Blogs

Step-by-Step Guide to Install Apache OFBiz on Linux

Step-by-Step Guide to Install Apache OFBiz on Linux

Portfolio
Apache OFBiz is a feature-rich open-source enterprise resource planning (ERP) system. It provides a suite of business applications out of the box to manage tasks like accounting, inventory control, order fulfillment, warehouse management, CRM, e-commerce, and more within one unified system. OFBiz is written in Java and can be deployed on-premises or in the cloud. It supports various databases like MySQL, MariaDB, PostgreSQL, Oracle, MS SQL Server, and H2. In this comprehensive tutorial, we will go through installing the latest version of Apache OFBiz 17.12.06 from scratch on an Ubuntu 20.04 Linux server. We will set up all the prerequisites like Java and MySQL servers. Then download, configure and launch OFBiz along with setting up the database. Finally, we will log into the application using the default credentials and you will have OFBiz…
Read More
How to Fix Registry Errors in Windows 11 and 10?

How to Fix Registry Errors in Windows 11 and 10?

Portfolio
The Windows registry is a database that stores critical machinespecific settings and information about practically everything on your computer, including preferences, apps, users, and related devices. The registry is made up of three parts: hives, keys and values. The registry is continually referenced by the Windows operating system; for example, Windows must check the values of particular keys in order to open a programme, install new software, or update your hardware. You can use the built-in Windows Registry Editor (regedit) to alter registry key values manually to make Windows run the way you want it to, but you must know what you’re doing or you could gravely harm your OS. And eventually, most of us do goof up at some point or the other and that’s when we have to…
Read More
How to Turn Your Raspberry Pi into an AI ChatBot Server?

How to Turn Your Raspberry Pi into an AI ChatBot Server?

Portfolio
Have you ever wondered if you could run advanced AI models like ChatGPT locally on a small single-board computer? Well, wonder no more – with the power of Alpaca.cpp and the new Raspberry Pi 5, you absolutely can! This post is going to be an unique post. Because, we are going to show you how to run a ChatGPT like model locally on a tiny computer like Raspberry Pi and eventually turn your raspberry Pi into an AI ChatBot server. Well, if you are afraid that you don’t have Raspberry Pi. You can try this on any computer: Windows, Linux, or Mac. You non need to stick on the Raspberry Pi. Now, you may ask what is unique about this post. The most unique thing is, this project allows you to run…
Read More

Breaking Down the Latest December 2023 Patch Tuesday Report

Portfolio
Microsoft has wrapped up 2023 by disclosing fixes for 34 vulnerabilities in its December Patch Tuesday security updates. Impacting Windows, Office, Dynamics, Azure, and other products, this release addresses concerns rated as Critical for four flaws while giving an Important ranking to 30 bugs. One publicly known zero-day affecting AMD processors also gets patched. This last batch of updates for the year provides patches covering multiple vulnerability types like elevation of privilege, remote code execution, spoofing, denial of service, and information disclosure vulnerabilities. Technologies receiving fixes range from core Windows components to Dynamics applications to Azure cloud services showing the expansive scope. Among the highlights are an AMD zero-day leading to potential data leaks from speculative execution, a no-interaction remote code execution bug hitting Outlook, critical RCE vulnerabilities in Windows Internet Connection Sharing (ICS), and…
Read More
Biden’s Executive Order on AI: What Businesses Need to Know

Biden’s Executive Order on AI: What Businesses Need to Know

Portfolio
Artificial intelligence (AI) promises to be one of the most transformative technologies of our time, with the potential to drive tremendous efficiencies, insights, and innovations across industries. However, without thoughtful governance, AI also poses risks related to issues like algorithmic bias, data privacy, cybersecurity, and more. That’s why in September 2022, the White House released a sweeping executive order on Advancing Racial Equity and Support for Underserved Communities Through the Federal Government. This order lays outs a coordinated approach and set of principles for responsibly governing the development and use of AI technologies across areas like safety, innovation, privacy, equity and more. For business leaders, this executive order signals both a new regulatory environment that your AI strategy will need to align with, as well as new opportunities to leverage AI for good. In this comprehensive overview,…
Read More
What Imperva Said About the Recent Cyber Attacks on Oracle WebLogic Servers?

What Imperva Said About the Recent Cyber Attacks on Oracle WebLogic Servers?

Portfolio
In a recent report published on December 14th, 2023, cybersecurity leader Imperva shed light on a series of attacks exploiting vulnerabilities in Oracle WebLogic servers. Imperva’s Threat Research team detected increased activity from a Chinese state-sponsored group known as the 8220 gang, targeting WebLogic installations to deploy cryptojacking malware. First spotted in 2017, the 8220 gang is notorious for mass malware campaigns that abuse new vulnerabilities as they are discovered. Their latest campaigns take advantage of authentication flaws and remote code execution bugs in WebLogic to breach servers and install Monero miners. Imperva’s report contains valuable details about the attack vectors utilized by 8220, as well as indicators of compromise that can help organizations detect intrusions. We will examine the specific WebLogic vulnerabilities exploited, the techniques employed to compromise systems, and the malware installed…
Read More
How to Start Preparing for CISSP? What Resources Are to be Used for CISSP Preparation?

How to Start Preparing for CISSP? What Resources Are to be Used for CISSP Preparation?

Portfolio
In the course of my professional journey, I’ve encountered numerous individuals aspiring to attain the coveted CISSP (Certified Information Systems Security Professional) certification. Given the plethora of resources available and diverse recommendations from various sources, many find themselves grappling with the challenge of where to start their preparation. Today, I aim to assist those beginning on the formidable journey towards CISSP certification by offering guidance on how to initiate their preparation and outlining key resources essential for a comprehensive and effective study plan. This post aims to streamline the process for individuals seeking to navigate the complexities of CISSP certification, providing a roadmap on how to start preparing for CISSP and what resources to use for CISSP preparation. Please make sure to go through my previous article to get an…
Read More
Protect Your Windows and Mac from JaskaGO- Go-Based Stealer Malware

Protect Your Windows and Mac from JaskaGO- Go-Based Stealer Malware

Portfolio
On December 18th, 2023, Alien Labs – the security research team at AT&T – disclosed their findings on a novel information stealer malware written in Go programming language, dubbed JaskaGO. According to Ofer Caspi, JaskaGO excels at covertly extracting extremely sensitive user data from both Windows and Mac devices. This includes login credentials, browsing history, valuable files and even cryptocurrency wallet details – all of which can be quietly exfiltrated to remote attacker-controlled servers. As a multi-platform threat, JaskaGO serves as an urgent reminder that users of Windows and macOS alike need to remain vigilant to protect themselves from malware attacks. We published this post to help individuals and security teams understand this threat and take necessary precautions. Things AT&T Alien Labs Revealed About JaskaGO: The AT&T Alien Labs report revealed several notable capabilities and behaviors of JaskaGO: Versatile command-and-control: JaskaGO continuously…
Read More
What Security Researcher Says About the Recent Web Injection Attacks on the Financial Institutions?

What Security Researcher Says About the Recent Web Injection Attacks on the Financial Institutions?

Portfolio
Tal Langus, a security researcher from IBM Security Trusteer, has published an extensive analysis on the recent outbreak of JavaScript-based web injection attacks targeting financial institutions worldwide. This dangerous new malware campaign came into prominence in early 2023, infecting thousands of banking customers across various regions. As per Langus’ research, the sophisticated JavaScript injection malware leverages malicious scripts injected into the browser to intercept user credentials and bypass two-factor authentication on online banking sites. Through dynamically generated web injections, the banking trojan is able to stealthily replicate and manipulate legitimate processes to facilitate cyber theft. The campaign exhibits signs of sophistication associated with the infamous DanaBot, although definitive attribution remains unclear. It has affected over 40 banking applications and led to the compromise of 50,000 user sessions since December 2022 – showcasing an unprecedented…
Read More
Step by Step Guide to Install Java on Ubuntu Linux

Step by Step Guide to Install Java on Ubuntu Linux

Portfolio
Java is one of the most popular programming platforms used by developers around the world. Whether you want to run Java applications or develop them yourself, having Java installed on your Ubuntu system is essential. In this beginner-friendly guide, I’ll walk you through the steps to install different versions of Java on your Ubuntu 22.04 LTS system. We will cover installing both the Java Runtime Environment (JRE) to run Java programs and the full Java Development Kit (JDK) to compile Java code. Prerequisites Before installing Java, make sure your Ubuntu system is fully updated by running: sudo apt update && sudo apt upgrade This will fetch the latest updates from the Ubuntu repositories and prep your system. OpenJDK vs Oracle JDK Key Differences When installing Java on Ubuntu, you have the option of using…
Read More