Security-Portal.cz je internetový portál zaměřený na počítačovou bezpečnost, hacking, anonymitu, počítačové sítě, programování, šifrování, exploity, Linux a BSD systémy. Provozuje spoustu zajímavých služeb a podporuje příznivce v zajímavých projektech.

Kategorie

Disaster Recovery Types

InfoSec Institute Resources - 14 Prosinec, 2017 - 23:13

Before understanding the various methodologies and techniques for disaster recovery, it is essential to know what the term “disaster recovery” means in the first place. A disaster can be related to any incident (both intentional and/or non-intentional) that renders severe damage to the data storage of the company. This includes things as such as human […]

The post Disaster Recovery Types appeared first on InfoSec Resources.

Disaster Recovery Types was first posted on December 14, 2017 at 4:13 pm.
©2017 "InfoSec Resources". Use of this feed is for personal non-commercial use only. If you are not reading this article in your feed reader, then the site is guilty of copyright infringement. Please contact me at darren.dalasta@infosecinstitute.com
Kategorie: Hacking & Security

Synaptics Says Claims of a Keylogger in HP Laptops are False

Threatpost - 14 Prosinec, 2017 - 22:26
Synaptics said reports that hundreds of HP laptops contained a secret keylogger that traced back to debugger software made by the company are inaccurate.
Kategorie: Hacking & Security

After backlash, animal shelter fires security robot, “effective immediately”

Ars Technica - 14 Prosinec, 2017 - 21:50

Enlarge / A five-foot-tall (1.5 meter) outdoor K5 security robot patrols the grounds of the Washington Harbour retail-residential center in the Georgetown district of Washington, DC, July 26, 2017. (credit: ROB LEVER/AFP/Getty Images))

As of Thursday morning local time, a San Francisco animal adoption agency will immediately halt its recent use of a controversial security robot.

The move comes after the San Francisco SPCA had been scrutinized for its deployment of a Knightscope K9 to mitigate vandalism and the presence of homeless people at its Mission District office. Knightscope, a Silicon Valley startup, declares on its website that its robots are the "security team of the future."

That robot made headlines when Business Insider reported Tuesday that "Robots are being used to deter homeless people from setting up camp in San Francisco."

Read 24 remaining paragraphs | Comments

Kategorie: Hacking & Security

What’s in your Android’s December security update?

Sophos Naked Security - 14 Prosinec, 2017 - 19:02
Android has released two security bulletins for December containing mitigations and fixes for 47 vulnerabilities for all devices.

Starbucks Wi-Fi hijacked customers’ laptops to mine cryptocoins

Sophos Naked Security - 14 Prosinec, 2017 - 18:44
A 10-second delay when customers connected to the "free" Wi-Fi was harnessed for secret cryptocoin mining

Permissions Flaw Found on Azure AD Connect

Threatpost - 14 Prosinec, 2017 - 18:43
A permissions flaw in Microsoft’s Azure AD Connect software could allow a rogue admin to escalate account privileges and gain unauthorized universal access within a company’s internal network. 
Kategorie: Hacking & Security

Mr. Robot season 3 finale: shutdown -r

Sophos Naked Security - 14 Prosinec, 2017 - 16:41
This season's final instalment of the Mr. Robot security review.

Mirai botnet authors plead guilty

Sophos Naked Security - 14 Prosinec, 2017 - 16:12
The authors of the infamous Mirai botnet - used to launch record-breaking Distributed Denial of Service (DDoS) attacks last year that knocked major segments of the internet offline - have pleaded guilty to federal cybercrime charges.

How to Avoid Phishing on LinkedIn

InfoSec Institute Resources - 14 Prosinec, 2017 - 15:29

Section 1. Real LinkedIn phishing attacks 1.1 LinkedIn attacks asking users to upload their CVs In April 2017, scammers started sending phishing messages to LinkedIn users asking them to upload their CVs. The messages contained the following text: “A company is urgently seeking for immediate employment from your region. They are interested on your qualifications […]

The post How to Avoid Phishing on LinkedIn appeared first on InfoSec Resources.

How to Avoid Phishing on LinkedIn was first posted on December 14, 2017 at 8:29 am.
©2017 "InfoSec Resources". Use of this feed is for personal non-commercial use only. If you are not reading this article in your feed reader, then the site is guilty of copyright infringement. Please contact me at darren.dalasta@infosecinstitute.com
Kategorie: Hacking & Security

IoT Radio Communication Attack – Part Two

InfoSec Institute Resources - 14 Prosinec, 2017 - 14:53

This is the 2nd part in the series named “IoT Radio Communication Attack.” If you have not gone through the first part, please go through it. Radio Signal Analysis – In the last part I have gone through the various modulation techniques being used in Radio Signal Transmission. The next step is to analyze these radio […]

The post IoT Radio Communication Attack – Part Two appeared first on InfoSec Resources.

