বর্তমান বিশ্বে ইন্টারনেটের সহজলভ্যতায় পর্ন দর্শক ক্রমেই বেড়ে চলছে। অনেক সময় পর্ন দেখাটাকে এমন পর্যায়ে নিয়ে যাচ্ছে, যা নেশায়-আসক্তিতে পরিণত হচ্ছে। এর ফলে বাক্তির নৈতিক ও আচারনগত পরিবর্তন হতে পারে, শুধু তাই নয় সাইবার সিকিউরিটিতে পর্ন বা পর্ন প্লাটফর্মকে ব্যবহার করে, সাইবার অপরাধী বা হ্যাকাররা কম্পিউটার ব্যবহারকারীকে ভিকটিমে পরিণত করতে পারে। পর্ন আসক্তিতে আসক্ত বাক্তির সামাজিক মূল্যবোধ,সৃষ্টিশীলতা, সৃজনশীলতা হারাচ্ছে, মস্তিষ্কের গ্রহণ ক্ষমতা কমছে ও...
Read More
Secure Socket Layer (SSL) is a protocol that provides security for communications between client and server by implementing encrypted data and certificate-based authentication. If you’re using Apache Tomcat as a Server for your web-application , chances are that at least some of the data you’re handling is sensitive, and SSL is an easy way to offer your users security. But the configuration process and SSL...
Read More
After enabling ‘Site Isolation‘ security feature in Chrome for desktops last year, Google has now finally introduced ‘the extra line of defence’ for Android smartphone users surfing the Internet over the Chrome web browser. In brief, Site Isolation is a security feature that adds an additional boundary between websites by ensuring that pages from different sites end up in different sandboxed processes in the browser....
Read More
Emsisoft firm has released a new free decryption tool the STOP (Djvu) ransomware, in the last months the research team helped victims of many other threats. STOP (Djvu) ransomware has 160 variants that infected more hundreds of thousands of victims worldwide. Experts estimated a total number of 460,000 victims, that makes this threat the most active and widespread ransomware today. According to data included in...
Read More
Whether you are new to OSINT (Open Source Intelligence) or use it regularly in your professional life for reconnaissance, threat intelligence or investigations, the recent speed of growth in the field means constant development in terms of tooling, data, content and community. In this post I aim to highlight some essentials that everyone relying on OSINT should know, plus newer resources that might provide additional...
Read More
Cars won’t need drivers. Factories won’t need human workers. Human settlement will extend beyond the boundaries of earth. Institutions of our world are changing in rapid ways. Businesses and nonprofit organizations are taking advantage of exponential technologies to upgrade their operations to explore better, more cost-efficient ways of fulfilling their missions. And so, too, are government organization. When we think of the administration of diplomacy...
Read More
Description: VMware has released a security update to address a vulnerability affecting Harbor Container Registry for Pivotal Cloud Foundry (PCF). An attacker could exploit this vulnerability to take control of an affected system. Impact: A remote attacker could exploit this vulnerability to take control of an affected system. Mitigation: Updates are available. Please see the references or vendor advisory for more information. Reference URL’s: https://www.vmware.com/security/advisories/VMSA-2019-0016.html
Description: The CERT Coordination Center (CERT/CC) has released information on multiple vulnerabilities affecting Pulse Secure Virtual Private Network (VPN). An attacker could exploit these vulnerabilities to take control of an affected system. These vulnerabilities have been targeted by advanced persistent threat (APT) actors. Impact: A remote attacker could exploit this vulnerability to take control of an affected system. Mitigation: Updates are available. Please see the...
Read More
Description: The Internet Systems Consortium (ISC) has released security advisories that address vulnerabilities affecting multiple versions of ISC Berkeley Internet Name Domain (BIND). A remote attacker could exploit one of these vulnerabilities to obtain sensitive information. Impact: A remote attacker could exploit this vulnerability to take control of an affected system. Mitigation: Updates are available. Please see the references or vendor advisory for more information....
Read More
Introduction The Common Weakness Enumeration (CWE™) Top 25 Most Dangerous Software Errors (CWE Top 25) is a demonstrative list of the most widespread and critical weaknesses that can lead to serious vulnerabilities in software. These weaknesses are often easy to find and exploit. They are dangerous because they will frequently allow adversaries to completely take over execution of software, steal data, or prevent the software...
Read More
![2019 CWE Top 25 Most Dangerous Software Errors [mitre]](https://www.cirt.gov.bd/wp-content/uploads/2019/09/2019CWETop25.png)
