Connect with us


Exclusive: How Penetration Testing Keeps Systems Safe –



How Penetration Testing Keeps Systems Safe

#Penetration #Testing #Systems #Safe

Digitial illustration of a beam of light piercing a computer keyboard and reaching a wall of numbers and zeros.

Penetration testing is a way for cybersecurity experts to test a system by simulating an attack. It involves intentionally trying to get past existing security, and it can help companies find out if their systems can withstand a hack.

If you’re reading about cybersecurity, the term penetration testing will come up as a way to see if systems are secure. What is penetration testing, though, and how does it work? What kind of people perform these tests?

What Is Pen Testing?

Penetration testing, often referred to as pen testing, is a form of ethical hacking in which cybersecurity professionals attack a system to see if they can get through its defenses, hence “penetration.” If the attack is successful, the pen testers report to the site owner that they found issues which a malicious attacker could exploit.

Because the hacking is ethical, the people performing the hacks aren’t out to steal or damage anything. However, it’s important to understand that in every way besides intent, pen tests are attacks. Pen testers will use every dirty trick in the book to get through to a system. After all, it wouldn’t be much of a test if they didn’t use every weapon a real attacker would use.

Pen Test vs Vulnerability Assessment

As such, penetration tests are a different beast to another popular cybersecurity tool, vulnerability assessments. According to cybersecurity firm Secmentis in an email, vulnerability assessments are automated scans of a system’s defenses that highlight potential weaknesses in a system’s setup.

A pen test will actually try and see if a potential issue can be made into a real one that can be exploited. As such, vulnerability assessments are an important part of any pen testing strategy, but don’t offer the certainty that an actual pen test provides.

Who Performs Pen Tests?

Of course, getting that certainty means that you need to be pretty skilled at attacking systems. As a result, many people working in penetration testing are reformed black hat hackers themselves. Ovidiu Valea, senior cybersecurity engineer at Romania-based cybersecurity firm CT Defense, estimates former black hats could make up as many as 70 percent of the people working in his field.

According to Valea, who is a former black hat himself, the advantage of hiring people like him to combat malicious hackers is that they “know how to think like them.” By being able to get into an attacker’s mind, they can more easily “follow their steps and find vulnerabilities, but we report it to the company before a malicious hacker exploits it.”

In the case of Valea and CT Defense, they’re often hired by companies to help fix any issues. They work with the knowledge and consent of the company to crack their systems. However, there is also a form of pen testing that’s performed by freelancers who will go out and attack systems with the best of motives, but not always with the knowledge of the people running those systems.

These freelancers will often make their money by gathering so-called bounties via platforms like Hacker One. Some companies—many of the best VPNs, for example—post standing bounties for any vulnerabilities found. Find an issue, report it, get paid. Some freelancers will even go so far as to attack companies that haven’t signed up and hope their report gets them paid.


Valea warns that this isn’t the way for everybody, though. “You can work for several months and find nothing. You will have no money for rent.” According to him, not only do you really need to be very good at finding vulnerabilities, with the advent of automated scripts there isn’t much low-hanging fruit left.

How Do Penetration Tests Work?

Though freelancers making their money by finding rare or exceptional bugs reminds a bit of a swashbuckling digital adventure, the daily reality is a bit more down to earth. That’s not to say it isn’t exciting, though. For every type of device there is a set of tests used to see if it can stand up to an attack.

In each case, pen testers will try and crack a system with everything they can think of. Valea emphasizes that a good pen tester spends a lot of his time simply reading reports of other testers not just to stay up-to-date on what the competition may be up to, but also to gain some inspiration for shenanigans of their own.

However, gaining access to a system is only part of the equation. Once inside, pen testers will, in Valea’s words, “try to see what a malicious actor can do with it.” For example, a hacker will see if there are any unencrypted files to steal. If that’s not an option, a good pen tester will try and see if they can intercept requests or even reverse engineer vulnerabilities and maybe gain greater access.

Though it’s not a foregone conclusion, the fact of the matter is that once inside there’s not much you can do to stop an attacker. They have access, and they can steal files and wreck operations. According to Valea, “companies aren’t aware of the impact a breach can have, it can destroy a company.”

How Can I Protect My Devices?

While organizations have advanced tools and resources like pen tests to safeguard their operations, what can you do to stay safe as an everyday consumer? A targeted attack can hurt you just as much, though in different ways than a company suffers. A company having its data leaked is bad news, for sure, but if it happens to people it can ruin lives.