IoT Radio Communication Attack – Part Two was first posted on December 14, 2017 at 7:53 am.
©2017 "InfoSec Resources". Use of this feed is for personal non-commercial use only. If you are not reading this article in your feed reader, then the site is guilty of copyright infringement. Please contact me at darren.dalasta@infosecinstitute.com
Kategorie: Hacking & Security

Bitfinex cryptocurrency exchange is back up after repeated DDoS

Sophos Naked Security - 14 Prosinec, 2017 - 12:44
It's been hit by two attacks in just over a week, as well as a third in November. Expect more as currency values continue to skyrocket.

Šifrovací technika RSA slaví čtyřicet let. Dnes je na principu veřejného a soukromého klíče postavené skoro vše

Zive.cz - bezpečnost - 14 Prosinec, 2017 - 12:19
Dnes je to právě čtyřicet let od chvíle, kdy si Ronald L. Rivest, Adi Shamir a Leonard M. Adleman zažádali u amerického úřadu USPTO o patent s docela vágním názvem Cryptographic communications system and method. Patent se dočkal finální publikace o šest let později a popisoval kryptografickou ...
Kategorie: Hacking & Security

Is source code inspection a security risk? Maybe not, experts say

LinuxSecurity.com - 14 Prosinec, 2017 - 12:13
LinuxSecurity.com: Moscow's recent demand to inspect the source code of American software vendors supplying the Russian government does not pose the severe security threat some are making it out to be, experts say, emphasizing that while sharing source code with a nation-state adversary does make it easier for an attacker to find security flaws, source code is far from the "keys to the kingdom" for bug hunters.
Kategorie: Hacking & Security

Vyděračské viry napadly více než čtvrtinu firem

Novinky.cz - bezpečnost - 14 Prosinec, 2017 - 12:00
Počet útoků vyděračských programů na firmy letos vzrostl. Podíl napadených podniků se meziročně zvýšil o čtyři procentní body na 26 procent. Na vině jsou především tři nebývale mohutné útoky na firemní sítě, které zásadním způsobem změnily prostředí firemních počítačových sítí. Uvedla to antivirová firma Kaspersky Lab.
Kategorie: Hacking & Security

Three Hackers Plead Guilty to Creating IoT-based Mirai DDoS Botnet

The Hacker News - 14 Prosinec, 2017 - 11:15
The U.S. federal officials have arrested three hackers who have pleaded guilty to computer-crimes charges for creating and distributing Mirai botnet that crippled some of the world's biggest and most popular websites by launching the massive DDoS attacks last year. According to the federal court documents unsealed Tuesday, Paras Jha (21-year-old from New Jersey), Josiah White (20-year-old
Kategorie: Hacking & Security

Kaspersky Security Bulletin. Overall statistics for 2017

Kaspersky Securelist - 14 Prosinec, 2017 - 11:00

All the statistics used in this report were obtained using Kaspersky Security Network (KSN), a distributed antivirus network that works with various anti-malware protection components. The data was collected from KSN users who agreed to provide it. Millions of Kaspersky Lab product users from 213 countries and territories worldwide participate in this global exchange of information about malicious activity.

The year in figures
  • 4%of user computers were subjected to at least one Malware-class web attack over the year.
  • Kaspersky Lab solutions repelled 1 188 728 338 attacks launched from online resources located all over the world.
  • 199 455 606 unique URLs were recognized as malicious by web antivirus components.
  • Kaspersky Lab’s web antivirus detected 15 714 700 unique malicious objects.
  • 939 722 computers of unique users were targeted by encryptors.
  • Kaspersky Lab solutions blocked attempts to launch malware capable of stealing money via online banking on 1 126 701 devices

 
Fill the form below to download the Kaspersky Security Bulletin 2017. Overall Statistics for 2017 full report (English, PDF):
MktoForms2.loadForm("//app-sj06.marketo.com", "802-IJN-240", 15914);

Zero-Day Remote 'Root' Exploit Disclosed In AT&T DirecTV WVB Devices

The Hacker News - 14 Prosinec, 2017 - 10:20
Security researchers have publicly disclosed an unpatched zero-day vulnerability in the firmware of AT&T DirecTV WVB kit after trying to get the device manufacturer to patch this easy-to-exploit flaw over the past few months. The problem is with a core component of the Genie DVR system that's shipped free of cost with DirecTV and can be easily exploited by hackers to gain root access and take
Kategorie: Hacking & Security

Antiviry Kaspersky Lab mají na amerických úřadech definitivní utrum. Trump podepsal zákaz

Zive.cz - bezpečnost - 14 Prosinec, 2017 - 10:00
Pokud se Kaspersky Lab v posledních měsících snažilo zlepšit své vztahy s americkou vládou, nepovedlo se to. Prezident Donald Trump podepsal zákon, jenž zahrnuje zákaz, aby jakékoli americké úřady používaly software od ruského výrobce antivirů. USA původně používání softwaru zakázalo v září. ...
Kategorie: Hacking & Security

19-Year-Old TLS Vulnerability Weakens Modern Website Crypto

Threatpost - 13 Prosinec, 2017 - 20:33
New research shows how an old vulnerability called ROBOT can be exploited using an adaptive chosen-ciphertext attack to reveal the plaintext for a given TLS session.
Kategorie: Hacking & Security
Syndikovat obsah