Article: Fintech Startup Offers $500 for Payroll Passwords - published over 3 years ago. Content: How much is your payroll data worth? Probably a lot more than you think. One financial startup that’s targeting the gig worker market is offering up to $500 to anyone willing to hand over the payroll account username and password given to them by their employer, plus a regular payment for each month afterwards in which those credentials still work. This ad, ... https://krebsonsecurity.com/2021/05/fintech-startup-offers-500-for-payroll-passwords/ Published: 2021 05 10 14:25:37 Received: 2021 06 06 09:04:53 Feed: Krebs on Security Source: Krebs on Security Category: Cyber Security Topic: Cyber Security |
Article: A Closer Look at the DarkSide Ransomware Gang - published over 3 years ago. Content: The FBI confirmed this week that a relatively new ransomware group known as DarkSide is responsible for an attack that caused Colonial Pipeline to shut down 5,550 miles of pipe, stranding countless barrels of gasoline, diesel and jet fuel on the Gulf Coast. Here’s a closer look at the DarkSide cybercrime gang, as seen through their negotiations with a recent... https://krebsonsecurity.com/2021/05/a-closer-look-at-the-darkside-ransomware-gang/ Published: 2021 05 11 16:37:30 Received: 2021 06 06 09:04:53 Feed: Krebs on Security Source: Krebs on Security Category: Cyber Security Topic: Cyber Security |
|
Article: Microsoft Patch Tuesday, May 2021 Edition - published over 3 years ago. Content: Microsoft today released fixes to plug at least 55 security holes in its Windows operating systems and other software. Four of these weaknesses can be exploited by malware and malcontents to seize complete, remote control over vulnerable systems without any help from users. On deck this month are patches to quash a wormable flaw, a creepy wireless bug, and y... https://krebsonsecurity.com/2021/05/microsoft-patch-tuesday-may-2021-edition/ Published: 2021 05 11 20:28:19 Received: 2021 06 06 09:04:53 Feed: Krebs on Security Source: Krebs on Security Category: Cyber Security Topic: Cyber Security |
|
Article: DarkSide Ransomware Gang Quits After Servers, Bitcoin Stash Seized - published over 3 years ago. Content: The DarkSide ransomware affiliate program responsible for the six-day outage at Colonial Pipeline this week that led to fuel shortages and price spikes across the country is running for the hills. The crime gang announced it was closing up shop after its servers were seized and someone drained the cryptocurrency from an account the group uses to pay affiliat... https://krebsonsecurity.com/2021/05/darkside-ransomware-gang-quits-after-servers-bitcoin-stash-seized/ Published: 2021 05 14 15:44:45 Received: 2021 06 06 09:04:53 Feed: Krebs on Security Source: Krebs on Security Category: Cyber Security Topic: Cyber Security |
Article: Try This One Weird Trick Russian Hackers Hate - published over 3 years ago. Content: In a Twitter discussion last week on ransomware attacks, KrebsOnSecurity noted that virtually all ransomware strains have a built-in failsafe designed to cover the backsides of the malware purveyors: They simply will not install on a Microsoft Windows computer that already has one of many types of virtual keyboards installed — such as Russian or Ukrainian. S... https://krebsonsecurity.com/2021/05/try-this-one-weird-trick-russian-hackers-hate/ Published: 2021 05 17 14:14:01 Received: 2021 06 06 09:04:53 Feed: Krebs on Security Source: Krebs on Security Category: Cyber Security Topic: Cyber Security |
|
Article: Recycle Your Phone, Sure, But Maybe Not Your Number - published over 3 years ago. Content: Many online services allow users to reset their passwords by clicking a link sent via SMS, and this unfortunately widespread practice has turned mobile phone numbers into de facto identity documents. Which means losing control over one thanks to a divorce, job termination or financial crisis can be devastating. Even so, plenty of people willingly abandon a ... https://krebsonsecurity.com/2021/05/recycle-your-phone-sure-but-maybe-not-your-number/ Published: 2021 05 19 15:13:30 Received: 2021 06 06 09:04:53 Feed: Krebs on Security Source: Krebs on Security Category: Cyber Security Topic: Cyber Security |
|
Article: How to Tell a Job Offer from an ID Theft Trap - published over 3 years ago. Content: One of the oldest scams around — the fake job interview that seeks only to harvest your personal and financial data — is on the rise, the FBI warns. Here’s the story of a recent LinkedIn impersonation scam that led to more than 100 people getting duped, and one almost-victim who decided the job offer was too-good-to-be-true. Last week, someone began posting... https://krebsonsecurity.com/2021/05/how-to-tell-a-job-offer-from-an-id-theft-trap/ Published: 2021 05 21 17:41:14 Received: 2021 06 06 09:04:53 Feed: Krebs on Security Source: Krebs on Security Category: Cyber Security Topic: Cyber Security |
Article: Boss of ATM Skimming Syndicate Arrested in Mexico - published over 3 years ago. Content: Florian “The Shark” Tudor, the alleged ringleader of a prolific ATM skimming gang that siphoned hundreds of millions of dollars from bank accounts of tourists visiting Mexico over the last eight years, was arrested in Mexico City on Thursday in response to an extradition warrant from a Romanian court. Florian Tudor, at a 2020 press conference in Mexico in wh... https://krebsonsecurity.com/2021/05/boss-of-atm-skimming-syndicate-arrested-in-mexico/ Published: 2021 05 28 14:47:46 Received: 2021 06 06 09:04:53 Feed: Krebs on Security Source: Krebs on Security Category: Cyber Security Topic: Cyber Security |
|
Article: Using Fake Reviews to Find Dangerous Extensions - published over 3 years ago. Content: Fake, positive reviews have infiltrated nearly every corner of life online these days, confusing consumers while offering an unwelcome advantage to fraudsters and sub-par products everywhere. Happily, identifying and tracking these fake reviewer accounts is often the easiest way to spot scams. Here’s the story of how bogus reviews on a counterfeit Microsoft ... https://krebsonsecurity.com/2021/05/using-fake-reviews-to-find-dangerous-extensions/ Published: 2021 05 29 16:14:47 Received: 2021 06 06 09:04:53 Feed: Krebs on Security Source: Krebs on Security Category: Cyber Security Topic: Cyber Security |
|
Article: DNSSEC, from an end-user perspective, part 3 - published almost 11 years ago. Content: In the first post of this DNSSEC series, I have shown the problem (DNS vulnerabilities), and in the second post, the "solution." In this third post, I am going to analyze DNSSEC. Can DNSSEC protect the users against all of the attacks? Or just part of them? What about corner cases?The following list are the attack types from the first post, where DNSSEC can ... https://jumpespjump.blogspot.com/2014/01/dnssec-from-end-user-perspective-part-3.html Published: 2014 01 25 12:47:00 Received: 2021 06 06 09:04:53 Feed: Jump ESP, jump! Source: Jump ESP, jump! Category: Cyber Security Topic: Cyber Security |
Article: Hacking Windows 95, part 1 - published almost 11 years ago. Content: During a CTF game, we came across very-very old systems. Turns out, it is not that easy to hack those dinosaur old systems, because modern tools like Metasploit do not have sploits for those old boxes and of course our "133t h4cking skillz" are useless without Metasploit... :)But I had an idea: This can be a pretty good small research for fun.The rules for t... https://jumpespjump.blogspot.com/2014/02/hacking-windows-95-part-1.html Published: 2014 02 02 11:11:00 Received: 2021 06 06 09:04:53 Feed: Jump ESP, jump! Source: Jump ESP, jump! Category: Cyber Security Topic: Cyber Security |
