Blog Archives – The Best Antivirus Software for 2022

Blog

Sort

Russian Information Security Company Positive Technologies also Fell Under the 11th Package of EU Sanctions

Last week, it became known that the EU imposed sanctions on PJSC “Group Pozitiv” (the parent company of the Positive Technologies group), as part of the 11th package of sanctions against Russia.

The company said that this decision is based on the fact that the company has a license from the Federal Security Service of the Russian Federation and does not affect the Positive Technologies business in any way.

The document related to the new package of sanctions has already been published in the Official Journal of the EU and has entered into force.

It is strange that the Russians are outraged, because let me remind you that we also wrote that the U.S. [...]

Barracuda Networks Recommends Customers to Replace Hacked ESGs despite Patches

In May 2023, the 0-day vulnerability CVE-2023-2868 was fixed in Barracuda Networks products, which hackers used for more than six months and broke ESG, but the problems did not end there.

While patches were eventually released for the problem, the manufacturer has now unexpectedly stated that customers should stop using hacked Email Security Gateways (ESG) and replace them, even if they received patches.

Let me remind you that we also wrote that Over 4,000 Servers Are Still Vulnerable to Critical Bug in Sophos Firewall, and also that Emsisoft Says Hackers Are Spoofing Its Certificates.

Also, you might be interested in the article: Email Security Tactics – How to Stay [...]

CrowdStrike Introduces Charlotte AI, the World’s First Cyber Security AI Analyst

Security company CrowdStrike announced Charlotte AI, a generative AI analyst that uses the best and most comprehensive cyber threat data and continuously improves through feedback from industry-leading attack detection and response experts.

CrowdStrike trained the model on information about recent security events the company has experienced, information about threats from hacker groups and ongoing attacks, and telemetry for users, devices, and cloud workloads.

Let me remind you that we also wrote that OpenAI Introduced a Tool for Detecting Text Generated by Artificial Intelligence, and also that New White Phoenix Tool Helps Recover Files Partially Encrypted by [...]

New White Phoenix Tool Helps Recover Files Partially Encrypted by Ransomware

Security experts have created White Phoenix, a new tool for decrypting files affected by ransomware attacks.

White Phoenix will allow victims to partially recover files encrypted by malware that uses discontinuous encryption. The tool is already available for free download on GitHub.

Let me remind you that we also wrote that Free Decryptor Arrived for MegaCortex Ransomware, and also that Search for Random Leaks of API Keys, Passwords and Tokens Works for All GitHub Users.

Breakthrough encryption is a technique used by some ransomware groups. The idea is that the malware alternately encrypts and does not encrypt data fragments, which allows the file to be encrypted much [...]

Google Authenticator Will Have End-to-End Encryption

Earlier this week, Google announced that the Google Authenticator app would finally have cloud backup and cross-device syncing, but security experts noticed that the data was not end-to-end encrypted when it was uploaded to Google’s servers.

Let me remind you that we also wrote that Search for Random Leaks of API Keys, Passwords and Tokens Works for All GitHub Users, and also that OpenAI Introduced a Tool for Detecting Text Generated by Artificial Intelligence.

As you know, one of the most serious drawbacks of Google Authenticator has always been the lack of backup of one-time two-factor authentication (2FA) codes, as well as the lack of support for multiple devices at [...]

Offensive Security Releases Kali Purple for Security Specialists

Offensive Security has released Kali Linux 2023.1, the first version of 2023 (also dedicated to the tenth anniversary of the project) with the new Kali Purple distribution, which is designed for the blue and purple teams, that is, focused on defensive security.

Let me remind you that we also wrote that Researchers Created a TickTock Device to Detect Wiretapping, and also that OpenAI Introduced a Tool for Detecting Text Generated by Artificial Intelligence.

Also the media wrote that Linus Torvalds Uses Linux on an Apple MacBook Air with an M2 Processor.

In this release of Kali Linux, developers have introduced many new features, including:

mentioned Kali Purple for [...]

Search for Random Leaks of API Keys, Passwords and Tokens Earned for All GitHub Users

GitHub announced that a service for scanning public repositories for random leaks of sensitive data (API keys, account passwords, authentication tokens, and so on) is now available to all users and now it can search for forgotten secrets throughout the publication history.

Information security specialists also said that GitHub will remove exploits for vulnerabilities under attack.

Let me remind you that we also wrote that Samsung Message Guard Will Protect Galaxy Devices from Zero-Click Attacks, and also that OpenAI Introduced a Tool for Detecting Text Generated by Artificial Intelligence.

Since attackers actively search public repositories on GitHub for various secrets [...]

Samsung Message Guard Will Protect Galaxy Devices from Zero-Click Attacks

Samsung has developed a new security system called Samsung Message Guard for Galaxy devices.

The novelty should help Galaxy smartphone users protect themselves from so-called zero-click attacks that use malicious image files.

Let me remind you that we also wrote that Thousands of Android Apps Leak Data Due to Misconfigured Firebase, and also that Google introduces mandatory 2-Step Verification for Google Accounts.

Zero-click exploits are usually understood as attacks that use some kind of vulnerability without any user interaction. As a rule, such attacks include sending a malicious message or file to the victim that will exploit a vulnerability on the device. [...]

Emsisoft Says Hackers Are Spoofing Its Certificates

Experts from the information security company Emsisoft have warned that attackers are spoofing and using certificates for code signing, posing as Emsisoft. Attackers target a company’s customers using its products in the hope of bypassing their protection.

Let me remind you that we also wrote that Antivirus solution provider Emsisoft reported data leak, and we did a review: Emsisoft Anti-Malware Review 2022 – Is It Any Good?

Emsisoft says in its security bulletin that one of its customers was recently targeted by hackers who used an executable signed with a fake Emsisoft certificate.

We recently observed an incident in which a fake code-signing certificate [...]

OpenAI Introduced a Tool for Detecting Text Generated by Artificial Intelligence

OpenAI has released a tool that should determine whether the text was generated using artificial intelligence (for example, ChatGPT) or written by a person.

However, according to the developers themselves, this tool is “not entirely reliable” and correctly identifies text written by AI in only 26% of cases.

Information security specialists, by the way, said that Russian Cybercriminals Seek Access to OpenAI ChatGPT.

Let me remind you that we also wrote that Researchers Created a TickTock Device to Detect Wiretapping, and also that Apple Introduces Lockdown Mode to Protect against Spying.

The problem of using AI in general and ChatGPT in particular is currently a [...]

1 2 3 4

	8.4
	8.5
	8.3
	7.8
	7.1
	7.8

8.4

8.5

8.3

7.8

7.1

7.8