Category Archives: Opinion

GBP/JPY Price Prediction: Cable Jumps Over 150 Pips With Room for Another Squeeze Higher

GBP/JPY saw decent gains on Wednesday, receiving a helping hand from Brexit and BOJ fundamentals. Brexit optimism helps GBP higher, while BOJ remain dovish, adding pressure to JPY. GBP/JPY jumped to its highest levels seen since 14th December 2018. The session high print was observed at 143.56, with the pair having gained over 150 pips. […]

The post GBP/JPY Price Prediction: Cable Jumps Over 150 Pips With Room for Another Squeeze Higher appeared first on Hacked: Hacking Finance.

Bitcoin Cash Price Analysis: BCH/USD Bulls Force a Breakout Above a Huge Resistance Trend Line

Bitcoin Cash continues upside momentum, running at its second consecutive session in the green. BCH/USD bulls make a big push above long-running descending trend line. BCH/USD Price Behavior The Bitcoin Cash price was seen trading in positive territory again in the early part of trading on Wednesday. BCH/USD is running at its second consecutive session within […]

The post Bitcoin Cash Price Analysis: BCH/USD Bulls Force a Breakout Above a Huge Resistance Trend Line appeared first on Hacked: Hacking Finance.

Tron Price Analysis: TRX/USD Must Break and Close Above $0.03000 or be Punished

Tron price is seen trading in the green late on Tuesday, with gains of 2.5% at the time of writing. TRX/USD is still shaping up a potential head and shoulders pattern structure. The Tron price in the latter part of trading on Tuesday was seen holding gains of 2.5%. The bulls manage to see TRX/USD […]

The post Tron Price Analysis: TRX/USD Must Break and Close Above $0.03000 or be Punished appeared first on Hacked: Hacking Finance.

Ethereum Price Analysis: ETH/USD Sellers are Stepping Up Downside Pressure; Explosive Breakout is Imminent

ETH/USD is very much close to a breakout of the recent range-block formation. Diar reports that on-chain transaction value on the Ethereum network was seen at an all-time-high in December 2018. Over the past three sessions for ETH/USD, a pick-up in downside intensity has been demonstrated by the market bears. The price had been moving […]

The post Ethereum Price Analysis: ETH/USD Sellers are Stepping Up Downside Pressure; Explosive Breakout is Imminent appeared first on Hacked: Hacking Finance.

Agents of disruption: Four testing topics argue the case for agentless security

Let me introduce myself. I’m a set of flaws in your otherwise perfect, agent-based security world. Like all disruptive agents, I derail your best-laid plans with expensive havoc; but in my case I create sticky situations inside your multi-cloud arrangement. You may be thinking that the premise of this article is bogus, because most cloud-based security systems automate the deployment and management of agents; and any one of those and their kid can microsegment and … More

The post Agents of disruption: Four testing topics argue the case for agentless security appeared first on Help Net Security.

GBP/USD Price Prediction: Bulls Reclaim 1.2900, Eyes Locked on Another Retest of 1.3000

GBP/USD bulls pick up momentum to the upside, following generally positive tone to Theresa May’s Plan B statement. Next upside targets for the bulls should they firmly breakdown 1.2900 again, will be the psychological 1.3000 mark. GBP/USD throughout the session on Monday remained very much elevated. This came as market participants were somewhat maintaining an […]

The post GBP/USD Price Prediction: Bulls Reclaim 1.2900, Eyes Locked on Another Retest of 1.3000 appeared first on Hacked: Hacking Finance.

Beware the man in the cloud: How to protect against a new breed of cyberattack

One malicious tactic that has become quite prevalent in recent years is known as a ‘man in the cloud’ (MitC) attack. This attack aims to access victims’ accounts without the need to obtain compromised user credentials beforehand. Below, this article explains the anatomy of MitC attacks and offers practical advice about what can be done to defend against them. What is MitC attack? To gain access to cloud accounts, MitC attacks take advantage of the … More

The post Beware the man in the cloud: How to protect against a new breed of cyberattack appeared first on Help Net Security.

Machine learning trumps AI for security analysts

While machine learning is one of the biggest buzzwords in cybersecurity and the tech industry in general, the phrase itself is often overused and mis-applied, leaving many to have their own, incorrect definition of what machine learning actually is. So, how do you cut through all the noise to separate fact from fiction? And how can this tool be best applied to security operations? What is machine learning? Machine learning (ML) is an algorithm that … More

The post Machine learning trumps AI for security analysts appeared first on Help Net Security.

Tron Price Analysis: TRX/USD Constructing a Head and Shoulders Pattern

TRX/USD remains vulnerable to further downside, with eyes on the possible head and shoulders technical structure. TRX/BTC bulls are having much difficulty breaking down huge area of supply. TRX/USD Price Action There has been little in terms of committed market direction. It appears that after the huge bull run, which was observed from mid-December until […]

The post Tron Price Analysis: TRX/USD Constructing a Head and Shoulders Pattern appeared first on Hacked: Hacking Finance.

Monero Price Analysis: Stronger Malware to Mine Monero; XMR/USD Has Room for Another Potential Squeeze South

Researchers: a stronger malware has been uncovered, which can mine Monero. XMR/USD price action remains stuck in a narrowing range, subject to an imminent breakout. The XMR/USD price has seen some upside on Saturday, holding gains of around 3% towards the latter stages of the day. Despite the press higher from the bulls, a move […]

The post Monero Price Analysis: Stronger Malware to Mine Monero; XMR/USD Has Room for Another Potential Squeeze South appeared first on Hacked: Hacking Finance.

