#Security
Between Two Nerds: What it takes to be a Cyber Power II https://cyberfeed.io/article/0df49601b506136c79af8423c6ec20dc #cybersec #security #infosec #cybersecurity
2023-06-05 RDP #Honeypot IOCs - 159 scans
Thread with top 3 features in each category and links to the full dataset
#DFIR #InfoSec
Top IPs:
43.156.9.187 - 31
162.241.158.17 - 25
103.195.236.137 - 14
Top ASNs:
AS132203 - 31
AS19871 - 25
AS57523 - 16
Top Accounts:
hello - 108
Test - 18
Domain - 15
Top ISPs:
Shenzhen Tencent Computer Systems Company Limited - 31
Unified Layer - 25
Chang Way Technologies Co. Limited - 16
Top Clients:
Unknown - 159
Top Software:
Unknown - 159
Top Keyboards:
Unknown - 159
Top IP Classification:
hosting - 82
Unknown - 68
proxy - 9
Pastebin links with full 24-hr RDP Honeypot IOC Lists:
https://pastebin.com/mhu0ZHuG
Wired: Apple Expands Its On-Device Nudity Detection to Combat CSAM https://www.wired.com/story/apple-communication-safety-nude-detection/ #Tech #wired #TechNews #IT #Technology via @morganeogerbc #Security/SecurityNews #Security/Privacy #encryption #Security #privacy #RedFlag #Crime #apple #ios
Apple Expands Its On-Device Nudity Detection to Combat CSAM - Instead of scanning iCloud for illegal content, Apple's tech will locally flag inappropri... - https://www.wired.com/story/apple-communication-safety-nude-detection/ #security/securitynews #security/privacy #security #redflag
Sandstorm: Open-source platform for self-hosting web apps https://cyberfeed.io/article/1907aebbbc7a45ab3e36f456581d29db #tech #security #infosec #cybersecurity
Network inventory tools such as Nmap and Nessus will allow you to scan your entire network to locate all of the devices on your network.
Read the full article: Seek Out and Remove End-Of-Life Components
▸ https://lttr.ai/AChco
#Security #Infosec #BestPractices #RiskManagement #RiskManagementStrategy
Atomic Wallet Hack: Team Claims No Assets Have Been Lost in More Than 40 Hours - The Atomic Wallet team claimed on June 4 that the hacking incident in which digita... - https://news.bitcoin.com/atomic-wallet-hack-team-claims-no-assets-have-been-lost-in-more-than-40-hours/ #decentralizedwallet #atomicwallethack #airdropphishing #digitalassets #security
Vanadium version 114.0.5735.61.0 released: https://github.com/GrapheneOS/Vanadium/releases/tag/114.0.5735.61.0.
See the linked release notes for a summary of the improvements over the previous release and a link to the full changelog.
Forum discussion thread:
https://discuss.grapheneos.org/d/5422-vanadium-version-11405735610-released
SEC Sues Binance and CEO Zhao for Breaking US Securities Rules https://cyberfeed.io/article/91af7b4a6cb68b170c5e7a76d5507d82 #tech #security #infosec #cybersecurity
In case you are using #Knex and you care about security, you might be interested on this:
https://blog.coderspirit.xyz/blog/2023/06/05/knex-credentials-leak/
🪂 Progressive Web Apps 'Don't Spy or Clog Your Phone'. Do You Use Them?
➥ Slashdot
"Web apps look and function pretty much like the conventional apps for your phone or computer, but they clog less space on your device and are less pushy about surveilling you. People who make web apps also say they are easier to create and update than conventional apps... But web apps have been around for years, and most people don't know they exist..."
#PWA #Privacy #Security
https://mobile.slashdot.org/story/23/06/03/1742245/progressive-web-apps-dont-spy-or-clog-your-phone-do-you-use-them
Red Sift Launches Relevance Detection as GPT-4-Powered Asset Discovery and Classification Solution https://cyberfeed.io/article/ed7bf26b9e4b031e9534a9a1e7792983 #cybersec #security #infosec #cybersecurity
Clop ransomware claims responsibility for MOVEit extortion attacks https://cyberfeed.io/article/77180b8f5865a17ae86089ffcdeae484 #cybersec #security #infosec #cybersecurity
Defender for SQL Vulnerability Assessment Updates https://rodtrent.com/l5o
#DefenderforCloud #MicrosoftDefender #Security #MicrosoftSecurity #Cybersecurity
Microsoft Links MOVEit Attack to Cl0p as British Airways, Others Fall https://cyberfeed.io/article/81f05706cdee1dda0ab9efe2a71f9254 #cybersec #security #infosec #cybersecurity
2.5M Impacted by Enzo Biochem Data Leak After Ransomware Attack https://cyberfeed.io/article/e42507317cafcd27f71f5ac5a007400e #cybersec #security #infosec #cybersecurity
Gigabyte Slams Backdoor Shut With Attack-Killing BIOS Update https://cyberfeed.io/article/a26dd4e52f5b3a330ab2c164f2836441 #cybersec #security #infosec #cybersecurity
You can find some sample policies and procedures here: https://stateofsecurity.com/hardware-inventory/
Read the full article: FAQ on Hardware Inventory
▸ https://lttr.ai/AChMJ
#IAEA's Technical Cooperation activities are making an important contribution to the achievement of the #SDG.
