It’s not every day that security researchers
discover a new state-sponsored hacking group. Even rarer is the
emergence of one whose spyware has 80 distinct components, capable of
strange and unique cyberespionage tricks—and who’s kept those tricks
under wraps for more than five years.
In a talk at the Kaspersky Security Analyst Summit in Singapore Wednesday, Kaspersky security researcher Alexey Shulmin revealed the security firm’s discovery of a new spyware framework—an adaptable, modular piece of software with a range of plugins for distinct espionage tasks—that it’s calling TajMahal. The TajMahal framework’s 80 modules, Shulmin says, comprise not only the typical keylogging and screengrabbing features of spyware, but also never-before-seen and obscure tricks. It can intercept documents in a printer queue, and keep track of “files of interest,” automatically stealing them if a USB drive is inserted into the infected machine. And that unique spyware toolkit, Kaspersky says, bears none of the fingerprints of any known nation-state hacker group.
According an article at nikkasystems.com Facebook has done it again!
The normal way to verify an e-mail address is to get a mail with either a link or a code to your inbox. By clicking on the link in the mail or by copy-paste the code you could have your e-mail address verified.
Facebook have had a page where they asked for the password to your e-mail account.
This is, as you might have guessed, a very big no-no!
Mark J Cox, one of the founding members of the Apache Software Foundation and the OpenSSL project, today posted a tweet warning users about a recently discovered important flaw in Apache HTTP Server software.
The Apache web server is one of the most popular, widely used open-source web servers in the world that powers almost 40 percent of the whole Internet.
The vulnerability, identified as CVE-2019-0211, was discovered by Charles Fol, a security engineer at Ambionics Security firm, and patched by the Apache developers in the latest version 2.4.39 of its software released today.
The flaw affects Apache HTTP Server versions 2.4.17 through 2.4.38 and could allow any less-privileged user to execute arbitrary code with root privileges on the targeted server.
Perhaps you have heard that the EU decision on Article 11 and Article 13 means that the satire on the Internet is over.
We have higher thoughts about internet users. The filters that Google, Facebook and other actors will be forced to use will of course be circumvented.
Imagine what good it would be if the EU did not have agree to the two articles, but at the same time you have to respect those who want to publish their works with copyright instead of making them freely available to everyone to use. No, Article 11 and Article 13 is not the optimal for the free speech.
In The Washington Post Mark Zuckerberg says that Internet needs new regulation in four areas: harmful content, election integrity, privacy and data portability.
…effective privacy and data protection needs a globally harmonized framework.
Mr Zuckerberg also say that “it would be good for the Internet if more countries adopted regulation such as GDPR as a common framework”. We agree to this.
What also is very important is that governmental agencies shouldn’t be allowed to force companies to store information about their citizens. We understand that information, including meta data, about individuals in some cases are important for agencies to have access to, but as per now companies in many countries have to store data in case the agencies later would need it.
We ask for rules that makes is mandatory for telephone operators, ISP:s etc to immediately start collecting information about a specific phone number or IP address after a court order. Until the police and other agencies have a court order, the rest of us should be treated as innocent!