Alex Bîrsan took the money from Apple, Microsoft, Tesla, Uber and Netflix, after showing them how they can be attacked. A white hacker passionate about identifying security issues for client companies or running public bounty bug-hunting programs, Alex managed to break into the internal systems of the aforementioned organizations, earning over $130,000 in bounties in the process. Nominated for PortSwigger's annual web hacking list, he reaches the top 10 hacking techniques with his famous 'dependency confusion' technique and then takes the #1 spot. His technique demonstrates that an attacker is able to execute the malware on a company's network, replacing privately used software packages – so-called “dependencies” – with malicious public packages of the same name.
Users continue to choose weak or easy-to-guess passwords and reuse the same passwords across multiple services. They also tend to question the restrictions: "Which of these rules are reasonable? Which are the most effective? Why do we have all these requirements?"
Unfortunately, phishing attacks are very common – in 2021, 83% of organizations experienced at least one phishing attack while another 6 billion attacks are expected in 2022. We can say that one out of 99 emails is a phishing attack. Perhaps most worrying is the fact that 97% of people cannot identify such scams.
Mirai aims to compromise IoT (Internet of Things) devices running on Linux operating systems, turning them into remotely controlled systems, part of botnet networks. Devices targeted by this threat include surveillance web cameras, digital video recorders (DVRs), WiFi routers, or other types of Internet-connected devices.
Digital identities are becoming increasingly important to organizations of all types, private companies, government bodies, non-profit organizations, as well as customers or potential customers.