0x58

@0x58@infosec.exchange

👨‍👩‍👧‍👦 Husband. Proud Father. He/Him.

👁️ 🐝 Ⓜ️ IBM Inventor and Cloud Security Solution Architect at @IBM. Member of the IBM Academy of Technology (AoT).

:openbsd: ex-#OpenBSD (xsa@). Hacker. Open Source Advocate.

#ibm #infosec #cloudsecurity #fedi22 #fedi23 #wehackhealth #crossfit #emtb #fieldhockey #porsche #nobot

💬 My Own Views. Always.

My #cybersecurity and #infosec Weekly Newsletter:

📨 https://infosec-mashup.santolaria.net

Maintaining a list of {Cyber,Info}Security Events:

📆 https://github.com/xsa/infosec-events

This profile is from a federated server and may be incomplete. Browse more on the original instance.

0x58, to infosec

So, who's lying and who's doing a PR stunt? :birdsite:​

If the SEC had failed to enable two-factor authentication — as the statement from X claimed — the agency would be in violation of federal government guidance. A December 2021 advisory from the Cybersecurity and Infrastructure Security Agency urges federal agencies to enforce multi-factor authentication for their social media accounts, among other actions.

#infosec #cybersecurity #CISA

https://cyberscoop.com/after-hack-x-claims-sec-failed-to-use-two-factor-authentication/

0x58,

It seems #2FA is lacking some deserved love... 💗 The "Mandiant case" 👇

"Normally, [two-factor authentication] would have mitigated this, but due to some team transitions and a change in X's 2FA policy, we were not adequately protected," the threat intelligence firm said in a post shared on X.

#infosec #cybersecurity

https://thehackernews.com/2024/01/mandiants-x-account-was-hacked-using.html

0x58, to infosec

is back from the deads, or so to speak...

It’s believed that the Stuxnet malware was planted on a water pump that the Dutch national installed in the nuclear complex in Natanz, which he had infiltrated. It’s unclear if Van Sabben knew exactly what he was doing, but his family said he appeared to have panicked at around the time of the Stuxnet attack.

https://www.securityweek.com/dutch-engineer-used-water-pump-to-get-billion-dollar-stuxnet-malware-into-iranian-nuclear-facility-report/

0x58,

@cafou Investigation journalism is tricky.

0x58, to Cybersecurity

📈 Major companies' stock are on the high end of the 52 weeks range.. except ($FTNT). ($JNPR) sky rocketing as HPE in talks to acquire Juniper Networks in potential $13B deal.

0x58, to China

🇨🇳 #China Says It Cracked Apple #AirDrop to Identify Message Sources

#infosec #cybersecurity

https://www.bloomberg.com/news/articles/2024-01-09/china-says-cracked-apple-s-airdrop-to-identify-message-sources

aris, to random

After more than 10 years (maybe more) at gandi, I'm moving my domain names and VPS to Infomaniak, for something between 33% and 50% of the price at gandi.

0x58,

@aris And God knows Infomaniak is already expensive 😆

0x58, to infosec

Looks like people are still having fun on X/Twitter :birdsite:​

#infosec #cybersecurity #scam #crypto

https://www.bleepingcomputer.com/news/security/netgear-hyundai-latest-x-accounts-hacked-to-push-crypto-drainers/

0x58, to Cybersecurity

📨 Latest issue of my curated and list of resources for week /2024 is out! It includes the following and much more:

➝ 🇺🇸 🖼️ MAJOR US SUFFER FALLOUT
➝ 🇪🇸 📡 A “ridiculously weak“ password causes disaster for ’s No. 2 mobile carrier
➝ 🔓 🧬 tells victims it’s their fault that their data was breached
➝ 🔓 💸 loses $86 million in the last hack of 2023
➝ 🔓 🅿️ Europe’s Largest Parking App Provider Informs Customers of Data Breach
➝ 💸 🙊 wallet founder loses $125,000 to fake airdrop website
➝ 🇺🇸 ⚖️ US Says 19 People Charged Following 2019 Takedown of Cybercrime Marketplace
➝ 🇵🇸 🇮🇱 Palestinian Hackers Hit 100 Israeli Organizations in Destructive Attacks
➝ 🔓 ❌ Hacked X Account Abused for Theft
➝ 🇳🇬 🇺🇸 ⚖️ Nigerian hacker arrested for stealing $7.5M from charities
➝ 🇦🇱 📡 Albanian Parliament and One Albania Telecom Hit by Cyber Attacks
➝ 🇺🇸 The FBI is adding more cyber-focused agents to U.S. embassies
➝ 🇺🇸 ⚖️ Former admin to be jailed until Jan. 19 sentencing
➝ 🇺🇸 💰 DOJ Slams with $10 Million Fine Over Massive Illegal Robocall Operation
➝ 📷 🥸 Contractor Pays Parents $50 to Scan Their Childrens' Faces
➝ 💰 🥸 Google Settles $5 Billion Lawsuit Over Tracking Users in 'Incognito Mode'
➝ 🇨🇳 🗳️ to reveal Chinese election interference after Saturday’s vote
➝ 🦠 💰 Settles Insurance Claim, Leaving Definition Unresolved
➝ 🦠 🇰🇵 SpectralBlur: New Backdoor Threat from North Korean Hackers
➝ 🦠 🐍 3 Malicious Packages Found Targeting with Crypto Miners
➝ 🦠 🎠 New Bandook Variant Resurfaces, Targeting Machines
➝ 🦠 🎠 UAC-0050 Group Using New Tactics to Distribute Remcos RAT
➝ 🦠 🇺🇦 CERT-UA Uncovers New Wave Distributing OCEANMAP, MASEPIE, STEELHOOK
➝ 🔓 🦠 Free Decryptor Released for Ransomware
➝ 🐛 📨 Smuggling: New Flaw Lets Attackers Bypass Security and Spoof
➝ 🩹 warns critical EPM lets hackers hijack enrolled devices
➝ 🩹 Google Patches Six Vulnerabilities With First Update of 2024
➝ 🩹 🐡 Millions still haven’t patched SSH protocol

