Security-Portal.cz je internetový portál zaměřený na počítačovou bezpečnost, hacking, anonymitu, počítačové sítě, programování, šifrování, exploity, Linux a BSD systémy. Provozuje spoustu zajímavých služeb a podporuje příznivce v zajímavých projektech.

Kategorie

Alert: CISA Warns of Active 'Roundcube' Email Attacks - Patch Now

The Hacker News - 13 Únor, 2024 - 05:51
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Monday added a medium-severity security flaw impacting Roundcube email software to its Known Exploited Vulnerabilities (KEV) catalog, based on evidence of active exploitation. The issue, tracked as CVE-2023-43770 (CVSS score: 6.1), relates to a cross-site scripting (XSS) flaw that stems from the handling of Newsroomhttp://www.blogger.com/profile/[email protected]
Kategorie: Hacking & Security

LinuxONE 4 Express: Could IBM's Security-Centric Budget Mainframe Be Right for You?

LinuxSecurity.com - 12 Únor, 2024 - 23:29
IBM's LinuxONE 4 Express is a user-friendly, budget mainframe designed to offer cybersecurity solutions to small to medium-sized businesses (SMBs). IBM's GDPS software and DS8000 series storage with HyperSwap are used in LinuxONE 4 Express to deliver 99.999999% availability when running Red Hat's Kubernetes OpenShift Container Platform.
Kategorie: Hacking & Security

CSI Linux: A Digital Forensics Distro with an Intense Focus on User Education

LinuxSecurity.com - 12 Únor, 2024 - 14:49
CSI Linux is a Linux distribution focused on digital forensics and cybersecurity with an intense focus on user education. The platform offers robust capabilities for investigations, analysis, and response and the flexibility required to meet the demands of modern digital investigations.
Kategorie: Hacking & Security

Rhysida Ransomware Cracked, Free Decryption Tool Released

The Hacker News - 12 Únor, 2024 - 14:12
Cybersecurity researchers have uncovered an "implementation vulnerability" that has made it possible to reconstruct encryption keys and decrypt data locked by Rhysida ransomware. The findings were published last week by a group of researchers from Kookmin University and the Korea Internet and Security Agency (KISA). "Through a comprehensive analysis of Rhysida Ransomware, we identified an
Kategorie: Hacking & Security

Rhysida Ransomware Cracked, Free Decryption Tool Released

The Hacker News - 12 Únor, 2024 - 14:12
Cybersecurity researchers have uncovered an "implementation vulnerability" that has made it possible to reconstruct encryption keys and decrypt data locked by Rhysida ransomware. The findings were published last week by a group of researchers from Kookmin University and the Korea Internet and Security Agency (KISA). "Through a comprehensive analysis of Rhysida Ransomware, we identified an Newsroomhttp://www.blogger.com/profile/[email protected]
Kategorie: Hacking & Security

4 Ways Hackers use Social Engineering to Bypass MFA

The Hacker News - 12 Únor, 2024 - 12:14
When it comes to access security, one recommendation stands out above the rest: multi-factor authentication (MFA). With passwords alone being simple work for hackers, MFA provides an essential layer of protection against breaches. However, it's important to remember that MFA isn't foolproof. It can be bypassed, and it often is.  If a password is compromised, there are several options
Kategorie: Hacking & Security

4 Ways Hackers use Social Engineering to Bypass MFA

The Hacker News - 12 Únor, 2024 - 12:14
When it comes to access security, one recommendation stands out above the rest: multi-factor authentication (MFA). With passwords alone being simple work for hackers, MFA provides an essential layer of protection against breaches. However, it's important to remember that MFA isn't foolproof. It can be bypassed, and it often is.  If a password is compromised, there are several options The Hacker Newshttp://www.blogger.com/profile/[email protected]
Kategorie: Hacking & Security

CISA and OpenSSF Release Framework for Package Repository Security

The Hacker News - 12 Únor, 2024 - 11:41
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) announced that it's partnering with the Open Source Security Foundation (OpenSSF) Securing Software Repositories Working Group to publish a new framework to secure package repositories. Called the Principles for Package Repository Security, the framework aims to establish a set of foundational rules for package
Kategorie: Hacking & Security

CISA and OpenSSF Release Framework for Package Repository Security

The Hacker News - 12 Únor, 2024 - 11:41
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) announced that it's partnering with the Open Source Security Foundation (OpenSSF) Securing Software Repositories Working Group to publish a new framework to secure package repositories. Called the Principles for Package Repository Security, the framework aims to establish a set of foundational rules for package The Hacker Newshttp://www.blogger.com/profile/[email protected]
Kategorie: Hacking & Security

Why Are Compromised Identities the Nightmare to IR Speed and Efficiency?

The Hacker News - 12 Únor, 2024 - 11:00
Incident response (IR) is a race against time. You engage your internal or external team because there's enough evidence that something bad is happening, but you’re still blind to the scope, the impact, and the root cause. The common set of IR tools and practices provides IR teams with the ability to discover malicious files and outbound network connections. However, the identity aspect - namely
Kategorie: Hacking & Security

Why Are Compromised Identities the Nightmare to IR Speed and Efficiency?

