Use BCrypt Fool!
Almost any application will eventually need to store a collection of passwords or another type of data that has to be stored using a hashing algorithm. Blogs, forums, issue trackers, they all need to...
View ArticleClik here to view.
不平衡数据的解决之道
概述 作者以募捐数据(正例:负例 < 1:20)为例,通过一系列实验比较了不平衡数据的多种处理方法。 如果不做任何处理,用随机森林可以达到97%的准确率,但实际上存在很多的false positives和false negatives,用平衡数据统计大概只有77%的精度。 confusionMatrix( # the original model predicted for...
View ArticleCommand line coffee machine: Hacker shuns app so he can stay at the keyboard...
Zimperium researcher Simone Margaritelli has hacked his coffee machine finding a way to brew coffee using the command line. Margaritelli ( @evilsocket ) says he reverse engineered the app used to...
View ArticleRadware 9大方法为云安全保驾护航
无论企业是否已经将部分或全部基础设施迁移到了云端,或是仍在考虑是否要迁移到云端,企业都应该认真考虑安全性问题。很多时候,企业都在使用云服务提供商所提供的一定程度的安全防护,但却没有采取相应措施,以保证云端应用和数据具有与托管在数据中心的数据一样的安全性。...
View ArticleClik here to view.
安全扫描自动化检测平台建设(Web 黑盒上)
注:本文为“小米安全中心”原创,转载请联系“小米安全中心” 上期回顾: HTTPS原理科普 Web扫描平台的发展 1.原始社会 在web安全兴起的初期,国内的工具相应缺乏,笔者曾经获取一个注入点数据库的MD5需要手工注入半天时间。 于是相应的安全扫描自动化工具应运而生,其中杰出代表莫过于啊D,穿山甲,和JSKY。 感谢前辈给我们创造的自动化工具。这几款工具,可以列入中国网络安全的发展历史。...
View ArticleClik here to view.
Creating a Bromium Culture in IT Management Means Stress-Free Security
Educating users is of prime importance but you can’t assume that will ever be enough; you need strong technology defenses as well. Only Bromium can effectively isolate your IT systems from today’s...
View ArticleLooking Beyond Windows Part 2: Application Log Management
Earlier, we discussed how effective syslog management can improve your network’s security.However, log monitoring doesn’t end there. Your business runs on applications, whose log data must alsobe...
View ArticleClik here to view.
StrongPity APT Covets Secrets of Crypto Users
APT groups covet secrets, and one in particular has chosen to target users intent on protecting theirs. The group is known as StrongPity, and it’s been a characteristic APT outfit using its share of...
View ArticleNetgear claims its new wireless security camera lasts six months on a single...
Netgear is rounding out the features of its wireless security camera with a new model, called the Arlo Pro. It’s more or less the same product: a camera meant to be placed inside or outdoors that...
View ArticleClik here to view.
走进“淘宝诈骗村”:村民曾在山上搭帐篷 坐骗全国
走进“淘宝诈骗村”:村民曾在山上搭帐篷 坐骗全国 1小时前来源:环球网 php?url=0EdRKwbzQt" alt="走进“淘宝诈骗村”:村民曾在山上搭帐篷 坐骗全国" />中溪村以前不少人在山里搭帐篷进行电信诈骗。 打击电信诈骗宣传栏显示多人行骗被抓。 美丽的新祠村,整治网络诈骗的一个典范。...
View Article新加坡宣布推出东盟网络能力计划
新加坡宣布推出东盟网络能力计划 昨天来源:新华网 新华社新加坡10月11日电(记者包雪琳) 新加坡通讯及新闻部长雅国11日在首届东盟网络安全部长级会议开幕式上宣布,新加坡将推出1000万新元(约合725万美元)的东盟网络能力计划,以加强东盟国家在网络安全领域的合作。...
View ArticleClik here to view.
The EU’s latest idea to secure the Internet of Things? Sticky labels
The EU has floated a new idea to boost the security of Internet of Things (IoT) products get manufacturers to stick labels on them telling buyers how secure they are. It sounds simple enough. Products...
View ArticleClik here to view.
5 Reasons Why Small Businesses Need Cyber Security
According to The National Cyber Security Alliance, one out of five small businesses is affected by cybercrime each year. Worse, 60% of those hit go out of business within six months after the...
View ArticleThe Top 5 Myths of Next-Gen Endpoint Protection
‘Next-generation’ endpoint protection or next-gen AV has been getting a lot of press recently. But what does the term actually mean? For IT security managers under pressure, the most important thing...
View ArticleClik here to view.
【技术分享】初玩树莓派B(三) 控制蜂鸣器演奏乐曲
【技术分享】初玩树莓派B(三) 控制蜂鸣器演奏乐曲 2016-10-12 10:38:18 来源:IamHuskar@看雪论坛 作者:安全客 阅读:401次 点赞(0) 收藏 传送门 【技术分享】初玩树莓派B(一) 基本介绍&安装操作系统 【技术分享】初玩树莓派B(二) 实用配置(vnc和串口)&GPIO操作点亮LED灯...
View ArticleClik here to view.
Note7事件背后:手机都有爆炸可能? 该如何保安全
Note7事件背后:手机都有爆炸可能? 该如何保安全 2小时前来源:中国新闻网 中新网北京10月12日电(吴涛)三星“妥协”了。11日,三星宣布全球停售Note 7,中国大陆地区也将执行全部召回计划,共计超19万台Note 7。中国Note 7用户有两种选择,一是获全额退款,同时三星回收Note 7产品;二是更换为其他型号全新三星手机,三星退还两个产品之间的差价,赠送购物券300元。...
View ArticleClik here to view.
漏洞盒子:网络安全领域的滴滴优步?| 创业
漏洞盒子:网络安全领域的滴滴优步?| 创业 1小时前来源:动点科技 php?url=0EdWqWffrr" alt="漏洞盒子:网络安全领域的滴滴优步?| 创业" />在互联网颠覆了数不清的行业之后,网络安全成为了事关互联网公司“生死存亡”的大问题。然而,传统的“外聘安全团队定期检查”的模式存在着成本高、效果差、覆盖不全、难以持久等问题。 “在 2014...
View ArticleClik here to view.
刚需中的刚需――网站篡改监控
网络安全态势分析 网站篡改事件近些年来越演越烈,其中包括政府、教育、金融、事业企业单位等。根据国家互联网应急响应中心发布的《2015年中国互联网网络安全报告》中指出,“2015年CNCERT/CC工检测到境内被篡改的网站数量为24550个,其中境内政府网站篡改数量为898个。”...
View ArticleClik here to view.
The Federal Trade Commission Likes the NIST Cybersecurity Framework (and You...
Remember the Cybersecurity Framework that was put together by the folks over at the National Institute of Standards and Technology (NIST)? Sure you do! It came about because the US government wanted...
View ArticleClik here to view.
卡巴斯基实验室:勒索软件与关键基础设施防控依然是焦点
2016年10月10日下午,卡巴斯基实验室在北京召开媒体见面会,就网络信息安全防控最新成果及相关热点话题和具体解决方案进行了分享说明。 卡巴斯基(中国)实验室病毒中心负责人董岩 会间,卡巴斯基(中国)实验室病毒中心负责人董岩先生着重从病毒防控的种类及具体表现形式、基础设施防控和信息安全领域病毒防控典型案例、有关最新研究成果,同各与会媒体记者进行了分享和互动。...
View Article
