Search
Items tagged with: cybersecurity
👋 Hi everyone! I'm a freelance passionate about internet security, specializing in proxy, VPN technologies, and online privacy solutions.
🌐 I love exploring innovative ways to keep the digital world secure and helping individuals and businesses protect their online presence.
🎯 When I’m not diving into tech, you’ll find me sharing insights, connecting with like-minded people, and discussing the latest trends in cybersecurity.
#Introduction #CyberSecurity #PrivacyAdvocate #FreelanceLife
Millions of Accounts Vulnerable due to sGoogle’s #OAuth Flaw
Source: trufflesecurity.com/blog/milli…
#cybersecurity #security #identity #login #fail #Software #Problem #internet #news #identification #configuration
Millions of Accounts Vulnerable due to Google’s OAuth Flaw ◆ Truffle Security Co.
Millions of Americans can have their data stolen right now because of a deficiency in Google’s “Sign in with Google” authentication flow. If you’ve worked for a startup in the past - especially one that has since shut down - you might be vulnerable.trufflesecurity.com
Happy #PatchTuesday from Microsoft: EIGHT ZERO-DAYS (3 exploited, 5 publicly disclosed, 159 new CVEs)
- CVE-2025-21334 (7.8 high) Windows Hyper-V NT Kernel Integration VSP Elevation of Privilege Vulnerability (EXPLOITED)
- CVE-2025-21333 (7.8 high) Windows Hyper-V NT Kernel Integration VSP Elevation of Privilege Vulnerability (EXPLOITED)
- CVE-2025-21335 (7.8 high) Windows Hyper-V NT Kernel Integration VSP Elevation of Privilege Vulnerability (EXPLOITED)
- CVE-2025-21308 (6.5 medium) Windows Themes Spoofing Vulnerability (PUBLICLY DISCLOSED)
- CVE-2025-21275 (7.8 high) Windows App Package Installer Elevation of Privilege Vulnerability (PUBLICLY DISCLOSED)
- CVE-2025-21186 (7.8 high) Microsoft Access Remote Code Execution Vulnerability (PUBLICLY DISCLOSED)
- CVE-2025-21395 (7.8 high) Microsoft Access Remote Code Execution Vulnerability (PUBLICLY DISCLOSED)
- CVE-2025-21366 (7.8 high) Microsoft Access Remote Code Execution Vulnerability (PUBLICLY DISCLOSED)
cc: @goatyell
#microsoft #vulnerability #zeroday #eitw #activeexploitation #infosec #cve #cybersecurity
🌐Securing Critical Infrastructure 🌐
Dive into the world of industrial control systems with @hacks4pancakes from @dragosinc. In this episode of the Breaking Badness Cybersecurity Podcast, discover the unique challenges and essential practices for securing our critical infrastructure. 🚧🔒
#CyberSecurity #IndustrialControlSystems #OTSecurity #Dragos
Listen wherever you get podcasts
Apple: podcasts.apple.com/us/podcast/…
Spotify: open.spotify.com/episode/5S8UI…
YouTube: youtube.com/watch?v=S2f4MSQL7g…
What the hack? halcyon.ai/blog/abusing-aws-na…
#aws #cloud #security #Software #ransom #Malware #cybersecurity #online #internet #hack #hacker #encryption #Amazon #news
Abusing AWS Native Services: Ransomware Encrypting S3 Buckets with SSE-C
The Halcyon RISE Team has identified a unique ransomware technique that encrypts Amazon S3 buckets with no known method to recover unless a ransom is paid...Halcyon Research Team (Halcyon Tech, Inc.)
I was wondering when the hack/exfiltration occurred. The reporting doesn't indicate when it happened and whether Scholastic only found out from the #DailyDot contacting them or what. Or did I miss something?
In a world without walls and fences, who needs Windows and Gates ?
#windows #windows11 #linux #opensource #freesoftware #datenschutz #datensicherheit #cybersecurity #microsoft #billgates #gates #socialmedia #NoBIGTech #fediverse #mastodon #dedsec #poetry
Tech companies often market #cybersecurity products by playing on fear.
Take control of your online safety instead of just panicking with practical tips from a trusted computer science professor: buff.ly/3ZZR9T4 (Doug Jacobson, Iowa State University) #computerscience #technology #fear
Selling fear: Marketing for cybersecurity products often leaves consumers less secure
Ever feel like throwing up your hands and giving up on taking control of your online security? How technology companies market their cybersecurity products might have something to do with that.The Conversation
Since we are closing down #AllThingsTech.social, thought a Re- #Introduction post on my new instance, infosec.exchange would be good.
Hey, I'm Kyle . I am an above-average nerd and #cybersecurity geek. I work in #IT and currently getting my Bachelors.
I will be updating my blog, etc. in the coming days to reflect my move.
