Monday, 10 June 2019

On 22:11 by admin   No comments
Jscrambler launches Self-Healing JavaScript to prevent code tempering
Jscrambler, a technology company specializing in JavaScript Application Security and Web Page Monitoring solutions announces Self-Healing JavaScript – a world first for JavaScript application security.
The latest statistics point out that 97% of modern web sites are running JavaScript, and every single Fortune 500 company uses it to build highly competitive web apps; JavaScript keeps growing as the powerhouse of the Web.
However, because JavaScript code can’t be encrypted, it remains exposed so that anyone can access and modify it. This allows malicious actors to reverse-engineer JavaScript code to uncover a company’s proprietary algorithms or bypass licensing agreements. Once again, Jscrambler is tackling this issue head-on with new proprietary technology: Self-Healing JavaScript.
“We are very pleased to introduce Self-Healing JavaScript and to thwart malicious actors head-on. Never before have enterprises put so much critical business logic into JavaScript. As attackers try harder than ever to steal and tamper with a company’s code, the technology we have developed proves once again that Jscrambler is at the forefront of JavaScript security.” said Rui Ribeiro, co-founder and CEO of Jscrambler.
Whenever attackers try to tamper with a piece of code, Jscrambler’s Self-Healing technology will automatically restore to its original, clean version. Not only does this thwart any malicious attempts to modify the code, but it also guarantees that the application does not break after tampering attempts – keeping the end-user’s experience unscathed.
Self-Healing is a must-have JavaScript protection technology for companies with critical applications where, running tampered code or having the application break, can result in serious damage to the business.
Industry sectors such as healthcare or manufacturing rely heavily on JavaScript to build applications and Self-Healing code means greater security, stability and reliability for them.
Source : helpnetsecurity.com
On 21:57 by admin in    No comments
Null meets are free for anyone to attend. There are absolutely no fees. Just come with an open mind and willingness to share and learn.

Proposed sessions for this event:

Scouring CI/CD for Sensitive Information by Darsh Patel
Egg hunting techniques by Malav Vyas
Owning the b0x like a L33T by Swar Shah
CTF by Jaimin Gohel

Schedule:
Date: Sunday June 16 2019
Time: 11am to 3pm

Venue:
ICT, Ganpat University,
3rd Floor, Block A, Ganesh Meridian, opp Kargil Petrol Pump,
S.G Highway, Sola,
Ahmedabad

Register yourself:
https://null.co.in/events/604-ahmedabad-null-ahmedabad-meet-16-june-2019-monthly-meet

Friday, 7 June 2019

On 02:19 by admin   No comments
The blockchain space always has something exciting going on in terms of innovative technologies and product launches. Recently, blockchain enthusiasts were treated with an interesting announcement by Kodak, the renowned imaging-tech company, which disclosed the firm’s latest offering – a document management system based on the blockchain technology. The announcement was made at the two-day Kodak Innovation Conference 2019 held in New York’s Rochester on 5th June.
The offering, titled KODAK Document Management Platform, has been launched by Kodak Services for Business. The platform has been designed, keeping in mind the targeted clientele of governments as well as businesses. According to the company, this document management system will help both kinds of their client base to safeguard and manage their sensitive documents hassle-freely. The use of blockchain technology will lend the required level of security and efficiency to the platform, states the company.
Apart from the KODAK Document Management Platform, the company also launched KODAK Scan Cloud, a specially designed solution that enables the user to process data regardless of their location. The conference also witnessed the discussion on the concept of “Smart Cities” which revolves around utilizing cutting-edge technologies for improving the services and infrastructure in a way that boosts the overall functionality of urban areas.
Source : cryptonewsz

