cybersecurity

Um mal wieder die Lächerlichkeit der Bürgergelddebatte und der Subventionierung des Deutschlandtickets zu befeuern.

Laut Bitkom entstehen jedes Jahr knapp 200 Mrd € Schaden durch Cyberattacken.
https://www.bitkom.org/Presse/Presseinformation/203-Milliarden-Euro-Schaden-pro-Jahr-durch-Angriffe-auf-deutsche-Unternehmen

Investitionen in Gegenmaßnahmen sichern nicht nur den Standort Deutschland, könnten Sozialprojekte quer finanzieren.

Die netten Hacker werden auch gerne gefördert oder zumindest gefördert von Staaten die Russland, Vietnam, China.
Die Zahlen des hybriden Krieges sollte man auch kennen, wenn wir über Russlandsanktionen wegen Öl und Gas sprechen. Der kriminelle Geldhahn bleibt meist offen.

Und man stelle sich nur vor, ein Russland stehen alle "Einnahmequellen" zur Verfügung.

Nichtstun, Wait&See sind die schlechtesten aller Maßnahmen damit umzugehen.

@BlumeEvolution

#hybriderKrieg #Fossilismus #Cybersecurity

This is very much for real!

cc @CISAJen
#cybersecurity #CyberCivilDefense

https://www.compiler.news/integrity-above-all-is-the-mantra-we-need-for-the-era-of-rampant-ransomware-2/

NEW: Details of people's therapy sessions—including reports, video and audio recordings—have been exposed by a healthcare company.

These included people mentioning sexual abuse and highly sensitive subjects. The exposed database has now been closed down

https://www.wired.com/story/confidant-health-therapy-records-database-exposure/ #cybersecurity #privacy #news #technology

We need to protect water supplies and other vulnerable infrastructure from cyber security related attacks

#CyberCivilDefense #cybersecurity

https://www.darkreading.com/cybersecurity-operations/undisruptable27-project-seeks-to-shore-up-local-critical-infrastructure

Memory safety problems are a huge #cybersecurity problem for the Internet, but it doesn’t have to be.

Make a transition to memory safety part of your #CyberCivilDefense plan.

Read about orgs doing that today: https://www.memorysafety.org/blog/rustls-adoption-grows/

Some news...I’ll be spending $100M to make us safer online and to protect our infrastructure, like water and power supplies.

A big part will be a PSA campaign - online and in old-fashioned ways. We all got a role to play, like everyone did in WW2, including my Dad and Mom.

I’ll start by putting my money where my mouth is. Folks can check it out here: https://pausetake9.org.

#CyberCivilDefense #cybersecurity

It's time for a re- #introduction since this instance has changed a lot since being launched.

This instance was set up for testing and playing with Internationalized Domain Names. That experiment has mostly been a success and I've now migrated away from my once-main instance.

I'm a former software developer of over 20 years, working primarily in #opensource and #telephony. I now do #cybersecurity as a profession, after starting to do cybersecurity research as a hobby about a year ago.

In the last year, I've found and disclosed several dozen #vulnerabilities in #govtech platforms like #court and #voter registration systems, which have gotten a not insignificant amount of press coverage. Those disclosures can all be seen at https://govtech.cc

Beyond my #infosec postings, you'll typically find nonsense that I find funny; sometimes I might even say stuff that other people find amusing.

I once self-published a book that I've never read called The Consequences of Being Right (ISBN 979-8880045068). It was entirely written by ChatGPT and was published because I thought it was stupid and funny. Miraculously, I've managed to sell two copies, neither of which have been returned.

I'm #ActuallyAutistic and #ADHD, which is sometimes apparent.

All of my other links and socials can be found at https://linktr.ee/northantara

Collaborations between @hackclub and @girlswhocode leads to more opportunities for young women, in technology areas including
#CyberCivilDefense #cybersecurity like Reem featured here
https://www.instagram.com/reel/DBPKpcMSZY-/?igsh=bzhocWkxbDVjcTgy
pausetake9.org

The New Oil is not slowing down in 2025, and you can help us keep going!

https://thenewoil.org/en/support/

#privacy #cybersecurity

Our team at @censys has studied Internet exposure of #ICS for the better part of a year, learning more about the products, protocols, and nuances of this space.

Today I'm excited to share our third annual ✨State of the Internet Report detailing what we've learned! A few highlights:

🛜 Most ICS protocols and HMIs we've observed run on 5G/LTE (e.g., Verizon) or SOHO/business-grade ISPs (e.g., Comcast). We initially observed this in the U.S. and in this most recent research found that it's a global phenomenon. This surprised me initially, but industrial devices often need to run in places where a wired connection might not be available. While great for connectivity, use of such networks makes it often impossible to determine who owns or operates a given service, as the host metadata points back to the telco itself.

