RSA, Kubernetes, and Quickstart – Hack Naked News #201

When meme’s attack!, how Google’s taking steps to secure Kubernetes, Suggestions for last minute Holiday IT gifts, Twitter fixes bug that exposed data, and how WordPress was targeted with clever SEO Injection Malware! Ed Sattar from Quickstart joins us for expert commentary on how to optimize your cyber security investment to maximize ROI! All that […]
The post RSA, Kubernetes, and Quickstart – Hack Naked News #201 appeared first on Security Weekly.

Link: http://feedproxy.google.com/~r/securityweekly/Lviv/~3/QyDvw4sHZhI/

Kubernetes, Firefox, & WordPress – Application Security Weekly #43

Kubernetes instances are being hijacked worldwide, malicious sites abuse 11-year old Firefox bug that Mozilla failed to fix, Google is on a Witch Hunt for Internal Leakers, a botnet of over 20,000 WordPress sites is attacking other WordPress sites, the rise of visual studio code, and more! News Bugs, Breaches, and More! 1.) Kubernetes instances are […]
The post Kubernetes, Firefox, & WordPress – Application Security Weekly #43 appeared first on Security Weekly.

Link: http://feedproxy.google.com/~r/securityweekly/Lviv/~3/X_dkDouNpwg/

NotPetya, Phishing, & Google+ – Hack Naked News #200

Google+ Flaw leads Chocolate Factory to shut down early, 40,000 credentials for government portals found online, one tweak that can save you from NotPetya, ESET discovers 21 new linux malware variants, and how this Phishing Scam group built a list of 50,000 execs to target! Jason Wood from Paladin Security joins us for expert commentary […]
The post NotPetya, Phishing, & Google+ – Hack Naked News #200 appeared first on Security Weekly.

Link: http://feedproxy.google.com/~r/securityweekly/Lviv/~3/CqtH37U-pRY/

GTRS – Google Translator Reverse Shell

This tools uses Google Translator as a proxy to send arbitrary commands to an infected machine.[INFECTED MACHINE] ==HTTPS==> [GOOGLE TRANSLATE] ==HTTP==> [C2] Environment ConfigurationFirst you need a VPS and a domain, for the domain you can get a free one on Freenom. With your VPS and domain, just edit the client script, and set your domain on line 5.UsageStart the server.py on your VPSpython2.7 server.pyExecute the client on a computer with access to Google Translator.bash client.shNow you have an interactive shell using named pipe files, YES you can cd into directories.PocDownload GTRS

Link: http://feedproxy.google.com/~r/PentestTools/~3/ESu5qXVpRyE/gtrs-google-translator-reverse-shell.html

Headless Chrome: DevOps Love It, So Do Hackers, Here’s Why

Google Chrome is the most popular web browser and has been so for almost a decade. Each new version of Chrome brings new usability, security and performance features. This article focuses on the “headless mode” feature that Google released more than a year ago; and, since day one has become very popular not only among […]
The post Headless Chrome: DevOps Love It, So Do Hackers, Here’s Why appeared first on Blog.

Link: http://feedproxy.google.com/~r/Imperviews/~3/o_C5KxvADeg/

A Scam-Free Cyber Monday for Online Businesses

Every year we see an increase in website attacks during the holidays. 
While business owners see their sales go up due to promotional Black Friday and Cyber Monday campaigns, hackers are in the background working nonstop to create malicious, fraudulent websites as well as take advantage of legitimate ones.
Main Cyber Monday Threats
Phishing Pages
One of the major risks to consumers is phishing campaigns.
Carefully crafted phishing login pages convince users they are logging into a valid service.
Continue reading A Scam-Free Cyber Monday for Online Businesses at Sucuri Blog.

Link: https://blog.sucuri.net/2018/11/a-scam-free-cyber-monday-for-online-businesses.html