Subscribe to the newsletter to have it piping hot in your inbox every week-end ⬇️

https://infosec-mashup.santolaria.net/p/infosec-mashup-week-012024

0x58, to infosec

The famous .env file strikes again!

https://cybernews.com/security/saudi-ministry-mim-exposed-sensitive-data

0x58, to infosec

🔥 Hot off the press! First #InfosecMASHUP of the year!

#infosec #cybersecurity #newsletter

https://open.substack.com/pub/0x58/p/infosec-mashup-week-012024

0x58, to infosec

"Historically, while a 12-character master password has been LastPass’ default setting since 2018, customers still had the ability to forego the recommended default settings and choose to create a master password with fewer characters, if they wished to do so," LastPass said in a new announcement today.

:blobfacepalm:​ :blobfacepalm:​

https://www.bleepingcomputer.com/news/security/lastpass-now-requires-12-character-master-passwords-for-better-security/

0x58,

@e_es Sounds like a week-end kind of project with John The Ripper :laughing_cirno:​

0x58,

@mialikescoffee @e_es @keepassxc This too... https://security.stackexchange.com/questions/201376/keepassxc-for-managing-passwords-threat-model-entire-world-actively-trying-to

0x58,

@ligniform Right.... NOT! :bloblaugh:​

0x58, to wordle

931 5/6

🟩⬛🟨⬛🟩
⬛⬛⬛⬛⬛
⬛🟨⬛⬛⬛
🟩🟩🟨⬛🟩
🟩🟩🟩🟩🟩

0x58, to infosec

📨 First issue of 2024 of my weekly #InfosecMASHUP newsletter is going out tomorrow! You still have time to subscribe 🙌

#infosec #cybersecurity #news

https://infosec-mashup.santolaria.net

0x58, to Cybersecurity

French aerospace giant Airbus could acquire Atos’ cybersecurity unit for up to $2 billion, the IT company announced on Wednesday.

The possible sale of its Big Data and Security (BDS) business was announced by Atos in a market update outlining its strategy for repaying and refinancing financial debts.

#cybersecurity #infosec #acquisitions

https://www.securityweek.com/airbus-offering-to-buy-atos-cybersecurity-unit-for-up-to-2-billion/

0x58, to wordle

#Wordle 930 6/6

⬛⬛⬛⬛🟩
⬛🟨⬛⬛⬛
⬛🟨⬛⬛⬛
⬛⬛🟩⬛⬛
🟩⬛🟩🟩⬛
🟩🟩🟩🟩🟩

0x58, to random

I have to say that I have a hard time getting back to work and starting the new year, leaving this behind me 😭

0x58, to wordle

#Wordle 929 3/6

🟨⬛🟩🟨⬛
🟩🟨⬛⬛⬛
🟩🟩🟩🟩🟩

0x58, to wordle

#Wordle 928 5/6

⬛🟨⬛🟨⬛
⬛⬛⬛🟨⬛
🟩⬛🟨⬛🟨
🟩🟩⬛⬛⬛
🟩🟩🟩🟩🟩

0x58, to wordle

#Wordle 920 4/6

⬛⬛⬛⬛🟩
⬛🟨🟩⬛⬛
🟩⬛🟩🟩🟩
🟩🟩🟩🟩🟩

0x58, to wordle

918 3/6

🟨🟩🟩⬛🟩
⬛🟩🟩🟩🟩
🟩🟩🟩🟩🟩

miodvallat, to random French
@miodvallat@hostux.social avatar

Vos cartes postales du #Cantal du jour. Curieusement, à part des chasseurs plus bas, je n’ai vu personne sur les reliefs aujourd’hui !

Le Téton de Vénus et le Puy Bataillouse sur le point d'être pris d'assaut par des nuages.
Le Téton de Vénus et le Puy Bataillouse, devant la crête du Plomb du Cantal, au hasard d'une trouée dans les nuages.
Le sommet sud du Puy de Peyre-Arse, depuis le col entre les deux sommets.

0x58,

@miodvallat Ah oui. Suis juste au bas du Jura…

  • All
  • Subscribed
  • Moderated
  • Favorites
  • JUstTest
  • mdbf
  • ngwrru68w68
  • tester
  • magazineikmin
  • thenastyranch
  • rosin
  • khanakhh
  • InstantRegret
  • Youngstown
  • slotface
  • Durango
  • kavyap
  • DreamBathrooms
  • megavids
  • tacticalgear
  • osvaldo12
  • normalnudes
  • cubers
  • cisconetworking
  • everett
  • GTA5RPClips
  • ethstaker
  • Leos
  • provamag3
  • anitta
  • modclub
  • lostlight
  • All magazines
    •