💧 Analysis of over 200 C-More human-machine interfaces (HMIs) revealed over a third appear to be related to water and wastewater systems (WWS). WWS has seen increased targeting over the last ~year, and these exposures suggest still more work is needed to adequately protect and defend this sector.

⛔️ We found nearly 200 hosts globally running HMIs alongside products banned by U.S. NDAA Section 889. While this act applies only to a specific set of operators within the U.S. federal government, it's interesting to note what technologies operators implement alongside potentially critical services.

#infosec #cybersecurity #OT

You can find a copy of the report with all the details here! 👇

https://censys.com/the-2024-state-of-the-internet-report/

Hi there! Another article for Dark Reading, this one focused on how to help avoid burnout. There was so much to cover and so much interesting work being done that I could only scratch the surface. My biggest takeaway is that work-related burnout is in WHO's book of disorders. That's real legitimacy, and I expect more scholarly work to come. Thanks endlessly to @neurovagrant and @Edent for providing their experiences and strategies. #DarkReading #cybersecurity #journalism #burnout #JobRelatedBurnout #selfPromotion
https://www.darkreading.com/vulnerabilities-threats/defining-defying-cybersecurity-staff-burnout

Since the newest update to @surf, links to feeds can be opened directly in the app.

I have created a #Cybersecurity feed on #Surf for anyone on the beta. The feed includes posts, etc., regarding Cybersecurity information. You can even contribute to the feed using the hashtag #CyberSecBrief.

https://surf.social/feed/surf%2Fcustom%2F01jfjvb3ntxvjtaze9xf08vb3f

If you have any recommendations for a source that I can add to the feed, just let me know.

If you are not in the Surf beta, I have an invite code that can get you in. Just DM me, and I will share it with you. This is all due to the huge thanks of @marci, @mike, and all of the @surf team. They are such great people.

You can learn more about Surf by is from this great article from The Verge.

https://www.theverge.com/2024/12/18/24323903/flipboard-surf-fediverse-social-web-app

#Surf #Flipboard #News

Rate my setup
#KaliLinux #Nederland #cybersecurity

ALT

🚨 Time is Running Out to Save Encryption 🔐

Ofcom is consulting on implementing message scanning powers in the UK Online Safety Act.

This would break end-to-end encryption on the messaging apps we all use!

⏰ CLOSES Monday 10 March, 5pm.

Use our tool to tell Ofcom #PracticeSafeText 💬

ACT NOW ⬇️

https://action.openrightsgroup.org/48-hours-tell-ofcom-practice-safe-text

#e2ee #encryption #OnlineSafetyAct #ukpolitics #ukpol #privacy #ofcom #security #cybersecurity #whatsapp #signal

Compromised? In this interview, https://www.muellershewrote.com/p/a-fork-in-the-road-is-federal-employee I speak to a systems security specialist who found privacy problems surrounding the HR@opm.gov email servers #IT #security #natsec #nationalsecurity #cybercrime #cybersecurity #hacking #surveillance #malware #email #DOGE #Musk #treasury #OPM #FAA #FEMA #education #privacy #PII

#Cybersecurity tip: don't forward texts, emails, or links without pausing!

✋ #Take9 #CyberCivilDefense @paustake9

Adobe is now processing all your PDFs in the cloud, by default. The setting to “Enable generative AI features in Acrobat” was on, and I didn’t know it until I opened a document and Adobe asked me if I wanted a document summary. It’s annoying to have to click “No,” so I opened settings to disable the prompt.

THE PROBLEM
I sign Non-Disclosure Agreements for many of my clients. Adobe is a potential leak of protected information. I don’t know what Adobe does with this information. I don’t know what they store, or for how long. I don’t know what country (or countries) the data is stored in. I don’t know what LLMs are trained with this data. And I don’t need to know. What I need to know is that they won’t use default opt-in as a legal excuse to wiretap my information.

I recommend that you check your Adobe settings on all devices, for all Adobe accounts.

#CallMeIfYouNeedMe #FIFONetworks

#cybersecurity

ALT

💡 Encryption IS online safety 💡

Keeping data secure is key when hackers are skilled at unpicking accounts.

So why does the UK government want to make us unsafe by ordering a backdoor to Apple encrypted services?

✍️ Sign to save encryption this #SaferInternetDay.

#encryption #privacy #Apple #cybersecurity #ukpolitics #ukpol #digitalrights #e2ee

https://you.38degrees.org.uk/petitions/keep-our-apple-data-encrypted

🚨 BREAKING 🚨

The UK is rogue in trying to order a backdoor to Apple encryption.

