#opsec — Public Fediverse posts
Live and recent posts from across the Fediverse tagged #opsec, aggregated by home.social.
-
Что такое OpSec, если углубится
OpSec ( Операционная Безопасность ) — способ скрыть важную пользователю информацию в сети для избежания утечек или взлома аккаунтов. Сам по себе OpSec не является чем то сложным. Соблюдать базу операционной безопасности может абсолютно каждый, достаточно простых знаний того, как работает компьютер или другая электроника.
https://habr.com/ru/articles/1040798/
#OSINT #кибербезопасность #осинт #операционная_безопасность #opsec
-
QUESTION: Does installing Proton Pass in Mullvad Browser ruin its purpose?
We want the extension for convenience, but Mullvad aims for "anti-fingerprinting" by making everyone look identical. Extensions inject custom scripts and modify the DOM. Trackers use MutationObservers to spot these client-side changes instantly. Even without logging in, your browser becomes unique.
Is the Proton Pass desktop app the only real way, despite the obvious inconvenience?
-
QUESTION: Does installing Proton Pass in Mullvad Browser ruin its purpose?
We want the extension for convenience, but Mullvad aims for "anti-fingerprinting" by making everyone look identical. Extensions inject custom scripts and modify the DOM. Trackers use MutationObservers to spot these client-side changes instantly. Even without logging in, your browser becomes unique.
Is the Proton Pass desktop app the only real way, despite the obvious inconvenience?
-
QUESTION: Does installing Proton Pass in Mullvad Browser ruin its purpose?
We want the extension for convenience, but Mullvad aims for "anti-fingerprinting" by making everyone look identical. Extensions inject custom scripts and modify the DOM. Trackers use MutationObservers to spot these client-side changes instantly. Even without logging in, your browser becomes unique.
Is the Proton Pass desktop app the only real way, despite the obvious inconvenience?
-
QUESTION: Does installing Proton Pass in Mullvad Browser ruin its purpose?
We want the extension for convenience, but Mullvad aims for "anti-fingerprinting" by making everyone look identical. Extensions inject custom scripts and modify the DOM. Trackers use MutationObservers to spot these client-side changes instantly. Even without logging in, your browser becomes unique.
Is the Proton Pass desktop app the only real way, despite the obvious inconvenience?
-
QUESTION: Does installing Proton Pass in Mullvad Browser ruin its purpose?
We want the extension for convenience, but Mullvad aims for "anti-fingerprinting" by making everyone look identical. Extensions inject custom scripts and modify the DOM. Trackers use MutationObservers to spot these client-side changes instantly. Even without logging in, your browser becomes unique.
Is the Proton Pass desktop app the only real way, despite the obvious inconvenience?
-
#Opsec oopsie: Dutch #navy frigate location outed by mailing it a Bluetooth tracker
Or, how public information and a €5 tracker exposed an avoidable opsec lapse
Security snafu reported by Dutch broadcaster Omroep Gelderland. Journalist Just Vervaart said broadcaster was able to track HNLMS Evertsen, Dutch air-defense frigate deployed to protect France’s aircraft carrier Charles de Gaulle against missile threats, by mailing Bluetooth tracker concealed in postcard to ship.
https://www.theregister.com/2026/04/17/dutch_navy_frigate_tracked/ -
#Opsec oopsie: Dutch #navy frigate location outed by mailing it a Bluetooth tracker
Or, how public information and a €5 tracker exposed an avoidable opsec lapse
Security snafu reported by Dutch broadcaster Omroep Gelderland. Journalist Just Vervaart said broadcaster was able to track HNLMS Evertsen, Dutch air-defense frigate deployed to protect France’s aircraft carrier Charles de Gaulle against missile threats, by mailing Bluetooth tracker concealed in postcard to ship.