#EU will continue to provide significant assistance in particular on #nuclear #safety and #security.
EU Statement at @iaeaorg BoG 👉 https://europa.eu/!qfRbnB
🐦🔗: https://n.respublicae.eu/euunvie/status/1665738922188521472
macOS 14 Sonoma support https://cyberfeed.io/article/8015d4b3a3cfc6eeabe7ff3348c366b2 #cybersec #security #infosec #cybersecurity
Microsoft's Outlook.com is down again on mobile, web https://cyberfeed.io/article/a3003cb0a385e6535284f4ddb690a718 #cybersec #security #infosec #cybersecurity
New tool scans iPhones for 'Triangulation' malware infection https://cyberfeed.io/article/c21579c5ce134bf73ac5c02b692d6ac0 #cybersec #security #infosec #cybersecurity
Microsoft's Outlook is down again https://cyberfeed.io/article/4c89b5ec117cff67bc2d705a258f36f8 #cybersec #security #infosec #cybersecurity
Apple Vision Pro: Apple’s first spatial computer https://cyberfeed.io/article/9180e8a8982b7f98c264b68036f4c369 #tech #security #infosec #cybersecurity
Auditor app version 71 released: https://github.com/GrapheneOS/Auditor/releases/tag/71.
See the linked release notes for a summary of the improvements over the previous release and a link to the full changelog.
Forum discussion thread:
https://discuss.grapheneos.org/d/5420-auditor-app-version-71-released
See https://attestation.app/about and https://attestation.app/tutorial for info about the app and optional monitoring service.
#GrapheneOS #privacy #security #android #attestation #VerifiedBoot #MeasuredBoot #HSM #SecureElement #auditor
GrapheneOS Camera app version 63 released: https://github.com/GrapheneOS/Camera/releases/tag/63.
See the linked release notes for a summary of the improvements over the previous release and a link to the full changelog.
Forum discussion thread:
https://discuss.grapheneos.org/d/5418-grapheneos-camera-app-version-63-released
Our right to challenge junk patents is under threat https://cyberfeed.io/article/2065cc2e1231d3643a298b841802394c #tech #security #infosec #cybersecurity
#Pride #Events in #Canada facing higher #security costs, #feds offer $1.5M.
The #funding, to be announced by #Minister of #Women and #GenderEquality and #Youth #MarciLen later today, is being provided to #FiertéCanadaPride to distribute to local #event #organizers who #apply for #assistance
#Women #Transgender #LGBTQ #LGBTQIA #Canada #Pride #PrideMonth
Google no longer automatically indexes websites? https://cyberfeed.io/article/fab65b20e57673dab09c3a55b578c532 #tech #security #infosec #cybersecurity
Moonlighter Satellite Offers In-Orbit Target for Space Hackers https://cyberfeed.io/article/688449466d234de142a6b45118f80c69 #cybersec #security #infosec #cybersecurity
New blog post from Steve Spence of the Lares Labs team: Pentesting 101 Part 1: So, you need or want a Pentest. Read it here https://labs.lares.com/pentesting-101-pt1/ #Lares #research #security
Software/firmware updates can also address bugs and deliver quality of life improvements for the user.
In some cases, software bugs can also be #security bugs (like race conditions) or become vulnerabilities of their own.
In any case, you as the user can’t take advantage of addressed bugs without updating.
Timely (security) updates improve your security posture, addressing known bugs and security vulnerabilities that could be exploited.
Malicious actors or “hackers” are exploiting discovered and/or disclosed vulnerabilities quicker than ever.
Actors often rely on the lag between vulnerability disclosure (which can be in the patch notes of an update) and users updating to the latest #security patch to exploit vulnerabilities.
Exploits can range from telling your device what to do (code execution or command injection) to crashing the device so it’s unusable (denial of service).
‼️Keep your devices and #software updated!
Software/Firmware updates frequently contain security updates. Those that do should be applied ASAP.
Security updates fix known vulnerabilities in software or firmware. Sometimes, malicious actors (“hackers”) exploit these, often installing #malware or otherwise comprising your #security and #privacy.
