I think it’s time to redo my #pfsense blocklists, quite a few of them are breaking, and I want to secure my network properly more. I don’t think a lot of it will be shown on stream, but I will try and make #Tiktok and #Peertube videos about it and hopefully a longer form #youtube as well so be sure to follow those accounts as well as my #twitch but I will go over the research and planning live on twitch to explain how and why I architect things the way I do. #infosec#cybersecurity
Again I won’t be able to share EVERYTHING, I plan to do in my networking audit and enhancements but more than enough to give my audience and community thoughts to chew on and learn from #infosec#cybersecurity
Тиждень тому українці почали отримувати СМС-повідомлення нібито від «Укрпошти» про те, що їх відправлення не доставлять, якщо вони не нададуть свої персональні дані (детальніше про це можна прочитати в матеріалі AIN.UA: https://ain.ua/2023/06/06/ukrposhta-poperedyla-pro-fishyng/).
Це рішення працює на всіх операційних системах (на скріншоті блокування однієї із адрес у браузері Brave для ОС Android). Єдине, що потрібно — додати фільтр Ukrainian Malicious URL Blocklist до свого веб-браузера: https://github.com/braveinnovators/url-blocklist
Саме тому ми створили універсальне правило для фільтра фішингових сайтів Ukrainian Malicious URL Blocklist завдяки якому всі веб-посилання у форматі ukrposhta.xxx.xxx будуть блокуватися автоматично і незалежно від того, які саме доменні імена будуть надалі використовуватися шахраями у цій фішинговій кампанії.
Well I just found a security vulnerability with my bank’s systems. Reported it immediately. I will not be disclosing what I found just yet and seeing if it’s just specific to that institution as well. #sync#infosec
@CelestialSilentLion there’s multiple issues I’m finding with VISA, the card itself doesn’t even encrypt the card details completely like my AMEX and Mastercard. VISA has a really incompetent #cybersecurity posture
Taking a break from #Musk's Hate Train on the Hellsite to recall this series of Tweets from a few years ago.
While under-appreciated then and now, the Tweet thread by Musk posted below contains an extremely damning #SystemsSafety admission and it displays the considerable #PublicSafety blind spot associated with remotely updating #SafetyCritical systems without oversight.
Musk has no clue what he admitted to here, but systems safety experts do.
Welcome to this week's Symfony Station newsletter. It's your review of the essential news in the Symfony and PHP development communities focusing on protecting democracy. We also cover the cybersecurity world and the Fediverse.
I’m trying to figure out if/how I can add MISP into my home lab to enhance security and add threat sharing. This way my firewall can dynamically adjust based on additional threat information. I think a lot of you will be interested in this as well #infosec#cybersecurity#threatsharinghttps://www.misp-project.org/
⎧ Enigma software group has won a crucial case in the U.S. Court of Appeals for the Ninth Circuit, allowing it to proceed with its lawsuit against Malwarebytes for flagging its anti-spyware software as a 'potentially unwanted program.' The lawsuit alleges that Malwarebytes has engaged in anti-competitive conduct under the Lanham Act and tortious interference with Enigma's business ⎭ ➥ @techspot
This article highlights some of the more grounded threats that we face from AI tools in the immediacy. I think a lot of users see their browser's extension stores as a safe place to acquire addons when, in fact, it is vitally important to pick what extensions you install very carefully and question whether the permissions they're asking for are justified.
Welcome to this week's Symfony Station communiqué. It's your review of the essential news in the Symfony and PHP development communities focusing on protecting democracy. We also cover the cybersecurity world and the Fediverse.
Cool short blog post on exploiting TP-LINK AX1800 router
Stack-based buffer overflow and remote code execution (require either LAN access or physical access)
Credits Rocco Calvi
PowerShell Email Warning: search for instances in your PowerShell scripts that send emails using the Send-MailMessage command.
REASON
To quote Microsoft: "The Send-MailMessage cmdlet is obsolete. This cmdlet does not guarantee secure connections to SMTP servers. While there is no immediate replacement available in PowerShell, we recommend you do not use Send-MailMessage."
SOLUTION
Re-write the script to open a local instance of a secure email app and automate sending messages via the app, rather than directly from PowerShell.
TURN THIS INTO A WIN
This is a great project for your entry-level cybersecurity people, or a NetAdmin/SysAdmin who wants to move into cybersecurity.
Do a global network search for PS scripts containing “Send-MailMessage.”
Determine if the script is in active use.
Work with the script owner to remediate the problem.
Log all work – status of instances found, when remediated, etc.
Attend the Change Management meetings to report and coordinate activities.
LAST BUT NOT LEAST
“But Bob, we don’t use PowerShell in our network.”
My reply: Do the search anyway. You might uncover a malicious script running in your system to exfiltrate information.
Explore this week's Symfony, Drupal, PHP, and Fediverse news in the latest Symfony Station newsletter (mailchi.mp)
Welcome to this week's Symfony Station newsletter. It's your review of the essential news in the Symfony and PHP development communities focusing on protecting democracy. We also cover the cybersecurity world and the Fediverse.
Symfony Station Communiqué - 9 June 2023 (www.symfonystation.com)
Welcome to this week's Symfony Station communiqué. It's your review of the essential news in the Symfony and PHP development communities focusing on protecting democracy. We also cover the cybersecurity world and the Fediverse.