#physicalsecurity — Public Fediverse posts

Hey Miami! We're excited to be at Ekoparty Miami all day today and tomorrow! Come try our displays, catch our talks, and learn about physical security!

#ekoparty #ekomiami #ekopartymiami #physicalsecurity #physsec

I attended the AITP Chicago Security SIG tonight at RSM and left with one clear takeaway: a $200 device called Flipper Zero can clone your building access badge and bypass the physical security your organization worked so hard to set up. FBI Chicago Intelligence Analysts and an InfraGard board member explained how these devices work and where organizations are vulnerable. The room was full of security professionals, many of whom had that familiar look, realizing a threat they thought was unlikely is actually much closer to home.
Here are a few key points from tonight:
・ You can buy Flipper Zero on Amazon, and teenagers are posting demo videos on YouTube. If your physical security plan assumes attackers need special equipment, that assumption is no longer true.
・ Most enterprise security programs barely address RF-based attacks on access control systems. We invest heavily in endpoint protection and network monitoring, but the badge reader by the server room often gets overlooked.
・ Mitigation is practical. Encrypted credentials and multi-factor physical access are real solutions. Most organizations just haven’t made them a priority because the threat seemed remote.

If you’re a CISO or CIO and haven’t reviewed your physical access controls for RF-based attacks, now is a good time to add it to your to-do list.
Thank you to AITP Chicago, the FBI, InfraGard, and RSM for a great discussion.

https://aitpchicago.com/event-6680905
#Cybersecurity #PhysicalSecurity #InfraGard #security #privacy #cloud #infosec #flipper0

I attended the AITP Chicago Security SIG tonight at RSM and left with one clear takeaway: a $200 device called Flipper Zero can clone your building access badge and bypass the physical security your organization worked so hard to set up. FBI Chicago Intelligence Analysts and an InfraGard board member explained how these devices work and where organizations are vulnerable. The room was full of security professionals, many of whom had that familiar look, realizing a threat they thought was unlikely is actually much closer to home.
Here are a few key points from tonight:
・ You can buy Flipper Zero on Amazon, and teenagers are posting demo videos on YouTube. If your physical security plan assumes attackers need special equipment, that assumption is no longer true.
・ Most enterprise security programs barely address RF-based attacks on access control systems. We invest heavily in endpoint protection and network monitoring, but the badge reader by the server room often gets overlooked.
・ Mitigation is practical. Encrypted credentials and multi-factor physical access are real solutions. Most organizations just haven’t made them a priority because the threat seemed remote.

If you’re a CISO or CIO and haven’t reviewed your physical access controls for RF-based attacks, now is a good time to add it to your to-do list.
Thank you to AITP Chicago, the FBI, InfraGard, and RSM for a great discussion.

https://aitpchicago.com/event-6680905
#Cybersecurity #PhysicalSecurity #InfraGard #security #privacy #cloud #infosec #flipper0

I attended the AITP Chicago Security SIG tonight at RSM and left with one clear takeaway: a $200 device called Flipper Zero can clone your building access badge and bypass the physical security your organization worked so hard to set up. FBI Chicago Intelligence Analysts and an InfraGard board member explained how these devices work and where organizations are vulnerable. The room was full of security professionals, many of whom had that familiar look, realizing a threat they thought was unlikely is actually much closer to home.
Here are a few key points from tonight:
・ You can buy Flipper Zero on Amazon, and teenagers are posting demo videos on YouTube. If your physical security plan assumes attackers need special equipment, that assumption is no longer true.
・ Most enterprise security programs barely address RF-based attacks on access control systems. We invest heavily in endpoint protection and network monitoring, but the badge reader by the server room often gets overlooked.
・ Mitigation is practical. Encrypted credentials and multi-factor physical access are real solutions. Most organizations just haven’t made them a priority because the threat seemed remote.

If you’re a CISO or CIO and haven’t reviewed your physical access controls for RF-based attacks, now is a good time to add it to your to-do list.
Thank you to AITP Chicago, the FBI, InfraGard, and RSM for a great discussion.

https://aitpchicago.com/event-6680905
#Cybersecurity #PhysicalSecurity #InfraGard #security #privacy #cloud #infosec #flipper0

I attended the AITP Chicago Security SIG tonight at RSM and left with one clear takeaway: a $200 device called Flipper Zero can clone your building access badge and bypass the physical security your organization worked so hard to set up. FBI Chicago Intelligence Analysts and an InfraGard board member explained how these devices work and where organizations are vulnerable. The room was full of security professionals, many of whom had that familiar look, realizing a threat they thought was unlikely is actually much closer to home.
Here are a few key points from tonight:
・ You can buy Flipper Zero on Amazon, and teenagers are posting demo videos on YouTube. If your physical security plan assumes attackers need special equipment, that assumption is no longer true.
・ Most enterprise security programs barely address RF-based attacks on access control systems. We invest heavily in endpoint protection and network monitoring, but the badge reader by the server room often gets overlooked.
・ Mitigation is practical. Encrypted credentials and multi-factor physical access are real solutions. Most organizations just haven’t made them a priority because the threat seemed remote.