Name That Edge Toon: Spring Chickens https://cyberfeed.io/article/eb6d4738d051376c0b0febe554074e05 #cybersec #security #infosec #cybersecurity
Dozens of Malicious Extensions Found in Chrome Web Store https://cyberfeed.io/article/756069899cddf7d35f5854053ea43b09 #cybersec #security #infosec #cybersecurity
SpinOk Android malware found in more apps with 30 million installs https://cyberfeed.io/article/93f7bff33ecc318120aff64714654efe #cybersec #security #infosec #cybersecurity
Just in: Scrubs & Beyond has been leaking the PII and payment card data of more than 100,000 customers, while not responding to alerts or securing the server.
https://hackread.com/scrubs-beyond-leaks-400gb-of-user-data/
Hacks Against Ukraine's Emergency Response Services Rise During Bombings - Data from Cloudflare's free digital defense service, Project Galileo, illuminates new lin... - https://www.wired.com/story/cloudflare-project-galileo-ukraine/ #security/cyberattacksandhacks #security/nationalsecurity #security/securitynews #security #irl
Protect you privacy !
A good start: http://lifehac.kr/yeqkFj ( thanks LifeHacker !) #privacy #security
PyPI Strives to Pull Itself Out of Trouble: https://thenewstack.io/pypi-strives-to-pull-itself-out-of-trouble/ by @sjvn
We can only hope. The Python Package Index really is in a heap of trouble. #Python #Security
Der #Mensch ist nicht das Problem, der Mensch ist nicht das Problem, der Mensch ist nicht das Problem | republica
https://re-publica.com/de/session/der-mensch-ist-nicht-das-problem-der-mensch-ist-nicht-das-problem-der-mensch-ist-nicht-das
#Personenvereinzelungsanlage.
toller #Talk von @evawolfangel,
es gibt keine #SecurityByBesserAufpassen #Phishing #Security #@Norman #rp23
¹ https://mro.name/atrhudt
Passwörter sind für viele ein leidiges Thema. In unserer vernetzten Welt sind sie aber (noch) unverzichtbar, um sich und seine Daten zu schützen.
Dieser Artikel zeigt aus mathematischer Sicht sehr schön, wie Passwörter jenseits von #Phishing geknackt werden können und erklärt auch den Aufbau von Hashfunktionen.
https://www.spektrum.de/kolumne/wie-man-ein-sicheres-passwort-waehlt/2145762
#Datensicherheit #Security #Passwort #Hash #Salt #BruteForce
#MathMadness
Protecting git Credentials Used in Automated Scripts
~~
Prevent writing git credentials to disk and limit the time stored in memory with git credential.helper cache options
~~
#git #credentials #code #security
https://medium.com/cloud-security/protecting-git-credentials-used-in-automated-scripts-d3724cbd4736
Onboarding directly (without Azure Arc) to Defender for Servers is now Generally Available https://rodtrent.com/bt8
#DefenderforCloud #MicrosoftDefender #Security #MicrosoftSecurity #Cybersecurity
Please read this New #Security #Warning Issued For #Google's 1.8 Billion #Gmail Users #Phishing #Scam #Cybersecurity
Introduced last month, the Gmail checkmark system highlights verified companies and organizations to users with a blue checkmark. The idea is to help users discern which emails are legitimate and which may have been sent by impersonators running scams. Unfortunately, scammers have tricked the system.
Protect your domains with DNSimple, learn about some of our security 🔐 features that you should use right now 👉https://blog.dnsimple.com/2022/11/domain-security-features/?utm_source=mastodon&utm_medium=social&utm_campaign=domain-security
#dns #domainname #security
There was a #security angle because it seems Christine Keeler had also slept with the #Soviet #naval #attache! And #race came into it as well because she was having difficulties with her #AfroCaribbean boyfriend and the #metpolice get involved. Not to mention weekends at #Cliveden - the home of the #British branch of #Astor family!
Safeguarding your OAuth apps with App Governance https://rodtrent.com/4ax
#MicrosoftDefender #Security #MicrosoftSecurity #Cybersecurity #M365D
Simplifying data streaming from Event Hubs to ADX https://rodtrent.com/92c
#MicrosoftSentinel #Cybersecurity #MicrosoftSecurity #Security #ADX
Microsoft 365 Lighthouse provides deployment insights across all tenants on a single pane of glass https://rodtrent.com/ong
#Azure #Lighthouse #MicrosoftDefender #Security #MicrosoftSecurity #Cybersecurity #M365D
Give me time please! The whole story is complex and lengthy - and stretches a long way in various directions - to #pakistan, across the #british #establishment - and yes there was a #security angle which was played up a bit by critics in part I suspect to avoid seeming prurient. There were also a number of rumours - especially about the owner of a penis that appeared in a photograph without easy means of recognition -such as a head.