|
Article: Attacking financial malware botnet panels - Zeus - published almost 11 years ago. Content: I played with leaked financial malware recently. When I saw these panels are written in PHP, my first idea was to hack them. The results are the work of one evening, please don't expect a full pentest report with all vulns found :-)The following report is based on Zeus 2.0.8.9, which is old, but I believe a lot of Zeus clones (and C&C panels) depend on t... https://jumpespjump.blogspot.com/2014/02/attacking-financial-malware-botnet.html Published: 2014 02 14 10:09:00 Received: 2021 06 06 09:04:53 Feed: Jump ESP, jump! Source: Jump ESP, jump! Category: Cyber Security Topic: Cyber Security |
|
Article: Stop using MD-5, now! - published over 10 years ago. Content: TL;DR: Don't use MD-5 to identify malware samples. Believe me, it is a bad idea. Use SHA-256 or a stronger hash function.This post is dedicated to all malware researchers, still using MD-5 to identify malware samples.Before deep-diving into the details, let me explain my view on this topic. Whenever you want to identify a malware, it is only OK to publish th... https://jumpespjump.blogspot.com/2014/03/stop-using-md-5-now.html Published: 2014 03 25 08:30:00 Received: 2021 06 06 09:04:53 Feed: Jump ESP, jump! Source: Jump ESP, jump! Category: Cyber Security Topic: Cyber Security |
Article: BYOPPP - Build your own privacy protection proxy - published over 10 years ago. Content: I have read a blog post, where you can build your own privacy proxy server built on Raspberry PI. The post got me thinking about how I can use this to protect my privacy on my Android phone, and also get rid of those annoying ads. Since I own a Samsung Galaxy S3 LTE with Android 4.3 (with a HW based Knox counter), rooting the phone now means you break Knox, ... https://jumpespjump.blogspot.com/2014/04/byoppp-build-your-own-privacy.html Published: 2014 04 01 09:09:00 Received: 2021 06 06 09:04:53 Feed: Jump ESP, jump! Source: Jump ESP, jump! Category: Cyber Security Topic: Cyber Security |
|
Article: WiFi hacking on tablets - published over 10 years ago. Content: Disclaimer: Don't hack anything where you don't have the authorization to do so. Stay legal.Ever since I bought my first Android device, I wanted to use the device for WEP cracking. Not because I need it, but I want it :) After some googling, I read that you can't use your WiFi chipset for packet injection, and I forgot the whole topic.After a while, I read ... https://jumpespjump.blogspot.com/2014/04/wifi-hacking-on-tablets.html Published: 2014 04 22 12:16:00 Received: 2021 06 06 09:04:53 Feed: Jump ESP, jump! Source: Jump ESP, jump! Category: Cyber Security Topic: Cyber Security |
|
Article: DSploit - published over 10 years ago. Content: DSploitAfter playing with the applications installed on the Pwn Pad, I found that the most important application (at least for me) was missing from the pre-installed apps. Namely, DSploit. Although DSploit has tons of features, I really liked the multiprotocol password sniffing (same as dsniff) and the session hijacking functionality.The DSploit APK in the P... https://jumpespjump.blogspot.com/2014/04/dsploit.html Published: 2014 04 29 21:56:00 Received: 2021 06 06 09:04:53 Feed: Jump ESP, jump! Source: Jump ESP, jump! Category: Cyber Security Topic: Cyber Security |
Article: Hacking Windows 95, part 2 - published over 10 years ago. Content: In the Hacking Windows 95, part 1 blog post, we covered that through a nasty bug affecting Windows 95/98/ME, the share password can be guessed in no time. In this article, I'm going to try to use this vulnerability to achieve remote code execution (with the help of publicly available tools only).The first thing we can do when we have read access to the Windo... https://jumpespjump.blogspot.com/2014/05/hacking-windows-95-part-2.html Published: 2014 05 23 15:29:00 Received: 2021 06 06 09:04:53 Feed: Jump ESP, jump! Source: Jump ESP, jump! Category: Cyber Security Topic: Cyber Security |
|
Article: Attacking financial malware botnet panels - SpyEye - published over 10 years ago. Content: This is the second blog post in the "Attacking financial malware botnet panels" series. After playing with Zeus, my attention turned to another old (and dead) botnet, SpyEye. From an ITSEC perspective, SpyEye shares a lot of vulnerabilities with Zeus. The following report is based on SpyEye 1.3.45, which is old, and if we are lucky, the whole SpyEye branch w... https://jumpespjump.blogspot.com/2014/08/attacking-financial-malware-botnet.html Published: 2014 08 22 17:09:00 Received: 2021 06 06 09:04:53 Feed: Jump ESP, jump! Source: Jump ESP, jump! Category: Cyber Security Topic: Cyber Security |
|
Article: Change passwords regularly - a myth and a lie, don't be fooled, part 1 - published about 10 years ago. Content: TL;DR: different passwords have different protection requirements, and different attackers using various attacks can only be prevented through different prevention methods. Password security is not simple. For real advise, checking the second post (in progress).Are you sick of password advices like "change your password regularly" or "if your password is pas... https://jumpespjump.blogspot.com/2014/10/change-passwords-regularly-myth-and-lie.html Published: 2014 10 01 07:17:00 Received: 2021 06 06 09:04:53 Feed: Jump ESP, jump! Source: Jump ESP, jump! Category: Cyber Security Topic: Cyber Security |
Article: Change passwords regularly - a myth and a lie, don't be fooled, part 2 - published about 10 years ago. Content: In the previous blog post, I have covered the different passwords you have to protect, the attackers and attack methods. Now let's look at how we want to solve the issue. Password requirementsSo far we have learned we have to use long, complex, true random passwords. In theory, this is easy.Now, this is my password advice for 2014:Password character classesU... https://jumpespjump.blogspot.com/2014/10/change-passwords-regularly-myth-and-lie_13.html Published: 2014 10 13 10:40:00 Received: 2021 06 06 09:04:53 Feed: Jump ESP, jump! Source: Jump ESP, jump! Category: Cyber Security Topic: Cyber Security |
|
Article: Bypass hardware firewalls - published about 10 years ago. Content: This is just a collection of links about my DEF CON 22 presentation, and the two tools I released:Slides:http://www.slideshare.net/bz98/defcon-22-bypass-firewalls-application-white-lists-secure-remote-desktops-in-20-secondsTools:https://github.com/MRGEffitas/Write-into-screenhttps://github.com/MRGEffitas/hwfwbypassPresentation video from Hacktivity:https://w... https://jumpespjump.blogspot.com/2014/11/bypass-hardware-firewalls.html Published: 2014 11 09 14:05:00 Received: 2021 06 06 09:04:53 Feed: Jump ESP, jump! Source: Jump ESP, jump! Category: Cyber Security Topic: Cyber Security |
|
Article: Hacking freemium games - the evolution of PC game cheating - published almost 10 years ago. Content: This post is going to be a rather strange post compared to previous ones. But bear with me, in the middle of the post you will see why this post fits the IT security topic.I'm also terribly sorry for not posting recently, but I was busy with my SPSE and SLAE certification. Both are recommended for Python and Assembly noobs like me. But back to this post.A li... https://jumpespjump.blogspot.com/2015/01/hacking-freemium-games-evolution-of-pc.html Published: 2015 01 14 19:47:00 Received: 2021 06 06 09:04:53 Feed: Jump ESP, jump! Source: Jump ESP, jump! Category: Cyber Security Topic: Cyber Security |
