Security-Portal.cz je internetový portál zaměřený na počítačovou bezpečnost, hacking, anonymitu, počítačové sítě, programování, šifrování, exploity, Linux a BSD systémy. Provozuje spoustu zajímavých služeb a podporuje příznivce v zajímavých projektech.

Kategorie

Ransomware Attack Hits Data Center Provider CyrusOne: Report

Threatpost - 5 Prosinec, 2019 - 22:08
Security experts say the incident shows that cybercriminals are using ransomware to hit companies where it hurts.
Kategorie: Hacking & Security

FBI Puts $5 Million Bounty On Russian Hackers Behind Dridex Banking Malware

The Hacker News - 5 Prosinec, 2019 - 20:16
The United States Department of Justice today disclosed the identities of two Russian hackers and charged them for developing and distributing the Dridex banking Trojan using which the duo stole more than $100 million over a period of 10 years. Maksim Yakubets, the leader of 'Evil Corp' hacking group, and his co-conspirator Igor Turashev primarily distributed Dridex — also known as 'Bugat'
Kategorie: Hacking & Security

AT&T, Verizon Subscribers Exposed as Mobile Bills Turn Up on the Open Web

Threatpost - 5 Prosinec, 2019 - 19:34
Names, addresses, phone numbers, call and text message records and account PINs were all caught up in a cloud misconfiguration.
Kategorie: Hacking & Security

Feds Offer $5M Reward to Nab ‘Evil Corp’ Dridex Hacker

Threatpost - 5 Prosinec, 2019 - 18:55
Authorities cracked down on cybercrime group Evil Corp. with sanctions and charges against its leader, known for his lavish lifestyle.
Kategorie: Hacking & Security

Cookie-stealing malware wants to know your Facebook ad budget

Sophos Naked Security - 5 Prosinec, 2019 - 18:37
The AdKoob malware that sneakily peeks at how much you're spending on ads is back.

Hack the Box (HTB) machines walkthrough series — Popcorn

InfoSec Institute Resources - 5 Prosinec, 2019 - 18:31

Today, we will be continuing with our exploration of Hack the Box (HTB) machines as seen in previous articles. This walkthrough is of an HTB machine named Popcorn. HTB is an excellent platform that hosts machines belonging to multiple OSes. It also has some other challenges as well. Individuals have to solve the puzzle (simple […]

The post Hack the Box (HTB) machines walkthrough series — Popcorn appeared first on Infosec Resources.

Hack the Box (HTB) machines walkthrough series — Popcorn was first posted on December 5, 2019 at 11:31 am.
©2017 "InfoSec Resources". Use of this feed is for personal non-commercial use only. If you are not reading this article in your feed reader, then the site is guilty of copyright infringement. Please contact me at darren.dalasta@infosecinstitute.com
Kategorie: Hacking & Security

iCloud-hacking politician to be sentenced on Christmas eve

Sophos Naked Security - 5 Prosinec, 2019 - 18:09
Former Dutch city council member Mitchel van der K invaded hundreds of iCloud accounts “frequently and repeatedly”.

Machine-raiding Python libraries squashed by community

Sophos Naked Security - 5 Prosinec, 2019 - 17:55
Python developers have once again fallen victim to malicious software libraries lurking in their favourite package manager.

HackerOne Breach Leads to $20,000 Bounty Reward

Threatpost - 5 Prosinec, 2019 - 17:31
HackerOne has paid out $20,000 to a bounty hunter who discovered a session cookie issue, due to "human error," on the bug bounty platform.
Kategorie: Hacking & Security

Critical DoS messaging flaw fixed in December Android update

Sophos Naked Security - 5 Prosinec, 2019 - 17:25
Android’s December 2019 updates arrived this week, patching a small list of system and Qualcomm flaws across the operating system’s two patch levels.