"Concise Guide for Evaluating Open Source Software"
Microsoft Azure Sentinel 101: Using Logic Apps to build dynamic automated email reports for Log/Event Source Ingesting and Endpoint Monitoring https://rodtrent.com/lz0
#MicrosoftSentinel #Cybersecurity #MicrosoftSecurity #Security
A host of malicious Google Chrome extensions with 75 million installs have been removed
'Late last week, Google confirmed removing 34 malicious extensions from its Chrome Web Store. The extensions were capable of injecting ads into pages and exfiltrating sensitive data from compromised endpoints. In total, the extensions were downloaded more than 75 million times.'
#technology #tech #Google #Chrome #security #privacy #hacking #malware #phishing
Agentless Container Posture Management | Defender for Cloud in the Field #33 https://rodtrent.com/qhd
#DefenderforCloud #MicrosoftDefender #Security #MicrosoftSecurity #Cybersecurity
Connecting to Snowflake from Logic App Standard https://rodtrent.com/xkh
#MicrosoftSentinel #Cybersecurity #MicrosoftSecurity #Security
Block SaaS Apps w/ Power Automate + Defender for Endpoint + Defender for Cloud Apps https://rodtrent.com/o73
#DefenderforCloud #MicrosoftDefender #Security #MicrosoftSecurity #Cybersecurity #M365D
Sentinel Incident Report using Azure OpenAI https://rodtrent.com/puf
#MicrosoftSentinel #Cybersecurity #MicrosoftSecurity #Security #Azure #AzureOpenAI #AI #OpenAI #Copilot
I finally had time to share my view of the DevOpsDays 2023 Prague.
https://talkweb.eu/openweb/3792/
#devopsdays #prague #k8s #security #testing #openspaces #events #opensource
Were you there?
Moin! ☕ 🐧
Sehr lesenswertes Zeit-Interview mit Meredith Whittaker (Messenger Signal)
https://www.zeit.de/digital/datenschutz/2023-06/meredith-whittaker-signal-kuenstliche-intelligenz-republica-interview
#signal
#OSS
#datenschutz
#chatcontrol
#Chatkontrolle
#security
Cyber-Angriff: IT der Deutsche Leasing seit Samstag offline
Bei Deutsche Leasing, einer großen Leasinggesellschaft zahlreicher Sparkassen, kam es am Samstag zu einem Cyber-Angriff. Die IT-Systeme wurden abgeschaltet.
📨 Latest issue of my curated #cybersecurity and #infosec list of resources for week #22/2023 is out! It includes, but not only:
➝ 🇺🇸 🪖 Air Force denies running simulation where AI drone “killed” its operator
➝ 🇺🇸 🏂 #Burton Snowboards discloses #databreach after February attack
➝ 🇺🇸 🧪 Enzo Biochem #Ransomware Attack Exposes Information of 2.5M Individuals
➝ 🧠 🤖 Introducing Charlotte AI, #CrowdStrike’s Generative AI Security Analyst
➝ 🐍 🦠 Malicious #PyPI Packages Using Compiled #Python Code to Bypass Detection
➝ 🇰🇵 🎠 N. Korean ScarCruft Hackers Exploit LNK Files to Spread #RokRAT
➝ 🦠 📱 New Zero-Click Hack Targets #iOS Users with Stealthy Root-Privilege #Malware
➝ 🇷🇺 🇺🇸 #Russia says U.S. accessed thousands of #Apple phones in spy plot
➝ 🇯🇵 🚗 #Toyota Discloses New Data Breach Involving Vehicle, Customer Information
➝ ☁️ 👻 Organizations Warned of #Salesforce ‘Ghost Sites’ Exposing Sensitive Information
➝ 🔐 👀 #Amazon faces $30 million fine over Ring, Alexa #privacy violations
➝ 🔐 🧱 Active Mirai Botnet Variant Exploiting #Zyxel Devices for #DDoS Attacks
➝ 🇷🇺 🇺🇦 Russia’s ‘Silicon Valley’ hit by cyberattack; Ukrainian group claims deep access
➝ 🦠 🤖 #Spyware Found in #GooglePlay Apps With Over 420 Million Downloads
➝ 🦠 🚪 #RomCom malware spread via Google Ads for #ChatGPT, GIMP, more
➝ 👛 Southeast Asian hacking crew racks up victims, rapidly expands criminal campaign
➝ 🍏 #Microsoft finds #macOS bug that lets hackers bypass SIP root restrictions
➝ 🦠 🚪 #Barracuda zero-day abused since 2022 to drop new malware, steal data
➝ 🇬🇷 Worst cyberattack in #Greece disrupts high school exams, causes political spat
➝ 🇮🇳 🎠 Sneaky DogeRAT Trojan Poses as Popular Apps, Targets Indian #Android Users
➝ 🇺🇸 U.S. Department of Defense releases 2023 Cyber Strategy
➝ 📱☝🏻 New BrutePrint Attack Lets Attackers Unlock Smartphones with Fingerprint Brute-Force
➝ 🇯🇵 🎠 New GobRAT Remote Access #Trojan Targeting #Linux Routers in #Japan
➝ 🦠 📂 Clever ‘File Archiver In The Browser’ phishing trick uses #ZIP domains
#cyberattack #ai #security #google #cyber
📚 This week's recommended reading is: "Fancy Bear Goes Phishing: The Dark History of the Information Age, in Five Extraordinary Hacks" by Scott J. Shapiro
Subscribe to the #newsletter to have it piping hot in your inbox every Sunday ⬇️
Testing shows that if you block an iCloud account in iMessage, the account can still annoy you by sharing their location with you. Even though the account is blocked, you'll get a FindMy notification and the blocked account is immediately added to your FindMy list and you're one touch away from sharing your location with this blocked contact.