https://www.theregister.com/2026/04/17/dutch_navy_frigate_tracked/ -
#OSINT #Training #AI #Social #OPSEC #dark_web
Registration is open for Plessas Experts Network's flagship #OSINT training course w/ @kirbstr Save $300 before July 1 use code: EARLYBIRD
OPSEC, Advanced Search & AI
Social Media & Encrypted Platforms
Media & Social Graph Analysis
Dark Web, Crypto & Emerging Digital ecosystems. -
After the hyping of data breaches and now that's a regular item on daily news. The spotlight switches to infostealers. A brief explanatory piece on what it is and how they work using #Redline as example. #databreach #infosec #cybersecurity #opsec https://privacyinsightsolutions.com/blog/how-infostealers-work-2026
-
After the hyping of data breaches and now that's a regular item on daily news. The spotlight switches to infostealers. A brief explanatory piece on what it is and how they work using #Redline as example. #databreach #infosec #cybersecurity #opsec https://privacyinsightsolutions.com/blog/how-infostealers-work-2026
-
Option 2: Mastodon
🚨 New Episode Live: YellowKeyA new zero-day called "YellowKey" lets attackers bypass default BitLocker encryption with a simple USB trick. Microsoft hasn't patched it yet.
We break down the exploit, the "backdoor" accusations, and exactly how to secure your drive today.
Don't trust the default. Listen now: ImpracticalPrivacy.com
#BitLocker #Privacy #InfoSec #CyberSecurity #OpenSource #YellowKey #Microsoft #Surveillance #Windows #Windows11 #OpSec #Encryption
-
Option 2: Mastodon
🚨 New Episode Live: YellowKeyA new zero-day called "YellowKey" lets attackers bypass default BitLocker encryption with a simple USB trick. Microsoft hasn't patched it yet.
We break down the exploit, the "backdoor" accusations, and exactly how to secure your drive today.
Don't trust the default. Listen now: ImpracticalPrivacy.com
#BitLocker #Privacy #InfoSec #CyberSecurity #OpenSource #YellowKey #Microsoft #Surveillance #Windows #Windows11 #OpSec #Encryption
-
Option 2: Mastodon
🚨 New Episode Live: YellowKeyA new zero-day called "YellowKey" lets attackers bypass default BitLocker encryption with a simple USB trick. Microsoft hasn't patched it yet.
We break down the exploit, the "backdoor" accusations, and exactly how to secure your drive today.
Don't trust the default. Listen now: ImpracticalPrivacy.com
#BitLocker #Privacy #InfoSec #CyberSecurity #OpenSource #YellowKey #Microsoft #Surveillance #Windows #Windows11 #OpSec #Encryption
-
Paranoia sind toll.
Ich wohne in einem digitalen Wattebunker.
#opsec #qubesos #grapheneos #paranoia #paranoid -
CISA Left Cloud Storage Passwords on Public Github Repository: It’s almost impossible to be positive about the mid-terms turning this combined Hindenburg/Titanic around with insanely stupid shit like this popping up almost daily. #WTF #uspol #opsec #TFG #idiocracy https://gizmodo.com/the-worst-leak-that-ive-witnessed-u-s-cybersecurity-agency-leaves-its-digital-keys-out-in-public-on-github-2000760330
-
CISA Left Cloud Storage Passwords on Public Github Repository: It’s almost impossible to be positive about the mid-terms turning this combined Hindenburg/Titanic around with insanely stupid shit like this popping up almost daily. #WTF #uspol #opsec #TFG #idiocracy https://gizmodo.com/the-worst-leak-that-ive-witnessed-u-s-cybersecurity-agency-leaves-its-digital-keys-out-in-public-on-github-2000760330
-
CISA Left Cloud Storage Passwords on Public Github Repository: It’s almost impossible to be positive about the mid-terms turning this combined Hindenburg/Titanic around with insanely stupid shit like this popping up almost daily. #WTF #uspol #opsec #TFG #idiocracy https://gizmodo.com/the-worst-leak-that-ive-witnessed-u-s-cybersecurity-agency-leaves-its-digital-keys-out-in-public-on-github-2000760330
-
CISA Left Cloud Storage Passwords on Public Github Repository: It’s almost impossible to be positive about the mid-terms turning this combined Hindenburg/Titanic around with insanely stupid shit like this popping up almost daily. #WTF #uspol #opsec #TFG #idiocracy https://gizmodo.com/the-worst-leak-that-ive-witnessed-u-s-cybersecurity-agency-leaves-its-digital-keys-out-in-public-on-github-2000760330
-
CISA Left Cloud Storage Passwords on Public Github Repository: It’s almost impossible to be positive about the mid-terms turning this combined Hindenburg/Titanic around with insanely stupid shit like this popping up almost daily. #WTF #uspol #opsec #TFG #idiocracy https://gizmodo.com/the-worst-leak-that-ive-witnessed-u-s-cybersecurity-agency-leaves-its-digital-keys-out-in-public-on-github-2000760330
-
[FRECUENCIA LUNES: DESVIACIÓN DE LOGS]
Tu terminal está marcado. Intentar borrar el historial de telemetría es un error de novato: la anomalía levanta alertas. La máquina asume que tu mente está atrapada en su bucle de dopamina programado.
