Androgamer

Russian police have raided the Nginx office at Moscow, detained the employees of the company, the original developer Igor Sysoev, and another co-founder Maxim Konovalov. Police raid in  #Nginx  Moscow office. Several employees, including chief developer and co-owner Igor Sysoev, have been arrested. The searches are due to complaints filed by Rambler Group against NGINX. Rambler claims that Sysoev developed the open-source Nginx web server when he was working as a system administrator in Rambler. Nginx Office Raided Nginx webserver was publicly released in the year 2004, it is free open-source software and can be also used as a reverse proxy or load balancer. The latest stable version is Nginx 1.16.1. Igor Sysoev said that he developed Nginx “aiming to overcome certain barriers of scaling the web infrastructure difficulties in handling many concurrent connections, reducing latency and offloading static content, SSL and persistent connections.” Nginx, Inc was f...

Dangerous letters for small online retailers Cybercriminals often choose very small companies as their targets. Small businesses rarely spend significant money on security systems, often do not even have an IT specialist, and most important, are more likely to operate from just one or two computers, which makes it easier to choose a target that holds the kind of information cybercriminals are usually hunting for. Recently, our technologies detected yet another attack aimed at small online stores. Attackers, using social engineering methods, tried to force the owners of such businesses to run malicious scripts on their computers. Social engineering The most interesting aspect of this attack is the trick by which attackers convince a store employee to download and open a malicious file. They send a letter pretending to be a customer who has already paid for an order but cannot receive it. They claim there were problems at the post office and ask the store to fill out a document wit...

The battle against phishing is a silent on every day, Office 365 Advanced Threat Protection detects millions of distinct malicious URLs and email attachments. Every year, billions of phishing emails don’t ever reach mailboxes—real-world attacks foiled in real-time. Heuristics, detonation, and machine learning, enriched by signals from Microsoft Threat Protection services, provide dynamic, robust protection against email threats. Phishers have been quietly retaliating, evolving their techniques to try and evade these protections. In 2019, we saw phishing attacks reach new levels of creativity and sophistication. Notably, these techniques involve the abuse of legitimate cloud services like those offered by Microsoft, Google, Amazon, and others. At Microsoft, we have aggressive processes to identify and take down nefarious uses of our services without affecting legitimate applications. In this blog we’ll share three of the most notable attack techniques we spot...

Congress on Tuesday told Facebook and Apple that they better put backdoors into their end-to-end encryption, or they’ll pass laws that force tech companies to do so. At a Senate Judiciary Committee hearing on Tuesday that was attended by Apple and Facebook representatives who testified about the worth of encryption that hasn’t been weakened, Sen. Linsey Graham had this to say:     You’re going to find a way to do this or we’re going to do this for you.     We’re not going to live in a world where a bunch of child abusers have a safe haven to practice their craft. Period. End of discussion. It’s the latest shot fired in the ongoing war over encryption. The most recent salvos have been launched following the privacy manifesto that Facebook CEO Mark Zuckerberg published in March. At the time, Zuckerberg framed the company’s new stance as a major strategy shift that involves developing a highly secure private communications platform based on F...