Litecoin Price Analysis: LTC/USD Bulls Enjoy Big Jump But Stubborn Resistance Capping Potential

Litecoin sees a relief rally on Friday, but is still stuck within stubborn range-block. LTC/USD price action has formed a bearish flag pattern structure, subject to a potential break lower. The Litecoin price on Saturday was seen holding decent gains of over 5%, as life is kicked back into the bulls. The LTC/USD pair has […]

The post Litecoin Price Analysis: LTC/USD Bulls Enjoy Big Jump But Stubborn Resistance Capping Potential appeared first on Hacked: Hacking Finance.

Facebook’s confusion about its Portal camera is concerning

Facebook couldn't have picked a worse time to introduce Portal, a camera-equipped smart display designed to make video chatting in your home easier. And, if the rumors are true, the company is reportedly also preparing to launch a video chat camera for your TV, based on the same system as Portal. Not only does news of this hardware come at a time when when Facebook is under major scrutiny after suffering a massive data breach in September, which exposed private information of 29 million users, including usernames, birth date, gender, location, religion and the devices used to browse the site. But the most concerning part about Portal, is that Facebook's own executives don't seem to have a basic understanding of what types of data the company will be collecting or what it will be using it for.

Security is not a buzz-word business model, but our cumulative effort

Security is not a buzz-word business model, but our cumulative effort

This article conveys my personal opinion towards security and it's underlying revenue model; I would recommend to read it with a pinch of salt (+ tequila, while we are on it). I shall be covering either side of the coin, the heads where pentesters try to give you a heads-up on underlying issues, and tails where the businesses still think they can address security at the tail-end of their development.

A recent conversation with a friend who's in information security triggered me to address the white elephant in the room. He works in a security services firm that provides intelligence feeds and alerts to the clients. Now he shared a case where his firm didn't share the right feed at the right time even though the client was "vulnerable" because the subscription model is different. I understand business is essential, but on the contrary isn't security a collective argument? I mean tomorrow if when this client gets attacked, are you going just to turn a blind eye because it didn't pay you well? I understand the remediation always cost money (or more efforts) but holding the alert to a client on some attack you witnessed in the wild based on how much money are they paying you is hard to contend.

I don't dream about the utopian world where security is obvious but we surely can walk in that direction.

What is security to a business?

Is it a domain, a pillar or with the buzz these days, insurance? Information security and privacy while being the talk of the town are still come where the business requirements end. I understand there is a paradigm shift to the left, a movement towards the inception for your "bright idea" but still we are far from an ideal world, the utopian so to speak! I have experienced from either side of the table - the one where we put ourselves in the shoes of hackers and the contrary where we hold hands with the developers to understand their pain points & work together to build a secure ecosystem. I would say it's been very few times that business pays attention to "security" from day-zero (yeah, this tells the kind of clients I am dealing with and why are in business). Often business owners say - Develop this application, based on these requirements, discuss the revenue model, maintenance costs, and yeah! Check if we need these security add-ons or do we adhere to compliance checks as no one wants auditors knocking at the door for all the wrong reasons.

This troubles me. Why don't we understand information security as important a pillar as your whole revenue model?

Security is not a buzz-word business model, but our cumulative effort

How is security as a business?

I have many issues with how "security" is being tossed around as a buzz-word to earn dollars, but very few respect the gravity or the very objective of its existence. I mean whether it's information, financial, or life security - they all have very realistic and quantifiable effects on someone's physical well-being. Every month, I see tens (if not hundreds) of reports and advisories where quality is embarrassingly bad. When you tap to find the right reasons - either the "good" firms are costly, or someone has a comfort zone with existing firms, or worst that neither the business care nor do they pressure firms for better quality. I mean at the end, it's a just plain & straightforward business transaction or a compliance check to make auditor happy.

Have you ever asked yourself the questions,

  1. You did a pentest justifying the money paid for your quality; tomorrow that hospital gets hacked, or patients die. Would you say you didn't put your best consultants/efforts because they were expensive for the cause? You didn't walk the extra mile because the budgeted hours finished?
  2. Now, to you Mr Business, CEO - You want to cut costs on security because you would prefer a more prominent advertisement or a better car in your garage, but security expenditure is dubious to you. Next time check how much companies and business have lost after getting breached. I mean just because it's not an urgent problem, doesn't say it can't be. If it becomes a problem, chances are it's too late. These issues are like symptoms; if you see them, you already are in trouble! Security doesn't always have an immediate ROI, I understand, but don't make it an epitome of "out of sight, out of mind". That's a significant risk you are taking on your revenue, employees or customers.

Now, while I have touched both sides of the problem in this short article; I hope you got the message (fingers crossed). Please do take security seriously, and not only as your business transaction! Every time you do something that involves security on either sides, think - You invest your next big crypto-currency in an exchange/ market that gets hacked because of their lack of due-diligence? Or, your medical records became public because someone didn't perform a good pen-test. Or, you lose your savings because your bank didn't do a thorough "security" check of its infrastructure. If you think you are untouchable because of your home router security; you, my friend are living in an illusion. And, my final rant to the firms where there are good consultants but the reporting, or seriousness in delivering the message to the business is so fcuking messed up, that all their efforts go in vain. Take your deliverable seriously; it's the only window business has to peep into the issues (existing or foreseen), and plan the remediation in time.

That's all my friends. Stay safe and be responsible; security is a cumulative effort and everyone has to be vigilant because you never know where the next cyber-attack be.