Pentest for the little ones using WinRAR
Attacks using the long-patched WinRAR vulnerability remain relevant for many companies. Let's figure out how a typical attack works, how attackers bypass antivirus software,…
Security - Articles for November 2024 year
Read interesting articles and reviews for November 2024 year. Analysis of key events in the "Security" sector
How to hide any data in PNG
Have you ever hidden something inside a PNG?
A few words about malware for Linux and ways to protect your system
If you follow the latest news in the field of IT security, you may have noticed an increase in the number of attacks on the network infrastructure of Linux systems. Among…
Cloud Computing Security
In recent years, there has been a trend towards the use of cloud computing, with companies increasingly preferring it when developing their information infrastructure.
Breaking CityHash64, MurmurHash2/3, wyhash and more…
Hash functions are incredibly beautiful mathematical objects. They can map arbitrary data to a small range of fixed-size output data in such a way that the mapping is…
Mobile Device Security: Interview with a Positive Technologies Expert
Recently, the head of the advanced technologies department of Positive Technologies, Nikolai Anisenya, visited the AUTHORITY channel.
How to find both the goblin and the rat. Interview with researchers from the Solar Group who discovered the GoblinRAT malware
The tekkix news service visited the SOC Forum 2024. This is another event dedicated to cybersecurity, organized by the Solar Group of companies. Due to a busy work schedule,…
Launching the Hidden Lake node in Go
The anonymous Hidden Lake network is a unique and rather peculiar project in its field, as it is based on completely different methods and approaches to traffic anonymization…
Immersion in Kubernetes Network Policies
Hello, tekkix! My name is Suleiman, and I am a Senior Software Engineer with over 10 years of programming experience. I develop complex web services that can scale and…
GEOINT Challenge: geolocation of street art in Dominica
In September, UnShelledSec posted an interesting post on X, the goal of which was to find the exact location based on just one picture, a task that is not easy, but Ron…
"Thinking about how to leak and not get caught": IB analyst on how to learn to see an incident
Hello, tekkix! We continue to share interviews with our colleagues, whose stories especially captivate us - and we hope they will seem interesting to you too. In honor…
IaC and DevSecOps: choosing the best tools for infrastructure code analysis and protection
Hello, readers! Anastasia Berezovskaya, an application development security engineer at Swordfish Security, is with you. Today we will once again talk about the features…
Enhancing Linux Server Protection from Threats and Attacks
Linux as a server OS is considered a guarantee of reliability and security, it is popular with companies and ordinary users. However, no system is completely impervious…
Key to all doors: how a backdoor was found in the most secure* access cards
You apply the key card to the reader, and the office door opens. But what if such a pass can be hacked and copied by anyone?
How to hunt security professionals
In the life of every HR, sooner or later, HE appears... Security professional! And how to approach hunting people for this position is usually unclear.
Encryption of backups using age and the value of simplicity
I will briefly introduce the age encryption tool. We will learn to encrypt both personal and corporate backups with one simple command, and then argue about why openssl…
How incorrect API development can lead to user deletion
Continuing the story about vulnerabilities discovered by UCSB pentesters and formed the basis of cases at the Pentest Award, we publish an analysis of the following real…
Improving the security of your CI/CD through Shared Docker executor and OPA plugin
Hello, tekkix! The security team of the Platform, led by its team leader Vladimir Bukin, is in touch. The main task of our team is to protect CI/CD and, in particular,…
