Search
Items tagged with: CyberSecurity
4/4 đ đ đ
Donât miss out on this incredible opportunity! #GoTALER #onlinepayment #tech #technology #banking #finance #onlineshopping #freesoftware #openSource #developer #programming #privacy #DigitalRights #PublicCode #cybersecurity #infosec
@EC_NGI @nlnet @ps @Taler @glsbank @oec @leoo
The city of Columbus Ohio got hacked by a ransomware gang, they didn't pay the ransom so the gang released half of the stolen data which included secret police and prosecutor files. The leak exposed countless victims, witness and confidential informants personal info and communications with the city.
The city claimed NO info was leaked. A cyber security enthusiast went to the media and proved otherwise.
Truesec: https://www.truesec.com/hub/blog/dissecting-the-cicada
In June 2024 a new RaaS named Cicada3301 announced they were looking for affiliates. We have now encountered them "in the wild".
Truesec has spent some time analyzing this new Rust-based ransomware strain.
Cicada 3301 - Ransomware-as-a-Service - Technical Analysis
Discover the latest insights on the emerging ransomware group Cicada3301, first detected in June 2024. Truesec's investigation reveals key findings about this group, named after a famous cryptography game, now targeting multiple victims.Simon Hertzberg (Truesec AB)
đŁïž https://opensearch.org/events/opensearchcon/sessions/the-future-of-cybersecurity-open-cybersecurity-schema-framework-(ocsf)-and-opensearch.html
đ Register Now: https://opensearch.org/events/opensearchcon/2024/north-america/register.html
OpenSearchCon 2024: North America - Registration
OpenSearch is a community-driven, Apache 2.0-licensed open source search and analytics suite that makes it easy to ingest, search, visualize, and analyze data.OpenSearch
BIG: Russia caught reusing phone exploit strikingly similar to NSO Group's #Pegasus #spyware.
How did #APT29 get it after NSO used it?
Google isn't sure.
Ditto reuse of exploits from Intellexa.
But I warned Congress this would happen.
It says something about who NSO sourced it from, or that they can't control their code, or..
Whatever the case, the mercenary spyware industry is accelerating global cyber insecurity.
State-backed attackers and commercial surveillance vendors repeatedly use the same exploits
Weâre sharing an update on suspected state-backed attacker APT29 and the use of exploits identical to those used by Intellexa and NSO.Clement Lecigne (Google)
In der IT kann es schon mal stĂŒrmisch werden! đȘ Ihr wollt Cyberkriminelle von der Party ausschlieĂen? Hier verraten wir euch, wie ihr eure digitalen Fenster und TĂŒren absichert: đ https://www.bsi.bund.de/dok/131400
Ihr habt noch einen? Wir freuen uns eure liebsten IT-Flachwitze in den Kommentaren! đ
#DeutschlandDigitalSicherBSI #IT #ITSicherheit #Sicherheit #CyberSecurity #ITSecurity #InfoSec #CyberCrime
Ihr habt den neusten Kinofilm kostenlos online gefunden und schaut gleich rein? Stopp! Mit illegalem #Streaming macht ihr euch strafbar! Im Video erfahrt ihr, von welchen Streaming-Angeboten ihr besser die Finger lasst.
#DeutschlandDigitalSicherBSI #TeamBSI #IT #ITSicherheit #CyberSecurity #ITSecurity #Stream
Important update from @briankrebs regarding the NPD breach:
https://krebsonsecurity.com/2024/08/national-public-data-published-its-own-passwords/
I hope quality reporting like this will foster a healthy discussion about how and to whom we entrust PII, but I won't be holding my breath.
In the article, Krebs provides links to sites that check
if your PII was exposed in this breach.
