by saying, “Hey, Meta: Start Live Translation.”

The first thing I heard using this feature was airport employees directing travelers. They spoke in Sicilian-accented Italian, but I heard: “European passport holders please enter this line; all others go here.” 

From that point on, I turned on Live Translation from time to time and was able to understand simple things people might be telling me. In a few cases, I translated my own words into Italian (first speaking in English, then reading the translation in the app in Italian).

It’s not perfect. It also translates English into English (and sometimes mistranslates English to English). It can fail to translate words spoken nearby. At other times, it will translate words spoken across the room when people are talking to each other, not to me. 

Ray-Ban Meta glasses also do another neat translation trick. While using Live AI, another Early Access feature, you can look at a sign in a foreign language and ask what it means in English, and it will speak the English translation. 

Despite the language glitches, this is a clear glimpse of the future for all of us — the very near future. 

Apple AirPods

Bloomberg reported on March 13 that Apple will add live language translation to iOS 19 for AirPod users. 

According to the report, the user’s AirPods capture foreign language speech and speak the English translation into the ears of the AirPod wearer. Then, when the user speaks English, the iPhone speaker plays the translation into the foreign language via Apple’s Translate app. 

The feature is expected to be announced at Apple’s Worldwide Developers Conference (WWDC) in June and released in the fall.

The languages to be supported have not been reported, but Apple’s Translate app supports 20. And Apple is by no means first to market with language translation earbuds. 

Google Pixel Buds

Google has included live translation through its Pixel Buds and Pixel Buds Pro earbuds since October 2017. 

The feature does what I described for the Apple AirPods: It delivers translated foreign-language speech through the Pixel Buds while outputting translated English words through the phone speaker. That’s what happens in Conversation Mode. When users switch to Transcribe Mode, they can get a live transcription of the translated foreign language, which is useful for listening to business presentations, attending speeches, or watching movies. 

The Pixel Buds’ language translation feature works via the excellent Google Translate app. In Conversation Mode, it supports more than 100 languages; Transcribe Mode, however, only supports four languages: French, German, Italian, and Spanish. 

Language translation requires an Android device running Android 6.0 or later that’s Google Assistant-enabled, including non-Pixel phones. However, if you do have an advanced Pixel phone, the translation gets much better. 

Compatible Pixel phones (especially models with a Tensor processor) offer Live Translate with text messages, through the camera, in videos, and even during phone calls. 

A world of translation products

Language translation features that go in the ears come in many varieties. 

The TimeKettle WT2 Edge/W3 is highly rated. It supports 40 online languages and 13 pairs of offline languages, enabling two-way simultaneous translation that eliminates the need for alternating speech patterns. The system achieves up to 95% translation accuracy through its AI platform, according to the company. 

The Vasco Translator E1 supports an impressive 51 languages and uses 10 different AI-powered translation engines. The system allows up to 10 people to join conversations using the mobile app. 

The Pilot by Waverly Labs translates the wearer’s words to others and also translates replies back to the wearer’s language.

Smart glasses that translate are also available. 

  • The Solos AirGo 3 Smart Glasses perform real-time language translation via the SolosTranslate platform and OpenAI’s ChatGPT. 
  • Brilliant Labs’ Frame AI Glasses are open-source AR glasses that can translate languages seen in the environment, recognize images and provide information about them, and search the internet for results. The glasses use augmented reality to display translations directly in the user’s field of vision. They integrate with OpenAI, Whisper, and Perplexity technologies. 
  • TCL AR Glasses can live-translate conversations, offering an integrated heads-up display for showing the translation. 

Other form-factors exist, too, including the TimeKettle X1, K&F Concept Language Translator Device, ili Wearable Translator, Vasco Translator E1, TimeKettle WT2 Edge, and Timekettle ZERO Language Translator.

All these products demonstrate that the technology for traveling the world and being able to hold conversations, read signs and understand people in foreign languages is already here, and has been for a while. 

Going mainstream

What’s about to change is the arrival of this feature in totally mainstream products. Something like 100 million people use their Apple AirPods almost every day. Meta expects to sell more than 10 million Ray-Ban Meta glasses by the end of 2026, by which time Live Translation and Live AI will be offered to all users globally. 

What’s really happening is that we’re heading for a world in which every wearable speaker — earbuds, headphones, smart glasses, and more — will give us live language translation on command or even automatically.

The worst thing about this emerging trend is that, in the future, far fewer people will bother to learn foreign languages, relying instead on AI. 

But the upside is that language barriers between people on our planet will be essentially erased, and people will more easily understand one another. That’s got to be a good thing. 

In the meantime, live translation tech has been a radical and welcome game-changer for me as I travel the world as a digital nomad. Partnering with AI, I can speak foreign languages I never learned. 

Kategorie: Hacking & Security

CISA Adds NAKIVO Vulnerability to KEV Catalog Amid Active Exploitation

The Hacker News - 4 hodiny 24 min zpět
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added a high-severity security flaw impacting NAKIVO Backup & Replication software to its Known Exploited Vulnerabilities (KEV) catalog, citing evidence of active exploitation. The vulnerability in question is CVE-2024-48248 (CVSS score: 8.6), an absolute path traversal bug that could allow an unauthenticated attacker to Ravie Lakshmananhttp://www.blogger.com/profile/[email protected]
Kategorie: Hacking & Security

CERT-UA Warns: Dark Crystal RAT Targets Ukrainian Defense via Malicious Signal Messages