Article: Thousand ways to backdoor a Windows domain (forest) - published over 9 years ago. Content: When the Kerberos elevation of privilege (CVE-2014-6324 / MS14-068) vulnerability has been made public, the remediation paragraph of the following blog post made some waves:http://blogs.technet.com/b/srd/archive/2014/11/18/additional-information-about-cve-2014-6324.aspx"The only way a domain compromise can be remediated with a high level of certainty is a co... https://jumpespjump.blogspot.com/2015/03/thousand-ways-to-backdoor-windows.html Published: 2015 03 05 21:04:00 Received: 2021 06 06 09:04:53 Feed: Jump ESP, jump! Source: Jump ESP, jump! Category: Cyber Security Topic: Cyber Security |
|
Article: Many ways of malware persistence (that you were always afraid to ask) - published over 9 years ago. Content: TL;DR: Are you into red teaming? Need persistence? This post is not that long, read it ;)Are you into blue teaming? Have to find those pesky backdoors? This post is not that long, read it ;)In the previous post, I listed different ways how a Windows domain/forest can be backdoored. In this new post, I am digging a bit deeper, and list the most common/known w... https://jumpespjump.blogspot.com/2015/05/many-ways-of-malware-persistence-that.html Published: 2015 05 05 06:32:00 Received: 2021 06 06 09:04:53 Feed: Jump ESP, jump! Source: Jump ESP, jump! Category: Cyber Security Topic: Cyber Security |
|
Article: Mythbusters: Is an open (unencrypted) WiFi more dangerous than a WPA2-PSK? Actually, it is not. - published over 9 years ago. Content: IntroductionWhenever security professionals recommend the 5 most important IT security practices to average users, one of the items is usually something like: “Avoid using open Wifi” or “Always use VPN while using open WiFi” or “Avoid sensitive websites (e.g. online banking) while using open WiFI”, etc.What I think about this? It is bullshit. But let’s not j... https://jumpespjump.blogspot.com/2015/07/mythbusters-is-open-unencrypted-wifi.html Published: 2015 07 23 13:59:00 Received: 2021 06 06 09:04:53 Feed: Jump ESP, jump! Source: Jump ESP, jump! Category: Cyber Security Topic: Cyber Security |
Article: How to secure your home against "Internet of Things" and FUD - published over 9 years ago. Content: TL;DR, most of the security news about IoT is full of FUD. Always put the risks in context - who can exploit this and what can the attacker do with it. Most story only covers the latter.IntroductionThere is rarely a day without news that another "Internet of Things" got hacked. "Smart" safes, "smart" rifles, "smart" cars, "smart" fridges, "smart" TVs, "smart... https://jumpespjump.blogspot.com/2015/08/how-to-secure-your-home-against.html Published: 2015 08 20 11:37:00 Received: 2021 06 06 09:04:53 Feed: Jump ESP, jump! Source: Jump ESP, jump! Category: Cyber Security Topic: Cyber Security |
|
Article: How I hacked my IP camera, and found this backdoor account - published about 9 years ago. Content: The time has come. I bought my second IoT device - in the form of a cheap IP camera. As it was the most affordable among all others, my expectations regarding security was low. But this camera was still able to surprise me.Maybe I will disclose the camera model used in my hack in this blog later, but first, I will try to contact someone regarding these issue... https://jumpespjump.blogspot.com/2015/09/how-i-hacked-my-ip-camera-and-found.html Published: 2015 09 26 12:02:00 Received: 2021 06 06 09:04:53 Feed: Jump ESP, jump! Source: Jump ESP, jump! Category: Cyber Security Topic: Cyber Security |
|
Article: One reason why InfoSec sucked in the past 20 years - the "security tips" myth - published over 8 years ago. Content: From time to time, I get disappointed how much effort and money is put into securing computers, networks, mobile phones, ... and yet in 2016 here we are, where not much has changed on the defensive side. There are many things I personally blame for this situation, and one of them is the security tips.The goal of these security tips is that if the average use... https://jumpespjump.blogspot.com/2016/06/one-reason-why-infosec-sucked-in-past.html Published: 2016 06 11 12:56:00 Received: 2021 06 06 09:04:53 Feed: Jump ESP, jump! Source: Jump ESP, jump! Category: Cyber Security Topic: Cyber Security |
Article: Why (I believe) WADA was not hacked by the Russians - published about 8 years ago. Content: Disclaimer: This is my personal opinion. I am not an expert in attribution. But as it turns out, not many people in the world are good at attribution. I know this post lacks real evidence and is mostly based on speculation.Let's start with the main facts we know about the WADA hack, in chronological order:1. Some point in time (August - September 2016), the ... https://jumpespjump.blogspot.com/2016/10/why-i-believe-wada-was-not-hacked-by.html Published: 2016 10 17 08:41:00 Received: 2021 06 06 09:04:53 Feed: Jump ESP, jump! Source: Jump ESP, jump! Category: Cyber Security Topic: Cyber Security |
|
Article: Recovering data from an old encrypted Time Machine backup - published over 6 years ago. Content: Recovering data from a backup should be an easy thing to do. At least this is what you expect. Yesterday I had a problem which should have been easy to solve, but it was not. I hope this blog post can help others who face the same problem.The problem1. I had an encrypted Time Machine backup which was not used for months2. This backup was not on an official A... https://jumpespjump.blogspot.com/2018/07/recovering-data-from-old-encrypted-time.html Published: 2018 07 21 13:42:00 Received: 2021 06 06 09:04:53 Feed: Jump ESP, jump! Source: Jump ESP, jump! Category: Cyber Security Topic: Cyber Security |
|
Article: How to build a "burner device" for DEF CON in one easy step - published over 6 years ago. Content: TL;DR: Don't build a burner device. Probably this is not the risk you are looking for.IntroductionEvery year before DEF CON people starts to give advice to attendees to bring "burner devices" to DEF CON. Some people also start to create long lists on how to build burner devices, especially laptops. But the deeper we look into the topic, the more confusing it... https://jumpespjump.blogspot.com/2018/08/how-to-build-burner-device-for-def-con.html Published: 2018 08 15 07:43:00 Received: 2021 06 06 09:04:53 Feed: Jump ESP, jump! Source: Jump ESP, jump! Category: Cyber Security Topic: Cyber Security |
Article: Hacktivity 2018 badge - quick start guide for beginners - published about 5 years ago. Content: You either landed on this blog post because you are a huge fan of Hacktivityyou bought this badge around a year agoyou are just interested in hacker conference badge hacking. or maybe all of the above. Whatever the reasons, this guide should be helpful for those who never had any real-life experience with these little gadgets. But first things first, here is... https://jumpespjump.blogspot.com/2019/09/hacktivity-2018-badge-quick-start-guide.html Published: 2019 09 19 08:56:00 Received: 2021 06 06 09:04:53 Feed: Jump ESP, jump! Source: Jump ESP, jump! Category: Cyber Security Topic: Cyber Security |
|
Article: The RastaLabs experience - published almost 5 years ago. Content: IntroductionIt was 20 November, and I was just starting to wonder what I would do during the next month. I had already left my previous job, and the new one would only start in January. Playing with PS4 all month might sound fun for some people, but I knew I would get bored quickly.Even though I have some limited red teaming experience, I always felt that I ... https://jumpespjump.blogspot.com/2020/01/the-rastalabs-experience.html Published: 2020 01 16 14:54:00 Received: 2021 06 06 09:04:53 Feed: Jump ESP, jump! Source: Jump ESP, jump! Category: Cyber Security Topic: Cyber Security |
