Search
Items tagged with: Infosec
![Screenshot of a message from a scam account, @MonetizationNotification@mstdn.ca (already blocked on my instance).
I altered the phishing link in the description below on purpose, to make it harder to click on it.
@rysiek Mastodon Sent You Message
Important notification for your account!
The Mastodon team has noticed your activity on our forum and we would like to offer you a partnership.
Partnering with us means that monetization will be enabled for your account.
To begin collaborating with our team, please confirm that you are the owner of this account by following the link below.
Verify now: https://lyzo[.]io/icLJa
If you attempt to avoid verification, our system will freeze your account indefinitely.
Thank you for staying with us.
Mastodon.social](https://friendica.hellquist.eu/photo/preview/640/5467068 "Screenshot of a message from a scam account, @MonetizationNotification@mstdn.ca (already blocked on my instance).
I altered the phishing link in the description below on purpose, to make it harder to click on it.
@rysiek Mastodon Sent You Message
Important notification for your account!
The Mastodon team has noticed your activity on our forum and we would like to offer you a partnership.
Partnering with us means that monetization will be enabled for your account.
To begin collaborating with our team, please confirm that you are the owner of this account by following the link below.
Verify now: https://lyzo[.]io/icLJa
If you attempt to avoid verification, our system will freeze your account indefinitely.
Thank you for staying with us.
Mastodon.social")
Motorola announces a partnership with GrapheneOS Foundation
motorolanews.com/motorola-thre…
> Motorola and the GrapheneOS Foundation will work to strengthen smartphone security and collaborate on future devices engineered with GrapheneOS compatibility.
This could be a gamechanger. Congratulations to @GrapheneOS, fingers crossed this works out well!
Motorola News | Motorola's new partnership with GrapheneOS
Motorola announces three new B2B solutions at MWC 2026, including GrapheneOS partnership, Moto Analytics and more.marreroc (Motorola's Official Global Blog)
Heads up for any folks using @hetzner: scammers seem to be trying to exploit the recent bump in pricing by sending "unpaid invoice notification" e-mails.
Easy to fall for it before morning coffee.
"Update Payment Method" link obviously leads to a scam site, so not particularly hard to spot either.
Be careful out there. 
P.S. yes I am aware of the shitty ways Hetzner treated a bunch of fedi instances; this is not a recommendation.
So Duo (the multifactor authentication service that #infosec loves) has integrated with Persona (the privacy destroying, Peter Thiel backed, AI-linked, facial scanning and mapping "identity verification" software)
You know the recent Discord snafu that received such massive pushback and caused so many people to leave Discord that they've dropped their identity verification?
Yeah, that Persona.
Duo integrates it into Duo Premier, Duo Advantage, and even Duo Essentials...
...which means many working class folks will have no option but to be enrolled into and use Persona...
...or be fired.
duo.com/docs/identity-verifica…
#Duo #Persona #Privacy #Discord #AI
Identity Verification
Perform high-assurance identity validation of Duo users with government ID verification.Cisco Duo
🐛 NEW SECURITY CONTENT 🐛
💻 macOS Tahoe 26.3 - 57 bugs fixed
support.apple.com/en-us/126348
💻 macOS Sonoma 14.8.4 - 42 bugs fixed
support.apple.com/en-us/126350
📱 iOS and iPadOS 26.3 - 41 bugs fixed
support.apple.com/en-us/126346
📱 iOS and iPadOS 18.7.5 - 37 bugs fixed
support.apple.com/en-us/126347
💻 macOS Sequoia 15.7.4 - 36 bugs fixed
support.apple.com/en-us/126349
🥽 visionOS 26.3 - 29 bugs fixed
support.apple.com/en-us/126353
⌚ watchOS 26.3 - 18 bugs fixed
support.apple.com/en-us/126352
📺 tvOS 26.3 - 16 bugs fixed
support.apple.com/en-us/126351
#apple #cybersecurity #infosec #security #ios
About the security content of iOS 26.3 and iPadOS 26.3 - Apple Support
This document describes the security content of iOS 26.3 and iPadOS 26.3.Apple Support
They finally did it. Microsoft has successfully over-engineered a text editor into a threat vector.
This CVE is an 8.8 severity RCE in Notepad of all things lmao.
Apparently, the "innovation" of adding markdown support came with the ability of launching unverified protocols that load and execute remote files.
We have reached a point where the simple act of opening a .md file in a native utility can compromise your system. Is nothing safe anymore? 😭
msrc.microsoft.com/update-guid…
#noai #microslop #microsoft #windows #programming #writing #windows11 #enshittification #cybersecurity #infosec #technology
You can do the following to remove the scheduled task that executes the vulnerable AMDAutoUpdate:
1. Run cmd.exe as administrator
2. schtasks /delete /TN AMDAutoUpdate /F
This prevents the AMDAutoUpdate from executing.
#infosec #cybersecurity #amd #ryzenmaster
Apparently AMD's AutoUpdate downloads the updates over HTTP and executes them without any validation (presumably as SYSTEM user). AMD was notified of the vulnerability but according to them "attack requiring physical access to victim's computer/device, man in the middle or compromised user accounts" are out of scope.
Madness.
source: web.archive.org/web/2026020615…
#vulnerability #infosec #cybersecurity
The RCE that AMD won't fix!
After reporting a RCE in AMD's auto-update software, they decided to not patch it due to it requiring a man-in-the-middle attack to perform.web.archive.org
notepad-plus-plus.org/news/hij…
