Gregarius » éléments par David Balaban

Canaux

108413 éléments (108413 non lus) dans 10 canaux

Actualités (48730 non lus)

• 01net. Actualités (48730 non lus)

Hoax (65 non lus)

• Top dix quotidien Sophos des canulars (65 non lus)

Logiciels (39066 non lus)

• BetaNews.Com (34382 non lus)
• Presence PC - Actualité Logiciels, jeux vidéos (3551 non lus)
• LeMondeInformatique.fr : Actualités Applications (1133 non lus)

Sécurité (1668 non lus)

• Actualités Sécurité Informatique (406 non lus)
• Les Nouvelles.net : sécurité informatique. (1262 non lus)

Referencement (18884 non lus)

• Secrets2moteurs (11765 non lus)
• Referencement Google WebRankInfo (2255 non lus)
• Abondance (4864 non lus)

éléments par David Balaban

BetaNews.Com

• 

  Cybersecurity commandments: An insight into trivial things causing big problems

  Publié: octobre 22, 2018, 3:41pm CEST par David Balaban

  There are no trifles when it comes to security. The best thing you can expect is the "judgment day" to be delayed until problems reach critical mass. Although these issues appear to be constantly changing on the outside, they are all based on invariable principles -- the "sins" of computer networks that are comparable to those of humans. Let’s follow the Bible’s lead and compile them all into one list. Gluttony (with traffic) The amount of data being transmitted back and forth is growing rapidly: new apps are appearing, new devices are being added, and the shared resources are migrating… [Continue Reading]
• 

  Thoughts on ideal privacy and anonymity

  Publié: septembre 20, 2018, 3:37pm CEST par David Balaban

  Let's say you would like to leave the most anonymous comment in the world on a social network. What do you need for this? VPN? Tor? SSH tunnel? No, it's enough to go to the Internet café, create a mail address, register on the site and write your message. You coped with the task. But what if you need not just leave a one-time comment, not just hide your IP address from some site, what if you need to have such a level of anonymity that will be the most complex and practically will not provide anybody any opportunity for… [Continue Reading]
• 

  The lifestyle of a black hat hacker

  Publié: septembre 17, 2018, 10:16pm CEST par David Balaban

  Imagine for a moment, just hypothetically, that you are one of those cybercriminals whose shenanigans are hitting the headlines day by day. Let’s try and dream up this fictional scenario. Before you make the first step up this slippery slope, you have to think over it thoroughly. You’ll become a totally different person as soon as you start. The new life has new rules, which I am going to cover herein. Your look Complete anonymity is the most important thing in this shady activity. The starting point is to assess your appearance. You need to look typical and inconspicuous. Forget… [Continue Reading]
• 

  Chasing down cybercrooks in the deep web

  Publié: septembre 14, 2018, 8:23pm CEST par David Balaban

  More and more people are opting for best VPN services in order to protect their privacy and anonymity online. One of the common motivations for doing so is to unlock geo-restricted websites. However, some people want to hide their misdoings. Meanwhile, a lot of users are sure that VPN provides complete online anonymity. This is a misconception, and I’m going to tell you why. VPN was never intended for anonymity. Although security and anonymity belong to the same domain, they aren’t identical. The objective of VPN is to create an encrypted channel between the client and the server. At this… [Continue Reading]
• 

  Fear and loathing in threat intelligence -- Or 8 best-practice TI tips

  Publié: août 7, 2018, 8:41pm CEST par David Balaban

  We had two commercial APT subscriptions, 10 information exchanges, about a dozen free feeds and a big list of TOR exit nodes. We also used a couple of powerful reversers, master Powershell scripts, a Loki scanner and a paid VirusTotal subscription. Not that a security incident response center won’t work without all of these, but if you are up to catching complex attacks you have to go the whole hog. What we were particularly concerned with was the potential automation of checking for indicators of compromise (IOCs). There’s nothing as immoral as artificial intelligence replacing a human in an activity… [Continue Reading]
• 

  GPUs have a new 'job' -- combating malware attacks

  Publié: juillet 26, 2018, 5:16pm CEST par David Balaban

  Intel executives have recently announced plans to redesign their processors at the silicon level in order to eliminate the notorious Spectre and Meltdown vulnerabilities. However, the company’s current efforts to safeguard computer systems aren’t isolated to this initiative alone. The IT giant is also reportedly planning to implement technologies that will fight new malware threats at the hardware level. These include the Accelerated Memory Scanning and Advanced Platform Telemetry systems. Here’s a lowdown on these new promising technologies. GPU will help detect viruses The first solution -- Accelerated Memory Scanning -- will allow delegating the task of detecting memory-based attacks… [Continue Reading]
• 

  A rare breed of the brute-force: A history of one attack

  Publié: juillet 3, 2018, 2:01pm CEST par David Balaban

  While routinely working on the security of one e-commerce website, I encountered an unusual type of a brute-force attack that was fairly hard to mitigate. It was based on a delicately simple technique that made it stand out from the crowd. Read this article to learn what kind of an attack it was and how I succeeded in protecting my customer’s site against it. As you know, a classic brute-force boils down to guessing credentials. For instance, threat actors take known user accounts and pick passwords for them based on certain criteria -- either by generating them on-the-fly or using… [Continue Reading]
• 

  Cryptojacking for good: Groundbreaking examples

  Publié: juin 14, 2018, 2:20pm CEST par David Balaban

  In-browser mining triggered revolutionary changes in the cryptocurrency ecosystem. It used to be that the routine of spawning new virtual coins was isolated to computers running specially crafted software. Tools like the Coinhive JavaScript miner have added the website layer to the mix. Ideally, it means webmasters can embed such a script in their sites and thus siphon off the processing power of visiting PCs in the background to earn Monero (XMR), Electroneum or other form of cryptocurrency. This is a legit tactic as long as people are properly notified of it. Just like any popular technology, this one got… [Continue Reading]