|
Article: My WHCD exam experience - published about 4 years ago. Content: IntroductionMy story starts in July in Budapest, summer is hot. Way too hot. I am working in the cozy air-conditioned office room and look at my daily schedule. I have a business lunch with Sándor Fehér, co-founder & CEO at White Hat IT Security at an Italian restaurant. This will be a casual meeting, catching up with each other, no preparation needed. I... https://jumpespjump.blogspot.com/2020/09/my-whcd-exam-experience.html Published: 2020 09 10 06:21:00 Received: 2021 06 06 09:04:53 Feed: Jump ESP, jump! Source: Jump ESP, jump! Category: Cyber Security Topic: Cyber Security |
Article: 最近、雑誌やネットでやけにバストアップ商品をみませんか? - published over 10 years ago. Content: 最近、女性誌やネットをみていると、やけにバストアップ商品の広告をよく見るような気がします。 「夏は、薄着になったり、水着を着る機会が増えるので、バストアップ商品はよく売れる」という話はよく聞きます。 けれど、昨年より明らかに多い気がします。 ちょっと調べてみたところ、今年に入って、かなりの数のバストアップ製品が発売されているようです。 そして、中でも多いのが、プエラリアミリフィカを主成分とする、バストアップサプリメント。 このプエラリア・ミリフィカという成分は、タイの植物の成分なのですが、女性ホルモンに近い成分なので、食べれば、ムネが大きくなったり、生理痛が改善されたりするとされています。 このプエラリア・ミリフィカは、世界各国で、「実際にバストアップに効果がある」との臨床データがぞくぞくと出てきており... http://www.hackus.org/%e6%9c%80%e8%bf%91%e3%80%81%e9%9b%91%e8%aa%8c%e3%82%84%e3%83%8d%e3%83%83%e3%83%88%e3%81%a7%e3%82%84%e3%81%91%e3%81%ab%e3%83%90%e3%82%b9%e3%83%88%e3%82%a2%e3%83%83%e3%83%97%e5%95%86%e5%93%81%e3%82%92/ Published: 2014 08 18 20:12:27 Received: 2021 06 06 09:04:52 Feed: Hackus Source: Hackus Category: Cyber Security Topic: Cyber Security |
|
Article: WordPress and Joomla Shell Finder - published over 11 years ago. Content: The WordPress and Joomla Shell Finder is a project byIndian Cyber Hunters to help WordPress and Joomla admins to find malicious PHP scripts used to hacker/defacers to gain unauthorized access their websites. This tool is written in PERL, so in order to run this script, firstly you have to install the Perl package when can be found HereScript Name : ShellFind... http://hacking-share.blogspot.com/2013/04/wordpress-and-joomla-shell-finder.html Published: 2013 04 14 20:23:00 Received: 2021 06 06 09:04:49 Feed: Hacking Share Source: Hacking Share Category: Cyber Security Topic: Cyber Security |
|
Article: How to Cheat at Securing Linux - published over 11 years ago. Content: Publisher: SyngressPap/Onl editionSeptember 30, 2007Language: EnglishISBN-10: 1597492078PDF430 Pages8.19 MBAre you one of the millions of SysAdmins running a Linux server who can't find a current book on Linux security? Well..this is the book for you. How to Cheat at Securing Linux Servers is designed to help you deploy a Linux system on the Internet in a va... http://hacking-share.blogspot.com/2013/04/how-to-cheat-at-securing-linux.html Published: 2013 04 15 15:41:00 Received: 2021 06 06 09:04:49 Feed: Hacking Share Source: Hacking Share Category: Cyber Security Topic: Cyber Security |
Article: Metasploit Pentesting cookbook - published over 11 years ago. Content: Set up a complete penetration testing environment using metasploit and virtual machines.Learn to penetration-test popular operating systems such as Windows7, Windows 2008 Server, Ubuntu etc.Get familiar with penetration testing based on client side exploitation techniques with detailed analysis of vulnerabilities and codesAvail of exclusive coverage o... http://hacking-share.blogspot.com/2013/04/metasploit-pentesting-cookbook.html Published: 2013 04 19 16:02:00 Received: 2021 06 06 09:04:49 Feed: Hacking Share Source: Hacking Share Category: Cyber Security Topic: Cyber Security |
|
Article: Windows Forensic Analysis Toolkit - published over 11 years ago. Content: DOWNLOAD:http://www.mediafire.com/?q9vylwwfyq8zyig... http://hacking-share.blogspot.com/2013/04/windows-forensic-analysis-toolkit.html Published: 2013 04 22 22:11:00 Received: 2021 06 06 09:04:49 Feed: Hacking Share Source: Hacking Share Category: Cyber Security Topic: Cyber Security |
|
Article: C++ HOW TO PROGRAM 8TH EDITION BY PAUL DEITEL - published over 11 years ago. Content: Ebook Info:-Publication Date: March 25, 2011 | ISBN-10: 0132662361 | ISBN-13: 978-0132662369 | Edition: 8Size ("56.21 Mb")Download : http://www.2shared.com/complete/djitC772/C_How_to_Program_8th_edition__.htmlDownload : mediafire ... http://hacking-share.blogspot.com/2013/04/c-how-to-program-8th-edition-by-paul.html Published: 2013 04 24 10:34:00 Received: 2021 06 06 09:04:49 Feed: Hacking Share Source: Hacking Share Category: Cyber Security Topic: Cyber Security |
Article: How To Crack a Program Step By Step - published over 11 years ago. Content: welcome to my tutorial on how to crack a program step by step!!in this tutorial i'm taking the example of keygenme.exe on how to crack!first of all download w32asm and hiew!!Google them!!extract it to desktop!!1) then place KeygenMe.exe, HIEW32.exe from Hiew folder and put folder W32Dasm 8 on desktop and then click on keygenMe.exe and enter any value it will... http://hacking-share.blogspot.com/2013/04/how-to-crack-program-step-by-step.html Published: 2013 04 30 14:04:00 Received: 2021 06 06 09:04:49 Feed: Hacking Share Source: Hacking Share Category: Cyber Security Topic: Cyber Security |
|
Article: JAVA SIGNED APPLET EXPLOIT - published over 11 years ago. Content: This exploit dynamically creates a .jar file via the Msf:: Exploit::Java mixin, then signs the it. The resulting signed applet is presented to the victim via a web page with an applet tag. The victim’s JVM will pop a dialog asking if they trust the signed applet. On older versions the dialog will display the value of CERTCN in the “Publisher” line. Newer JVM... http://hacking-share.blogspot.com/2013/05/java-signed-applet-exploit.html Published: 2013 05 06 10:05:00 Received: 2021 06 06 09:04:49 Feed: Hacking Share Source: Hacking Share Category: Cyber Security Topic: Cyber Security |
|
Article: BLIND and TIME-BASED SQL INJECTIONS - published over 11 years ago. Content: In today’s tutorial I will be doing my best to show you some examples of how to perform BLIND SQL Injections to extract information from a vulnerable backend database. This method is a little harder than the UNION method but is still very viable in the wild, if you are patient enough to stick with it to the end. I will follow similar form as previous tutoria... http://hacking-share.blogspot.com/2013/05/blind-and-time-based-sql-injections.html Published: 2013 05 08 09:43:00 Received: 2021 06 06 09:04:49 Feed: Hacking Share Source: Hacking Share Category: Cyber Security Topic: Cyber Security |
Article: WAF Bypass Sql Injection Tips - published over 11 years ago. Content: This is for who knows sql injection. Sometimes there will be a 403 forbidden error or not acceptable error its because of the WAF (web application firewall) you can bypass this by using the following queries. If u dont know sql injection you can learn it HEREOrder By Not Working?You can simply bypass it by using group by instead of order byUnion Select Bypa... http://hacking-share.blogspot.com/2013/05/waf-bypass-sql-injection-tips.html Published: 2013 05 16 17:39:00 Received: 2021 06 06 09:04:49 Feed: Hacking Share Source: Hacking Share Category: Cyber Security Topic: Cyber Security |
|
Article: Whonix OS - A complete anonymous TOR OS - published over 11 years ago. Content: About whonix OS :Whonix is a general purpose operating system working on virtual box, Debian GNU/Linux and Tor.Whonix is designed in a way that IP and DNS leaks are not possible, even a malware with administrative rights can not find out User's real IP adress and Location. (Image: GUI Desktop whonix OS) This works by running two virtual machines,one runs TOR... http://hacking-share.blogspot.com/2013/05/whonix-os-complete-anonymous-tor-os.html Published: 2013 05 22 08:48:00 Received: 2021 06 06 09:04:49 Feed: Hacking Share Source: Hacking Share Category: Cyber Security Topic: Cyber Security |