Though pen testing your own computer is probably out of reach for most people—and likely unnecessary—there are some great and easy cybersecurity tips you should follow to make sure you don’t fall victim to hackers. First and foremost, you should probably test any suspicious links before you click on them, as that seems to be a very common way hackers attack your system. And of course, good antivirus software will scan for malware.


Exclusive: Disney Plus is Taking Longer and Longer to Stream New Marvel Movies – CNET –




Disney Plus is Taking Longer and Longer to Stream New Marvel Movies     - CNET

#Disney #Longer #Longer #Stream #Marvel #Movies #CNET

After the depths of social distancing pushed a wave of big-budget movies straight to streaming, theatrical exclusives are the norm again. But for a while, it seemed like Disney and other big Hollywood movie studios might be falling into a new post-COVID rhythm for how long they kept flicks in theaters before streaming them, one that was much faster in shuttling films to a streaming service than before.

But now streaming release dates are all over the map. And for the biggest films, like Marvel’s, the waits seem to be stretching out longer and longer.

Black Panther: Wakanda Forever will take longer to start streaming on Disney Plus than any other Marvel movie in the pandemic era — and that may not bode well for how long you’ll have to wait to stream the Ant-Man and Guardians of the Galaxy sequels hitting theaters soon.

When will Black Panther: Wakanda Forever start streaming? 

Disney Plus will start streaming the Black Panther sequel early Wednesday, starting at 12:01 a.m. PT/3:01 a.m. ET. Its streaming-release date is more than three months after it hit theaters. 

How long will it take to stream Marvel’s next big movies?

It’s anybody’s guess, but it probably won’t be quick. 

Last year, Marvel released three films in theaters: Doctor Strange in the Multiverse of Madness in May, Thor: Love and Thunder in July and Wakanda Forever in mid-November. Doctor Strange took 47 days to reach Disney Plus. Thor hit Disney Plus 62 days after its theatrical release.

Now Wakanda Forever will take 82 days to start streaming. 

That’s the longest that a Marvel movie has spent in theaters before streaming on Disney Plus since the company resumed theatrical exclusives in 2021. That year, Shang-Chi and the Legend of the Ten Rings was in theaters for 70 days and Eternals for 68 days. 


(Coincidence or not, the Marvel film that Disney gave the shortest theatrical window among them also had the best overall box office performance. Doctor Strange and the Multiverse of Madness grossed more than $955 million worldwide. Wakanda Forever has generated $840 million.)

However, Wakanda Forever may have been held off Disney Plus so long because of a consideration that doesn’t apply to those other Marvel films this year: The movie, with a Black director and predominantly Black cast, is debuting on Disney Plus on the first day of Black History Month. Disney hasn’t stated any connection in the timing, but it’s possible the film’s wait to start streaming may have been drawn out to coincide.  

Still, big Hollywood companies like Disney aren’t prioritizing streaming-subscriber growth nearly as much as they did, depressing the incentive to bring big movies to a service quickly. 

Paramount, for example, kept Top Gun: Maverick off its streaming service for 209 days, nearly seven months. The strategy paid dividends at the box office, with the Top Gun sequel grossing nearly $1.5 billion.

Disney has been much more aggressive than Paramount at putting its movies onto its streaming service quickly, but Disney is starting to show that it may be holding back its big-budget films longer in theaters as well. With Ant-Man and the Wasp: Quantumania set to hit theaters next month, Guardians of the Galaxy Vol. 3 following in May and The Marvels arriving in July, you could be waiting more than three months to stream each of them if they stick to Wakanda Forever’s pace. 

Continue Reading


Exclusive: OnePlus 11R and OnePlus Pad set to be launched alongside OnePlus 11 on Feb 7 Cloud Event –




OnePlus 11R and OnePlus Pad set to be launched alongside OnePlus 11 on Feb 7 Cloud Event

#OnePlus #11R #OnePlus #Pad #set #launched #OnePlus #Feb #Cloud #Event

Although OnePlus has already launched its flagship device for the year, OnePlus 11 in China, they are yet to launch the device in India and the rest of the world. OnePlus has confirmed that the global launch of the OnePlus 11 will take place in India on February 7. However, it seems that OnePlus may be launching a bunch of other devices as well.

