Skip to main content

Items tagged with: InfoSec

Search

Items tagged with: InfoSec

Screenshot from the top of https://www.virustotal.com/gui/ip-address/13.248.197.209/relations The page had already redreshed when I copied the following domain names, so this is just to get an idea: tiles-35312.bond sleepwear-14660.bond prostate-cancer-treatment-95682.bond diet-98948.bond electric-cars-94009.bond packing-jobs-44721.bond dental-implants-48408.bond mattress-19892.bond breast-reduction-mammoplasty-surgery-24489.bond dental-implants-76071.bond rv-camper-motorhomes-90728.bond roofing-services-61345.bond maid-service-26172.bond

2024-08-15 .Bond Newly Registered Domains Part 1 - ABTdomain.com

.bond newly registered domains on 2024-08-15. Noted 7,147 newly registered domains, part 1 lists domains as 10-kwp-pv-anlage-kosten.bond, 247-nurse-14902.bond, 247-nurse-17413.bond, etc.
Emily Chen (Newly Registered Domains)
#infosec #ransomware #phishing #spam #banks #Bond #impersonation #bigtechisevil #googleisevil #mitm #authentication #AiTM #spoofing #dv #certificates #httpsvshttp #fakewebsites #cloudflareisevil #dotbond @Let's Encrypt @European Commission @NLnet

The problem Aral is that US news is *searching hard* to demonstrate phishing attacks, keylogging, and backdoors / OS malware as somehow issues with #signal. Just saw an NBC piece that was atrocious where they blamed bogus QR codes as somehow a Signal problem. They'll find #infosec people to either scramble the facts or talk about phishing and be taken out of context.
#Signal #infosec

“If these idiots are accidentally roping in the editor of the Atlantic on secret war deliberations, what are the chances they’re making other serious information-security mistakes, including ones that create openings for foreign intelligence agencies? Probably pretty high.” #trump #infosec #signal

thebulwark.com/p/high-cost-of-…


The High Cost of Team Trump’s Sloppy OpSec

Anyone surprised by the news of this week’s bizarre leak has forgotten the long record of security failures in Trump’s first term.
Nicholas Grossman (The Bulwark)
#Signal #infosec #Trump

Of course.

npr.org/2025/03/25/nx-s1-53398…

via @npr

#USpol #infosec #hegseth

A screengrab of a page from a Pentagon-wide memo warning against using the messaging app Signal. NPR https://www.npr.org/2025/03/25/nx-s1-5339801/pentagon-email-signal-vulnerability Several days after top national security officials accidentally included a reporter in a Signal chat about bombing Houthi sites in Yemen, a Pentagon-wide advisory warned against using the messaging app, even for unclassified information.
#infosec #uspol #hegseth @NPR

#SignalGate #USpol #Infosec

I'd like to reply to that with the following quote from #PeteHegseth himself:

mastodon.social/@flexghost/114…

flexghost.

2025-03-25 12:59:57

mastodon - Link to source

Remember when Pete Hegseth said anyone reckless with sensitive government information should be fired on the spot and criminally prosecuted?

Pepperidge Farm remembers.

#ButHerEmails


#infosec #uspol #petehegseth #SignalGate

If you also use BlueSky I have provided you a Short Stack there:

tisiphone.net/2025/03/25/blues…

It is mostly a duplicate of the Short Stack here:

tisiphone.net/2025/03/18/updat…

These are intel-ish news feeds mostly consisting of people who post a lot of relevant articles, commentary, and punditry. tldr; follow these and keep updated on cyber stuff.

#cybersecurity #infosec


Updated InfoSec Mastodon Lists!

I have been asked for these, so here they are! I hope you find these useful in following more Fediverse cybersecurity stuff. Pancakes Short Stack,jerry@infosec.exchange Pancakes Short Stack,spacero…
Lesley Carhart's Cybersecurity Blog
#infosec #cybersecurity

Moral of the story: be sure to first sweep your hot cars for any AirTags, LowJacks, etc #privacy #InfoSec

[…] detectives used GPS on a [stolen] car identified during the robberies to trace it back to a meeting spot used by the group. [who] would […] move “large pry bars and jaws of life tools” into stolen vehicles used in the robberies while intentionally leaving their cellphones [behind] to avoid being caught. They returned to the meeting locations.

washingtonpost.com/dc-md-va/20…

#infosec #privacy

Federal Judge Deborah L. Boardman has blocked #DOGE / #OPM from accessing large swathes of data at the Depts of #Education & #Treasury, ruling that DOGE has no right under the #Privacy Act to unjustified access to large-scale amounts of personal identifying information.

