📚 Just completed the 'Basics of Personal Threat Modeling' course by @privacyguides 🛡️
Threat modeling is crucial because it helps identify and prioritize the most probable security and privacy risks. It enables focused resource allocation, tailored defenses, and heightened awareness.
Adobe Magneto: una pericolosa minaccia RCE per i siti di e-commerce
Gli specialisti di Sicurezza Informatica hanno avvertito che gli #hacker stanno già sfruttando una nuova #vulnerabilità in #Magento (CVE-2024-20720) e l'utilizzatore per implementare una #backdoor persistente sui siti di e-commerce.
Heute findet in Berlin der Zukunftstag Mittelstand statt. Online kann man das Programm der "Transformation Stage" und der "Inspiration Stage" live mitverfolgen: 🎬 https://zukunftstag-mittelstand.de/
Wir sind vor Ort dabei und stellen das von Mittelstand Digital geförderte Projekt ELITE vor. Unsere Wissenschaftler zeigen mit ELITE eine geschützte IT-Arbeitsumgebung, die für Gefahren aus dem Cyberraum sensibilisiert. Sie können dort einen Hackerangriff oder Phishing-Attacken erleben: https://elite-projekt.de/
Passwordless is great, but perhaps you need to consider basic MFA to start? If that's you, it's time for a refresher. Spoiler: it's not heavy key fobs any more.
🚨 Important update from @signalapp 🚨
The latest update (v7 on Desktop):
✅ Keep your phone number hidden
✅ Choose to share a username instead
✅ Take control with new privacy settings - You decide who finds you by phone number.
Do you want to help your friends practice better cyber hygiene? Try standing behind them while they use their devices, and when they inevitably give you a 'personal space' glare, tell them that you're just their friendly neighborhood watch. Smile, you're on camera!
If I have to recommend one tool that will drastically improve your privacy on Windows, it's @safing Portmaster!
✨ Monitor all app connections
🚫 Auto-block trackers & malware
🔒 Secure DNS by default
✅ Reduce telemetry
🔧 Customizable rules & settings
🔒 TechCrunch's analysis of the 23andMe breach highlights the vulnerability of personal genetic data, raising concerns about data protection and transparency.
What do you think about this new case of a user data breach by a company revealing sensitive user data? And what steps do you take to ensure the security of your sensitive information? Share your thoughts and experiences with us!
Even with Advanced Data Protection activated on #iCloud,
Apple can still access your iCloud Mail, Contacts, and Calendar. The encryption applies in transit and on their servers, but it's not end-to-end. Apple holds the keys.
ChatGPT sotto Chiave: Microsoft Impone il Divieto ai suoi impiegati per problemi di sicurezza
Microsoft ha deciso di vietare temporaneamente ai suoi dipendenti l’accesso a #ChatGPT, il noto prodotto di OpenAI, citando preoccupazioni legate alla sicurezza e ai #dati.Tale divieto, comunicato tramite un avviso su un sito Web interno, ha destato l’attenzione degli osservatori.
With QR codes everywhere, there's a rising concern about their misuse. 🚨 How do you protect yourself from malicious QR codes? What are your go-to security measures before scanning? Please share your best practices & tips!
📚New Blog!
The 2nd part of my "Corporate #OSINT for #SocialEngineering" article is now published.
This blog focuses on the physical perimeter of an organization.
It discusses some of the OSINT techniques used in the planning and preparation of in-person, social engineering attacks.
As security professionals, the goal is to proactively follow the same process a threat actor would to identify information that exposes potential vulnerabilities in our organization’s physical perimeter, and to manage those vulnerabilities.
My hope is that you'll proactively test those resources.
Need more help in getting the full picture on the information that is available about the physical perimeter of your organization? Feel free to reach out!
Even the sentries of the digital realm aren't immune! DarkBeam's monumental leak exposed BILLIONS of records! Are your passwords as safe as you think? Do YOU know how to spot a phishing attempt? Dive into our latest post and test your defenses with an interactive quiz! 🔒📢 Your online security might hinge on this! Don't wait – on NOW and stay a step ahead! #CyberSecurityAwareness#Cybersecurity#infosec#informationsecurity#cybersecuritynews#cybercrime https://wp.me/peSvjo-31