Lifeboat Foundation

// Membership //
Want to learn all about cyber-security and become an ethical hacker? Join this channel now to gain access into exclusive ethical hacking videos by clicking this link: https://www.youtube.com/channel/UC1szFCBUWXY3ESff8dJjjzw/join.

// Courses //
Full Ethical Hacking Course: https://www.udemy.com/course/full-web-ethical-hacking-course/
Full Web Ethical Hacking Course: https://www.udemy.com/course/full-web-ethical-hacking-course/
Full Mobile Hacking Course: https://www.udemy.com/course/full-mobile-hacking-course/

Continue reading “How Hackers Hack Any Websites in Minutes?!” »

Metasurfaces, artificially engineered surfaces that can manipulate electromagnetic signals in unique ways, have huge potential for several technological applications, including the implementation of sixth generation (6G) cellular communications. The limitations and vulnerabilities of these smart surfaces, however, are still poorly understood.

Researchers at Peking University, University of Sannio and Southeast University recently carried out a study aimed at better understanding the vulnerability of metasurfaces to wireless cyber-attacks. Their paper, published in Nature Electronics, outlines two types of attacks that should be considered and accounted for before metasurfaces can be deployed on a large-scale.

“This work was primarily driven by the need for enhancing security and privacy of wireless communications in the upcoming 6G era, characterized by unprecedented speeds, ultra-low latency, and vast connection nodes,” Lianlin Li, Vincenzo Galdi and Tie Jun Cui, three of the researchers who carried out the study, told Tech Xplore.

This post is also available in: עברית (Hebrew)

Important computer systems at hospitals and clinics have been offline for over two weeks after a cyberattack forced emergency room shutdowns and ambulance diversions. According to Prospect Medical Holdings, progress is being made “to recover critical systems and restore their integrity,” but the company, which runs 16 hospitals and dozens of other medical facilities in various states could not say when operations will return to normal.

The recovery process for this situation can often take weeks, and in the meantime, hospitals are reverting to paper systems and people to monitor equipment, run records between departments, and do other tasks that are usually electronic.

Top technology stories: US government launches new AI cybersecurity challenge; China outlines new rules for facial recognition technology; How to make AI more energy efficient.

Countering China and bolstering national security dominated the conversation in a Hilton hotel on Guam, 15 hours before and oceans away from the Milwaukee arena hosting the first Republican primary debate.

Nine members of the GOP-led House committee on natural resources convened in the US-governed Pacific island territory for a rare field hearing – during the summer recess – on countering China’s influence in the region.

At a time when Democrats and Republicans view China as an economic and global security threat, island nations who offer the US military proximity to China in exchange for aid emphasized they are especially vulnerable to Chinese cyber-attacks and economic exploitation as they struggle to recover from the pandemic.

• Encryption and segmentation: These operate on the assumption some fraction of the network is already compromised. Restricting the reach and utility of any captured data and accessible networks will mitigate the damage even on breached systems.

• SBOM documentation: Regulatory compliance can be driven by industry organizations and the government, but it will take time to establish standards. SBOM documentation is an essential foundation for best practices.

If “democracy dies in darkness,” and that includes lies of omission in reporting, then cybersecurity suffers the same fate with backdoors. The corollary is “don’t roll your own crypto” even if well-intentioned. The arguments for weakening encryption to make law enforcement easier falls demonstrably flat, with TETRA just the latest example. Secrets rarely stay that way forever, and sensitive data is more remotely accessible than at any time in history. Privacy and global security affect us all, and the existence of these single points of failure in our cybersecurity efforts are unsustainable and will have unforeseeable consequences. We need to innovate and evolve the internet away from this model to have durable security assurances.

One of the most promising developments in the fight against cybersecurity threats is the use of artificial intelligence (AI). This cutting-edge technology has the potential to revolutionize the way organizations manage cyberthreats, offering unprecedented levels of protection and adaptability. AI is set to be embedded into every security product, enabling organizations to quickly remediate attacks and stay ahead of the threat landscape. However, bad actors are equally interested in unlocking the power of AI to easily launch sophisticated and targeted attacks.

The convergence of AI and cybersecurity will create opportunities and challenges for organizations. In this blog post, we will delve into the transformative impact that AI will have on cybersecurity, explore its potential to empower organizations to stay ahead of threats, and examine the ways bad actors could use it for their own nefarious purposes.

By harnessing the power of AI while remaining vigilant to its potential misuse, organizations can stay ahead of emerging threats and better protect their valuable applications, APIs, and data.

Additionally, iProov reveals a 295 percent yearly increase in biometric attacks that use novel face swaps. Using this technique, attackers generate synthetic images with AI, either replacing the face of the victim with a video of him to bypass liveness checks or with the face of the attacker itself.

But beyond deep fakes and other more rudimentary presentation attacks where identities are spoofed using masks or other presentation techniques, another type of attack is gaining ground: digital injection.

The FBI is warning the public that cyber criminals are embedding malicious code in mobile beta-testing applications (apps) to defraud potential victims. Beta-testing apps are online services for testing of mobile apps prior to official release. The beta apps typically are not subject to mobile operating systems’ review processes.

The malicious apps enable theft of personally identifiable information (PII), financial account access, or device takeover. The apps may appear legitimate by using names, images, or descriptions similar to popular apps. Cyber criminals often use phishing or romance scams to establish communications with the victim, then direct the victim to download a mobile beta-testing app housed within a mobile beta-testing app environment, promising incentives such as large financial payouts.