Thursday, 6 June 2019

On 23:00 by admin   1 comment
Apple has released a new cryptotechnology framework for app developers that will make it easier to create things like cryptocurrency wallets or blockchain applications.
It’s certainly odd to see a company like Apple, known for liking tight control over their users, to embrace and support something like cryptotechnologies, which were created specifically for decentralisation.
With CryptoKit, developers will be able to easily connect the dots between their Swift app and the blockchain. Apple seems to be following in the footsteps of Samsung, which has an integrated cryptocurrency wallet in its latest Galaxy S10 flagship. It’s very likely that Apple simply prefers to embrace what’s about to come instead of refusing it.
CryptoKit also helps developers to easily integrate checksum hashes into their projects, supporting standards like SHA256 directly with Swift. Previously, developers had to rely on third-party frameworks for such things, or code their own in a worst-case scenario.
While it may not be of high importance right now, CryptoKit could prove to be an essential framework for app developers in the future, with the current trend of pushing for a decentralised and open web and applications.
The framework will support iOS 13 and up once the OS is released, so don’t expect your favourite apps to implement it anytime soon.
Source :  CoinNewsSpan
On 00:02 by admin   2 comments
Each week the CyberWire’s Hacking Humans Podcast looks behind the social engineering scams, phishing schemes, and criminal exploits that are making headlines and taking a heavy toll on organizations around the world. We talk to social engineering experts, security pros, cognitive scientists, and those practiced in the arts of deception (perhaps even a magician or two). We also hear from people targeted by social engineering attacks and learn from their experiences.

https://player.fm/series/hacking-humans/the-best-way-to-break-in-is-to-walk-through-the-front-door

Source : CyberWire

Wednesday, 5 June 2019

On 23:37 by admin   1 comment
Microsoft Corp. and Oracle Corp. on Wednesday announced a cloud interoperability partnership enabling customers to migrate and run mission-critical enterprise workloads across Microsoft Azure and Oracle Cloud. Enterprises can now seamlessly connect Azure services, like Analytics and AI, to Oracle Cloud services, like Autonomous Database. By enabling customers to run one part of a workload within Azure and another part of the same workload within the Oracle Cloud, the partnership delivers a highly optimized, best-of-both-clouds experience. Taken together, Azure and Oracle Cloud offer customers a one-stop shop for all the cloud services and applications they need to run their entire business.
Connecting Azure and Oracle Cloud through network and identity interoperability makes lift-and-improve migrations seamless. This partnership delivers direct, fast and highly reliable network connectivity between two clouds, while continuing to provide first-class customer service and support that enterprises have come to expect from the two companies. In addition to providing interoperability for customers running Oracle software on Oracle Cloud and Microsoft software on Azure, it enables new and innovative scenarios like running Oracle E-Business Suite or Oracle JD Edwards on Azure against an Oracle Autonomous Database running on Exadata infrastructure in the Oracle Cloud.
As a result of this expanded partnership, the companies are today making available a new set of capabilities:
• Connect Azure and Oracle Cloud seamlessly, allowing customers to extend their on-premises datacenters to both clouds. This direct interconnect is available starting today in Ashburn (North America) and Azure US East, with plans to expand additional regions in the future.  
• Unified identity and access management, via a unified single sign-on experience and automated user provisioning, to manage resources across Azure and Oracle Cloud. Also available in early preview today, Oracle applications can use Azure Active Directory as the identity provider and for conditional access.  
• Supported deployment of custom applications and packaged Oracle applications (JD Edwards EnterpriseOne, E-Business Suite, PeopleSoft, Oracle Retail, Hyperion) on Azure with Oracle databases (RAC, Exadata, Autonomous Database) deployed in Oracle Cloud. The same Oracle applications will also be certified to run on Azure with Oracle databases in Oracle Cloud.  
• A collaborative support model to help IT organizations deploy these new capabilities while enabling them to leverage existing customer support relationships and processes.
• Oracle Database will continue to be certified to run in Azure on various operating systems, including Windows Server and Oracle Linux. 
Source :  https://www.finyear.com

Wednesday, 5 September 2018

On 15:23 by admin in    4 comments