Note that the redacted text in the screenshots can be an email address tied to the sender's iCloud account. If the attacker uses an email familiar to you such as your.friendName@something, you might mistakenly share your location.
Cher Scarlett reported this issue to Apple and got the "it's not an issue" response.
https://twitter.com/cher0x801/status/1665497377032007686
Do you agree with Apple Product Security team?
#cybersecurity #infosec #security #privacy #Apple #iOS #cybersecuritytips
Big-Data-Unternehmen Splunk schließt teils kritische Sicherheitslücken
Der Big-Data-Spezialist Splunk korrigiert in der gleichnamigen Software zahlreiche Sicherheitslücken, die teils als kritisches Risiko eingestuft werden.
Webbrowser: Schadcode in Chrome-Erweiterungen mit 87 Millionen Nutzern
Diverse Erweiterungen für den Webbrowser Chrome im Chrome Web Store lieferten neben den gewünschten Funktionen Malware mit. Nutzer sollten sie deinstallieren.
@DrSuzanne I should put a disclaimer that I haven’t asked an airline about that in more than a decade, don’t work for an airline, have no official standing, etc. But when you have a connection, they normally offer to check it through to final destination, and the bag is tagged as such. They may ask why, not sure if they have authority to require an answer (but #security 🙄). I would probably tell them you want to get access to something for the second leg but not carry it (clothes, equipment).hth
🕵️ SR136 has landed with your weekly #privacy & #security news!
Amazon playing loose with your data
New never-before-seen zero-click iOS spyware
Mainstream-worthy data breaches
More!
Tune in now: https://surveillancereport.tech
YouTube: https://youtu.be/xsgfA5Y3-JU
How one of Vladimir Putin’s most prized hacking units got pwned by the FBI https://arstechnica.com/information-technology/2023/05/how-the-fbi-pwned-turla-a-kremlin-jewel-and-one-of-worlds-most-skilled-apts/ | https://lobste.rs/s/jrf82t #reversing #security
Top 10 places to pay attention to for new[ish] Linux threat research:
181 github.com
50 twitter.com
20 www.intezer.com
16 www.welivesecurity.com
12 www.trendmicro.com
11 bazaar.abuse.ch
10 blog.netlab.360.com
9 unit42.paloaltonetworks.com
9 gist.github.com
7 www.virustotal.com
Atomic Wallet hacks lead to over $35 million in crypto stolen https://cyberfeed.io/article/6664f4e24998a559262cf8295d82d394 #cybersec #security #infosec #cybersecurity
Just went to sign up for an electricity account with National Grid and discovered that everything you type into the sign up forms, including your SSN, is console logged into the browser in plain text.
Telling people not to click links is a terrible idea.
It's also telling them not to do their job.
If clicking a link destroys your company that's a security architecture problem, not an end user problem.
Clicking links isn't a risky behaviour, it's what people need to do to do their job.
Teaching people how phishing actually works and what to do to protect themselves is much better than just telling them not to click stuff they have to click all the time.
Reward them for their good work! Make them feel like a valued member of the team instead of a terrified child in an abusive household who gets yelled at for getting the wrong plate out.
WithSecure | USB Armory - the worlds smallest secure computer! :atom:
Powered by Linux - the Finnish WithSecure presents something that makes even Raspberry Pi appear large :thinkhappy:
In addition to Linux, USB Armory is supported by TamaGo framework for Go apps (ARM / RISC-V bare metal).