OpenBSD Hit with Authentication, LPE Bugs

Threatpost - 5 Prosinec, 2019 - 17:06
The authentication bypass (CVE-2019-19521) is remotely exploitable.
Kategorie: Hacking & Security

Yodel parcel tracking app blabs about other people’s parcels

Sophos Naked Security - 5 Prosinec, 2019 - 16:31
Yodel's mobile parcel delivery app was leaking people's delivery data to others using the app, a security researcher discovered.

IM RAT spy tool seller raided, busted, kicked offline

Sophos Naked Security - 5 Prosinec, 2019 - 16:24
The spyware gave complete control of victimized computers, sold for as little as$25, and was bought by 14,500 hackers worldwide.

Canonical Patches Intel Microcode Regression on Ubuntu PCs with Skylake CPUs>

LinuxSecurity.com - 5 Prosinec, 2019 - 15:07
Canonical has published a new security advisory today where the company behind the popular Ubuntu Linux operating system apologizes for a regression introduced by the latest Intel microcode firmware update.
Kategorie: Hacking & Security

Red Hat Enterprise Linux 7 and CentOS 7 Receive Important Kernel Security Update>

LinuxSecurity.com - 5 Prosinec, 2019 - 15:02
Red Hat and CentOS have announced the availability of important kernel security updates for their Red Hat Enterprise Linux 7 and CentOS Linux 7 operating system series that address two security vulnerabilities and numerous other bugs. Learn more:
Kategorie: Hacking & Security

MITRE ATT&CK: Drive-by compromise

InfoSec Institute Resources - 5 Prosinec, 2019 - 15:01

Introduction In this article, we will discuss drive-by compromise attacks: exactly what they are and the different forms they can take. We will also see examples of how they are executed, how to detect them and how they can be mitigated against. Finally, we will take a look at the common Advanced Persistent Threat (APT) […]

The post MITRE ATT&CK: Drive-by compromise appeared first on Infosec Resources.

MITRE ATT&CK: Drive-by compromise was first posted on December 5, 2019 at 8:01 am.
©2017 "InfoSec Resources". Use of this feed is for personal non-commercial use only. If you are not reading this article in your feed reader, then the site is guilty of copyright infringement. Please contact me at darren.dalasta@infosecinstitute.com
Kategorie: Hacking & Security

Network Traffic Analysis for IR: FTP Protocol with Wireshark

InfoSec Institute Resources - 5 Prosinec, 2019 - 15:00

Introduction to the FTP protocol The File Transfer Protocol (FTP), as its name suggests, is designed for transferring files between computers. It is used for a variety of different purposes, but a common one is transferring pages to/from a remote web server. One of the issues with FTP is that it is a completely plaintext […]

The post Network Traffic Analysis for IR: FTP Protocol with Wireshark appeared first on Infosec Resources.

Network Traffic Analysis for IR: FTP Protocol with Wireshark was first posted on December 5, 2019 at 8:00 am.
©2017 "InfoSec Resources". Use of this feed is for personal non-commercial use only. If you are not reading this article in your feed reader, then the site is guilty of copyright infringement. Please contact me at darren.dalasta@infosecinstitute.com
Kategorie: Hacking & Security

Aviatrix VPN vulnerability left user endpoints wide open>

LinuxSecurity.com - 5 Prosinec, 2019 - 14:21
Aviatrix, a supplier of open source enterprise virtual private networks (VPNs) to customers including BT, Nasa and Shell, has patched a serious vulnerability in its client that could have given an attacker escalation privileges on a machine to which they already had access. Learn more about this vulnerability and its implications for Linux users in an informative Computer Weekly article:
Kategorie: Hacking & Security

Severe Auth Bypass and Priv-Esc Vulnerabilities Disclosed in OpenBSD

The Hacker News - 5 Prosinec, 2019 - 13:02
OpenBSD, an open-source operating system built with security in mind, has been found vulnerable to four new high-severity security vulnerabilities, one of which is an old-school type authentication bypass vulnerability in BSD Auth framework. The other three vulnerabilities are privilege escalation issues that could allow local users or malicious software to gain privileges of an auth group,
Kategorie: Hacking & Security
Syndikovat obsah