Security-Portal.cz je internetový portál zaměřený na počítačovou bezpečnost, hacking, anonymitu, počítačové sítě, programování, šifrování, exploity, Linux a BSD systémy. Provozuje spoustu zajímavých služeb a podporuje příznivce v zajímavých projektech.

Kategorie

Jak se šíří nejobávanější virus? Kyberzločinci změnili v Česku taktiku

Novinky.cz - bezpečnost - 20 min 43 sek zpět
Statistikám nejrozšířenějších virových hrozeb pro počítače s operačním systémem Windows v Česku stále kraluje Spy.Agent.AES, který je známý také jako Agent Tesla. Bezpečnostní experti antivirové společnosti Eset nicméně varovali, že kyberzločinci v minulém měsíci změnili taktiku svých útoků – více se zaměřili na tuzemské uživatele.
Kategorie: Hacking & Security

Two Eastern Europeans Sentenced for Providing Bulletproof Hosting to Cyber Criminals

The Hacker News - 5 hodin 9 min zpět
Two Eastern European nationals have been sentenced in the U.S. for offering "bulletproof hosting" services to cybercriminals, who used the technical infrastructure to distribute malware and attack financial institutions across the country between 2009 to 2015. Pavel Stassi, 30, of Estonia, and Aleksandr Shorodumov, 33, of Lithuania, have been each sentenced to 24 months and 48 months in prison,
Kategorie: Hacking & Security

Bug in Popular WinRAR Software Could Let Attackers Hack Your Computer

The Hacker News - 5 hodin 10 min zpět
A new security weakness has been disclosed in the WinRAR trialware file archiver utility for Windows that could be abused by a remote attacker to execute arbitrary code on targeted systems, underscoring how vulnerabilities in such software could beсome a gateway for a roster of attacks. Tracked as CVE-2021-35052, the bug impacts the trial version of the software running version 5.70. "This
Kategorie: Hacking & Security

U.S. Ban on Sales of Cyberattack Tools Is Anemic, Experts Warn

Threatpost - 21 Říjen, 2021 - 21:41
Meanwhile, Zerodium's quest to buy VPN exploits is problematic, researchers said.
Kategorie: Hacking & Security

TA551 Shifts Tactics to Install Sliver Red-Teaming Tool

Threatpost - 21 Říjen, 2021 - 21:31
A new email campaign from the threat group uses the attack-simulation framework in a likely leadup to ransomware deployment.
Kategorie: Hacking & Security

Before and After a Pen Test: Steps to Get Through It

The Hacker News - 21 Říjen, 2021 - 19:52
An effective cybersecurity strategy can be challenging to implement correctly and often involves many layers of security. Part of a robust security strategy involves performing what is known as a penetration test (pen test). The penetration test helps to discover vulnerabilities and weaknesses in your security defenses before the bad guys discover these. They can also help validate remedial
Kategorie: Hacking & Security

Gigabyte Allegedly Hit by AvosLocker Ransomware

Threatpost - 21 Říjen, 2021 - 19:33
If AvosLocker stole Gigabyte's master keys, threat actors could force hardware to download fake drivers or BIOS updates in a supply-chain attack a la SolarWinds.
Kategorie: Hacking & Security

S3 Ep55: Live malware, global encryption, dating scams, and secret emanations [Podcasts]

Sophos Naked Security - 21 Říjen, 2021 - 17:13
Latest episode - listen now! (And sign up for our forthcoming Live Malware Demo at the same time.)

Why is Cybersecurity Failing Against Ransomware?