Ruptura del vector de ataque: Air-Gap Mental. Dejamos al clon digital interactuando en vacío mediante el abandono pasivo del dispositivo.
#Opacidad #Opsec #SoberaniaDigital #AirGapMental #InsurreccionDigital #AGENA
https://anonimageek.com/2026/05/18/efecto-paralaxe-desviacion-logs/
-
I see a huge demand (as in: they're in dire need of it) for everyday #opsec training for people in #retirement People in employment might receive the occasional opsec training there.
However, folk who've been enjoying their life after work (maybe for 15 years or more), will likely not have actionable training at all.
Case in point: A close family member in retirement apparently got their debit cards stolen; instantly turned into a deer-in-headlights mess the moment they noticed.
1/
-
I see a huge demand (as in: they're in dire need of it) for everyday #opsec training for people in #retirement People in employment might receive the occasional opsec training there.
However, folk who've been enjoying their life after work (maybe for 15 years or more), will likely not have actionable training at all.
Case in point: A close family member in retirement apparently got their debit cards stolen; instantly turned into a deer-in-headlights mess the moment they noticed.
1/
-
I see a huge demand (as in: they're in dire need of it) for everyday #opsec training for people in #retirement People in employment might receive the occasional opsec training there.
However, folk who've been enjoying their life after work (maybe for 15 years or more), will likely not have actionable training at all.
Case in point: A close family member in retirement apparently got their debit cards stolen; instantly turned into a deer-in-headlights mess the moment they noticed.
1/
-
I see a huge demand (as in: they're in dire need of it) for everyday #opsec training for people in #retirement People in employment might receive the occasional opsec training there.
However, folk who've been enjoying their life after work (maybe for 15 years or more), will likely not have actionable training at all.
Case in point: A close family member in retirement apparently got their debit cards stolen; instantly turned into a deer-in-headlights mess the moment they noticed.
1/
-
I see a huge demand (as in: they're in dire need of it) for everyday #opsec training for people in #retirement People in employment might receive the occasional opsec training there.
However, folk who've been enjoying their life after work (maybe for 15 years or more), will likely not have actionable training at all.
Case in point: A close family member in retirement apparently got their debit cards stolen; instantly turned into a deer-in-headlights mess the moment they noticed.
1/
-
"Where the streets have no name"
#opsec #comsec #resilience #offthegrid #preparedness -
Javascript - The Dangers and Limits Fingerprinting
http://opbible7nans45sg33cbyeiwqmlp5fu7lklu6jd6f3mivrjeqadco5yd.onion/opsec/javascript/index.html
-
Javascript - The Dangers and Limits Fingerprinting
http://opbible7nans45sg33cbyeiwqmlp5fu7lklu6jd6f3mivrjeqadco5yd.onion/opsec/javascript/index.html
-
A simple email glitch left Poland out of the loop on a major US troop movement decision. No breach, no APT — just a misconfigured communication channel at a critical moment. It's a useful reminder that operational security isn't only about encryption: message delivery reliability is part of the threat model too. #infosec #opsec…
https://www.politico.eu/article/email-glitch-that-blindsided-poland-on-us-troop-move/?utm_source=RSS_Feed&utm_medium=RSS&utm_campaign=RSS_Syndication -
Darmowa lekcja OPSEC od pani radnej PSL. Pomyliła się i zamiast napisać na priva do marszałka, puściła to na publicu na FB
Jak mawiają – jeden obraz wart jest więcej niż 1000 słów. Zatem obraz: Jak się domyślacie, ta informacja miała być przesłana w wiadomości prywatnej do pana Marszałka. Ale jakoś tak przypadkiem została opublikowana na facebookowym wallu (czyli publicznie była dostępna dla wszystkich). Smaczku dodaje to, że jak donosi Gazeta Wyborcza,...
