Security-Portal.cz je internetový portál zaměřený na počítačovou bezpečnost, hacking, anonymitu, počítačové sítě, programování, šifrování, exploity, Linux a BSD systémy. Provozuje spoustu zajímavých služeb a podporuje příznivce v zajímavých projektech.

Kategorie

Milióny mobilů a tabletů se nakazily virem

Novinky.cz - bezpečnost - 11 Leden, 2018 - 11:57
Na pozoru by se měli mít majitelé chytrých telefonů a počítačových tabletů s operačním systémem Android. Bezpečnostní experti z antivirové společnosti Check Point totiž zjistili, že přímo v oficiálním obchodě společnosti Google se nacházely desítky zavirovaných programů. A ty si stáhly milióny lidí.
Kategorie: Hacking & Security

macOS Malware Creator Charged With Spying on Thousands of PCs Over 13 Years

The Hacker News - 11 Leden, 2018 - 11:24
The U.S. Justice Department unsealed 16-count indictment charges on Wednesday against a computer programmer from Ohio who is accused of creating and installing spyware on thousands of computers for more than 13 years. According to the indictment, 28-year-old Phillip R. Durachinsky is the alleged author of FruitFly malware that was found targeting Apple Mac users earlier last year worldwide,
Kategorie: Hacking & Security

FBI chief claims encryption is an 'urgent public safety issue'

LinuxSecurity.com - 11 Leden, 2018 - 10:55
LinuxSecurity.com: If "Going Dark" were an actual thing, then surely the FBI would be completely blind by now. After all, the bureau has been harping on how it was "going dark" for 25 years! That's right, the FBI started making claims about "going dark" due to encryption way back in 1993, according to Bruce Schneier.
Kategorie: Hacking & Security

[Bug] macOS High Sierra App Store Preferences Can Be Unlocked Without a Password

The Hacker News - 11 Leden, 2018 - 09:22
Yet another password vulnerability has been uncovered in macOS High Sierra, which unlocks App Store System Preferences with any password (or no password at all). A new password bug has been discovered in the latest version of macOS High Sierra that allows anyone with access to your Mac to unlock App Store menu in System Preferences with any random password or no password at all. <!-- adsense
Kategorie: Hacking & Security

Microsoft Releases Patches for 16 Critical Flaws, Including a Zero-Day

The Hacker News - 11 Leden, 2018 - 08:11
If you think that only CPU updates that address this year's major security flaws—Meltdown and Spectre—are the only ones you are advised to grab immediately, there are a handful of major security flaws that you should pay attention to. Microsoft has issued its first Patch Tuesday for 2018 to address 56 CVE-listed flaws, including a zero-day vulnerability in MS Office related that had been
Kategorie: Hacking & Security

New Year’s #sophospuzzle crossword 2017/2018 – solution and winners!

Sophos Naked Security - 11 Leden, 2018 - 00:41
Here you go - #sophospuzzle crossword, NYE 2017/2018 - the answers and the winners

WhatsApp Flaw Could Allow 'Potential Attackers' to Spy On Encrypted Group Chats

The Hacker News - 10 Leden, 2018 - 20:46
A more dramatic revelation of 2018—an outsider can secretly eavesdrop on your private end-to-end encrypted group chats on WhatsApp and Signal messaging apps. Considering protection against three types of attackers—malicious user, network attacker, and malicious server—an end-to-end encryption protocol plays a vital role in securing instant messaging services. The primary purpose of having
Kategorie: Hacking & Security

How Security Awareness Training Can Protect Law Enforcement

InfoSec Institute Resources - 10 Leden, 2018 - 19:56

Why Does the Law Enforcement Industry Need Security Awareness? Law enforcement is not immune to cyber attacks. In fact, the sector faces multiple threats. How bad is it? We don’t know, and if we did, we wouldn’t tell you, because you could be a cyber criminal reading this and mentally filing the information away with […]

The post How Security Awareness Training Can Protect Law Enforcement appeared first on InfoSec Resources.

How Security Awareness Training Can Protect Law Enforcement was first posted on January 10, 2018 at 12:56 pm.
©2017 "InfoSec Resources". Use of this feed is for personal non-commercial use only. If you are not reading this article in your feed reader, then the site is guilty of copyright infringement. Please contact me at darren.dalasta@infosecinstitute.com
Kategorie: Hacking & Security

Security Awareness: 7 Tips for Training Field Technicians

InfoSec Institute Resources - 10 Leden, 2018 - 19:41

Supervisory Control and Data Acquisition (SCADA) is a system of software and hardware elements that allow industrial and governmental organizations to gather data in real time from mission-critical plants in remote locations in order to control equipment and conditions. It is used to monitor, assess, and audit systems as diverse as the US power grid, […]

The post Security Awareness: 7 Tips for Training Field Technicians appeared first on InfoSec Resources.