If you’re a CISO or CIO and haven’t reviewed your physical access controls for RF-based attacks, now is a good time to add it to your to-do list.
Thank you to AITP Chicago, the FBI, InfraGard, and RSM for a great discussion.

https://aitpchicago.com/event-6680905
#Cybersecurity #PhysicalSecurity #InfraGard #security #privacy #cloud #infosec #flipper0

I attended the AITP Chicago Security SIG tonight at RSM and left with one clear takeaway: a $200 device called Flipper Zero can clone your building access badge and bypass the physical security your organization worked so hard to set up. FBI Chicago Intelligence Analysts and an InfraGard board member explained how these devices work and where organizations are vulnerable. The room was full of security professionals, many of whom had that familiar look, realizing a threat they thought was unlikely is actually much closer to home.
Here are a few key points from tonight:
・ You can buy Flipper Zero on Amazon, and teenagers are posting demo videos on YouTube. If your physical security plan assumes attackers need special equipment, that assumption is no longer true.
・ Most enterprise security programs barely address RF-based attacks on access control systems. We invest heavily in endpoint protection and network monitoring, but the badge reader by the server room often gets overlooked.
・ Mitigation is practical. Encrypted credentials and multi-factor physical access are real solutions. Most organizations just haven’t made them a priority because the threat seemed remote.

If you’re a CISO or CIO and haven’t reviewed your physical access controls for RF-based attacks, now is a good time to add it to your to-do list.
Thank you to AITP Chicago, the FBI, InfraGard, and RSM for a great discussion.

https://aitpchicago.com/event-6680905
#Cybersecurity #PhysicalSecurity #InfraGard #security #privacy #cloud #infosec #flipper0

Hardware shortages are killing deals. Quotes expire, lead times stretch, clients walk. 🔧

TetherX runs on whatever you can source - spare servers, refurb gear, even a Raspberry Pi. Quote Monday, install Friday.

Same platform. Same features. Any hardware, any camera brand, any site size.

No forklift upgrade when stock returns. Just scale.

What's the longest lead time that's cost you a job recently?

#VideoSurveillance #SecurityIntegrators #PhysicalSecurity #TetherX

https://www.europesays.com/britain/31330/ UK SMEs fear cyber attacks most, Hiscox survey finds #BusinessContinuity #CyberAttacks #CyberInsurance #CyberRisk #Cybersecurity #EconomicDownturn #Entrepreneurship #HealthAndSafety #HealthTechnologies(HealthTech) #Hiscox #Hybrid&RemoteWork #inflation #MentalHealth #PhysicalSecurity #RisingCosts #Risk&Compliance #RiskManagement #SmallBusiness(SMB) #Theft #UK #UnitedKingdom #UnitedKingdom(UK)

Phones stolen at TSA checkpoints — a place where you literally hand over your belongings and can't watch them closely. The threat model most people never think about: not a sophisticated hacker, just a crowded, distracted moment. Physical security and digital security are the same problem wearing different shoes. 👟🔐 #infosec #OSINT #physicalsecurity
https://www.slashgear.com/2160128/phone-theft-tsa-checkpoint-how-common-devices-stolent-what-data-says/

https://www.europesays.com/britain/24018/ UK workers rank cyberattacks top threat to continuity #ArtificialIntelligence(AI) #BusinessContinuity #Cybersecurity #DataBreach #DigitalRisk #DigitalTransformation #EmployeeRetention #HealthAndSafety #IncidentResponse #Ireland #PhysicalSecurity #Productivity #RiskManagement #TalentRetention #UK #UnitedKingdom #UnitedKingdom(UK)

WindEurope: Offshore Wind Security Must Be Core to Europe’s Energy Strategy – News and Statistics

Apr 24, 2026 A new policy document from WindEurope, released today, argues that the physical safeguarding of wind…
#Europe #EU #CriticalInfrastructure #energysecurity #Hybridthreats #NorthSea #offshorewind #physicalsecurity #windinfrastructure #WindEurope
https://www.europesays.com/europe/22172/