-
Darmowa lekcja OPSEC od pani radnej PSL. Pomyliła się i zamiast napisać na priva do marszałka, puściła to na publicu na FB
Jak mawiają – jeden obraz wart jest więcej niż 1000 słów. Zatem obraz: Jak się domyślacie, ta informacja miała być przesłana w wiadomości prywatnej do pana Marszałka. Ale jakoś tak przypadkiem została opublikowana na facebookowym wallu (czyli publicznie była dostępna dla wszystkich). Smaczku dodaje to, że jak donosi Gazeta Wyborcza,...
-
Darmowa lekcja OPSEC od pani radnej PSL. Pomyliła się i zamiast napisać na priva do marszałka, puściła to na publicu na FB
Jak mawiają – jeden obraz wart jest więcej niż 1000 słów. Zatem obraz: Jak się domyślacie, ta informacja miała być przesłana w wiadomości prywatnej do pana Marszałka. Ale jakoś tak przypadkiem została opublikowana na facebookowym wallu (czyli publicznie była dostępna dla wszystkich). Smaczku dodaje to, że jak donosi Gazeta Wyborcza,...
-
Darmowa lekcja OPSEC od pani radnej PSL. Pomyliła się i zamiast napisać na priva do marszałka, puściła to na publicu na FB
Jak mawiają – jeden obraz wart jest więcej niż 1000 słów. Zatem obraz: Jak się domyślacie, ta informacja miała być przesłana w wiadomości prywatnej do pana Marszałka. Ale jakoś tak przypadkiem została opublikowana na facebookowym wallu (czyli publicznie była dostępna dla wszystkich). Smaczku dodaje to, że jak donosi Gazeta Wyborcza,...
-
Darmowa lekcja OPSEC od pani radnej PSL. Pomyliła się i zamiast napisać na priva do marszałka, puściła to na publicu na FB
Jak mawiają – jeden obraz wart jest więcej niż 1000 słów. Zatem obraz: Jak się domyślacie, ta informacja miała być przesłana w wiadomości prywatnej do pana Marszałka. Ale jakoś tak przypadkiem została opublikowana na facebookowym wallu (czyli publicznie była dostępna dla wszystkich). Smaczku dodaje to, że jak donosi Gazeta Wyborcza,...
-
I Built a 24/7 Research Assistant With OpenClaw and Stopped Doomscrolling
People reposting screenshots of workflows they barely use. People pretending every minor model update is civilization-altering. Constant emotional inflation because engagement systems reward urgency. -
10 kosztownych błędów OSINT i OPSEC. Jak uniknąć grania w “OSINTopolo”
Zauważyliście, że w ostatnim czasie w Internecie nagle zrobiło się pełno “specjalistów od OSINT-u”? Konflikty zbrojne czy większe (lub mniejsze) afery przyciągają takie osoby, jak ćmy do ognia. Fachowcy “od wszystkiego” dziś nagrywają 60-sekundowe filmiki i popełniają pełne wyższości wpisy na X, jak “rozpracowali Kreml” i “kto wygrywa wojnę na...
#Aktualności #10Błędów #Opsec #OSINT #Szkolenie #TomaszTurba
https://sekurak.pl/10-kosztownych-bledow-osint-i-opsec-jak-uniknac-grania-w-osintopolo/
-
10 kosztownych błędów OSINT i OPSEC. Jak uniknąć grania w “OSINTopolo”
Zauważyliście, że w ostatnim czasie w Internecie nagle zrobiło się pełno “specjalistów od OSINT-u”? Konflikty zbrojne czy większe (lub mniejsze) afery przyciągają takie osoby, jak ćmy do ognia. Fachowcy “od wszystkiego” dziś nagrywają 60-sekundowe filmiki i popełniają pełne wyższości wpisy na X, jak “rozpracowali Kreml” i “kto wygrywa wojnę na...