|
Article: [TUT] WAF Bypass Sql Injection - published over 11 years ago. Content: Today I am going to show you how to bypass Web Application Firewalls ( WAF ). I will demonstrate from the Simpliest and most Basic Techniques to the Most Advanced ones! NOTE: If you don’t know SQL Injection, read this first… What is WAF? WAF stands for Web Application Firewall. It is widely used nowadays to detect and defend SQL Injections! Let’s Beg... http://hacking-share.blogspot.com/2013/06/tut-waf-bypass-sql-injection.html Published: 2013 06 13 13:34:00 Received: 2021 06 06 09:04:49 Feed: Hacking Share Source: Hacking Share Category: Cyber Security Topic: Cyber Security |
Article: Ulitmate SQL injection dorks - published almost 11 years ago. Content: Pastebin LinkDoc Fun with SQLi .... http://hacking-share.blogspot.com/2014/02/ulitmate-sql-injection-dorks.html Published: 2014 02 21 14:17:00 Received: 2021 06 06 09:04:49 Feed: Hacking Share Source: Hacking Share Category: Cyber Security Topic: Cyber Security |
|
Article: SyRiAn Electronic Army Shell - published over 10 years ago. Content: Shell of Popular Hacker Group SEA(SyRiAn Electronic Army)http://pastebin.com/eqKLWawS Source : saha21 (HF)... http://hacking-share.blogspot.com/2014/02/syrian-electronic-army-shell.html Published: 2014 02 28 09:54:00 Received: 2021 06 06 09:04:49 Feed: Hacking Share Source: Hacking Share Category: Cyber Security Topic: Cyber Security |
|
Article: ISR STEALER Tutorial - published over 10 years ago. Content: ISR STEALER - STEAL PASSWORDS BY JUST SITTING AT HOME HACK BROWSER SAVED PASSWORDS ---------- Guys This is a very Interesting tutorial on HOW TO HACK THE BROWSER SAVED PASSWORDS, Actually this tutorial is mostly for GIRLS who save their passwords in browser huhhh GIRLS r just GIRLS LOLZ..... So, not to waste the time let's begin with our tutorial: Download ... http://hacking-share.blogspot.com/2014/03/isr-stealer-tutorial.html Published: 2014 03 16 14:49:00 Received: 2021 06 06 09:04:49 Feed: Hacking Share Source: Hacking Share Category: Cyber Security Topic: Cyber Security |
Article: Owning the Database with SQLMAP and METASPLOIT - published over 10 years ago. Content: Today I will be trying to teach you how to use it from Linux platform to take advantage of all that it has to offer. We will begin by booting up our favorite Linux distro of choice; I will be using BackTrack 4R2 for purposes of this tutorial - it is not required but helps because everything is mostly setup already (mostly Metasploit). Once you have your... http://hacking-share.blogspot.com/2014/05/owning-database-with-sqlmap-and.html Published: 2014 05 06 16:00:00 Received: 2021 06 06 09:04:49 Feed: Hacking Share Source: Hacking Share Category: Cyber Security Topic: Cyber Security |
|
Article: Basic Security Testing with Linux - published about 10 years ago. Content: With This Chapers !Chapter 1 – IntroductionPart 1: Installing and Basic OverviewChapter 2 – Installing Kali with VMWare PlayerPart 2 – Metasploit TutorialChapter 3 – Introduction to MetasploitChapter 4 – Meterpreter ShellPart 3 – Information Gathering & MappingChapter 5 – Recon ToolsChapter 6 – ShodanPart 4 - Attacking HostsChapter 7 – Metasploitable Tut... http://hacking-share.blogspot.com/2014/09/basic-security-testing-with-linux.html Published: 2014 09 14 07:06:00 Received: 2021 06 06 09:04:49 Feed: Hacking Share Source: Hacking Share Category: Cyber Security Topic: Cyber Security |
|
Article: Adf.ly Auto Clicker 2014 - published about 10 years ago. Content: Here is another adf.ly bot which is also working without any issue. Recently we shared a different adf.ly bot which is still working like a charm. But some how If you are facing any problem with that bot try using new proxies list, download it from below link. If still there is any problem try this bot. If you are new visitor to our site then kindly use this... http://hacking-share.blogspot.com/2014/10/adfly-auto-clicker-2014.html Published: 2014 10 04 15:19:00 Received: 2021 06 06 09:04:49 Feed: Hacking Share Source: Hacking Share Category: Cyber Security Topic: Cyber Security |
Article: Local Root Exploit For Linux Kernel 2.6.32 (precompile) - published over 9 years ago. Content: Note: Its a pre-compiled exploit and has been verified for list servers. It might working on other 2.6.32-X kernels too. So, test it and update us in comments. Thanks.Following is the list of vulnerable kernels which can be rooted with our exploit.Vulnerable Kernels:Linux localhost.domain 2.6.32-358.2.1.el6.x86_64 #1 SMP Wed Mar 13 00:26:49 UTC 2013 x86_64... http://hacking-share.blogspot.com/2015/04/local-root-exploit-for-linux-kernel.html Published: 2015 04 02 08:59:00 Received: 2021 06 06 09:04:48 Feed: Hacking Share Source: Hacking Share Category: Cyber Security Topic: Cyber Security |
|
Article: sshDoor (good ssh backdoor) - published over 9 years ago. Content: Usage: ./install passwrod port ./install jancok 33 open putty ssh port : 33 login : root password : jancok [root@serv ~]# uname -a;id Linux serv.test.com 2.6.18-53.1.13.el5 #1 SMP Tue Feb 12 13:01:45 EST 20010 i686 i686 i386 GNU/Linux uid=0(root) gid=0(root) groups=0(root),1(bin),2(daemon),3(sys),4(adm),6(disk),10(wheel) [root@serv ~]# Downlo... http://hacking-share.blogspot.com/2015/04/sshdoor-good-ssh-backdoor.html Published: 2015 04 03 03:42:00 Received: 2021 06 06 09:04:48 Feed: Hacking Share Source: Hacking Share Category: Cyber Security Topic: Cyber Security |
|
Article: Best Deface pages Collection - published over 9 years ago. Content: Don't Have Time for designing A Deface page .. ?? dont worry here you can download Best Deface Pages, Just replace the Name and messgae with your own name and message !![Click on Download And Copy The Code, Then Use it, for demo you can paste the code on Pastehtml.comHow to edit and save it... ??All html codes are shared on pastebin, copy it and paste in not... http://hacking-share.blogspot.com/2015/05/best-deface-pages-collection.html Published: 2015 05 04 03:18:00 Received: 2021 06 06 09:04:48 Feed: Hacking Share Source: Hacking Share Category: Cyber Security Topic: Cyber Security |
Article: SQL Injection Bypassing handbook - published over 9 years ago. Content: Content writers :-Chapter I:::SQL Injection: What is it?SQL Injection: An In-depth ExplanationWhy is it possible to pass SQL queries directly to a database that is hidden behind a firewall and any other security mechanism?Is my database at risk to SQL Injection?What is the impact of SQL Injection?Example of a SQLInjection AttackWebApplication Firewalls::Dete... http://hacking-share.blogspot.com/2015/05/sql-injection-bypassing-handbook.html Published: 2015 05 07 04:05:00 Received: 2021 06 06 09:04:48 Feed: Hacking Share Source: Hacking Share Category: Cyber Security Topic: Cyber Security |
|
Article: Best Wordlist sites - published over 9 years ago. Content: Best sites to Download wordlist...http://cyberwarzone.com/cyberwarfare/pas...word-listshttp://hashcrack.blogspot.de/p/wordlist-...ds_29.htmlhttp://www.skullsecurity.org/wiki/index.php/Passwordshttp://packetstormsecurity.org/Crackers/wordlists/http://www.isdpodcast.com/resources/62k-...-passwordshttp://g0tmi1k.blogspot.com/2011/06/dict...lists.htmlhttp://www.... http://hacking-share.blogspot.com/2015/05/best-wordlist-sites.html Published: 2015 05 15 08:40:00 Received: 2021 06 06 09:04:48 Feed: Hacking Share Source: Hacking Share Category: Cyber Security Topic: Cyber Security |
