Search
Items tagged with: Cybersecurity
Some news...I’ll be spending $100M to make us safer online and to protect our infrastructure, like water and power supplies.
A big part will be a PSA campaign - online and in old-fashioned ways. We all got a role to play, like everyone did in WW2, including my Dad and Mom.
I’ll start by putting my money where my mouth is. Folks can check it out here: pausetake9.org.
#CyberCivilDefense #cybersecurity
We are proud to support the launch of the OpenSearch Software Foundation, a community-driven initiative that will support OpenSearch and its search software, which is used by developers around the world to build search, analytics, observability, and vector database applications. Hosted by the Linux Foundation, the OpenSearch Software Foundation will work with community maintainers and developers, as well as founding member organizations, to support the continued growth of OpenSearch.
Established in 2021 and previously hosted by Amazon Web Services (AWS), OpenSearch has recorded more than 700 million software downloads and participation from thousands of contributors and more than 200 project maintainers. With the launch of the OpenSearch Software Foundation, AWS has transitioned OpenSearch under the Linux Foundation. The OpenSearch Software Foundation will focus on supporting OpenSearch as it continues to be adopted by organizations around the world to power business-critical workloads.
View the announcement: https://www.linuxfoundation.org/press/linux-foundation-announces-opensearch-software-foundation-to-foster-open-collaboration-in-search-and-analytics
#opensource #opensearch #devs #cybersecurity
Linux Foundation Announces OpenSearch Software Foundation to Foster Open Collaboration in Search and Analytics
AWS transfers OpenSearch to the Linux Foundation to support a vendor-neutral community for search, analytics, observability, and vector database softwareThe Linux Foundation
4/4 🚀 🚀 🚀
Don’t miss out on this incredible opportunity! #GoTALER #onlinepayment #tech #technology #banking #finance #onlineshopping #freesoftware #openSource #developer #programming #privacy #DigitalRights #PublicCode #cybersecurity #infosec
@EC_NGI @nlnet @ps @Taler @glsbank @oec @leoo
The city of Columbus Ohio got hacked by a ransomware gang, they didn't pay the ransom so the gang released half of the stolen data which included secret police and prosecutor files. The leak exposed countless victims, witness and confidential informants personal info and communications with the city.
The city claimed NO info was leaked. A cyber security enthusiast went to the media and proved otherwise.
Truesec: https://www.truesec.com/hub/blog/dissecting-the-cicada
In June 2024 a new RaaS named Cicada3301 announced they were looking for affiliates. We have now encountered them "in the wild".
Truesec has spent some time analyzing this new Rust-based ransomware strain.
Cicada 3301 - Ransomware-as-a-Service - Technical Analysis
Discover the latest insights on the emerging ransomware group Cicada3301, first detected in June 2024. Truesec's investigation reveals key findings about this group, named after a famous cryptography game, now targeting multiple victims.Simon Hertzberg (Truesec AB)
🗣️ https://opensearch.org/events/opensearchcon/sessions/the-future-of-cybersecurity-open-cybersecurity-schema-framework-(ocsf)-and-opensearch.html
📝 Register Now: https://opensearch.org/events/opensearchcon/2024/north-america/register.html
OpenSearchCon 2024: North America - Registration
OpenSearch is a community-driven, Apache 2.0-licensed open source search and analytics suite that makes it easy to ingest, search, visualize, and analyze data.OpenSearch
BIG: Russia caught reusing phone exploit strikingly similar to NSO Group's #Pegasus #spyware.
How did #APT29 get it after NSO used it?
Google isn't sure.
Ditto reuse of exploits from Intellexa.
But I warned Congress this would happen.
It says something about who NSO sourced it from, or that they can't control their code, or..
Whatever the case, the mercenary spyware industry is accelerating global cyber insecurity.
State-backed attackers and commercial surveillance vendors repeatedly use the same exploits
We’re sharing an update on suspected state-backed attacker APT29 and the use of exploits identical to those used by Intellexa and NSO.Clement Lecigne (Google)
In der IT kann es schon mal stürmisch werden! 🌪 Ihr wollt Cyberkriminelle von der Party ausschließen? Hier verraten wir euch, wie ihr eure digitalen Fenster und Türen absichert: 👉 https://www.bsi.bund.de/dok/131400
Ihr habt noch einen? Wir freuen uns eure liebsten IT-Flachwitze in den Kommentaren! 😜
#DeutschlandDigitalSicherBSI #IT #ITSicherheit #Sicherheit #CyberSecurity #ITSecurity #InfoSec #CyberCrime
Ihr habt den neusten Kinofilm kostenlos online gefunden und schaut gleich rein? Stopp! Mit illegalem #Streaming macht ihr euch strafbar! Im Video erfahrt ihr, von welchen Streaming-Angeboten ihr besser die Finger lasst.