US lawmakers slam the UK's secretive order, calling it what it is:

🔥 'Dangerous' for global cybersecurity
🔥 'Effectively a foreign cyberattack'

The Home Office must back off ✋

#encryption #surveillance #e2ee #cybersecurity #ukpolitics #ukpol #Apple #privacy

https://www.washingtonpost.com/technology/2025/02/13/apple-uk-security-back-door-adp/

Back on my boring post grind to document my learning.

New #Blog post going through a #TryHackMe challenge. This time detecting two different attack types with snort!

https://ligniform.blog/posts/snort-live-attacks/

💜 🌱

#InfoSec #Learning #CyberSecurity #BlueTeam #Hacking

I just published the source code for my very naive #Python implementation for generating a node network based on MITRE Intrusion Sets and Techniques. It will output linked #Markdown files linking intrusion sets to their used techniques.

Perhaps someone finds it useful or interesting to experiment with.

Source code: https://github.com/cstromblad/markdown_node

I hinted at this in a thread started by @Viss where he asked for input on a few very likely malicious domains. Me @Viss @cR0w @neurovagrant and others did some OSINT fun work with a couple of the original domains.

It was this thread: https://mastodon.social/@Viss/114145122623079635

Now I posted a picture of a node network rendered in Obsidian and I hinted that perhaps Obsidian could be used as a poor mans version of performing threat intelligence work.

#ThreatIntel #ThreatIntelligence #Cybersecurity #Obsidian

ALT

🚨 Beware! Hackers are now sending phishing emails from “no-reply@google.com” by abusing Google’s OAuth apps & notification system. These legit-looking emails can trick even tech-savvy users! 🕵️‍♂️ Always double-check links & sender details. Stay safe online! 🔐 #CyberSecurity #PhishingAlert #Google #InfoSec #StaySafe #TechRadar

Read more: https://www.techradar.com/pro/security/beware-hackers-can-apparently-now-send-phishing-emails-from-no-reply-google-com

"- In March 2025, senior members of the World Uyghur Congress (WUC) living in exile were targeted with a spearphishing campaign aimed at delivering Windows-based malware capable of conducting remote surveillance against its targets.

- The malware was delivered through a trojanized version of a legitimate open source word processing and spell check tool developed to support the use of the Uyghur language. The tool was originally built by a developer known and trusted by the targeted community.

- Although the malware itself was not particularly advanced, the delivery of the malware was extremely well customized to reach the target population and technical artifacts show that activity related to this campaign began in at least May of 2024.

- The ruse employed by the attackers replicates a typical pattern: threat actors likely aligned with the Chinese government have repeatedly instrumentalized software and websites that aim to support marginalized and repressed cultures to digitally target these same communities.

- This campaign shows the ongoing threats of digital transnational repression facing the Uyghur diaspora. Digital transnational repression arises when governments use digital technologies to surveil, intimidate, and silence exiled and diaspora communities."

https://citizenlab.ca/2025/04/uyghur-language-software-hijacked-to-deliver-malware/

#CyberSecurity #Malware #Spearphishing #China #Uyghurs #Xinjiang #Surveillance

The Russians aren't coming, they are already here. Without most anyone realizing, they've created an entire malicious adtech industry whose story is just as complex as the Chinese organized crime we're now realizing from their ventures into pig butchering.

VexTrio is just one Russian organized crime group in the malicious adtech world, but they are a critical one. They have a very "special" relationship with website hackers that defies logic. I'd put my money on a contractual one. all your bases belong to russian adtech hackers.

Today we've released the first piece of research that may eventually prove whether I am right. This paper is hard. i've been told. I know. We've condensed thousands of hours of research into about 30 pages. @briankrebs tried to make the main points a lot more consumable -- and wrote a fabulous complimentary article : read both!

There's so much more to say... but at the same time, between ourselves and Brian, we've released a lot of lead material ... and there's more to come. I've emphasized the Russian (technically Eastern European) crime here, but as Brian's article points out there is a whole Italian side too. and more.

We've given SURBL, Spamhaus, Cloudflare, Domain Tools, several registrars, and many security companies over 100k domains. They are also posted on our open github.

Super thanks to our collaborators at Qurium, GoDaddy Sucuri Security, and elsewhere.

#threatintel #scam #tds #vextrio #cybercrime #cybersecurity #infosec #dns #infoblox #InfobloxThreatIntel #malware #phishing #spam

https://blogs.infoblox.com/threat-intelligence/vexing-and-vicious-the-eerie-relationship-between-wordpress-hackers-and-an-adtech-cabal/

https://krebsonsecurity.com/2025/06/inside-a-dark-adtech-empire-fed-by-fake-captchas/

CommonGoodCyber interviewed IST CSO MeganStifel on IST’s impact, the #RansomwareTaskForce, and long-term funding for #cybersecurity nonprofit. Read why she thinks multi-year funding is the key to sustained success: https://commongoodcyber.org/news/interview-ist-megan-stifel/