Protecting Europe’s wind farms: no energy security without physical security of energy infrastructure

Wind energy has grown to become a key feature of Europe’s energy system. Wind farms underpin our energy…
#Europe #EU #offshore #physicalsecurity
https://www.europesays.com/europe/21175/

Physical Security Lapses Expose Sensitive Servers

Your cybersecurity is only as strong as the physical locks on your servers - and a recent case where a server-room lock proved laughably easy to bypass is a stark reminder of this often-overlooked vulnerability. Leaving sensitive servers exposed is like leaving a car with cash in the console unlocked - it's an open invitation…

https://osintsights.com/physical-security-lapses-expose-sensitive-servers?utm_source=mastodon&utm_medium=social

#PhysicalSecurity #ServerSecurity #Cybersecurity #EmergingThreats #VulnerabilityManagement

Physical Security Lapses Expose Sensitive Servers

Your cybersecurity is only as strong as the physical locks on your servers - and a recent case where a server-room lock proved laughably easy to bypass is a stark reminder of this often-overlooked vulnerability. Leaving sensitive servers exposed is like leaving a car with cash in the console unlocked - it's an open invitation…

https://osintsights.com/physical-security-lapses-expose-sensitive-servers?utm_source=mastodon&utm_medium=social

#PhysicalSecurity #ServerSecurity #Cybersecurity #EmergingThreats #VulnerabilityManagement

Why a Locked Floppy Disk Could Be Safer Than a Modern Network

Dear Cherubs, in the 1990s, office security had the elegance of a locked drawer and the threat model of a very determined coat thief. Floppy disks were the workhorses of the era, and Britannica notes they were popular from the 1970s until the late 1990s, made of flexible plastic coated with magnetic material. Before the internet became an everyday business utility, many workplaces were still mostly offline; Pew Research found that in 1995 only 14% of U.S. adults had internet access, and 42% had never heard of it.

THE LOCKED-BOX LOGIC

If your payroll files, drafts, and backups lived on removable media, the cleanest security move was physical control. Put the disks in a cabinet, lock the cabinet, and hope nobody on the third floor had a master key and a curious streak. It was a blunt system, but it worked because access was local, slow, and obvious. If someone needed a copy, they usually had to walk over, ask, sign something, and maybe endure a suspicious look from whoever guarded the supply room.

That is the part people forget when they romanticize the old days. The security was not magical; the attack surface was just tiny. To steal the data, someone usually had to be in the building, or at least within arm’s reach of the media. Annoyingly low-tech, yes. Also annoyingly effective.

MODERN SECURITY, NEW PROBLEMS

Once files moved onto networks and cloud systems, the game changed. NIST defines intrusion detection as monitoring events in a system or network for signs of possible incidents, and says intrusion prevention systems can also try to stop them. CISA says firewalls shield computers and networks from malicious or unnecessary traffic, while NIST says cryptography is used to protect sensitive digitized information during transmission and while in storage. In other words: the modern office traded one locked box for a whole stack of digital locks, alarms, and panic buttons.

Of course, the modern setup has its own virtues. Data can be backed up automatically, shared instantly, and protected with layered controls that the floppy-disk era never needed. NIST’s storage-encryption guidance still says organizations should physically secure devices and removable media, which is a polite way of saying: the box still matters, even when the box now lives in a server rack. Security did not become less important; it became more complicated, which is basically the same thing with extra meetings.

So yes, a locked plastic box full of floppies could be safer than a badly configured internet-facing system. But that is not because the past was wiser. It is because the past had fewer doors, fewer windows, and fewer strangers trying every handle on the planet at once. Security has always been a trade-off between convenience and control; we just used to do the math with keys instead of passwords.

Sources:
Britannica — https://www.britannica.com/technology/floppy-disk
Pew Research Center — https://www.pewresearch.org/internet/2014/02/27/part-1-how-the-internet-has-woven-itself-into-american-life/
NIST SP 800-94 — https://csrc.nist.gov/pubs/sp/800/94/final
CISA firewalls — https://www.cisa.gov/news-events/news/understanding-firewalls-home-and-small-office-use
NIST SP 800-175B Rev. 1 — https://csrc.nist.gov/pubs/sp/800/175/b/r1/final
NIST SP 800-111 — https://nvlpubs.nist.gov/nistpubs/Legacy/SP/nistspecialpublication800-111.pdf
Wikimedia Commons image page — https://commons.wikimedia.org/wiki/File:Floppy_Disk_HD.jpg

Why a Locked Floppy Disk Could Be Safer Than a Modern Network

Dear Cherubs, in the 1990s, office security had the elegance of a locked drawer and the threat model of a very determined coat thief. Floppy disks were the workhorses of the era, and Britannica notes they were popular from the 1970s until the late 1990s, made of flexible plastic coated with magnetic material. Before the internet became an everyday business utility, many workplaces were still mostly offline; Pew Research found that in 1995 only 14% of U.S. adults had internet access, and 42% had never heard of it.