USB Armory has already been tested in space (MAPHEUS-13) 🚀
=> https://www.withsecure.com/en/solutions/innovative-security-hardware/usb-armory
#WithSecure #USB #Armory #secure #computer #mini #tiny #security #TamaGo #Go #ARM #RISCV #SoC #Linux #pocket #servers
I was thinking about what you could include in a #Kubernetes #Security #Architecture. There's lots of different ways you could cut it, of course, but this is what I came up with after a bit of thought (and input from Iain Smart) Excalidraw link is https://excalidraw.com/#json=P9xbsXiaY5maCFETy6lpP,a-XCde8-hLwFzSDJYEGQzg
A Dutch entrepreneur has been giving away Internet domains of island state Tokelau and 4 African countries for free for 20 years. But the abuse has been unprecedented, and now Meta is demanding half a billion dollars. ‘Een Nederlandse ondernemer geeft al twintig jaar internetdomeinen van eilandstaatje Tokelau en vier Afrikaanse landen gratis weg. Maar het misbruik is ongekend hoog, en nu eist Meta een half miljard dollar.’ https://www.nrc.nl/nieuws/2023/05/26/het-riool-van-het-internet-loopt-via-amsterdam-en-tokelau-domeinen-die-gratis-weggegeven-worden-trekken-ellende-aan-a4165670 #tech #internet #business #spam #security
This #vulnerability was addressed on the *opening day* of the 2022 conference where it was presented. The #NoScript extension bundled with @torproject’s #TorBrowser protects against it, and #Tor #Browser users would have received it as an automatic update.
I don’t understand why #Wired is tweeting this old article. Unless a person pays attention to the publication date they might think this is a current threat.
#InfoSec #security #privacy https://press.coop/@WIRED/110483827162431610
Evidently, there is a security flaw in Mastodon (see screenshot). It's not prudent to trust unknown admins with our #data.
Therefore, how do we make the #Fediverse admins more accountable? Or, should the fediverse be developed to be more user-friendly - so that we can connect directly to the network without having to depend on servers? (that is do-able. e.g., p2p networks)
#software #SocialMedia #data #hack #admin #justice #activism #equity
Say no to #BigBrother #network #surveillance or unjust #admin #employers #corporations #corruption
Super enlightening interview with the CEO of @Vivaldi
@hen and @jon discuss #privacy #security #FOSS #opensource #federation and a LOT more!
Watch it now: https://youtu.be/TvIKMl1Ldi0
Słyszeliście o atakach typu zero-click na iPhone'y w Rosji? FSB twierdzi, że to sprawka amerykańskich agencji wywiadowczych, z którymi ani chybi współpracuje Apple. Z raportów Kaspersky'ego wyłania się inny obraz. Zapraszam do lektury
#tymczasemwRosji #infosec #security #cyberbezpieczenstwo #russia #rosja #apple
GmsCompatConfig (sandboxed Google Play compatibility layer configuration) version 56 released: https://github.com/GrapheneOS/platform_packages_apps_GmsCompat/releases/tag/config-56.
See the linked release notes for a summary of the improvements over the previous release and a link to the full changelog.
Forum discussion thread:
https://discuss.grapheneos.org/d/5381-gmscompatconfig-version-56-released
I'm not surprised at all. Brute Fail: Watch brute force SSH attacks fail in real time https://brute.fail/. Hence, I suggest reading my OpenSSH best security practices guide for #Linux, #FreeBSD, and #Unix https://www.cyberciti.biz/tips/linux-unix-bsd-openssh-server-best-practices.html to secure your server against these bots. #infosec #security #sysadmin
interesting move by #Brave in releasing an #API for their #SearchEngine with an emphasis on it's use in training #AI. I expect this to be a controversial move, imho, it rubs a bit against the grain of the #privacy / #security centric ethos of the Brave ecosystem.
Full announcement from Brave: https://brave.com/search-api-launch/
#Development #Changes
Chrome disables modifying ‘document.domain’ · If your website relies on setting it, it’s crucial to take action https://ilo.im/13aekm
_____
#Chrome #Browser #Security #WebDevelopment #WebDev #Frontend #DevTools #JavaScript
Passwort: Goodbye
Passkeys könnten das Passwort ablösen. Sie sind sicher und die Technik steckt in fast allen Betriebssystemen und Browsern. Jetzt sind die Anbieter gefragt.
