Kategorie

Čínský hacker na internetovém fóru sdělil, že získal od šanghajské policie osobní údaje miliardy čínských občanů. Pokud se jeho tvrzení potvrdí, šlo by podle expertů na informační technologie o jeden z největších úniků dat v historii. Informovala o tom v pondělí agentura Reuters, které se ale zatím nepodařilo ověřit pravost příspěvku.

While the internet provides many benefits, it also brings new risks and challenges. One of the most common and notable of these is the threat to our privacy. Some users might think that they are protected by their browser, search engine and antivirus programs. However, the truth is that most of us aren't doing nearly enough to keep websites from tracking us.

Bust in Canada, now bust in the USA as well.

Gardeners know that worms are good. Cybersecurity professionals know that worms are bad. Very bad. In fact, worms are literally the most devasting force for evil known to the computing world. The MyDoom worm holds the dubious position of most costly computer malware ever – responsible for some $52 billion in damage. In second place… Sobig, another worm. It turns out, however, that there are

The Cyber Police of Ukraine last week disclosed that it apprehended nine members of a criminal gang that embezzled 100 million hryvnias via hundreds of phishing sites that claimed to offer financial assistance to Ukrainian citizens as part of a campaign aimed at capitalizing on the ongoing conflict. "Criminals created more than 400 phishing links to obtain bank card data of citizens and

Today, one of the most popular ways for free websites and browsers to make a profit is tracking and selling user data to advertisers. While most tracking is behind the scenes and discreet, allowing oneself to be tracked can have negative consequences''attackers often attempt to track users the same way legitimate companies do in order to steal data; not to mention the growing concern of companies using data purchased from legitimate sources to manipulate users. While it may seem futile to even try to stay private on an internet dominated by companies who have a motivation to make sure their users aren't private, there are many popular and simple ways to maintain privacy online.

Globally, there are roughly 30,000 web-based cyberattacks daily, primarily targeting smaller businesses and smaller websites. To put it into perspective, that is an estimated 1 cyberattack every 3 seconds that targets websites specifically. Cyber-criminals will not hesitate to attack your website so how can you possibly find any security issues and entry points? The answer is simple: Website Vulnerability Scanners. Follow along with us as we take a look at what a Vulnerability Scanner is and how we use WAPITI Web Scanner to test some websites.

Believe it or not, you might be using a deprecated Linux command. It's not really your fault. You are either habitual of using those commands or learned them through old, obsolete tutorials on the web.

Nizozemská univerzita v Maastrichtu získá po třech letech zpět výkupné za kybernetický útok. Díky růstu hodnoty bitcoinu přitom obdrží více než dvouapůlnásobek původně zaplacené částky, tedy v přepočtu přes půl milionu eur (12,4 milionu Kč). Škola to potvrdila agentuře AP.

Účty britské armády na sítích Twitter a YouTube krátce napadli hackeři, objevila se tam propagace kryptoměn. Mluvčí armády v neděli podle agentury Reuters oznámil, že vojsko incident vyšetřuje. Večer už oba účty fungovaly jako dříve.

Vulnerability coordination and bug bounty platform HackerOne on Friday disclosed that a former employee at the firm improperly accessed security reports submitted to it for personal gain. "The person anonymously disclosed this vulnerability information outside the HackerOne platform with the goal of claiming additional bounties," it said. "In under 24 hours, we worked quickly to contain the

Hackerské hnutí Anonymous na Twitteru uvedlo, že se nabouralo do dat aplikací, do nichž si ženy ukládají data menstruačních cyklů a termíny ovulací, a smazalo je. Učinilo tak proto, aby ve světle zákazu potratů v USA ochránilo ženy před případnou perzekucí.

Following heightened worries that U.S. users' data had been accessed by TikTok engineers in China between September 2021 and January 2022, the company sought to assuage U.S. lawmakers that it's taking steps to "strengthen data security." The admission that some China-based employees can access information from U.S. users came in a letter sent to nine senators, which further noted that the

Google on Thursday announced a slew of improvements to its password manager service aimed at creating a more consistent look and feel across different platforms. Central to the changes is a "simplified and unified management experience that's the same in Chrome and Android settings," Ali Sarraf, Google Chrome product manager, said in a blog post. The updates are also expected to automatically

Microsoft has detailed the evolving capabilities of toll fraud malware apps on Android, pointing out its "complex multi-step attack flow" and an improved mechanism to evade security analysis. Toll fraud belongs to a category of billing fraud wherein malicious mobile applications come with hidden subscription fees, roping in unsuspecting users to premium content without their knowledge or consent

The crooks hit us up with this phishing email less than half an hour after they activated their new scam domain.

The "Missing Cryptoqueen" makes the American Top Ten... but not in a good way.

The Black Basta ransomware-as-a-service (RaaS) syndicate has amassed nearly 50 victims in the U.S., Canada, the U.K., Australia, and New Zealand within two months of its emergence in the wild, making it a prominent threat in a short window.

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) this week moved to add a Linux vulnerability dubbed PwnKit to its Known Exploited Vulnerabilities Catalog, citing evidence of active exploitation. The issue, tracked as CVE-2021-4034 (CVSS score: 7.8), came to light in January 2022 and concerns a case of local privilege escalation in polkit's pkexec utility, which allows an

A newly discovered malware has been put to use in the wild at least since March 2021 to backdoor Microsoft Exchange servers belonging to a wide range of entities worldwide, with infections lingering in 20 organizations as of June 2022. Dubbed SessionManager, the malicious tool masquerades as a module for Internet Information Services (IIS), a web server software for Windows systems, after