0x58

georgengelmann, 4 months ago to Cybersecurity

What's a good text to send to a hosting provider when reporting a cryptocurrency scam?

#cybersecurity #netsec #infosec

0x58, 4 months ago to opensource

Oh, geez. That does not make my any younger 👴 😆

#OpenWrt #opensource #router #tech

https://arstechnica.com/gadgets/2024/01/openwrt-now-20-years-old-is-crafting-its-own-future-proof-reference-hardware/

0x58, 4 months ago to twitter

Could this be the first good move of the :birdsite:​ since Elon took over?

#twitter #Passkeys #mfa #infosec #cybersecurity

https://techcrunch.com/2024/01/23/x-adds-support-for-passkeys-on-ios-after-removing-sms-2fa-support-last-year/

j_opdenakker, 4 months ago to infosec

Imagine in 2024 organizations think you can defend against sql injection attacks (via a password) by banning certain characters and keywords.

University of Ljubljana: Hold my beer! #infosec #appsec

https://id.uni-lj.si/DigitalnaIdentiteta/PonastavitevGesla?culture=en-GB

0x58, 4 months ago to Cybersecurity

Meh. Not good.

Microsoft network breached through password-spraying by Russian-state hackers.

#cybersecurity #infosec #microsoft #russia #2FA #MFA #passwords

https://arstechnica.com/security/2024/01/microsoft-network-breached-through-password-spraying-by-russian-state-hackers/

0x58, 4 months ago to tech

On Thursday, Internet pioneer Vint Cerf announced that Dr. David L. Mills, the inventor of Network Time Protocol (NTP), died peacefully at age 85 on January 17, 2024.

#NTP #RIP #tech

https://arstechnica.com/gadgets/2024/01/inventor-of-ntp-protocol-that-keeps-time-on-billions-of-devices-dies-at-age-85/

0x58, 4 months ago to infosec

#Switzerland said that a cyberattack claimed by a pro-Russian group disrupted access to some government websites, following Ukrainian President Volodymyr Zelensky’s visit to #Davos.

#infosec #cybersecurity #russia #ukraine

https://www.securityweek.com/swiss-govt-websites-hit-by-pro-russia-hackers-after-zelensky-visit/

thijs, 4 months ago to infosec

The first day at work after visiting the in-laws in Mexico :-) Didn't do much #infosec there. Enjoyed the family, fun, food and drinks.

Oh. She said yes in Acapulco💍😃.

0x58, 4 months ago to infosec

🗓️ ✈️ OK folks, new year means new list of your favorite #infosec events. Feel free to submit the ones you're aware of through PR's, that'd be much appreciated 🙏

#crowdsourcing #community #cybersecurity

https://github.com/xsa/infosec-events

0x58, 4 months ago to infosec

Pretty interesting disclosure. By recovering local memory—an optimized GPU memory region—researchers were able to build a PoC where an attacker can listen into another user’s interactive LLM session (e.g., llama.cpp) across process or container boundaries.

#infosec #security #cybersecurity #aisecurity #llm #genai #gpu

https://blog.trailofbits.com/2024/01/16/leftoverlocals-listening-to-llm-responses-through-leaked-gpu-local-memory/

hrbrmstr, 4 months ago to random

Someone needs to have a word or three with Ivanti's marketing department…

0x58, 4 months ago to infosec

🤝 #Snyk acquires Helios to bolster its AppSec platform.

#infosec #cybersecurity #appsec #acquisitions

https://techcrunch.com/2024/01/16/snyk-acquires-helios-to-bolster-its-appsec-platform/

0x58, 4 months ago to infosec

In 2020, Drizly disclosed that it was affected by a data breach that affected 2.5 million customers. Last year, the Federal Trade Commission (FTC) ordered Drizly to delete all personal data that wasn’t required to provide service. Plus, it asked the alcohol delivery service and CEO James Cory to implement a robust security program.

#Uber #drizly #alcohol #infosec

https://techcrunch.com/2024/01/16/uber-is-closing-alcohol-delivery-service-drizly-three-years-after-acquistion/

0x58, 4 months ago to Cybersecurity

🗣️ Hacker Conversations: @hdm and the Line Between Black and White.