#IdentityManagement #Cybersecurity #Passwörter #Provider #Security #Verschlüsselung #news
PyPI Strives to Pull Itself Out of Trouble: https://thenewstack.io/pypi-strives-to-pull-itself-out-of-trouble/ by @sjvn
We can only hope. The Python Package Index really is in a heap of trouble. #Python #Security
Interesting links of the week:
* https://wasmer.io/posts/announcing-wasix - POSIX on WASM
* https://xorvoid.com/sectorc.html - a 512 byte C compiler
* https://security.apple.com/blog/what-if-we-had-sockpuppet-in-ios16/ - Apple's analysis of kalloc_type on OS X
* https://cryptolyzer.readthedocs.io/en/latest/changelog/ - analyse your cryptographic profile
* https://blog.trailofbits.com/2023/05/23/trusted-publishing-a-new-benchmark-for-packaging-security/ - how Trail of Bits have been improving Python packaging
* https://becomingahacker.org/a-comparative-overview-of-selinux-apparmor-yama-tomoyo-linux-and-smack-bf7f0a1789cf - @omarsantos looks at Linux's kernel hardening options
* https://seanpesce.blogspot.com/2023/05/bypassing-selinux-with-initmodule.html - bypassing SELinux with init_module()
* https://www.microsoft.com/en-us/security/blog/2023/05/30/new-macos-vulnerability-migraine-could-bypass-system-integrity-protection/ - Microsoft attacks Apple
* https://arxiv.org/abs/2305.15507 - manipulating LLM with name based misdirection
* https://blogs.sap.com/2023/05/11/ai-powered-password-testing-for-abap-stack/ - using AI to attack passwords on SAP
* https://cloudcar.canbushack.com/ - how would you like to hack a virtual car?
* https://www.mitre.org/news-insights/publication/threat-assessment-and-remediation-analysis-tara - MITRE's TARA methodology for threat modelling ICS and SCADA systems
* https://github.com/michenriksen/drawio-threatmodeling - threat modelling with draw.io
* https://github.com/outflanknl/RedELK-workshop/blob/main/Labmanual_RedELK-workshop_x33fcon_may2023.pdf - Outflank's RedELK training
* https://permiso.io/blog/s/unmasking-guivil-new-cloud-threat-actor/ - malicious penguins in the cloud
* https://www.cadosecurity.com/legion-an-aws-credential-harvester-and-smtp-hijacker/ - more penguins
* https://www.cadosecurity.com/updates-to-legion-a-cloud-credential-harvester-and-smtp-hijacker/ - even more penguins
* https://www.lacework.com/blog/androxghost-the-python-malware-exploiting-your-aws-keys/ - pythons and penguins
* https://permiso.io/blog/s/legion-mass-spam-attacks-in-aws/ - erm, more penguins?
* https://blogs.jpcert.or.jp/en/2023/05/gobrat.html - another penguin attack
* https://eforensicsmag.com/installing-autopsy-4-6-0-on-linux-by-christian-kisutsa/ - performing DFIR on Linux with autopsy
* https://github.com/mthcht/ThreatHunting-Keywords - a keyword focussed approach to threat hunting
* https://spectrum.ieee.org/amp/mirai-botnet-2659993631 - the history of Mirai
* https://plumspace.com/wp-content/uploads/plumspace_smart_sfp_applications_en.pdf - an SFP more powerful than my first ARM box
Discord Admins Hacked by Malicious Bookmarks
The games never stop... Tricking discord admins into running code that steals their session tokens, hijacking their accounts.
Then scamming the admin's #discord community.
#crypto #cybersecurity #infosec #security
https://krebsonsecurity.com/2023/05/discord-admins-hacked-by-malicious-bookmarks/
Privatsphäreverletzungen: Amazon soll insgesamt 31 Millionen US-Dollar zahlen
Privatsphäreverletzungen durch Amazons Alexa und Rings Überwachungskameras bringen Amazon in die Bredouille. Der Konzern soll Vergleiche mit der FTC schließen.
#Amazon #Datenschutz #FederalTradeCommission #Security #news
i've harden @brave so much that even side-loading an extension is not possible anymore.
I just hope they give to us a way to disable JS jit per website because disable it globally break too much website
"It is important that governments understand their responsibility and allocate resources for a more secure #OpenSource #Software ecosystem in a community-sensitive, structured and sustainable manner," writes @z_edian in a new #SNV policy brief.
https://www.stiftung-nv.de/sites/default/files/snv_fostering_open_source_software_security.pdf
#security #foss #freesoftware #oss
New episode of Open at Intel is out! We take a deep dive into software #attestation and remote attestation, especially as it relates to software supply chain security and trusted computing. #openSource #security #podcast https://openatintel.podbean.com/e/building-trust-with-attestation/
Millions of PC Motherboards Were Sold With a Firmware Backdoor - Hidden code in hundreds of models of Gigabyte motherboards invisibly and insecurel... - https://it.slashdot.org/story/23/05/31/1813256/millions-of-pc-motherboards-were-sold-with-a-firmware-backdoor?utm_source=rss1.0mainlinkanon&utm_medium=feed #security
I just wrote a new blog post on “Regular JSON”: https://neilmadden.blog/2023/05/31/regular-json/ #Json #webdev #Security
Google’s new top level domains, .zip and .mov, are obvious #security risks. Read this WIRED article for more info: https://www.wired.com/story/google-zip-mov-domains-phishing-risks/ I use NextDNS to manage my DNS. Under it’s Security tab, you can easily block access to any TLD on your network, as you can see in this screenshot from my settings.