OnePlus 11R and OnePlus Pad set to be launched alongside OnePlus 11 on Feb 7 Cloud Event

OnePlus has a bunch of products lined up for its upcoming Cloud Event, including the OnePlus 11, OnePlus 11R, OnePlus Buds Pro 2, the OnePlus Keyboard, a new OnePlus TV and the OnePlus Pad.

OnePlus will also launch the OnePlus 11R along with the OnePlus 11. The OnePlus 11R hasn’t been launched anywhere else and was actually expected to be launched sometime in March or April. 

Amazon India pushed a notification prompt via its app yesterday, which said that the OnePlus 11R 5G will also launch on February 7th, 7:30 PM in India. OnePlus though is yet to make any such announcement.

OnePlus has a bunch of products to offer during its upcoming February 7th Cloud Event, including the OnePlus 11 5G, the OnePlus Buds Pro 2, its first-ever Keyboard, and the new OnePlus TV 65 Q2 Pro. It only makes sense that OnePlus, instead of just launching one of their premium smartphone devices at the event, may choose to launch the entire series on the same day.

A rumour has also surfaced which says that OnePlus may launch the OnePlus Pad as well at the event. Rumours of the OnePlus Pad have been going around since 2021 with more recent speculation suggesting a launch in 2023.

There isn’t much information out there about the OnePlus Pad. However, given the close ties that OnePlus has with Oppo, the OnePlus Pad may be a rebadged Oppo Pad or Oppo Pad Air.


Coming back the smartphones, the global version of the top tier OnePlus 11 is expected to with the latest Qualcomm Snapdragon 8 Gen2 SoC, a 6.7-inch E4 QHD+ OLED display with a 120Hz refresh rate, 50MP primary camera sensor with two additional cameras, 48MP and a 32MP unit, all of which have been tuned by Hasselblad, up to 512GB storage, and a large 5,000mAh battery which supports 100W fast charging. The OnePlus 11 is expected to be priced around the Rs 50,000 mark for the base variant.

The OnePlus 11R, on the other hand, is expected to come with a 6.7-inch FHD+ AMOLED panel with a 120Hz refresh rate and powered by a Snapdragon 8+ Gen 1 processor, which will likely be paired with up to 16GB RAM and up to 512GB storage. As for the cameras, the OnePlus 11R 5G is tipped to come with a 50MP + 12MP + 2MP triple rear camera setup and a 16MP selfie snapper. Lastly, the device will reportedly feature a 5,000mAh battery with 100W fast charging support.

Continue Reading


Exclusive: Tesla Cybertruck mass production won’t start until 2024 –




Tesla Cybertruck mass production won’t start until 2024

#TeslaCybertruck #mass #production #wont #start

Tesla’s long-anticipated Cybertruck won’t be seeing full volume production until 2024, Elon Musk said during the company’s fourth quarter earnings call today.

During the call, Musk was asked whether the forthcoming vehicle would meet a mid-2023 production target that was set in Q2 last year. Musk cagily confirmed that Cybertruck manufacturing would start “sometime this summer,” but concluded that mass production of the polarizing pickup won’t start until next year. “I always try to downplay the start of production,” Musk said. “It increases exponentially, but it is very slow at first.”

Cybertruck was originally announced in 2019 to widespread interest, but has seen its production delayed several times. Pre-production was originally supposed to start in late 2021, but was delayed as a result of the COVID-19 pandemic. It was then slated for sometime in 2023, a projection made a year ago. Additionally, last year Musk told investors Cybertruck’s specs and price “will be different,” (read: will be more expensive).

As a consolation prize, Tesla revealed on Wednesday that it has started installing the production equipment needed for the Cybertruck’s assembly, including the castings that will produce the electric pickup’s body. The Cybertruck is expected to be largely manufactured at the company’s Gigafactory in Austin, Texas.

Industry experts warned that the timeline needed to be sped up in order for the Cybertruck to have its desired impact. “Cybertruck will be hitting an increasingly crowded sector of the EV market amid the F-150 Lightning, GMC Hummer EV, Rivian R1T, and likely the Chevy Silverado EV and RAM 1500 EV following closely behind,” said Edmunds executive director of insights Jessica Cawell in an email to The Verge. “The downside for Tesla is that the Cybertruck almost seems like old news.”

There’s still a lot of attention on the Cybertruck after its over-the-top unveiling that introduced its aggressive, post apocalyptic design. Maybe if Tesla throws more metal balls around it can get production rolling.

Continue Reading


Copyright © 2022 Talk Of News.