Posts by 0x58@infosec.exchange
(DIR) Post #ASWtl59LZUkaiSXM5w by 0x58@infosec.exchange
2023-02-10T07:31:50Z
0 likes, 1 repeats
#Reddit suffered a cyberattack Sunday evening, allowing hackers to access internal business systems and steal internal documents and source code.The company says the hackers used a #phishing lure targeting Reddit employees with a landing page impersonating its intranet site. This site attempted to steal employees' credentials and two-factor authentication tokens.After one employee fell victim to the phishing attack, the threat actor was able to breach internal Reddit systems to steal data and source code.#cybersecurity #infosec https://www.bleepingcomputer.com/news/security/hackers-breach-reddit-to-steal-source-code-and-internal-data/
(DIR) Post #ATCNcvUI2xJOQLpcIK by 0x58@infosec.exchange
2023-03-02T07:54:38Z
0 likes, 0 repeats
@EC_DIGIT @EC_OSPO Great initiative. Secrets should never be hardcoded. Ever.... And very timely with #GitHub's announcement on Secret scanning alerts being now available (and free) for all public repositories :bloblaugh:https://github.blog/2023-02-28-secret-scanning-alerts-are-now-available-and-free-for-all-public-repositories/
(DIR) Post #ATOuO2vz2o9a1rqlPc by 0x58@infosec.exchange
2023-03-08T08:57:21Z
0 likes, 0 repeats
@mjg59 And.. indirectly, humans.
(DIR) Post #ATRSDv51B2ADX0L2tk by 0x58@infosec.exchange
2023-03-09T14:16:01Z
0 likes, 0 repeats
#Google this week announced that it’s discontinuing #ChromeCleanup Tool, an application that allows users to identify and remove unwanted software.According to Google, the existence of the Chrome Cleanup Tool appears redundant amid a continuous decline in user complaints about unwanted software: in the past year, only 3% of user complaints were about such applications.#chrome #security #infosec #cybersecurity #appsec https://www.securityweek.com/google-discontinuing-chrome-tool-for-removing-unwanted-software/
(DIR) Post #ATRSZxETr1O0ZvGtIO by 0x58@infosec.exchange
2023-03-09T14:31:02Z
0 likes, 0 repeats
@Linux_in_a_Bit Haha. Yeah. Bummer 🤣
(DIR) Post #ATgBSnfZ86tpA4NkRs by 0x58@infosec.exchange
2023-03-16T16:54:04Z
0 likes, 0 repeats
Microsoft has announced a new assistant powered by artificial intelligence to help boost productivity across Microsoft 365 apps, currently being tested by select commercial customers.⬆️ Will it then be able to automatically decline meeting it predicts that will be a waste of time and resources? :flan_laugh:
(DIR) Post #ATgG2vSC45K1XtboJs by 0x58@infosec.exchange
2023-03-16T06:23:30Z
0 likes, 2 repeats
Nord Security (Nord) has released the source code of its Linux NordVPN client and associated networking libraries in the hopes of being more transparent and easing users’ security and privacy concerns."We're making these products open source as a sign of our commitment to transparency and accountability," reads Nord's announcement.#cybersecurity #security #infosec #privacy #vpn https://www.bleepingcomputer.com/news/security/nordvpn-open-sources-its-linux-vpn-client-and-libraries/
(DIR) Post #AToMHzIiCJXsoJQ13Y by 0x58@infosec.exchange
2023-03-18T16:58:50Z
0 likes, 1 repeats
A sticky story: How, and why, #hackers love #stickers on #laptops😛 https://www.computerweekly.com/feature/A-sticky-story-How-and-why-hackers-love-stickers-on-laptops
(DIR) Post #AULWCYESiSkr5hwxN2 by 0x58@infosec.exchange
2023-04-05T15:26:01Z
0 likes, 0 repeats
A universal password. Unencrypted user data and commands. What could go wrong?#cybersecurity #infosec #smarthome https://arstechnica.com/information-technology/2023/04/open-garage-doors-anywhere-in-the-world-by-exploiting-this-smart-device/
(DIR) Post #AULp32feacePjBqcmO by 0x58@infosec.exchange
2023-04-05T19:06:33Z
0 likes, 0 repeats
@Linux_in_a_Bit One more, as desert 🍰 :flan_laugh:https://securityintelligence.com/posts/x-force-identifies-vulnerability-iot-platform/
(DIR) Post #AW1HZYKq4tvCTOWBIO by 0x58@infosec.exchange
2023-05-25T16:02:31Z
0 likes, 1 repeats
Zyxel has released software updates to address two critical security flaws affecting select firewall and VPN products that could be abused by remote attackers to achieve code execution.#cybersecurity #infosec https://thehackernews.com/2023/05/zyxel-issues-critical-security-patches.html
(DIR) Post #AY7D1UmWX91VbAgPuS by 0x58@infosec.exchange
2023-07-27T09:21:44Z
0 likes, 0 repeats
@mjg59 Coz everybody loves cat. I'm told.