#law #USpol #Trump #Musk #InfoSec
storage.courtlistener.com/reca…

#infosec #privacy #Trump #education #law #musk #uspol #opm #doge #treasury

December 2023: US District Attorney Jessica Aber indicts 4 Russians for war crimes in #Ukraine

September 2024: US District Attorney Jessica Aber indicts Russian cryptocurrency money launderer / cybercriminal #SergeyIvanov

November 2024: US District Attorney Jessica Aber accuses Virginia based companies of running "three different schemes to illegally transship sensitive American technology to Russia," including sending equipment to a Russian telecommunications company linked to the #Kremlin and Russia's notorious #FSB security agency.

March 2025: Former US District Attorney Jessica Aber found dead at age 43

More: newsweek.com/jessica-aber-deat…

#Putin #VladimirPutin #JessicaAber #Russia #UkraineWar #Virginia #Vapol #crime #alexandria #TrueCrime #uspol #eupol #eu #AsifRahman #infosec #ransomware #cybersecurity

WASHINGTON, DC — DECEMBER 6: U.S. Attorney for the Eastern District of Virginia Jessica Aber speaks during a press conference at the U.S. Department of Justice on December 6, 2023 in Washington, DC. The Department of Justice announced today that four Russian military personnel have been indicted for war crimes committed against a U.S. national living in Ukraine, the first of such charges ever to be brought under the U.S. war crimes statute. (Photo by Samuel Corum/Getty Images)
Former US attorney for eastern district of Virginia found dead at age 43 Alexandria police find Jessica Aber unresponsive after responding to reports and say investigation under way Maya Yang Sun 23 Mar 2025 14.55 EDT The former US attorney for the eastern district of Virginia was found dead in Alexandria on Saturday, authorities said. In a statement on social media, Alexandria police announced that at about 9.18am on Saturday, police responded to the 900 block of Beverley Drive following reports of an unresponsive woman. Upon arriving at the scene, authorities located a deceased woman who they later identified as 43-year-old Jessica Aber.

Ex-US Attorney Jessica Aber Investigated Russia, CIA Leaker Before Death

Aber resigned as U.S. Attorney for the Eastern District of Virginia after President Donald Trump returned to the Oval Office.
Ellie Cook (Newsweek)
#infosec #EU #Russia #cybersecurity #ukraine #crime #ransomware #putin #kremlin #uspol #virginia #UkraineWar #eupol #vladimirputin #truecrime #alexandria #fsb #jessicaaber #vapol #asifrahman #sergeyivanov

…As the #Trump admin’s war on the federal bureaucracy throws key agencies into #chaos, CISA’s turmoil could have underappreciated consequences for #NationalSecurity & #economic prospects. The agency, part of #DHS, has steadily built a reputation as a #nonpartisan source of funding, guidance, & even direct defensive support for #cities, #businesses, & #nonprofits reeling from #cyberattacks.

#InfoSec #NationalSecurity #Musk

#infosec #Trump #musk #nationalsecurity #cities #chaos #economic #nonprofits #dhs #businesses #nonpartisan #cyberattacks

Inside #CISA, vital support staff are gone, international partnerships have been strained, & workers are afraid to discuss #threats to #democracy that they’re now PROHIBITED from countering. Employees are even more overworked than usual, & new assignments from the admin are interfering w/important tasks. Meanwhile, CISA’s temporary leader is doing everything she can to appease #Trump, infuriating employees who say she’s out of touch & refusing to protect them.

#InfoSec #NationalSecurity #Musk

#infosec #Trump #democracy #musk #nationalsecurity #cisa #threats

Apple patched CVE-2024-54471, a macOS vulnerability that allowed NetAuthAgent to leak file server credentials and iCloud API tokens due to missing sender verification. Update to macOS 15.1, 14.7.1, or 13.7.1 to stay protected.

wts.dev/posts/password-leak/

#macOS #CyberSecurity #Apple #InfoSec


Leaking Passwords (and more!) on macOS | Watch This Space

A security research blog.
Watch This Space
#infosec #cybersecurity #apple #macos

This dumb password rule is from Hetzner.

- 8 or more characters
- At least one uppercase and one lowercase letter
- At least one number or special character

Okay, fair enough, but after putting in a password with some special characters this message appears:
- Invalid characters, allowed are: A-Z a-z 0-9 ä ö ü ß Ä Ö Ü ^ ! $ % / ( ) = ?...

dumbpasswordrules.com/sites/he…

#password #passwords #infosec #cybersecurity #dumbpasswordrules


Hetzner - Dumb Password Rules

- 8 or more characters - At least one uppercase and one lowercase letter - At least one number or special character Okay, fair enough, but after putting in a password with some special characters this message appears: - Invalid characters, allowed a…
dumbpasswordrules.com
#infosec #cybersecurity #passwords #password #dumbpasswordrules