Nethemba

Nethemba Nethemba is an IT security company based in Czech and Slovak Republic It consists of five experts with long experience in the computer security.

Nethemba is a Slovak IT security company founded in 2007 primarily focused on web application security and pe*******on tests. In addition to the broad portfolio that includes intranet and local system security audits, forensic digital analysis, wireless networks audits and VoIP, Nethemba is the only Slovak/Czech company that offers RFID security audits and active security research which is demonst

rated by their regular presentations at worldwide conferences. https://www.nethemba.com/

http://www.chrantesvojesukromie.sk/

http://www.bezpecnostne-audity.sk/
http://www.penetracne-testy.sk/

15/04/2026

Evaluating and mitigating the growing risk of LLM-discovered 0-days
Claude Opus 4.6, released today, continues a trajectory of meaningful improvements in AI models’ cybersecurity capabilities.

Nicholas Carlini*, Keane Lucas*, Evyatar Ben Asher*, Newton Cheng, Hasnain Lakhani, David Forsythe, and Kyla Guru *indicates equal contribution

AI voice cloning now takes 3 seconds of audio. Encrypted messengers solve channel security but not human authentication;...
02/04/2026

AI voice cloning now takes 3 seconds of audio. Encrypted messengers solve channel security but not human authentication; how do you verify the person on the other end isn't a deepfake?

We're drafting an open protocol for this: CANARY; coercion-resistant spoken verification. Rotating words derived from a shared secret (like TOTP but human-spoken), with three layers designed for real-world threat models:

· Rotating verification words; deterministic, offline-capable, burn-after-use. Not a static family safe word that one compromise burns forever.
· Silent duress signalling; if you're coerced into revealing your word, speaking a different word silently alerts the group without tipping off the attacker. Per-member duress tokens mean the group knows who is under duress.
· Dead man's switch / liveness; if a member stops checking in, the group is alerted. Covers the scenario where someone can't even speak a duress word…. they've gone silent entirely.

Spec: https://github.com/TheCryptoDonkey/canary-kit/blob/main/CANARY.md
Nostr binding (6 event kinds): https://github.com/TheCryptoDonkey/canary-kit/blob/main/NIP-CANARY.md
Interactive demo: https://canary.trotters.cc

Deepfake-proof identity verification. Per-member spoken words, silent duress detection, encrypted group sync. Open protocol. - forgesworn/canary-kit

#23 Year Of The Pig (Try Hack Me) (Hard) (Challenge) I Should Learn Python...What happens when a Java/PHP coder is chal...
30/03/2026

#23 Year Of The Pig (Try Hack Me) (Hard) (Challenge) I Should Learn Python...

What happens when a Java/PHP coder is challenged to write a Python script?
My attempt at Year Of The Pig on THM which is rated 'Hard'.
Thanks to Rick.

What happens when a Java/PHP coder is challenged to write a Python script? My attempt at Year Of The Pig on THM which is rated 'Hard'.Thanks to Rick for maki...

Z ktorého vrecka zaplatí EK pokutu za hrubé zanedbanie bezpečnosti?Správne! Z vrecka daňových obetí...Čo v korporáciách ...
28/03/2026

Z ktorého vrecka zaplatí EK pokutu za hrubé zanedbanie bezpečnosti?

Správne! Z vrecka daňových obetí...

Čo v korporáciách musia ťažko znášať majitelia/akcionári.

European Commission’s Data Stolen in Hack on AWS Account

The European Commission was hit by a cyberattack that may have resulted in the theft of internal data, months after another incident potentially exposed some staff details.

Large-Scale Online Deanonymization with LLMsWe measure the capabilities of LLMs to deanonymize users online.
24/03/2026

Large-Scale Online Deanonymization with LLMs
We measure the capabilities of LLMs to deanonymize users online.

We measure the capabilities of LLMs to deanonymize users online.

Sweden's E-Government Source Code Leaked in Major CGI Sverige Breach
24/03/2026

Sweden's E-Government Source Code Leaked in Major CGI Sverige Breach

A threat actor has leaked source code from Sweden's e-government platform after breaching CGI Sverige AB. Passwords, credentials, and citizen data are exposed.

Česká vláda má bezpečnou digitální identitu na dosah. Zájem o ni zatím neníČesko zatím opakuje vzorec Evropské komise a ...
24/03/2026

Česká vláda má bezpečnou digitální identitu na dosah. Zájem o ni zatím není
Česko zatím opakuje vzorec Evropské komise a upřednostňuje zastaralé technologie před prověřenými bezpečnými inovacemi.

Česko zatím opakuje vzorec Evropské komise a upřednostňuje zastaralé technologie před prověřenými bezpečnými inovacemi.

Venice Launches End-to-End Encrypted AIWe're introducing verifiably encrypted AI inference, offering both Trusted Ex****...
21/03/2026

Venice Launches End-to-End Encrypted AI
We're introducing verifiably encrypted AI inference, offering both Trusted Ex*****on Environment (TEE) and End-to-End Encrypted (E2EE) models.

We're introducing verifiably encrypted AI inference, offering both Trusted Ex*****on Environment (TEE) and End-to-End Encrypted (E2EE) models.

Docker-based lab environment for the Attacking, Defending, and Leveraging AI class.Integrates the BHIS AI-CTF (11 prompt...
20/03/2026

Docker-based lab environment for the Attacking, Defending, and Leveraging AI class.

Integrates the BHIS AI-CTF (11 prompt injection challenges) with 9 hands-on Jupyter lab notebooks and an automated LLM red-teaming container.

Collection of AI related labs to support AI Sec Ops podcast and related training classes. - deruke/aisecops-labs

HorusEye: I Built an AI-Assisted Active Directory Attack Platform After 1000+ CTF Rooms
17/03/2026

HorusEye: I Built an AI-Assisted Active Directory Attack Platform After 1000+ CTF Rooms

I have solved over 1000 rooms and machines across HackTheBox, TryHackMe, and OffSec. These are the three biggest hands-on cybersecurity…

The new attack against Wi-Fi The attacker can view and modify data before it makes its way to the intended recipient. Th...
14/03/2026

The new attack against Wi-Fi

The attacker can view and modify data before it makes its way to the intended recipient. The attacker can be on the same SSID, a separate one, or even a separate network segment tied to the same AP.

It’s called AirSnitch: Unlike previous Wi-Fi attacks, AirSnitch exploits core features in Layers 1 and 2 and the failure to bind and synchronize a client across these and higher layers, other nodes, and other network names such as SSIDs (Service Set Identifiers). This cross-layer identity desynchr...

Address

Grösslingová 2503/62
Bratislava
81109

Website

Alerts

Be the first to know and let us send you an email when Nethemba posts news and promotions. Your email address will not be used for any other purpose, and you can unsubscribe at any time.

Shortcuts

Share

Category