#cybersecurity #infosec

https://www.securityweek.com/hacker-conversations-hd-moore-and-the-line-between-black-and-white/

0x58, 4 months ago to Cybersecurity

📨 Latest issue of my curated #cybersecurity and #infosec list of resources for week #02/2024 is out! It includes the following and much more:

➝ 🔓 🎽 Halara probes breach after hacker leaks data for 950,000 people
➝ 🔓 💥 #Mandiant's X Account Was Hacked Using Brute-Force Attack
➝ 🔓 🇵🇾 #Paraguay warns of Black Hunt #ransomware attacks after Tigo Business #breach
➝ 🇺🇸 💸 US SEC’s X account hacked to announce fake #Bitcoin ETF approval
➝ 🔓 🇨🇦 Toronto Zoo: Ransomware attack had no impact on animal #wellbeing
➝ 🔓 Mortgage firm loanDepot #cyberattack impacts IT systems, payment portal
➝ 🇫🇮 💸 #Finland warns of Akira ransomware wiping NAS and tape #backup devices
➝ 🇩🇰 🇷🇺 #Sandworm probably wasn’t behind Danish critical infrastructure cyberattack, report says
➝ 🇺🇦 🇷🇺 Pro-Ukraine hackers breach Russian ISP in revenge for #KyivStar attack
➝ 🇫🇷 🇺🇸 French Computer Hacker Jailed in US
➝ 🇳🇬 ⚖️ Nigerian gets 10 years for laundering millions stolen from elderly
➝ 🇹🇷 Turkish Hackers Exploiting Poorly Secured #MSSQL Servers Across the Globe
➝ 🇹🇷 🇳🇱 Turkish #Cyberspies Targeting Netherlands
➝ ☁️ 🇪🇺 #Microsoft Lets Cloud Users Keep Personal Data Within #Europe to Ease #Privacy Fears
➝ 🇺🇸 🇨🇳 #AI is helping US spies catch stealthy Chinese hacking ops, #NSA official says
➝ 🇱🇧 ✈️ Beirut Airport Screens Hacked with Anti-Hezbollah Message
➝ 🇸🇦 Saudi Ministry exposed sensitive data for 15 months
➝ 🇬🇷 #Greece to Establish New Authority to Counter Cyber-Attacks
➝ 🩹 #Siemens, #SchneiderElectric Release First #ICS Patch Tuesday Advisories of 2024
➝ 🐍 ☁️ New #Python-based FBot Hacking Toolkit Aims at #Cloud and #SaaS Platforms
➝ 🦠 📺 #YouTube Videos Promoting Cracked Software Distribute Lumma Stealer
➝ 🦠 🐧 #Linux devices are under attack by a never-before-seen worm
➝ 🦠 🇳🇱 Dutch Engineer Used Water Pump to Get Billion-Dollar #Stuxnet #Malware Into Iranian Nuclear Facility
➝ 🐡 🔐 DSA removal from #OpenSSH
➝ 🩹 #PatchTuesday
➝ 🐛 🔓 Actively exploited 0-days in #Ivanti VPN are letting hackers #backdoor networks
➝ 🔓 🔧 Hackers can infect network-connected wrenches to install ransomware
➝ 🇨🇳 🔓 #AirDrop cracked by #China, revealing phone number and email address of sender
➝ 🩹 #QNAP Patches High-Severity Flaws in QTS, Video Station, QuMagie, Netatalk Products
➝ 🐛 🔓 KyberSlash attacks put #quantum #encryption projects at risk

Subscribe to the #infosecMASHUP newsletter to have it piping hot in your inbox every week-end ⬇️

https://infosec-mashup.santolaria.net/p/infosec-mashup-week-022024

scottwilson, 4 months ago to infosec

Seriously? Does anyone fall for something like this anymore?

#spam #spim #lazy #phishing #infosec

0x58, 5 months ago to infosec

#AirDrop crack: Apple was made aware of the #vulnerability in 2019.

I guess someone didn't get the memo.

#infosec #china

https://9to5mac.com/2024/01/10/airdrop-crack/

0xamit, 5 months ago to random

A piece of toast with some avocado, salt, and Tabasco is the ultimate breakfast. Fite me.
🍞🥑🥫

GossiTheDog, 5 months ago to random

deleted_by_author

0x58, 5 months ago to ai

Can we add #AI to this? 🤣 #xkcd

https://xkcd.com/2879

raesene, 5 months ago to random

Wow looks like VMWare won't even market to you unless you're a business!

Kind of interesting as I've been a customer since 2000 or so and I thought they were keeping on their desktop Virtualization products...