#infosec #cybersecurity #breach #pii
National Public Data Published Its Own Passwords
New details are emerging about a breach at National Public Data (NPD), a consumer data broker that recently spilled hundreds of millions of Americans' Social Security Numbers, addresses, and phone numbers online.krebsonsecurity.com
Daten sichern, na klar, easy: DafĂŒr hab ich eine Gratis-Software, die synchronisiert das alle paar Wochen mit der Cloud. đ
Ihr hört das âHalt, stopp!â schon, oder? Genau. đ
Wir erklĂ€ren einige der gröĂten Fehler beim Sichern eurer wichtigsten Daten. đĄ
#DeutschlandDigitalSicherBSI
#InformationSecurity #CyberSecurity
Beim SIM-Swapping ĂŒbernehmen Cyberkriminelle die Kontrolle ĂŒber eure Mobilnummer đ±. Sie geben sich dafĂŒr bei eurem Provider als rechtmĂ€Ăiger Besitzer aus und bringen ihn dazu, ihnen eine neue SIM-Karte zu schicken. Mit der SIM-Karte können sie dann Zugriff auf eure Konten bekommen. đ°
#DeutschlandDigitalSicherBSI
#InformationSecurity #CyberSecurity
Jaw Dropping DNS Attack Vector Heavily Exploited in the Wild
Learn about the insidious DNS attack vector that threat actors are using to hijack domains from major brands, government institutions, and other organizations, large and small. Find out how to determine whether your domain name is at risk.Infoblox Threat Intel (Infoblox Blog)
#Cybersecurity is absolute #political now. And #Trump is a #Danger to many #Aspects of #Life in and out of #America. So the "#Lane" is: Being political AND a #CyberSecurity-#Expert. Trump invents every second #Day a new #ambigous #Slogan to make himself interesting to the #Tabloids and to #provoke. One should ignore this. All Eyes are on #Kamala at the #Moment and this makes him #furious, when he get's less #Attention.
Did you know #Project2025 calls for âthe entirety of the CISA #Cybersecurity Advisory Committee should be dismissed on Day One.â (page 155).
If you like being able to use computers (or do anything with organizations that use computers, including have your vote counted in elections) thatâs a very bad idea.
Recent #cybersecurity incident around #CrowdStrike and #Windows #Azure shows the problem around monocultures and control over its one technology.
It is important for Europe to evaluate own dependencies and support administrations, business and citizens alike to run secure IT. For this #softwarefreedom plays an important role.
Threat actor #emo, who has the nerve to claim he answers to God while robbing people, said "unsecured API endpoint used to steal the data provided an easy way to verify each impacted user's email address, name, and phone number."
More than 400,000 #Life360 user phone numbers leaked via unsecured API https://www.bleepingcomputer.com/news/security/over-400-000-life360-user-phone-numbers-leaked-via-unsecured-android-api/ @BleepingComputer @serghei #infosec #cybersecurity
Ob im Home-Office oder mit Freundinnen, Freunden und der Familie: #Videotelefonieren hat enorm an Bedeutung gewonnen. đđ
Weil wir dabei aber nicht nur allgemeine Dinge besprechen â sondern auch ĂŒber das ein oder andere Familiengeheimnis, solltet ihr vor eurem Anruf einige #Risiken im Blick behalten. đĄ
Unsere Sicherheitstipps rund ums Videotelefonieren klÀren euch auf!
#CyberSecurity #CyberSicherheit #Sicherheit #ITSicherheit #Videocalls #Videotelefonie
CISA Red Teamâs Operations Against a Federal Civilian Executive Branch Organization Highlights the Necessity of Defense-in-Depth
"...the Cybersecurity and Infrastructure Security Agency (CISA) conducted a SILENTSHIELD red team assessment against a Federal Civilian Executive Branch (FCEB) organization...."
includes red team TTPs, defense activity, and lessons learned.
https://www.cisa.gov/news-events/cybersecurity-advisories/aa24-193a
Doxing kann euer Leben auf den Kopf stellen: Zum Beispiel, wenn plötzlich eure Adresse öffentlich einsehbar ist und ihr euch dadurch bedroht fĂŒhlt oder unerwĂŒnschte Post bekommt. Seid darum vorsichtig mit persönlichen Informationen online und haltet sensible Daten geheim. Wir zeigen heute, wie es geht! đ
#DeutschlandDigitalSicherBSI #IT #ITSicherheit #Sicherheit #CyberSecurity #ITSecurity #InfoSec #CyberCrime