|
Article: SQLi Dumper - Advanced SQL Injection\Scanner Tool v7.0 Private Version - published over 9 years ago. Content: Designed to be automated to find and exploit web security vulnerabilities in mass from worldwide!It is robust, works in the background threads and is super faster.Uses an advanced search engine with 10 different online search services.Last release: 06/23/2014 v.7.0SQLi Dumper Features:-Suports 20 methods of SQL Injection;-Suports Multi. Online search engine... http://hacking-share.blogspot.com/2015/05/sqli-dumper-advanced-sql.html Published: 2015 05 20 09:40:00 Received: 2021 06 06 09:04:48 Feed: Hacking Share Source: Hacking Share Category: Cyber Security Topic: Cyber Security |
Article: PHP Security Training Video - published over 9 years ago. Content: Topics Of the Course !!!what is the threat ? How can you Analyze the threat ?what Types of threats Are out there?How bad is it ?what Threats Are Specific to PHP?what are some resources to find out more ??what are the Consequences when a website is not protected Against Attack?Financial lossLoss of Serviceidentity Theftwebsite infectionwhat are most common fo... http://hacking-share.blogspot.com/2015/05/php-security-training-video.html Published: 2015 05 22 09:45:00 Received: 2021 06 06 09:04:48 Feed: Hacking Share Source: Hacking Share Category: Cyber Security Topic: Cyber Security |
|
Article: SInjector v2.3 Python Script with Payload support and how to use it with SSH Tunnel for Free Internet - published about 5 years ago. Content: Hello everyone.Now,I would like to share SInjector Python Script which supports SSH and VPN with Payload feature(like HTTP Injector,eProxy,KPN Tunnel). SInjector Python Script can be used for free internet tricks with SSH or VPN Tunneling.Free Internet with Online privacy.I would like to thank it’s developer RedFox who developed this script.Many have been s... http://hacking-share.blogspot.com/2019/10/sinjector-v23-python-script-with.html Published: 2019 10 29 16:23:00 Received: 2021 06 06 09:04:48 Feed: Hacking Share Source: Hacking Share Category: Cyber Security Topic: Cyber Security |
|
Article: Vulnerability Reward Program: 2020 Year in Review - published almost 4 years ago. Content: Posted by Anna Hupa, Senior Strategist, Vulnerability Rewards TeamDespite the challenges of this unprecedented year, our vulnerability researchers have achieved more than ever before, partnering with our Vulnerability Reward Programs (VRPs) to protect Google’s users by discovering security and abuse bugs and reporting them to us for remediation. Their dilige... http://security.googleblog.com/2021/02/vulnerability-reward-program-2020-year.html Published: 2021 02 04 18:00:00 Received: 2021 06 06 09:04:48 Feed: Google Online Security Blog Source: Google Online Security Blog Category: Cyber Security Topic: Cyber Security |
Article: Launching OSV - Better vulnerability triage for open source - published almost 4 years ago. Content: Posted by Oliver Chang and Kim Lewandowski, Google Security TeamWe are excited to launch OSV (Open Source Vulnerabilities), our first step towards improving vulnerability triage for developers and consumers of open source software. The goal of OSV is to provide precise data on where a vulnerability was introduced and where it got fixed, thereby helping consu... http://security.googleblog.com/2021/02/launching-osv-better-vulnerability.html Published: 2021 02 05 17:00:00 Received: 2021 06 06 09:04:48 Feed: Google Online Security Blog Source: Google Online Security Blog Category: Cyber Security Topic: Cyber Security |
|
Article: Mitigating Memory Safety Issues in Open Source Software - published almost 4 years ago. Content: Posted by Dan Lorenc, Infrastructure Security TeamMemory-safety vulnerabilities have dominated the security field for years and often lead to issues that can be exploited to take over entire systems. A recent study found that "~70% of the vulnerabilities addressed through a security update each year continue to be memory safety issues.” Another analysis on s... http://security.googleblog.com/2021/02/mitigating-memory-safety-issues-in-open.html Published: 2021 02 17 14:00:00 Received: 2021 06 06 09:04:48 Feed: Google Online Security Blog Source: Google Online Security Blog Category: Cyber Security Topic: Cyber Security |
|
Article: New Password Checkup Feature Coming to Android - published almost 4 years ago. Content: Posted by Arvind Kumar Sugumar, Software Engineer, Android Team(Note: We’ve updated this post to reflect that the API works by collecting 3.25 bytes of the hashed username)With the proliferation of digital services in our lives, it’s more important than ever to make sure our online information remains safe and secure. Passwords are usually the first line of ... http://security.googleblog.com/2021/02/new-password-checkup-feature-coming-to.html Published: 2021 02 23 17:00:00 Received: 2021 06 06 09:04:48 Feed: Google Online Security Blog Source: Google Online Security Blog Category: Cyber Security Topic: Cyber Security |
Article: Celebrating the influence and contributions of Black+ Security & Privacy Googlers - published over 3 years ago. Content: Posted by Royal Hansen, Vice President, SecurityBlack History Month may be coming to a close, but our work to build sustainable equity for Google’s Black+ community, and externally is ongoing. Currently, Black Americans make up less than 12% of information security analysts in the U.S. In an industry that consistently requires new ideas to spark positive cha... http://security.googleblog.com/2021/02/celebrating-influence-and-contributions.html Published: 2021 02 25 17:00:00 Received: 2021 06 06 09:04:48 Feed: Google Online Security Blog Source: Google Online Security Blog Category: Cyber Security Topic: Cyber Security |
|
Article: #ShareTheMicInCyber: Rob Duhart - published over 3 years ago. Content: Posted by Matt Levine, Director, Risk Management In an effort to showcase the breadth and depth of Black+ contributions to security and privacy fields, we’ve launched a series in support of #ShareTheMicInCyber that aims to elevate and celebrate the Black+ voices in security and privacy we have here at Google.Today, we will hear from Rob Duhart, he leads a cr... http://security.googleblog.com/2021/03/sharethemicincyber-rob-duhart.html Published: 2021 03 01 17:07:00 Received: 2021 06 06 09:04:48 Feed: Google Online Security Blog Source: Google Online Security Blog Category: Cyber Security Topic: Cyber Security |
|
Article: Introducing sigstore: Easy Code Signing & Verification for Supply Chain Integrity - published over 3 years ago. Content: Posted by Kim Lewandowski & Dan Lorenc, Google Open Source Security TeamOne of the fundamental security issues with open source is that it’s difficult to know where the software comes from or how it was built, making it susceptible to supply chain attacks. A few recent examples of this include dependency confusion attack and malicious RubyGems package t... http://security.googleblog.com/2021/03/introducing-sigstore-easy-code-signing.html Published: 2021 03 09 21:14:00 Received: 2021 06 06 09:04:48 Feed: Google Online Security Blog Source: Google Online Security Blog Category: Cyber Security Topic: Cyber Security |
Article: Fuzzing Java in OSS-Fuzz - published over 3 years ago. Content: Posted by Jonathan Metzman, Google Open Source Security TeamOSS-Fuzz, Google’s open source fuzzing service, now supports fuzzing applications written in Java and other Java Virtual Machine (JVM) based languages (e.g. Kotlin, Scala, etc.). Open source projects written in JVM based languages can add their project to OSS-Fuzz by following our documentation.The ... http://security.googleblog.com/2021/03/fuzzing-java-in-oss-fuzz.html Published: 2021 03 10 17:02:00 Received: 2021 06 06 09:04:48 Feed: Google Online Security Blog Source: Google Online Security Blog Category: Cyber Security Topic: Cyber Security |