#DeutschlandDigitalSicherBSI #TeamBSI #IT #ITSicherheit #CyberSecurity #ITSecurity #Stream
Important update from @briankrebs regarding the NPD breach:
https://krebsonsecurity.com/2024/08/national-public-data-published-its-own-passwords/
I hope quality reporting like this will foster a healthy discussion about how and to whom we entrust PII, but I won't be holding my breath.
In the article, Krebs provides links to sites that check
if your PII was exposed in this breach.
#infosec #cybersecurity #breach #pii
National Public Data Published Its Own Passwords
New details are emerging about a breach at National Public Data (NPD), a consumer data broker that recently spilled hundreds of millions of Americans' Social Security Numbers, addresses, and phone numbers online.krebsonsecurity.com
Daten sichern, na klar, easy: Dafür hab ich eine Gratis-Software, die synchronisiert das alle paar Wochen mit der Cloud. 😏
Ihr hört das „Halt, stopp!“ schon, oder? Genau. 😅
Wir erklären einige der größten Fehler beim Sichern eurer wichtigsten Daten. 💡
#DeutschlandDigitalSicherBSI
#InformationSecurity #CyberSecurity
Beim SIM-Swapping übernehmen Cyberkriminelle die Kontrolle über eure Mobilnummer 📱. Sie geben sich dafür bei eurem Provider als rechtmäßiger Besitzer aus und bringen ihn dazu, ihnen eine neue SIM-Karte zu schicken. Mit der SIM-Karte können sie dann Zugriff auf eure Konten bekommen. 😰
#DeutschlandDigitalSicherBSI
#InformationSecurity #CyberSecurity
Jaw Dropping DNS Attack Vector Heavily Exploited in the Wild
Learn about the insidious DNS attack vector that threat actors are using to hijack domains from major brands, government institutions, and other organizations, large and small. Find out how to determine whether your domain name is at risk.Infoblox Threat Intel (Infoblox Blog)
#Cybersecurity is absolute #political now. And #Trump is a #Danger to many #Aspects of #Life in and out of #America. So the "#Lane" is: Being political AND a #CyberSecurity-#Expert. Trump invents every second #Day a new #ambigous #Slogan to make himself interesting to the #Tabloids and to #provoke. One should ignore this. All Eyes are on #Kamala at the #Moment and this makes him #furious, when he get's less #Attention.
Did you know #Project2025 calls for “the entirety of the CISA #Cybersecurity Advisory Committee should be dismissed on Day One.” (page 155).
If you like being able to use computers (or do anything with organizations that use computers, including have your vote counted in elections) that’s a very bad idea.
Recent #cybersecurity incident around #CrowdStrike and #Windows #Azure shows the problem around monocultures and control over its one technology.
It is important for Europe to evaluate own dependencies and support administrations, business and citizens alike to run secure IT. For this #softwarefreedom plays an important role.
Threat actor #emo, who has the nerve to claim he answers to God while robbing people, said "unsecured API endpoint used to steal the data provided an easy way to verify each impacted user's email address, name, and phone number."
More than 400,000 #Life360 user phone numbers leaked via unsecured API https://www.bleepingcomputer.com/news/security/over-400-000-life360-user-phone-numbers-leaked-via-unsecured-android-api/ @BleepingComputer @serghei #infosec #cybersecurity
Ob im Home-Office oder mit Freundinnen, Freunden und der Familie: #Videotelefonieren hat enorm an Bedeutung gewonnen. 👍📞
Weil wir dabei aber nicht nur allgemeine Dinge besprechen – sondern auch über das ein oder andere Familiengeheimnis, solltet ihr vor eurem Anruf einige #Risiken im Blick behalten. 💡
Unsere Sicherheitstipps rund ums Videotelefonieren klären euch auf!
#CyberSecurity #CyberSicherheit #Sicherheit #ITSicherheit #Videocalls #Videotelefonie
CISA Red Team’s Operations Against a Federal Civilian Executive Branch Organization Highlights the Necessity of Defense-in-Depth
"...the Cybersecurity and Infrastructure Security Agency (CISA) conducted a SILENTSHIELD red team assessment against a Federal Civilian Executive Branch (FCEB) organization...."
includes red team TTPs, defense activity, and lessons learned.
https://www.cisa.gov/news-events/cybersecurity-advisories/aa24-193a
Doxing kann euer Leben auf den Kopf stellen: Zum Beispiel, wenn plötzlich eure Adresse öffentlich einsehbar ist und ihr euch dadurch bedroht fühlt oder unerwünschte Post bekommt. Seid darum vorsichtig mit persönlichen Informationen online und haltet sensible Daten geheim. Wir zeigen heute, wie es geht! 🔒
#DeutschlandDigitalSicherBSI #IT #ITSicherheit #Sicherheit #CyberSecurity #ITSecurity #InfoSec #CyberCrime