Our unity is our strength.
Tomorrow's European Political Community meeting in Bulboaca 🇲🇩 will be an opportunity for us and 47 European countries to discuss common issues and further strengthen the #security, stability, and prosperity of our continent.
Discover how we are building a prosperous and secure future together with #Moldova ➡ https://europa.eu/!jThp47
Ransomware: Schutzkonzept gegen Angriffe
Trotz Maßnahmen gegen Cyber-Angriffe und Ransomware gelingen viele Attacken. Die Daten sind verschlüsselt. Einige Punkte verhelfen zu brauchbaren Backups.
Zwangsupdate: WordPress-Websites über Jetpack-Lücke manipulierbar
Die Jetpack-Entwickler haben 102 fehlerbereinigte Versionen ihres WordPress-Plug-ins veröffentlicht.
Vanadium version 114.0.5735.58.0 released: https://github.com/GrapheneOS/Vanadium/releases/tag/114.0.5735.58.0.
See the linked release notes for a summary of the improvements over the previous release and a link to the full changelog.
Forum discussion thread:
https://discuss.grapheneos.org/d/5311-vanadium-version-11405735580-released
"BIMI (Brand Indicators for Message Identification), an email specification that allows brand-controlled logos to be displayed [in the mail client]".
Never heard of this before, but apparently it's a thing.
https://support.apple.com/en-us/HT213155 #security #email #brands
GrapheneOS version 2023052900 released: https://grapheneos.org/releases#2023052900.
See the linked release notes for a summary of the improvements over the previous release.
Forum discussion thread:
https://discuss.grapheneos.org/d/5282-grapheneos-version-2023052900-released
We noticed a naive attack on our websites the morning, attempting to exfiltrate #netlify env vars.
Because our websites are simple docs websites this was largely pointless and we have no reason to assume anything valuable got stolen. We still took precautions and rotated *all* of our keys & credentials.
Many others were similarly attacked, and after we informed #github security, the user account has been suspended.
GrapheneOS version 2023052800 released: https://grapheneos.org/releases#2023052800.
See the linked release notes for a summary of the improvements over the previous release.
Forum discussion thread:
https://discuss.grapheneos.org/d/5268-grapheneos-version-2023052800-released
I did a thing! ✨
Some people don't see the value of using a password manager and keep sharing their streaming service passwords with their friends and relatives *in plain text*.
This is an attempt to simplify the process of sending encrypted passwords for non-technical users, using local encryption with temporary #PGP keys.
I'd be happy about any feedback and suggestions. Also, feel free to share this with your friends and relatives!
🆕 blog! “The limits of General Purpose Computation”
Should my bank be able to block me from using their Android app, just because my phone is rooted? I'm reluctantly coming to the conclusion that... yeah, it's fair that they get to decide their own risk tolerance. Sage of the Internet, and general Sooth Sayer, Cory Doctorow once gave an impassioned…
👀 Read more: https://shkspr.mobi/blog/2023/05/the-limits-of-general-purpose-computation/
⸻
#android #CyberSecurity #LineageOS #security
#Security question for #LinuxMint people
I see that LinuxMint provides a build of libmozjs-78-0 in its repositories for all the Ubuntu-based releases (ulyana, ulyssa, uma, una, upcoming victoria)
That library seems to be a dependency for cinnamon and cjs via libcjs0f
The #Debian based releases appear to use the Debian repo versions directly rather than Mint builds, but check-support-status (from debian-security-support) identifies this as "not covered by security support"
Is this a concern?
"You can't secure what you don't understand."
Take particular note of the date this was written.
We are spiraling spectacularly out of control, as was precisely, comically predictable. Tech companies are eagerly pushing their product on consumers, hobbyists and tech journalists who are so desperate for another fix that the addiction has consumed all sensibility, and this is creating the ideal landscape for those who wish to exploit it for harm.
https://www.schneier.com/essays/archives/1999/11/a_plea_for_simplicit.html
A friend on Signal sent this to me, hilarious for probably anyone involved with #privacy #security :
https://www.newyorker.com/humor/daily-shouts/introducing-four-step-authentication