Category Archives: Security Tech

[In Nepali] Cyber Security & Ethical Hacking Mod 1 – SPY Phone as a Best Tracking Device


.This is module 1. In total there are 5 modules on Cyber Security and Ethical Hacking.

Objectives of this video :
– Introduction to cyber security and ethical hacking
– SPY phone in-depth-overview as a best tracking device
– Securing Mechanism for Smart Phones

Tagged , , , , , , ,

Firewall for dummies – or, what do we mean by a next-generation firewall?


Faulty firewallThe term next-generation firewall is not well defined, so it’s worth clarifying a little before we proceed.

Put simply, a next-generation firewall offers more protection than a traditional firewall as it can look inside content, rather than just blocking based on sources and destination.

A useful analogy is the postal service. A traditional firewall just looks at the address on the envelope and uses simple rules to decide what’s permitted.

A next-gen firewall can look inside the envelope to check it also doesn’t contain dangerous content. Likewise, it can have smarter rules so you can say “block all known dodgy addresses” rather than having to explicitly state “don’t allow mail from Joe the scammer at number 23 Spam Lane.” SRC

The great thing about these smart rules is that you can transfer the responsibility for keeping an updated list of dodgy addresses to your firewall vendor rather than maintaining them manually yourself.

Tagged , , , , ,

Less than 24 hours after Google unveiled Password Alert, Security researcher devises a bypass


Less than 24 hours after Google unveiled Password Alert, Security researcher devises a bypass

A simple script exploit can take down Google’s latest anti-phishing extension, Password Alert

Google had launched its latest anti-phishing extension called Password Alert onWednesday  to protect Chrome users from phishing attacks on Google products.  However within 24 hours of releasing the new extension, a security researcher has devised a simple script exploit to bypass it.

Paul Moore, a information security consultant at UK based Urity Group has written a simple code exploit for Password Alert extension.SRC

Tagged ,

Behind Every Good Network is “The Guy”


We live in a world of cloud-connected services, ever-expanding workforces, and consumer apps and technology — and it all adds to the complexity of network connectivity.

Things like: linking remote sites, allowing access from home offices or mobile workers, and providing managed access to hosted services are all top of mind, and all require secure, reliable connectivity — but there has been no one-size-fits-all approach that’s easy.

I mean — that’s what I am told. See, back when I was an IT pro, I always had the perfect solution. I kind of cheated — I worked in an IT organization with an annual budget larger than most small business revenues, and we were able to buy more gear than your average local data center, but the real secret to my networking success? I had “the guy.” Continue reading

Tagged , ,

The OpenSSL software bug that saves you from surveillance!


FILED UNDER: CryptographyFeaturedPrivacy

Bugs in pseudorandom number generators (PRNGs) are usually cause for concern, at least in cryptographic circles.

There have been numerous examples over the years.

We had the Debian “code fix” that removed all but 15 bits’ worth of unpredictability from the random generator used to secure OpenSSH.

We had the CryptoCat bug that caused zeros to turn up about 0.4% too often.

And recently we had a cryptographic design flaw in Drupal that saw the wrong sort of random generator used in the wrong sort of way.

But this story is different.MORE

Tagged , , , , , , , , ,

How We Track Wifi Hacker


How We Track Wifi Hacker

Wi-Fi Compromised / Hacked ?How to Track wi-fi Hackers?

Got a Wi-Fi net connection ? And do you think it is secure enough ? With the onset of cyber crimes taking place,your Wi-fi may be used illegally by hackers or some other people.Either you may get high internet bills in reward or you may be on headlines as your net may be compromised to send malicious emails to anyone,that’s what happened in India sometime ago in Mumbai Bomb blast case. Well,there comes MoocherHunter™ to rescue.

MoocherHunter™ is a mobile tracking software tool for the real-time on-the-fly geo-location of wireless moochers and hackers. If you have ever wondered about the possibility of your wireless network getting used for illegal purposes, you must consider using Moocher Hunter. Continue reading

Tagged , ,

Better than BackTrack? Kali Linux offers new brand of pen-testing tools


BackTrack Linux no more. The popular open source package of penetration testing tools now has a new platform and a new name.
BackTrack Linux, a specialized distribution of penetration testing tools, has long been a favorite of security specialists and IT pros. It is often a tool recommended in TechRepublic discussions and in round-ups of open source tools for IT pros. The creators of BackTrack recently announced that in lieu of a new version, they have instead built a brand new distribution called Kali Linux that fulfills the same general purpose.
Writing five days after its initial release, the Kali team reported over 90,000 downloads and had already added more documentation and even an early bugfix. But what exactly is new in Kali and why did they scrap BackTrack and start all over? After putting together a wishlist of what they wanted in the next version of BackTrack, the developers realized they were looking at major changes: Continue reading
Tagged , ,

Chess CAPTCHA – a serious defence against spammers?


CAPTCHAs – the questions that a website asks you to answer to prove if you’re a human being or not – come in many shapes and forms.

Conventional CAPTCHA

Although they most commonly ask you to decipher some words hidden in a distorted graphic, there are more elaborate versions which can ask you tosolve some complicated mathematical calculation or ask you to add toppings to a pizza in an attempt to stop automated bots leaving spammy messages.

As a keen chess player, I was interested to see this CAPTCHA being used on an online chess forum:

Chess CAPTCHA

Okay, so it’s not much of a challenge if you’re a chess player, but it also clearly locks out any users who do not know how to play chess. (For those of you can’t see the checkmate, the answer is upside-down at the bottom of this article – and make sure to realise that Black is playing from the bottom)

But most importantly, if a CAPTCHA system like this were to become widely-used, how tricky would it be for an automated bot to solve the puzzle?MORE

Tagged , , ,

Google Offers Help to Webmasters Whose Sites Were Hacked


Google has launched a page and a set of tutorials aimed for webmasters whose site was hacked.

Specifically, Google explains webmasters how to deal with Google’s search warning that a site is dangerous, which usually appears if a hacker has infected the site with harmful code.

“Every day, cybercriminals compromise thousands of websites. Hacks are often invisible to users, yet remain harmful to anyone viewing the page — including the site owner,” claims Google on the site titled “Webmasters help for hacked sites.

Google starts with a video tutorial (above) which explains the basics of how and why sites get hacked, and then goes into more advanced territory with info on how to quarantine a site, identify its vulnerabilities and clean it up from harmful code.

How do you like Google’s latest initiative? Do you think the material is too advanced or perhaps too simple for the average webmaster? Share your thoughts in the comments.

Image credit: Google MORE

Tagged , , , ,

FBI: Hundreds Of Thousands May Lose Internet In July


Cybersecurity

WASHINGTON (AP) — For computer users, a few mouse clicks could mean the difference between staying online and losing Internet connections this summer.

Unknown to most of them, their problem began when international hackers ran an online advertising scam to take control of infected computers around the world. In a highly unusual response, the FBI set up a safety net months ago using government computers to prevent Internet disruptions for those infected users. But that system is to be shut down.

The FBI is encouraging users to visit a website run by its security partner, http://www.dcwg.org , that will inform them whether they’re infected and explain how to fix the problem. After July 9, infected users won’t be able to connect to the Internet.

Most victims don’t even know their computers have been infected, although the malicious software probably has slowed their web surfing and disabled their antivirus software, making their machines more vulnerable to other problems.

Last November, the FBI and other authorities were preparing to take down a hacker ring that had been running an Internet ad scam on a massive network of infected computers.MORE

Tagged , , , , , , , ,
Follow

Get every new post delivered to your Inbox.

Join 502 other followers

%d bloggers like this: