Author Archives: J.S Tomar

Cybercrime May Be the World’s Third-Largest Economy by 2021

Abtract

As organizations go digital, so does crime. Today, cybercrime is a massive business in its own right, and criminals everywhere are clamoring to get a piece of the action as companies and consumers invest trillions to stake their claim in the digital universe.

Putting things into perspective: Walmart, which racks up America’s greatest firm earnings, generated a mind-blowing $514 billion in revenue last year. Yet cybercrime earns 12 times that. Both sell a huge variety of products and services. In fact, in terms of earnings, cybercrime puts even Tesla, Facebook, Microsoft, Apple, Amazon, and Walmart to shame. Their combined annual revenue totals “just” $1.28 trillion. 

Cybercrime is undergoing an industrialization wave and offers everything that a regular legal company does: product development, technical support, distribution, quality assurance, and even customer service. Cybercriminals rob and then sell new technologies or secret strategic plans that will give their buyers an edge over their competitors. Hackers steal military secrets, renewable energy innovations, and more. 

Read more in

https://www.darkreading.com/vulnerabilities—threats/cybercrime-may-be-the-worlds-third-largest-economy-by-2021/a/d-id/1337475

Selenium Xpath Script Failure: Element is not currently interactable and may not be manipulated

Let’s take an example to understand when selenium scripts throws below error.

Element is not currently interactable and may not be manipulated

Scenario: You are trying to record a login form which loads onto the page dynamically and final login view is in the modal rather than a page. The module takes time to load due to content or could be network issue at a particular time. However, selenium is trying to find recorded elements to fill the fields.

Put selenium wait functions if login form takes time to load so that selenium wait for the DOM to load before execute next statement.

Root cause of above error

The root cause of the issue is that selenium finds many fields with same id, class or whatever field you are trying to find in the login form. Check if your base page and model popup has similar input field. If you do find duplicate fields then try to put additional hierarchy to find appropriate DOM field. Take below example.

#XPATH Query to find specific input field based on above div class name.
//div[@class='registration-body']//input[contains(@class, 'email-input')]

Every Developer must read it: [SWAT] Checklist

Securing Web Application Technologies [SWAT] Checklist

The SWAT Checklist provides an easy to reference set of best practices that raise awareness and help development teams create more secure applications. It’s a first step toward building a base of security knowledge around web application security. Use this checklist to identify the minimum standard that is required to neutralize vulnerabilities in your critical applications.

Read more in

https://software-security.sans.org/resources/swat

How to check if your personal information has been exposed

Now a days every application be it mobile app or website are collecting your personal information. But, They do not guarantee that your private information: Email, Account name, your location etc are protected. Your data is being sold legal & illegal both ways. illegal data is sold in hacker forums after every data breach. And All big corporates Facebook, amazon & google are selling, buying data legally.

No organization in the world can given you guarantee to protect your data. You have to protect yourself. A Few very simple tips:

  • Strong password. Rather than password use paraphrase in your native language.
  • Enable Multi-Factor authentication in every account like Google, Facebook twitter etc. Make sure it is not easy to reset password any onebody else.

In order to verify if your information is already compromised by hackers. F-Secure cyber experts have build a tool and it is open & free. All you have to do is put your email address.

Free tools: https://www.f-secure.com/us-en/home/free-tools/identity-theft-checker