The Hacker News - 7 hodin 59 min zpět
The Computer Emergency Response Team of Ukraine (CERT-UA) is warning of a new campaign that targets the defense sectors with Dark Crystal RAT (aka DCRat). The campaign, detected earlier this month, has been found to target both employees of enterprises of the defense-industrial complex and individual representatives of the Defense Forces of Ukraine. The activity involves Ravie Lakshmananhttp://www.blogger.com/profile/[email protected]
Kategorie: Hacking & Security

Malware campaign 'DollyWay' breached 20,000 WordPress sites

Bleeping Computer - 14 hodin 55 min zpět
A malware operation dubbed 'DollyWay' has been underway since 2016, compromising over 20,000 WordPress sites globally to redirect users to malicious sites. [...]
Kategorie: Hacking & Security

Nvidia, xAI and two energy giants join genAI infrastructure initiative

Computerworld.com [Hacking News] - 19 Březen, 2025 - 23:49

An industry generative artificial intelligence (genAI) alliance, the AI Infrastructure Partnership (AIP), on Wednesday announced that xAI, Nvidia, GE Vernova, and NextEra Energy were joining BlackRock, Microsoft, and Global Infrastructure Partners as members. But given that the announcement specified no financial commitments or any other details, analysts doubted it would make much of a difference.

Still, even though the massive global momentum behind genAI is unlikely to be changed by the announcement, the addition of the two energy companies to the group was an implicit acknowledgement that the ever-increasing power requirements of genAI data centers need serious attention.

Scott Bickley, advisory fellow at Info-Tech Research Group, said that the massive resources behind this initiative, including Blackrock, which reported in January that it held assets worth $11.6 trillion, making it the world’s largest money manager, can make the difference.

Kategorie: Hacking & Security

Kali Linux 2025.1a released with 1 new tool, annual theme refresh

Bleeping Computer - 19 Březen, 2025 - 23:44
Kali Linux has released version 2025.1a, the first version of 2025, with one new tool, desktop changes, and a theme refresh. [...]
Kategorie: Hacking & Security

Pennsylvania education union data breach hit 500,000 people

Bleeping Computer - 19 Březen, 2025 - 22:38
The Pennsylvania State Education Association (PSEA), the largest public-sector union in Pennsylvania, is notifying over half a million individuals that attackers stole their personal information in a July 2024 security breach. [...]
Kategorie: Hacking & Security

Ukrainian military targeted in new Signal spear-phishing attacks

Bleeping Computer - 19 Březen, 2025 - 21:30
Ukraine's Computer Emergency Response Team (CERT-UA) is warning about highly targeted attacks employing compromised Signal accounts to send malware to employees of defense industry firms and members of the country's army forces. [...]
Kategorie: Hacking & Security

Microsoft Exchange Online outage affects Outlook web users

Bleeping Computer - 19 Březen, 2025 - 20:34
​Microsoft is investigating an ongoing outage preventing Outlook on the web users from accessing their Exchange Online mailboxes. [...]
Kategorie: Hacking & Security

New Arcane infostealer infects YouTube, Discord users via game cheats

Bleeping Computer - 19 Březen, 2025 - 18:52
A newly discovered information-stealing malware called Arcane is stealing extensive user data, including VPN account credentials, gaming clients, messaging apps, and information stored in web browsers. [...]
Kategorie: Hacking & Security

Microsoft fixes Windows update bug that uninstalled Copilot

Bleeping Computer - 19 Březen, 2025 - 18:23
Microsoft has fixed a bug causing the March 2025 Windows cumulative updates to mistakenly uninstall the AI-powered Copilot digital assistant from some Windows 10 and Windows 11 systems. [...]
Kategorie: Hacking & Security

Click Profit blocked by the FTC over alleged e-commerce scams

Bleeping Computer - 19 Březen, 2025 - 17:36
The US Federal Trade Commission (FTC) has taken action against the "Click Profit" business opportunity platform for allegedly earning $14 million while deceiving consumers with false promises of guaranteed passive income through online stores. [...]
Kategorie: Hacking & Security

WhatsApp patched zero-click flaw exploited in Paragon spyware attacks

Bleeping Computer - 19 Březen, 2025 - 17:02
WhatsApp has patched a zero-click, zero-day vulnerability used to install Paragon's Graphite spyware following reports from security researchers at the University of Toronto's Citizen Lab. [...]
Kategorie: Hacking & Security

Hackers Exploit Severe PHP Flaw to Deploy Quasar RAT and XMRig Miners

The Hacker News - 19 Březen, 2025 - 16:52
Threat actors are exploiting a severe security flaw in PHP to deliver cryptocurrency miners and remote access trojans (RATs) like Quasar RAT. The vulnerability, assigned the CVE identifier CVE-2024-4577, refers to an argument injection vulnerability in PHP affecting Windows-based systems running in CGI mode that could allow remote attackers to run arbitrary code. Cybersecurity company Ravie Lakshmananhttp://www.blogger.com/profile/[email protected]
Kategorie: Hacking & Security

Demand for VR headsets remains low

Computerworld.com [Hacking News] - 19 Březen, 2025 - 16:51

Sales of virtual reality (VR) headsets fell by 12% in 2024 compared to the previous year, according to a new report from analyst firm Counterpoint. The decline markers the third year in a row sales have fallen — and it is mainly on the consumer side that demand is low.

The best performer is Meta, which has a 77% market share, followed by Sony, Pico, DPVR, and Apple.

When it comes to Apple, interest in the pricey Vision Pro has increased among business users. But the headset, which went on sale just over a year ago, is still only available in 13 countries and territories.

Counterpoint expects demand for VR headsets to remain low this year, though interest in smart glasses with augmented reality (AR) capabilities is expected to increase significantly.

Kategorie: Hacking & Security
Syndikovat obsah