Security
  • Menu
  • All Tips
  • FAQs
  • Categories
  • Guidelines
  • Data Security Support
  • Tools
  • Have I Been Pwned?
  • Pwned Passwords
  • Email Checker
  • Password Generator
  • My IP
  • Privacy
DATA PRIVACY NOTICE AND CONSENT FORM

Cloudstaff is committed to protecting the privacy of its data subjects, and ensuring the safety and security of personal data under its control and custody. This policy provides information on what personal data is gathered by Cloudstaff Security Tips about its current, past, and prospective employees; how it will use and process this; how it will keep this secure; and how it will dispose of it when it is no longer needed. This information is provided in compliance with the Philippine Republic Act No. 10173, also known as, the Data Privacy Act of 2012 (DPA) and its Implementing Rules and Regulations (DPA-IRR). It sets out Cloudstaffs’ data protection practices designed to safeguard the personal data of individuals it deals with, and also to inform such individuals of their rights under the Act.

The personal data obtained from this application is entered and stored within the Cloudstaff system and will only be accessed by the Cloudstaff’s authorized personnel. Cloudstaff have instituted appropriate organizational, technical and cloud security measures (Amazon Web Services Shared Responsibility) to ensure the protection of the users personal data.

Information collected will be automatically deleted after three (3) years inactivity.

Furthermore, the information collected and stored in the application are as follows:
  • Given Name
  • Family Name
  • Avatar [Profile Picture]

USER CONSENT

I have read the Data Privacy Statement and expressed my consent for Cloudstaff to collect, record, organize, update or modify, retrieve, consult, use, consolidate, block, erase or destruct my personal data as part of my information.

I hereby affirm my right to be informed, object to processing, access and rectify, suspend or withdraw my personal data, and be indemnified in case of damages pursuant to the provisions of the Republic Act No. 10173 of the Philippines, Data Privacy Act of 2012 and its corresponding Implementing Rules and Regulations.

If you want to exercise any of your rights, or if you have any questions about how we process your personal data, please contact Cloudstaff’s Data Protection Officer, through the following channel:

Email to privacy@cloudstaff.com

  • Log in Now
How Hackers Break In Through Your Browser

A Man-in-the-Middle (MiTM) attack places a hacker between your browser and a real website, often using malicious software to spy on or change your data.

A Browser-in-the-Middle (BiTM) attack is trickier. You think you're using your own browser, but you're actually interacting with a browser controlled by a hacker. They can watch, record, and manipulate everything you do online.

How BiTM Attacks Work

  1. Phishing – You click a fake link that leads to a malicious site.
  2. Fake Browser – Hidden code opens a remote browser the hacker controls.
  3. Data Theft – You use websites as usual, while your login info and data are secretly stolen.

Hackers steal special digital keys that keep you logged in, letting them bypass even multi-factor authentication (MFA). These attacks are fast and hard to detect.

How to Protect Yourself from BiTM Attacks:

  • Don’t click unknown links – Always hover over a link to preview the URL before clicking.
  • Bookmark important websites – Access sites like online banking only through saved bookmarks, not links in emails or texts.
  • Use a password manager – It helps detect fake websites because it won’t auto-fill credentials on suspicious or unknown domains.
  • Enable browser security features – Use browser alerts for suspicious sites, and keep your browser updated.
  • Install antivirus software – It can detect and block malicious code or fake browsers.
  • Use multi-factor authentication (MFA) – Even if tokens are at risk, MFA adds an extra hurdle for attackers.
  • Logout when finished – Always log out of sensitive sites like email or banking, especially on shared devices.
  • Avoid public Wi-Fi for sensitive activities – Use a VPN if you must access personal accounts on public networks.
  • Be cautious with browser extensions – Only install trusted add-ons from official stores, and review permissions.
  • Update software regularly – Keep your operating system, browser, and security tools current to patch known vulnerabilities.

Are Passwords Still Important?

Yes. Even with advanced attacks, using strong passwords and turning on multi-factor authentication (MFA) makes it much harder for hackers to get in. While stealing digital keys that keep you logged in is a real threat, simple habits—like keeping your password safe and staying alert—are still some of the best ways to protect yourself.

Source: https://thehackernews.com/2025/05/how-browser-in-middle-attacks-steal.html

Vyete (VyeteR) Raymundo | News
Created: June 04 2025 | Updated: 3 weeks, 5 days ago
Comments

  2021 © Mazer

Security Tips v2.0.1 | Crafted with by Saugi