Category: Cyberwar

Rust vs Go – Open Source is about enabling users – Rust lang will complement C around the GNU Linux Kernel (for better safety) “Amazon, Microsoft, Google” and the White House, want to make Open Source more secure
16.05.2022

Open Source is about enabling users “Amazon, Microsoft, Google” and the White House, want to help make Open Source more secure… https://www.golem.de/news/openssf-150-millionen-us-dollar-sollen-open-source-absichern-2205-165382.html https://www.golem.de/news/openssf-linux-foundation-will-security-praxis-vereinheitlichen-2008-150036.html src of src: “White House OSS Mobilization Plan” 2022: https://openssf.org/blog/2022/05/11/testimony-to-the-us-house-committee-on-science-and-technology/ 2020: “The OpenSSF is a cross-industry collaboration […]

FreeBSD based Citrix VPN hacked in massive hostpital healthcare hack in Germany CVE 2019 19781 – hits healthcare hospital in Germany, causing death of (at least) 1 person
27.04.2022

https://cve.circl.lu/cve/CVE-2019-19781 https://www.healthcare-computing.de/bsi-warnt-vor-schwachstelle-bei-vpn-produkten-von-citrix-a-964940/ https://www.cnblogs.com/lsgxeva/p/12116150.html hits healthcare hospital in Germany, causing death of (at least) 1 person https://www.businessinsider.de/politik/deutschland/hacker-legen-uniklinik-duesseldorf-lahm-staatsanwaltschaft-ermittelt-wegen-todesfall-einer-patientin/

2021-11 Russian IT Security Updates – why it is impossible to turn off the Internet in Russia – what is the “Mitnick attack”? – are the odds against the defenders? Browser Sidechannel Attacks “We confirm that none of these approaches completely defend against our attacks” – 2010: AI amok: how AIs almost crashed wallstreet and why it can have real world consequences (1929)
04.11.2021

warning: no guarantee of completeness! contains ads! (but owner of blog get’s nothing, maybe source of source does) Are the odds against the (itsec) defenders? It certainly feels that way, because no human can ever find all bugs, so Fuzzing […]

Open Web Application Security Project (OWASP) online community web application security
07.08.2021

the wiki: https://en.wikipedia.org/wiki/OWASP the top 10: https://owasp.org/www-project-top-ten/2017/Top_10.html the ebook: https://github.com/OWASP/owasp-mstg/releases/download/v1.2/OWASP_MSTG-1.2.pdf the text: https://owasp.org/www-project-web-security-testing-guide/latest/4-Web_Application_Security_Testing/02-Configuration_and_Deployment_Management_Testing/01-Test_Network_Infrastructure_Configuration the conferences: https://owasp.org/www-board/ https://www.blackhat.com/us-21/ the costs: https://training.owasp.org/ 2-part Training: $505 Member 2-part Training: $455 * For member discount code contact events ÄT owasp DOOOT com https://www.udemy.com/course/intro-to-bug-bounty-by-nahamsec/ it’s […]

What is Right – What is Wrong – with great powers comes great responsibility (aka the “Peter-Parker-principle” (Spiderman 2002)) – Big Tech with better and betters Tools and without better Ethics Morals unkowing what is Right or Wrong
17.07.2021

in short: humans per default, without an education might just be “better” apes. Some parts of mankind behave very primitive and clearly show no signs of higher intelligence or education. The troubles start, when the tools become more and more […]

Zehntausende Mail-Server wegen Exchange-Lücke gehackt – Cloud oder Klaut – com-magazin.de Security Newsletter
12.03.2021

scroll down to ENGLISH “Zehntausende Mail-Server wegen Exchange-Lücke gehackt.  Wegen einer vor wenigen Tagen bekanntgewordenen Sicherheitslücke sind laut US-Medienberichten Zehntausende E-Mail-Server von Unternehmen, Behörden und Bildungseinrichtungen Opfer von Hacker-Attacken geworden. “Deutsche Unternehmen sind im internationalen Vergleich besonders stark von dieser […]

1984 mass surveillance: for a better world? – trust – mass surveillance – and why is there so much violence on TV? – the trust problem between gov and citizens needs to be addressed – Trump to end all encryption? – short version summary of 1984
05.04.2020

scroll down and behave! (slaves of digital dictatorships) short version summary of 1984: short version: 1984 needs to be avoided at any cost. because: it is evil. (Google did not drop it’s motto “don’t be evil” for nothing) in essence: […]

2020-04-01 Russian IT Security Updates
02.04.2020

SecurityLab, [26.03.20 08:10] The largest free hosting provider on the darknet, Daniel’s Hosting, was hacked for the second time in 16 months, and stopped working on Wednesday, March 25. Unknown attackers deleted the entire database of the hosting provider, as […]

2020-03-25 Russian Security Updates
25.03.2020

SecurityLab, [24.03.20 08: 05] Cybercriminals hack Windows PCs through a previously unknown vulnerability in the Adobe Type Manager library (atmfd.dll) used by the operating system to process PostScript type 1 fonts. Microsoft described attacks exploiting this vulnerability as “targeted” and […]

Top 10 Virus Trojans Malware of 2019
21.03.2020

No. 1 Emotet — 36 026 samples Trojan was first discovered 2014 and was used to intercept data transferred via a secure connection. We will remind, in September of this year Emotet came back to life after 4 months of […]

games and AI all need GPUs – first Open Source RISCV GPU – userbenchmark “internet connectivity failed” – GPU Benchmark – Tensor Flow GPU and Artificial Intelligence Deep Learning and OpenAI
30.12.2019

apologize! games = windows, still ? (although there are 6000 steam games running on linux) the very first “Open Source GPU” is in the making: https://www.crowdsupply.com/libre-risc-v/m-class “The Libre RISC-V M-Class is a RISC-V chip that is libre-licensed to the bedrock. […]

Russian IT Security Updates Dec22
23.12.2019

SecurityLab, [25.11.19 15:44] The Creator of the world wide web Tim Berners-Lee (Tim Berners-Lee) presented an action plan to protect the network from political manipulation, fake news, privacy violations and other harmful influences. Tim Berners-Lee: “control of information is hugely […]