(DIR) Post #AYYbdxlJ3kWYtKTgYa by 0x58@infosec.exchange
2023-08-09T10:42:48Z
0 likes, 1 repeats
🛰️ Hackers prepare to take on a satellite at @defcon #cybersecurity #infosec #ctf #defcon https://cyberscoop.com/hack-a-sat-moonlighter-def-con/
(DIR) Post #Ab1FBakHsQ5tCtID0i by 0x58@infosec.exchange
2023-10-21T14:38:29Z
0 likes, 1 repeats
On Wednesday, October 18, 2023, we [@cloudflare] discovered attacks on our system that we were able to trace back to Okta – threat actors were able to leverage an authentication token compromised at Okta to pivot into Cloudflare’s Okta instance... and they wrap up with recommendations...Take any report of compromise seriously and act immediately to limit damage; in this case Okta was first notified on October 2, 2023 by @beyondtrust but the attacker still had access to their support systems at least until October 18, 2023.#Okta #breach #infosec #cybersecurity https://blog.cloudflare.com/how-cloudflare-mitigated-yet-another-okta-compromise/
(DIR) Post #AbODs9LDCxYvfMvd2m by 0x58@infosec.exchange
2023-10-23T11:08:14Z
0 likes, 1 repeats
📨 Latest issue of my curated #cybersecurity and #infosec list of resources for week #42/2023 is out! It includes the following and much more:➝ 🔓 👀 Tracking Unauthorized Access to #Okta's Support System➝ 🔓 🇯🇵 #Casio discloses #databreach impacting customers in 149 countries➝ 🔓 🧬 Hacker leaks millions more #23andMe user records on #cybercrime forum➝ 🔓 🇨🇳 D-Link confirms data breach after employee #phishing attack➝ 🔓 💰 #Equifax Fined $13.5 Million Over 2017 Data Breach➝ 🇺🇦 🧹 Ukrainian activists hack Trigona #ransomware gang, wipe servers➝ 🇺🇸 🇰🇵 FBI: Thousands of Remote IT Workers Sent Wages to #NorthKorea to Help Fund Weapons Program➝ 🇮🇳 ☁️ #India targets #Microsoft, #Amazon tech support #scammers in nationwide crackdown➝ 🇵🇸 🇮🇷 #Hamas-linked app offers window into cyber infrastructure, possible links to Iran➝ 👮🏻♂️ 🥷🏻 Police seize #RagnarLocker leak site➝ 🇰🇵 North Korean Hackers Exploiting Recent #TeamCity Vulnerability➝ 🇨🇳 🇷🇺 #China replaces #Russia as top #cyberthreat➝ 🇺🇦 📡 CERT-UA Reports: 11 Ukrainian Telecom Providers Hit by Cyberattacks➝ 🇫🇷 🇪🇸 #France frees the two biggest Spanish hackers➝ 🇺🇸 ⚓️ Ex-Navy IT head gets 5 years for selling people’s data on #darkweb➝ 🇨🇭 🗳️ #Switzerland’s e-voting system has predictable implementation blunder➝ 🔓 🏭 Critical Vulnerabilities Expose #Weintek HMIs to Attacks➝ 🔓 🏭 #Milesight Industrial Router #Vulnerability Possibly Exploited in Attacks➝ 🦠 🇻🇳 Fake #Corsair job offers on #LinkedIn push #DarkGate malware➝ 🦠 Google-hosted #malvertising leads to fake #Keepass site that looks genuine➝ 🦠 💬 #Discord still a hotbed of #malware activity — Now APTs join the fun➝ 🦠 🕵🏻♂️ SpyNote: Beware of This Android #Trojan that Records Audio and Phone Calls➝ 🛍️ 🦠 #Android will now scan sideloaded apps for malware at install time➝ 💬 🔐 #WhatsApp #passkeys on the way, but as usual, for Android first➝ 🇷🇺 🗂️ Pro-Russian Hackers Exploiting Recent #WinRAR Vulnerability in New Campaign➝ 🗓️ ❌ Signal Pours Cold Water on Zero-Day Exploit Rumors➝ 🔓 💥 #Cisco warns of new #IOS XE #zeroday actively exploited in attacks📚 This week's recommended reading is: "RTFM: Red Team Field Manual v2" by Ben Clark and Nicholas DownerSubscribe to the #infosecMASHUP newsletter to have it piping hot in your inbox every week-end ⬇️https://infosec-mashup.santolaria.net/p/infosec-mashup-week-422023
(DIR) Post #AbOE61ls9LswF613zs by 0x58@infosec.exchange
2023-07-06T10:40:49Z
0 likes, 1 repeats
Yup. That.#AI #LLM
(DIR) Post #AbWWZgSLJdFzGJqrOC by 0x58@infosec.exchange
2023-11-03T19:54:59Z
0 likes, 0 repeats
@tinker @jerry Oh nice one! That'd be 0xneat!
(DIR) Post #AtS0eX8fIGYQILp7j6 by 0x58@infosec.exchange
2025-04-25T13:27:31Z
0 likes, 0 repeats
@BrodieOnLinux Scary.
(DIR) Post #Auu6G2aqPxWTVywNxA by 0x58@infosec.exchange
2025-06-07T12:57:23Z
0 likes, 1 repeats
🔥 Latest issue of my curated #cybersecurity and #infosec list of resources for week #23/2025 is out!It includes the following and much more:🇫🇷 Cartier announced a #databreach;🫱🏻🫲🏼 Microsoft and CrowdStrike are working together to connect the different names used for hacking groups;🇩🇪 German authorities have identified Vitaly Nikolaevich Kovalev as the leader of the #TrickBot cybercrime gang;🩹 🐛 Over 30 #Vulnerabilities Patched in #Android;🇪🇺 Microsoft has launched a free European Security Program to enhance cybersecurity for #EU governments;🇮🇳 #Microsoft Helps India CBI Dismantle Indian Call Centers;📨 Subscribe to the #infosecMASHUP newsletter to have it piping hot in your inbox every week-end ⬇️https://infosec-mashup.santolaria.net/p/infosec-mashup-23-2025
(DIR) Post #AvQCncWh6NTjUvpD7Y by 0x58@infosec.exchange
2025-06-23T09:41:30Z
0 likes, 1 repeats
🔥 Latest issue of my curated #cybersecurity and #infosec list of resources for week #25/2025 is out!It includes the following and much more:🇺🇸 📰 The Washington Post experienced a #cyberattack that compromised the email accounts of several journalists;🇬🇧 The U.K. watchdog fined #23andMe £2.31 million;🇨🇭 🏦 #UBS Confirms Data Stolen After Hack at External Supplier;👾 Over 1,500 #Minecraft players have been infected by a new Java #malware;🤖 🛠️ Researchers say #AI hacking tools sold online were powered by #Grok, #Mixtral;📨 Subscribe to the #infosecMASHUP newsletter to have it piping hot in your inbox every week-end ⬇️https://infosec-mashup.santolaria.net/p/infosec-mashup-25-2025