How OpenAI's bot crushed this seven-person company's website ‘like a DDoS attack’ | TechCrunch
OpenAI was sending “tens of thousands” of server requests trying to download Triplegangers' entire site which hosts hundreds of thousands of photos.Julie Bort (TechCrunch)
The first federal lawsuits against #PowerSchool were filed on Jan. 8 and Jan. 9. Bloomberg Law has more on this:
news.bloomberglaw.com/privacy-…
NEW by me in light of all the frustration I'm hearing from people affected by the PowerSchool breach:
PowerSchool Incident: A few resources for teachers, parents, and former students: databreaches.net/2025/01/10/po…
📢 @signalapp is expanding their team! They're hiring remotely (US timezones) for:
- Product Designer
- Product Manager
- Android Engineer
- iOS Engineer
- Technical Support Specialist
Join a team dedicated to building secure, private communication that's open source and user-first.
#opensource #privacy #cybersecurity #signal
At least 33 #browser extensions hosted in #Google’s #Chrome #Web Store, some for as long as 18 months, were surreptitiously siphoning sensitive data from roughly 2.6 million devices.
Source: arstechnica.com/security/2025/…
#privacy #www #Problem #cybersecurity #internet #news
Time to check if you ran any of these 33 malicious Chrome extensions
Two separate campaigns have been stealing credentials and browsing history for months.Dan Goodin (Ars Technica)
Normalize extended ASCII
And 128+ long passwords
If you use a password manager (which you should)
There's no reason not to make it as complex as you can
#keepassxc #extendedascii #passwords #privacy #cybersecurity
NEW by me:
PowerSchool discloses breach affecting hosted and self-hosted school k-12 districts:
databreaches.net/2025/01/08/po…
There are a lot of unanswered questions as yet, but we do have some answers already.
#databreach #extortion #EduSec #cybersecurity
@douglevin @funnymonkey @brett @mkeierleber @campuscodi @zackwhittaker
Short passwords are an open door for hackers. 🕵️ 🔓
🔑 Longer = Stronger.
How long is yours?
🔒 Learn more & secure your accounts today: tuta.com/blog/minimum-password…
Tuta Survey Results: Only about half the users use passwords that are long enough. | Tuta
Why password length matters for online security & best practices to protect your online accounts.Tuta
Two ransomware groups claimed they attacked Rutherford County Schools. in Tennessee. One leaked sensitive records.
I skimmed the data tranche and found tens of thousands of files with sensitive student information and personnel files. Read more about it here:
databreaches.net/2025/01/07/tw…
"The Debate On Backdoors In Encryption Done And Dusted" Says Former Whitehouse Tech Advisor -
"We should be embracing encryption without backdoors"
#News #infosec #cybersecurity #USA #privacy #tech #crypto #encryption #backdoors
theregister.com/2025/01/04/enc…
Encryption backdoor debate 'done and dusted,' former White House tech advisor says
When the FBI urges E2EE, you know it's serious businessJessica Lyons (The Register)
theregister.com/2025/01/04/enc…
#cybersecurity #e2ee #encryption #backdoor
Encryption backdoor debate 'done and dusted,' former White House tech advisor says
When the FBI urges E2EE, you know it's serious businessJessica Lyons (The Register)
The first #infosec / #cybersecurity #followfriday of 2025 is upon us. Check out these awesome accounts I've followed recently!
- @sj
- @v0lk3n
- @aircorridor
- @agl
- @dgl
- @edermi
- @kpcyrd
Also, some cool folks from neat instances ⬇️ (part of my running ”Whimsical corners of the Fediverse" series - shellsharks.com/notes/2024/03/…)
Have a great weekend y'all!
Today's second movie was The Net (1995). The hilarity of Hollywood's mid-90s vision of computing mixed with a yawn of a thriller makes for a bit of entertainment. I remember seeing this one when it was in the theaters.
An evil CEO of a tech company? This movie was ahead of its time.
#movies #TheNet #cybersecurity
Who is doing this rn?
#hackers #infosec #cybersecurity #hacktheplanet #newyears #nye2024 #nye2025 #HappyNewYear #newyearseve @defcon #mastodon #fediverse
Lower Laptop Visibility To Attackers / Tracking
Removing:
Microphone / WiFi / Bluetooth / Webcam
#hardware #laptop #computers #tech #privacy #security #infosec #cybersecurity #wireless #radio #tracking #thinkpad #peertube
tube.tchncs.de/w/rTf4neAfeJYtf…
Lowering Laptop Visibility To Attackers / Trackers [REMOVING: Mic/WiFi/Bluetooth/Webcam]
How to remove microphone, bluetooth, WiFi, webcam / camera on your laptop. Follow for any similar laptop model, once you find the placement of the microphone, bluetooth, wifi, camera. This video us...tchncs
#DerSpiegel:
"
Wir wissen, wo dein Auto steht
VW hat mit einer neuen Blamage zu kämpfen. Bewegungsdaten von 800.000 E-Autos sowie Kontaktinformationen zu den Besitzern standen ungeschützt im Netz. Sichtbar war, wer wann zu Hause parkt, beim BND oder vor dem Bordell.