|
Article: #ShareTheMicInCyber: Brooke Pearson - published over 3 years ago. Content: Posted by Parisa Tabriz, Head of Chrome Product, Engineering and UX In an effort to showcase the breadth and depth of Black+ contributions to security and privacy fields, we’ve launched a profile series that aims to elevate and celebrate the Black+ voices in security and privacy we have here at Google.Brooke Pearson manages the Privacy Sandbox program at Goo... http://security.googleblog.com/2021/03/sharethemicincyber-brooke-pearson.html Published: 2021 03 11 20:23:00 Received: 2021 06 06 09:04:48 Feed: Google Online Security Blog Source: Google Online Security Blog Category: Cyber Security Topic: Cyber Security |
|
Article: Continuing to Raise the Bar for Verifiable Security on Pixel - published over 3 years ago. Content: Posted by Eugene Liderman, Android Security and Privacy TeamEvaluating the security of mobile devices is difficult, and a trusted way to validate a company’s claims is through independent, industry certifications. When it comes to smartphones one of the most rigorous end-to-end certifications is the Common Criteria (CC) Mobile Device Fundamentals (MDF) Prote... http://security.googleblog.com/2021/03/continuing-to-raise-bar-for-verifiable.html Published: 2021 03 11 21:02:00 Received: 2021 06 06 09:04:48 Feed: Google Online Security Blog Source: Google Online Security Blog Category: Cyber Security Topic: Cyber Security |
Article: A Spectre proof-of-concept for a Spectre-proof web - published over 3 years ago. Content: Posted by Stephen Röttger and Artur Janc, Information Security EngineersThree years ago, Spectre changed the way we think about security boundaries on the web. It quickly became clear that flaws in modern processors undermined the guarantees that web browsers could make about preventing data leaks between applications. As a result, web browser vendors have b... http://security.googleblog.com/2021/03/a-spectre-proof-of-concept-for-spectre.html Published: 2021 03 12 14:59:00 Received: 2021 06 06 09:04:48 Feed: Google Online Security Blog Source: Google Online Security Blog Category: Cyber Security Topic: Cyber Security |
|
Article: Google, HTTPS, and device compatibility - published over 3 years ago. Content: Posted by Ryan Hurst, Product Management, Google Trust ServicesEncryption is a fundamental building block when you’re on a mission to organize the world’s information and make it universally accessible with strong security and privacy. This is why a little over four years ago we created Google Trust Services—our publicly trusted Certificate Authority (CA).Th... http://security.googleblog.com/2021/03/google-https-and-device-compatibility.html Published: 2021 03 15 13:00:00 Received: 2021 06 06 09:04:48 Feed: Google Online Security Blog Source: Google Online Security Blog Category: Cyber Security Topic: Cyber Security |
|
Article: Announcing the winners of the 2020 GCP VRP Prize - published over 3 years ago. Content: Posted by Harshvardhan Sharma, Information Security Engineer, Google We first announced the GCP VRP Prize in 2019 to encourage security researchers to focus on the security of Google Cloud Platform (GCP), in turn helping us make GCP more secure for our users, customers, and the internet at large. In the first iteration of the prize, we awarded $100,000 to th... http://security.googleblog.com/2021/03/announcing-winners-of-2020-gcp-vrp-prize.html Published: 2021 03 17 14:40:00 Received: 2021 06 06 09:04:48 Feed: Google Online Security Blog Source: Google Online Security Blog Category: Cyber Security Topic: Cyber Security |
Article: Announcing the Android Ready SE Alliance - published over 3 years ago. Content: Posted by Sudhi Herle and Jason Wong, Android Team When the Pixel 3 launched in 2018, it had a new tamper-resistant hardware enclave called Titan M. In addition to being a root-of-trust for Pixel software and firmware, it also enabled tamper-resistant key storage for Android Apps using StrongBox. StrongBox is an implementation of the Keymaster HAL that resid... http://security.googleblog.com/2021/03/announcing-android-ready-se-alliance.html Published: 2021 03 25 17:00:00 Received: 2021 06 06 09:04:48 Feed: Google Online Security Blog Source: Google Online Security Blog Category: Cyber Security Topic: Cyber Security |
|
Article: Rust in the Android platform - published over 3 years ago. Content: Posted by Jeff Vander Stoep and Stephen Hines, Android Team Correctness of code in the Android platform is a top priority for the security, stability, and quality of each Android release. Memory safety bugs in C and C++ continue to be the most-difficult-to-address source of incorrectness. We invest a great deal of effort and resources into detecting, fixing... http://security.googleblog.com/2021/04/rust-in-android-platform.html Published: 2021 04 06 17:00:00 Received: 2021 06 06 09:04:48 Feed: Google Online Security Blog Source: Google Online Security Blog Category: Cyber Security Topic: Cyber Security |
|
Article: Rust in the Linux kernel - published over 3 years ago. Content: Posted by Wedson Almeida Filho, Android Team In our previous post, we announced that Android now supports the Rust programming language for developing the OS itself. Related to this, we are also participating in the effort to evaluate the use of Rust as a supported language for developing the Linux kernel. In this post, we discuss some technical aspects of ... http://security.googleblog.com/2021/04/rust-in-linux-kernel.html Published: 2021 04 14 23:27:00 Received: 2021 06 06 09:04:48 Feed: Google Online Security Blog Source: Google Online Security Blog Category: Cyber Security Topic: Cyber Security |
Article: A New Standard for Mobile App Security - published over 3 years ago. Content: Posted by Brooke Davis and Eugene Liderman, Android Security and Privacy TeamWith all of the challenges from this past year, users have become increasingly dependent on their mobile devices to create fitness routines, stay connected with loved ones, work remotely, and order things like groceries with ease. According to eMarketer, in 2020 users spent over thr... http://security.googleblog.com/2021/04/a-new-standard-for-mobile-app-security.html Published: 2021 04 15 13:00:00 Received: 2021 06 06 09:04:48 Feed: Google Online Security Blog Source: Google Online Security Blog Category: Cyber Security Topic: Cyber Security |
|
Article: How we fought bad apps and developers in 2020 - published over 3 years ago. Content: Posted by Krish Vitaldevara, Director of Product Management Trust & Safety, Google PlayProviding safe experiences to billions of users and millions of Android developers has been one of the highest priorities for Google Play for many years. Last year we introduced new policies, improved our systems, and further optimized our processes to better protect o... http://security.googleblog.com/2021/04/how-we-fought-bad-apps-and-developers.html Published: 2021 04 21 17:01:00 Received: 2021 06 06 09:04:48 Feed: Google Online Security Blog Source: Google Online Security Blog Category: Cyber Security Topic: Cyber Security |
|