The Hacker News - 12 Únor, 2024 - 11:00
Incident response (IR) is a race against time. You engage your internal or external team because there's enough evidence that something bad is happening, but you’re still blind to the scope, the impact, and the root cause. The common set of IR tools and practices provides IR teams with the ability to discover malicious files and outbound network connections. However, the identity aspect - namelyThe Hacker Newshttp://www.blogger.com/profile/[email protected]
Kategorie: Hacking & Security

Microsoft Introduces Linux-Like 'sudo' Command to Windows 11

The Hacker News - 12 Únor, 2024 - 06:45
Microsoft said it's introducing Sudo for Windows 11 as part of an early preview version to help users execute commands with administrator privileges. "Sudo for Windows is a new way for users to run elevated commands directly from an unelevated console session," Microsoft Product Manager Jordi Adoumie said. "It is an ergonomic and familiar solution for users who want to elevate a command
Kategorie: Hacking & Security

Microsoft Introduces Linux-Like 'sudo' Command to Windows 11

The Hacker News - 12 Únor, 2024 - 06:45
Microsoft said it's introducing Sudo for Windows 11 as part of an early preview version to help users execute commands with administrator privileges. "Sudo for Windows is a new way for users to run elevated commands directly from an unelevated console session," Microsoft Product Manager Jordi Adoumie said. "It is an ergonomic and familiar solution for users who want to elevate a command Newsroomhttp://www.blogger.com/profile/[email protected]
Kategorie: Hacking & Security

U.S. Offers $10 Million Bounty for Info Leading to Arrest of Hive Ransomware Leaders

The Hacker News - 12 Únor, 2024 - 05:31
The U.S. Department of State has announced monetary rewards of up to $10 million for information about individuals holding key positions within the Hive ransomware operation. It is also giving away an additional $5 million for specifics that could lead to the arrest and/or conviction of any person "conspiring to participate in or attempting to participate in Hive ransomware activity."
Kategorie: Hacking & Security

U.S. Offers $10 Million Bounty for Info Leading to Arrest of Hive Ransomware Leaders

The Hacker News - 12 Únor, 2024 - 05:31
The U.S. Department of State has announced monetary rewards of up to $10 million for information about individuals holding key positions within the Hive ransomware operation. It is also giving away an additional $5 million for specifics that could lead to the arrest and/or conviction of any person "conspiring to participate in or attempting to participate in Hive ransomware activity." Newsroomhttp://www.blogger.com/profile/[email protected]
Kategorie: Hacking & Security

New Linux Kernel Security Flaw Leads to Information Disclosure

LinuxSecurity.com - 11 Únor, 2024 - 14:59
Imagine your most sensitive and critical information being made accessible to threat actors without your permission or knowledge. This is exactly what a new information disclosure flaw discovered in the Linux kernel up to 5.17 could result in. As a Linux admin, staying up-to-date on vulnerabilities like this one is crucial to keeping your critical systems and confidential data secure. To help you understand and protect against this kernel bug, we'll explore its implications for security practitioners and the long-term consequences it may bring. We'll also explain how to secure your systems against this dangerous kernel flaw.
Kategorie: Hacking & Security

Linux Kernel 6.7 Released with Various Security Improvements

LinuxSecurity.com - 11 Únor, 2024 - 13:00
The release of Linux kernel 6.7 introduces various security features and updates. One notable improvement mentioned in the article is the update to the crypto subsystem, which focuses on reducing the use of insecure and obsolete crypto hashing algorithms. Removing SHA1 support for signing kernel modules or importing X.509 certificates and eliminating MD4 and MD5 hashing raises important security concerns. This highlights the Linux community's commitment to staying ahead of emerging threats and ensuring the robustness of the platform.
Kategorie: Hacking & Security

Critical Glibc Flaws Put Major Linux Distros at Risk

LinuxSecurity.com - 11 Únor, 2024 - 13:00
Four significant vulnerabilities have been discovered in the GNU C Library (glibc) , a fundamental component of most Linux distributions. These vulnerabilities pose a significant risk to millions of Linux systems, as they can allow attackers to gain full root access and execute remote code on affected systems.
Kategorie: Hacking & Security

U.S. DoJ Dismantles Warzone RAT Infrastructure, Arrests Key Operators

The Hacker News - 11 Únor, 2024 - 11:54
The U.S. Justice Department (DoJ) on Friday announced the seizure of online infrastructure that was used to sell a remote access trojan (RAT) called Warzone RAT. The domains – www.warzone[.]ws and three others – were "used to sell computer malware used by cybercriminals to secretly access and steal data from victims' computers," the DoJ said. Alongside the takedown, the
Kategorie: Hacking & Security

U.S. DoJ Dismantles Warzone RAT Infrastructure, Arrests Key Operators

The Hacker News - 11 Únor, 2024 - 11:54
The U.S. Justice Department (DoJ) on Friday announced the seizure of online infrastructure that was used to sell a remote access trojan (RAT) called Warzone RAT. The domains – www.warzone[.]ws and three others – were "used to sell computer malware used by cybercriminals to secretly access and steal data from victims' computers," the DoJ said. Alongside the takedown, the Newsroomhttp://www.blogger.com/profile/[email protected]
Kategorie: Hacking & Security
Syndikovat obsah