Threatpost - 21 Říjen, 2021 - 15:16
Hardly a week goes by without another major company falling victim to a ransomware attack. Nate Warfield, CTO at Prevailion, discusses the immense challenges in changing that status quo.
Kategorie: Hacking & Security

Product Overview: Cynet SaaS Security Posture Management (SSPM)

The Hacker News - 21 Říjen, 2021 - 15:07
Software-as-a-service (SaaS) applications have gone from novelty to business necessity in a few short years, and its positive impact on organizations is clear. It’s safe to say that most industries today run on SaaS applications, which is undoubtedly positive, but it does introduce some critical new challenges to organizations.  As SaaS application use expands, as well as the number of
Kategorie: Hacking & Security

Newly Found npm Malware Mines Cryptocurrency on Windows, Linux, macOS Devices>

LinuxSecurity.com - 21 Říjen, 2021 - 14:51
Multiple malicious packages have been identified on the npm registry this month. These packages disguise themselves as legitimate JavaScript libraries, but have been caught launching cryptominers on Linux, Windows and MacOS machines.
Kategorie: Hacking & Security

Ransomware Sinks Teeth into Candy-Corn Maker Ahead of Halloween

Threatpost - 21 Říjen, 2021 - 13:50
Chicago-based Ferrara acknowledged an Oct. 9 attack that encrypted some systems and disrupted production.
Kategorie: Hacking & Security

Malicious NPM Packages Caught Running Cryptominer On Windows, Linux, macOS Devices

The Hacker News - 21 Říjen, 2021 - 13:00
Three JavaScript libraries uploaded to the official NPM package repository have been unmasked as crypto-mining malware, once again demonstrating how open-source software package repositories are becoming a lucrative target for executing an array of attacks on Windows, macOS, and Linux systems. The malicious packages in question — named okhsa, klow, and klown — were published by the same
Kategorie: Hacking & Security

U.S. Government Bans Sale of Hacking Tools to Authoritarian Regimes

The Hacker News - 21 Říjen, 2021 - 09:43
The U.S. Commerce Department on Wednesday announced new rules barring the sales of hacking software and equipment to authoritarian regimes and potentially facilitate human rights abuse for national security (NS) and anti-terrorism (AT) reasons. The mandate, which is set to go into effect in 90 days, will forbid the export, reexport and transfer of "cybersecurity items" to countries of "national
Kategorie: Hacking & Security

Hackers Stealing Browser Cookies to Hijack High-Profile YouTube Accounts

The Hacker News - 21 Říjen, 2021 - 09:03
Since at least late 2019, a network of hackers-for-hire have been hijacking the channels of YouTube creators, luring them with bogus collaboration opportunities to broadcast cryptocurrency scams or sell the accounts to the highest bidder. That's according to a new report published by Google's Threat Analysis Group (TAG), which said it disrupted financially motivated phishing campaigns targeting
Kategorie: Hacking & Security

Nový čínský radioteleskop by mohl detekovat mimozemské samoreplikující se sondy

Zive.cz - bezpečnost - 21 Říjen, 2021 - 07:45
Nový čínský radioteleskop FAST (Five-hundred-meter Aperture Spherical Radio Telescope) by mohl být schopen detekovat masivní roje samoreplikujících se mimozemských sond ještě dříve, než by dorazily na Zemi. Plyne to z článku, který nedávno zveřejnil fyzik Zaza Osmanov z Free University of ...
Kategorie: Hacking & Security

Google Crushes YouTube Cookie-Stealing Channel Hijackers

Threatpost - 20 Říjen, 2021 - 21:45
Google has caught and brushed off a bunch of cookie-stealing YouTube channel hijackers who were running cryptocurrency scams on, or auctioning off, ripped-off channels. 
Kategorie: Hacking & Security

“To the moon!” Cryptocurrency hamster Mr Goxx trades online 24/7

Sophos Naked Security - 20 Říjen, 2021 - 20:07
Here's a happy cryptocurrency story for once, with not a cybercrook in sight.

VPN Exposes Data for 1M Users, Leading to Researcher Questioning

Threatpost - 20 Říjen, 2021 - 19:53
Experts warn that virtual private networks are increasingly vulnerable to leaks and attack.
Kategorie: Hacking & Security
Syndikovat obsah