Article: Enabling Hardware-enforced Stack Protection (cetcompat) in Chrome - published over 3 years ago. Content: Alex Gough, Engineer, Chrome Platform Security TeamChrome 90 for Windows adopts Hardware-enforced Stack Protection, a mitigation technology to make the exploitation of security bugs more difficult for attackers. This is supported by Windows 20H1 (December Update) or later, running on processors with Control-flow Enforcement Technology (CET) such as Intel 11t... http://security.googleblog.com/2021/05/enabling-hardware-enforced-stack.html Published: 2021 05 04 17:00:00 Received: 2021 06 06 09:04:48 Feed: Google Online Security Blog Source: Google Online Security Blog Category: Cyber Security Topic: Cyber Security |
Article: Making the Internet more secure one signed container at a time - published over 3 years ago. Content: Posted by Priya Wadhwa, Jake Sanders, Google Open Source Security TeamWith over 16 million pulls per month, Google’s `distroless` base images are widely used and depended on by large projects like Kubernetes and Istio. These minimal images don’t include common tools like shells or package managers, making their attack surface (and download size!) smaller tha... http://security.googleblog.com/2021/05/making-internet-more-secure-one-signed.html Published: 2021 05 06 13:00:00 Received: 2021 06 06 09:04:48 Feed: Google Online Security Blog Source: Google Online Security Blog Category: Cyber Security Topic: Cyber Security |
|
Article: Integrating Rust Into the Android Open Source Project - published over 3 years ago. Content: Posted by Ivan Lozano, Android TeamThe Android team has been working on introducing the Rust programming language into the Android Open Source Project (AOSP) since 2019 as a memory-safe alternative for platform native code development. As with any large project, introducing a new language requires careful consideration. For Android, one important area was as... http://security.googleblog.com/2021/05/integrating-rust-into-android-open.html Published: 2021 05 11 17:31:00 Received: 2021 06 06 09:04:48 Feed: Google Online Security Blog Source: Google Online Security Blog Category: Cyber Security Topic: Cyber Security |
|
Article: Introducing Half-Double: New hammering technique for DRAM Rowhammer bug - published over 3 years ago. Content: Research Team: Salman Qazi, Yoongu Kim, Nicolas Boichat, Eric Shiu & Mattias Nissler Today, we are sharing details around our discovery of Half-Double, a new Rowhammer technique that capitalizes on the worsening physics of some of the newer DRAM chips to alter the contents of memory.Rowhammer is a DRAM vulnerability whereby repeated accesses to one addre... http://security.googleblog.com/2021/05/introducing-half-double-new-hammering.html Published: 2021 05 25 15:59:00 Received: 2021 06 06 09:04:48 Feed: Google Online Security Blog Source: Google Online Security Blog Category: Cyber Security Topic: Cyber Security |
Article: Introducing Security By Design - published over 3 years ago. Content: Posted by Jon Markoff and Sean Smith, Android Security and Privacy Team Integrating security into your app development lifecycle can save a lot of time, money, and risk. That’s why we’ve launched Security by Design on Google Play Academy to help developers identify, mitigate, and proactively protect against security threats. The Android ecosystem, including ... http://security.googleblog.com/2021/05/introducing-security-by-design.html Published: 2021 05 26 17:00:00 Received: 2021 06 06 09:04:48 Feed: Google Online Security Blog Source: Google Online Security Blog Category: Cyber Security Topic: Cyber Security |
|
Article: New protections for Enhanced Safe Browsing users in Chrome - published over 3 years ago. Content: Posted by Badr Salmi, Google Safe Browsing & Varun Khaneja, Chrome Security In 2020 we launched Enhanced Safe Browsing, which you can turn on in your Chrome security settings, with the goal of substantially increasing safety on the web. These improvements are being built on top of existing security mechanisms that already protect billions of devices. Sin... http://security.googleblog.com/2021/06/new-protections-for-enhanced-safe.html Published: 2021 06 03 17:00:00 Received: 2021 06 06 09:04:48 Feed: Google Online Security Blog Source: Google Online Security Blog Category: Cyber Security Topic: Cyber Security |
|
Article: Announcing New Abuse Research Grants Program - published over 3 years ago. Content: Posted by Anna Hupa, Marc Henson, and Martin Straka, Google VRP Team Our Abuse Bug Bounty program has proved tremendously successful in the past three years since its introduction – thanks to our incredibly engaged community of researchers. Their contributions resulted in +1,000 valid bugs, helping us raise the bar in combating product abuse.As a result of ... http://security.googleblog.com/2021/06/announcing-new-abuse-research-grants.html Published: 2021 06 04 13:03:00 Received: 2021 06 06 09:04:48 Feed: Google Online Security Blog Source: Google Online Security Blog Category: Cyber Security Topic: Cyber Security |
Article: Ping Identity names Jason Wolf as CRO - published over 3 years ago. Content: https://www.helpnetsecurity.com/2021/06/06/ping-identity-jason-wolf/ Published: 2021 06 05 22:15:43 Received: 2021 06 06 09:04:47 Feed: Help Net Security - News Source: Help Net Security - News Category: Cyber Security Topic: Cyber Security |
|
Article: Absolute appoints Matt Schoenfeld as CRO - published over 3 years ago. Content: https://www.helpnetsecurity.com/2021/06/06/absolute-matt-schoenfeld/ Published: 2021 06 05 22:30:31 Received: 2021 06 06 09:04:47 Feed: Help Net Security - News Source: Help Net Security - News Category: Cyber Security Topic: Cyber Security |
|
Article: Toby Buschini joins Ermetic as VP of worldwide sales - published over 3 years ago. Content: https://www.helpnetsecurity.com/2021/06/06/ermetic-toby-buschini/ Published: 2021 06 05 22:45:30 Received: 2021 06 06 09:04:47 Feed: Help Net Security - News Source: Help Net Security - News Category: Cyber Security Topic: Cyber Security |
Article: Appgate announces three promotions within its executive leadership team - published over 3 years ago. Content: https://www.helpnetsecurity.com/2021/06/06/appgate-executive-leadership-team/ Published: 2021 06 05 23:00:22 Received: 2021 06 06 09:04:47 Feed: Help Net Security - News Source: Help Net Security - News Category: Cyber Security Topic: Cyber Security |
|
Article: Loomis Group appoints Stellan Abrahamsson as CRO - published over 3 years ago. Content: https://www.helpnetsecurity.com/2021/06/06/loomis-group-stellan-abrahamsson/ Published: 2021 06 05 23:15:49 Received: 2021 06 06 09:04:47 Feed: Help Net Security - News Source: Help Net Security - News Category: Cyber Security Topic: Cyber Security |
|
Article: Snow Software and BMC expand partnership to support IT leaders with DX and hybrid work initiatives - published over 3 years ago. Content: https://www.helpnetsecurity.com/2021/06/06/snow-software-bmc/ Published: 2021 06 05 23:30:57 Received: 2021 06 06 09:04:47 Feed: Help Net Security - News Source: Help Net Security - News Category: Cyber Security Topic: Cyber Security |
Article: Verimatrix integrates NexStreaming NexPlayer into its Multi-DRM Core solution - published over 3 years ago. Content: https://www.helpnetsecurity.com/2021/06/06/verimatrix-nexstreaming/ Published: 2021 06 06 00:00:09 Received: 2021 06 06 09:04:47 Feed: Help Net Security - News Source: Help Net Security - News Category: Cyber Security Topic: Cyber Security |
|
Article: VMware and Zoom enable secure collaboration experience for hybrid work environments - published over 3 years ago. Content: https://www.helpnetsecurity.com/2021/06/06/vmware-zoom/ Published: 2021 06 06 00:30:07 Received: 2021 06 06 09:04:47 Feed: Help Net Security - News Source: Help Net Security - News Category: Cyber Security Topic: Cyber Security |
|
Click to Open Code Editor