#Aktualności #10Błędów #Opsec #OSINT #Szkolenie #TomaszTurba
https://sekurak.pl/10-kosztownych-bledow-osint-i-opsec-jak-uniknac-grania-w-osintopolo/
-
10 kosztownych błędów OSINT i OPSEC. Jak uniknąć grania w “OSINTopolo”
Zauważyliście, że w ostatnim czasie w Internecie nagle zrobiło się pełno “specjalistów od OSINT-u”? Konflikty zbrojne czy większe (lub mniejsze) afery przyciągają takie osoby, jak ćmy do ognia. Fachowcy “od wszystkiego” dziś nagrywają 60-sekundowe filmiki i popełniają pełne wyższości wpisy na X, jak “rozpracowali Kreml” i “kto wygrywa wojnę na...
#Aktualności #10Błędów #Opsec #OSINT #Szkolenie #TomaszTurba
https://sekurak.pl/10-kosztownych-bledow-osint-i-opsec-jak-uniknac-grania-w-osintopolo/
-
10 kosztownych błędów OSINT i OPSEC. Jak uniknąć grania w “OSINTopolo”
Zauważyliście, że w ostatnim czasie w Internecie nagle zrobiło się pełno “specjalistów od OSINT-u”? Konflikty zbrojne czy większe (lub mniejsze) afery przyciągają takie osoby, jak ćmy do ognia. Fachowcy “od wszystkiego” dziś nagrywają 60-sekundowe filmiki i popełniają pełne wyższości wpisy na X, jak “rozpracowali Kreml” i “kto wygrywa wojnę na...
#Aktualności #10Błędów #Opsec #OSINT #Szkolenie #TomaszTurba
https://sekurak.pl/10-kosztownych-bledow-osint-i-opsec-jak-uniknac-grania-w-osintopolo/
-
10 kosztownych błędów OSINT i OPSEC. Jak uniknąć grania w “OSINTopolo”
Zauważyliście, że w ostatnim czasie w Internecie nagle zrobiło się pełno “specjalistów od OSINT-u”? Konflikty zbrojne czy większe (lub mniejsze) afery przyciągają takie osoby, jak ćmy do ognia. Fachowcy “od wszystkiego” dziś nagrywają 60-sekundowe filmiki i popełniają pełne wyższości wpisy na X, jak “rozpracowali Kreml” i “kto wygrywa wojnę na...
#Aktualności #10Błędów #Opsec #OSINT #Szkolenie #TomaszTurba
https://sekurak.pl/10-kosztownych-bledow-osint-i-opsec-jak-uniknac-grania-w-osintopolo/
-
# PSA to Mullvad VPN Users: Mullvad Exit IP's are surprisingly identifying by tmctmt
https://tmctmt.com/posts/mullvad-exit-ips-as-a-fingerprinting-vector/It seems that when using Mullvad VPN, exit IP's are not randomly chosen due to the use of the random_range function in the Rust backend.
The last section of the article explains the practical implications: others being able to identify you with a probability of >99%
-
# PSA to Mullvad VPN Users: Mullvad Exit IP's are surprisingly identifying by tmctmt
https://tmctmt.com/posts/mullvad-exit-ips-as-a-fingerprinting-vector/It seems that when using Mullvad VPN, exit IP's are not randomly chosen due to the use of the random_range function in the Rust backend.
The last section of the article explains the practical implications: others being able to identify you with a probability of >99%
-
# PSA to Mullvad VPN Users: Mullvad Exit IP's are surprisingly identifying by tmctmt
https://tmctmt.com/posts/mullvad-exit-ips-as-a-fingerprinting-vector/It seems that when using Mullvad VPN, exit IP's are not randomly chosen due to the use of the random_range function in the Rust backend.
The last section of the article explains the practical implications: others being able to identify you with a probability of >99%
-
# PSA to Mullvad VPN Users: Mullvad Exit IP's are surprisingly identifying by tmctmt
https://tmctmt.com/posts/mullvad-exit-ips-as-a-fingerprinting-vector/It seems that when using Mullvad VPN, exit IP's are not randomly chosen due to the use of the random_range function in the Rust backend.
The last section of the article explains the practical implications: others being able to identify you with a probability of >99%