Security-Portal.cz je internetový portál zaměřený na počítačovou bezpečnost, hacking, anonymitu, počítačové sítě, programování, šifrování, exploity, Linux a BSD systémy. Provozuje spoustu zajímavých služeb a podporuje příznivce v zajímavých projektech.

Kategorie

A Simple 5-Step Framework to Minimize the Risk of a Data Breach

The Hacker News - 19 Listopad, 2021 - 09:53
Today's businesses run on data. They collect it from customers at every interaction, and they use it to improve efficiency, increase their agility, and provide higher levels of service. But it's becoming painfully obvious that all of that data businesses collect has also made them an enticing target for cybercriminals. With each passing day, the evidence of that grows. In the last few months,
Kategorie: Hacking & Security

New Side Channel Attacks Re-Enable Serious DNS Cache Poisoning Attacks

The Hacker News - 19 Listopad, 2021 - 07:50
Researchers have demonstrated yet another variant of the SAD DNS cache poisoning attack that leaves about 38% of the domain name resolvers vulnerable, enabling attackers to redirect traffic originally destined to legitimate websites to a server under their control. "The attack allows an off-path attacker to inject a malicious DNS record into a DNS cache," University of California researchers
Kategorie: Hacking & Security

Github cookie leakage – thousands of Firefox cookie files uploaded by mistake

Sophos Naked Security - 18 Listopad, 2021 - 23:20
Be aware before you share! That's a good rule for developers and techies, just as much as it is for social media addicts.

Ransomware Phishing Emails Sneak Through SEGs

Threatpost - 18 Listopad, 2021 - 22:45
The MICROP ransomware spreads via Google Drive and locally stored passwords.
Kategorie: Hacking & Security

3 Top Tools for Defending Against Phishing Attacks

Threatpost - 18 Listopad, 2021 - 19:49
Phishing emails are now skating past traditional defenses. Justin Jett, director of audit and compliance at Plixer, discusses what to do about it.
Kategorie: Hacking & Security

FBI: FatPipe VPN Zero-Day Exploited by APT for 6 Months

Threatpost - 18 Listopad, 2021 - 17:27
The bureau's flash alert said an APT has been exploiting the flaw to compromise FatPipe router clustering and load balancer products to breach targets' networks.
Kategorie: Hacking & Security

Spear-Phishing Campaign Exploits Glitch Platform to Steal Credentials

Threatpost - 18 Listopad, 2021 - 15:00
Threat actors are targeting Middle-East-based employees of major corporations in a scam that uses a specific ‘ephemeral’ aspect of the project-management tool to link to SharePoint phishing pages.
Kategorie: Hacking & Security

How to Choose the Right DDoS Protection Solution

Threatpost - 18 Listopad, 2021 - 14:59
Pankaj Gupta, Senior Director at Citrix, outlines how distributed denial of service attacks have become increasingly sophisticated, bigger and economically motivated.
Kategorie: Hacking & Security

Critical Root RCE Bug Affects Multiple Netgear SOHO Router Models

The Hacker News - 18 Listopad, 2021 - 13:59
Networking equipment company Netgear has released yet another round of patches to remediate a high-severity remote code execution vulnerability affecting multiple routers that could be exploited by remote attackers to take control of an affected system. Tracked as CVE-2021-34991 (CVSS score: 8.8), the pre-authentication buffer overflow flaw in small office and home office (SOHO) routers can lead
Kategorie: Hacking & Security

How to Build a Security Awareness Training Program that Yields Measurable Results

The Hacker News - 18 Listopad, 2021 - 13:43
Organizations have been worrying about cyber security since the advent of the technological age. Today, digital transformation coupled with the rise of remote work has made the need for security awareness all the more critical. Cyber security professionals are continuously thinking about how to prevent cyber security breaches from happening, with employees and contractors often proving to be the
Kategorie: Hacking & Security

Best Linux desktops for beginners 2021>

LinuxSecurity.com - 18 Listopad, 2021 - 13:00
Tired of Windows? Sick of paying big money for Macs? Want a better, more secure desktop? Then give Linux a try! Here's an introduction to the best, most secure Linux desktops for beginners.
Kategorie: Hacking & Security

Microsoft Warns about 6 Iranian Hacking Groups Turning to Ransomware

The Hacker News - 18 Listopad, 2021 - 08:59
Nation-state operators with nexus to Iran are increasingly turning to ransomware as a means of generating revenue and intentionally sabotaging their targets, while also engaging in patient and persistent social engineering campaigns and aggressive brute force attacks. No less than six threat actors affiliated with the West Asian country have been discovered deploying ransomware to achieve their
Kategorie: Hacking & Security

Researchers Demonstrate New Way to Detect MitM Phishing Kits in the Wild

The Hacker News - 18 Listopad, 2021 - 08:23
No fewer than 1,220 Man-in-the-Middle (MitM) phishing websites have been discovered as targeting popular online services like Instagram, Google, PayPal, Apple, Twitter, and LinkedIn with the goal of hijacking users' credentials and carrying out further follow-on attacks. The findings come from a new study undertaken by a group of researchers from Stony Brook University and Palo Alto Networks,
Kategorie: Hacking & Security

Fake Ransomware Infection Hits WordPress Sites

Threatpost - 17 Listopad, 2021 - 23:06
WordPress sites have been splashed with ransomware warnings that are as real as dime-store cobwebs made out of spun polyester.
Kategorie: Hacking & Security

Netflix Bait: Phishers Target Streamers with Fake Service Signups

Threatpost - 17 Listopad, 2021 - 22:56
Lures dressed up to look like movie and TV streaming offers are swiping payment data.
Kategorie: Hacking & Security

Apple’s Mail Privacy Protection feature – watch out if you have a Watch!

Sophos Naked Security - 17 Listopad, 2021 - 20:55
Apple's "Protect Mail Activity" is a handy privacy enhancement for your messaging habits. As long as you know its limitations...

Exchange, Fortinet Flaws Being Exploited by Iranian APT, CISA Warns

Threatpost - 17 Listopad, 2021 - 18:04
Meanwhile, a Microsoft analysis that followed six Iranian threat actor groups for over a year found them increasingly sophisticated, adapting and thriving.
Kategorie: Hacking & Security

Hackers Targeting Myanmar Use Domain Fronting to Hide Malicious Activities

The Hacker News - 17 Listopad, 2021 - 16:13
A malicious campaign has been found leveraging a technique called domain fronting to hide command-and-control traffic by leveraging a legitimate domain owned by the Myanmar government to route communications to an attacker-controlled server with the goal of evading detection. The threat, which was observed in September 2021, deployed Cobalt Strike payloads as a stepping stone for launching
Kategorie: Hacking & Security

Phishing Scam Aims to Hijack TikTok ‘Influencer’ Accounts

Threatpost - 17 Listopad, 2021 - 14:44
Threat actors used malicious emails to target more than 125 people with high-profile TikTok accounts in an attempt to steal info and lock them out.
Kategorie: Hacking & Security
Syndikovat obsah