Security Awareness: 7 Tips for Training Field Technicians was first posted on January 10, 2018 at 12:41 pm.
©2017 "InfoSec Resources". Use of this feed is for personal non-commercial use only. If you are not reading this article in your feed reader, then the site is guilty of copyright infringement. Please contact me at darren.dalasta@infosecinstitute.com
Kategorie: Hacking & Security

FBI Director Calls Smartphone Encryption an ‘Urgent Public Safety Issue’

Threatpost - 10 Leden, 2018 - 19:37
The debate over the government's authority to access private encrypted data on digital devices was amplified when the Federal Bureau of Investigation Director Christopher Wray called unbreakable encryption an 'urgent public safety issue.'
Kategorie: Hacking & Security

SecurityIQ Update Adds 30+ Industry-Specific, Role-Based Awareness Modules

InfoSec Institute Resources - 10 Leden, 2018 - 17:24

Security awareness training is not one-size-fits-all, so we rigorously add new modules to SecurityIQ for teams in different industries, roles and locations.This personalized approach engages your workforce by focusing on security concerns most relevant to their daily tasks. Our latest update includes 21 new modules for healthcare employees, 10 new modules for financial services employees […]

The post SecurityIQ Update Adds 30+ Industry-Specific, Role-Based Awareness Modules appeared first on InfoSec Resources.

SecurityIQ Update Adds 30+ Industry-Specific, Role-Based Awareness Modules was first posted on January 10, 2018 at 10:24 am.
©2017 "InfoSec Resources". Use of this feed is for personal non-commercial use only. If you are not reading this article in your feed reader, then the site is guilty of copyright infringement. Please contact me at darren.dalasta@infosecinstitute.com
Kategorie: Hacking & Security

Wi-Fi security overhaul coming with WPA3

Sophos Naked Security - 10 Leden, 2018 - 16:45
Nearly 14 years after it ratified the Wireless Protected Access 2 (WPA2), the Wi-Fi Alliance has given the world a peek at what might be coming next for wireless security.

How to Assess & Manage Third-Party Vendor Security Risks

InfoSec Institute Resources - 10 Leden, 2018 - 15:58

One of the most famous and largest cyberattacks of all time was the Target breach of 2013. The attack exposed the data records of more than 70 million people and payment card data for 41 million customers. The breach cost Target not only financially, but also in terms of reputation and loss of trust. Fallout […]

The post How to Assess & Manage Third-Party Vendor Security Risks appeared first on InfoSec Resources.

How to Assess & Manage Third-Party Vendor Security Risks was first posted on January 10, 2018 at 8:58 am.
©2017 "InfoSec Resources". Use of this feed is for personal non-commercial use only. If you are not reading this article in your feed reader, then the site is guilty of copyright infringement. Please contact me at darren.dalasta@infosecinstitute.com
Kategorie: Hacking & Security

Marketing ads, soon to be screening on your car dashboard

Sophos Naked Security - 10 Leden, 2018 - 14:26
Get ready for car-delivered ads tailored to your whereabouts and your typical routes.

Average HCISSP Salary in 2017

InfoSec Institute Resources - 10 Leden, 2018 - 14:00

Introduction The HealthCare Information Security and Privacy Practitioner (HCISPP) is a certification offered by (ISC)2. It tests the knowledge in the areas of both privacy and security of healthcare information. Candidates appearing for this certification should have at least two years of prior work experience in a related domain. The exam consists of 125 multiple […]

The post Average HCISSP Salary in 2017 appeared first on InfoSec Resources.

Average HCISSP Salary in 2017 was first posted on January 10, 2018 at 7:00 am.
©2017 "InfoSec Resources". Use of this feed is for personal non-commercial use only. If you are not reading this article in your feed reader, then the site is guilty of copyright infringement. Please contact me at darren.dalasta@infosecinstitute.com
Kategorie: Hacking & Security

Smart-toymaker VTech fined over charges of violating child privacy law

Sophos Naked Security - 10 Leden, 2018 - 13:21
The FTC said VTech transmitted and stored information without intrusion prevention, detection or encryption, in spite of policy claims.

Beautiful webchat honeys turn out to be fembots

Sophos Naked Security - 10 Leden, 2018 - 12:57
Here we sit, broken hearted, paid our yuan and the video never started.

Fedora 28 Looking To Replace Glibc's libcrypt With libxcrypt

LinuxSecurity.com - 10 Leden, 2018 - 12:18
LinuxSecurity.com: As upstream Glibc is working on deprecating libcrypt for its eventual removal from the codebase, Fedora developers are looking at using libxcrypt for their hashing/encoding crypto library.
Kategorie: Hacking & Security

Adobe patches information leak vulnerability

LinuxSecurity.com - 10 Leden, 2018 - 12:17
LinuxSecurity.com: In comparison to Microsoft which is having a busy month patching due to Spectre and Meltdown, Adobe's latest patch update addresses only one vulnerability.
Kategorie: Hacking & Security

Počítačoví piráti mění taktiku, stále častěji nasazují těžařské viry

Novinky.cz - bezpečnost - 10 Leden, 2018 - 11:21
Počítačoví piráti v uplynulých týdnech změnili taktiku. Na ústupu jsou vyděračské viry, které kyberzločincům vydělávaly velké peníze. Místo toho stále častěji nasazují tzv. těžařské viry, jež potají využívají výkon napadených sestav a těží prostřednictvím sofistikovaných výpočtů virtuální měny. Vyplývá to ze statistik antivirové společnosti Eset za měsíc prosinec.
Kategorie: Hacking & Security
Syndikovat obsah