"
spiegel.de/netzwelt/web/volksw…
27.12.2024
#App #Amazon #Audi #Bewegungsprofil #Cariad #CCC #Cloud #Cybersecurity #Cybersicherheit #Datenschutz #Datensammelwut #Datensparsamkeit #EDV #IT #Seat #Skoda #Überwachung #Volkswagen #VW
For more details, check out the full statement here: cisa.gov/news-events/news/join…
#US #Government Officially Recommends #Signal - What This Means For You | by #thehatedone #privacy #cybersecurity #yt
#AI #fraud #phishing #smishing
How to avoid the latest generation of scams this holiday season
Today’s scams aren’t like yesteryear’s.The Conversation
Microsoft really wants users to ditch passwords and switch to passkeys
Time to forget that password you've used since the age of 12Benedict Collins (TechRadar pro)
Natomas School District discovered unauthorized access to their network in June that may have involved usernames and passwords. They responded to the incident at the time, but are just sending out notification letters now, it seems:
oag.ca.gov/system/files/Natoma…
An alle die #linux ausprobieren oder von #windows wechseln bzw.sich davon befreien möchten...
Hier eine sehr gute entscheidungshilfe!
Einfach die fragen beantworten,und man bekommt verschiedene #distros vorgeschlagen die auf Persönliche ansprüche passen könnten.
(Gerne teilen für mehr reichweite)
#datenschutz #ubuntu #linuxmint #debian #distrochoser #dedsec #windows11 #LinuxFrage #datensicherheit #cybersecurity #freesoftware #opensource #flatpak #fedora
Distrochooser
Die Linux Auswahlhilfe hilft Anfängern und Umsteigern in der Menge von Linux-Distributionen die passende Linux-Distribution zu finden.distrochooser.de
Analysis 1drv.ms/w/c/25d5b025722773ec/IQTSQg6llVAMT6490Z16uTs9AXGpucoXWyzIfcuTR_MrUiQ Malicious activity - Interactive analysis ANY.RUN
Interactive malware hunting service. Live testing of most type of threats in any environments. No installation and no waiting necessary.app.any.run
Irish Data Protection Commission fines #Meta €251 Million
Source: dataprotection.ie/en/news-medi…
#eu #privacy #hack #cybersecurity #news
Data Protection Commission
The Irish Data Protection Commission (DPC) has today announced its final decisions following two inquiries into Meta Platforms Ireland Limited (‘MPIL’).Data Protection Commission
Israeli spyware maker Paragon bought by US private equity giant | TechCrunch
The company's spyware, dubbed Graphite, is capable of hacking phones and stealing private communications.Lorenzo Franceschi-Bicchierai (TechCrunch)
I tisdags var det återigen dags för Microsofts månatliga Patch-tisdag, och denna gång adresserades ett antal mycket allvarliga säkerhetsbrister. Totalt patchades 16 sårbarheter som möjliggör Remote Code Execution (RCE), varav flera klassas som kritiska: kryptera.se/windows-rce-i-ldap…
#RCE #Windows #CyberSecurity #LDAP #cybersäkerhet #DFIR
Some former employees of Granite School District are frustrated with the district's lack of accurate and timely information in the wake of a September attack by Rhysida -- especially since the data were leaked on Rhysida's leak site more than a month ago.
A former employee tells me it only took him 3 hours to figure out that there were a lot more data types and affected people than the district has revealed so far.
My post about it all:
databreaches.net/2024/12/17/gr…
@douglevin @funnymonkey @brett @mkeierleber
#EduSec #cybersecurity #databreach #ransomware #incident_response #transparency #disclosure
How to Protect Yourself From the Salt Typhoon #Hack, No Matter What the #FBI Says
source: theintercept.com/2024/12/11/fb…
“If the FBI cannot keep their #wiretap #system safe, they absolutely cannot keep the skeleton key to all Apple phones safe,” Vitka said.
#china #hacker #cybersecurity #encryption #usa #police #surveillance #security #privacy #politics #news #internet #smartphone #communication #chat #online
How to Protect Yourself From the Salt Typhoon Hack, No Matter What the FBI Says
The FBI is still touting the debunked idea that its agents could access communications without opening a door to foreign hackers.Matt Sledge (The Intercept)
Want To Make The Most Of Tails Amnesiac Linux OS "Pull Out" Feature?
💡 Try My Idea: USBSTICK "Pull The Plug" Bracelet (ideal for Tails)
This idea allows you to attach yourself to the inserted Tails disk, by bracelet (on demand)
If your arm ever gets too far from the computer: *POOF* there goes forensics! 😁
#HumanRights #Journalism #Tails #Linux #privacy #forensics #ideas #tech #GNU #fun #bracelet #jewelry #RAM #coldbootattack #infosec #cybersecurity #TorProject
tube.tchncs.de/w/q2Vdv11aTrmgA…
Tails Amnesiac "Pull The Plug" Coldboot Protection Bracelet
Today sharing my new tails on bracelet concept / idea with everyone - Tails on bracelet I call the "RightToPrivacy Pull The Plug Tails Bracelet". My idea for wearing Tails usbstick detachable brace...tchncs