THE LOCKED-BOX LOGIC

If your payroll files, drafts, and backups lived on removable media, the cleanest security move was physical control. Put the disks in a cabinet, lock the cabinet, and hope nobody on the third floor had a master key and a curious streak. It was a blunt system, but it worked because access was local, slow, and obvious. If someone needed a copy, they usually had to walk over, ask, sign something, and maybe endure a suspicious look from whoever guarded the supply room.

That is the part people forget when they romanticize the old days. The security was not magical; the attack surface was just tiny. To steal the data, someone usually had to be in the building, or at least within arm’s reach of the media. Annoyingly low-tech, yes. Also annoyingly effective.

MODERN SECURITY, NEW PROBLEMS

Once files moved onto networks and cloud systems, the game changed. NIST defines intrusion detection as monitoring events in a system or network for signs of possible incidents, and says intrusion prevention systems can also try to stop them. CISA says firewalls shield computers and networks from malicious or unnecessary traffic, while NIST says cryptography is used to protect sensitive digitized information during transmission and while in storage. In other words: the modern office traded one locked box for a whole stack of digital locks, alarms, and panic buttons.

Of course, the modern setup has its own virtues. Data can be backed up automatically, shared instantly, and protected with layered controls that the floppy-disk era never needed. NIST’s storage-encryption guidance still says organizations should physically secure devices and removable media, which is a polite way of saying: the box still matters, even when the box now lives in a server rack. Security did not become less important; it became more complicated, which is basically the same thing with extra meetings.

So yes, a locked plastic box full of floppies could be safer than a badly configured internet-facing system. But that is not because the past was wiser. It is because the past had fewer doors, fewer windows, and fewer strangers trying every handle on the planet at once. Security has always been a trade-off between convenience and control; we just used to do the math with keys instead of passwords.

Sources:
Britannica — https://www.britannica.com/technology/floppy-disk
Pew Research Center — https://www.pewresearch.org/internet/2014/02/27/part-1-how-the-internet-has-woven-itself-into-american-life/
NIST SP 800-94 — https://csrc.nist.gov/pubs/sp/800/94/final
CISA firewalls — https://www.cisa.gov/news-events/news/understanding-firewalls-home-and-small-office-use
NIST SP 800-175B Rev. 1 — https://csrc.nist.gov/pubs/sp/800/175/b/r1/final
NIST SP 800-111 — https://nvlpubs.nist.gov/nistpubs/Legacy/SP/nistspecialpublication800-111.pdf
Wikimedia Commons image page — https://commons.wikimedia.org/wiki/File:Floppy_Disk_HD.jpg

Why a Locked Floppy Disk Could Be Safer Than a Modern Network

Dear Cherubs, in the 1990s, office security had the elegance of a locked drawer and the threat model of a very determined coat thief. Floppy disks were the workhorses of the era, and Britannica notes they were popular from the 1970s until the late 1990s, made of flexible plastic coated with magnetic material. Before the internet became an everyday business utility, many workplaces were still mostly offline; Pew Research found that in 1995 only 14% of U.S. adults had internet access, and 42% had never heard of it.

THE LOCKED-BOX LOGIC

If your payroll files, drafts, and backups lived on removable media, the cleanest security move was physical control. Put the disks in a cabinet, lock the cabinet, and hope nobody on the third floor had a master key and a curious streak. It was a blunt system, but it worked because access was local, slow, and obvious. If someone needed a copy, they usually had to walk over, ask, sign something, and maybe endure a suspicious look from whoever guarded the supply room.

That is the part people forget when they romanticize the old days. The security was not magical; the attack surface was just tiny. To steal the data, someone usually had to be in the building, or at least within arm’s reach of the media. Annoyingly low-tech, yes. Also annoyingly effective.

MODERN SECURITY, NEW PROBLEMS

Once files moved onto networks and cloud systems, the game changed. NIST defines intrusion detection as monitoring events in a system or network for signs of possible incidents, and says intrusion prevention systems can also try to stop them. CISA says firewalls shield computers and networks from malicious or unnecessary traffic, while NIST says cryptography is used to protect sensitive digitized information during transmission and while in storage. In other words: the modern office traded one locked box for a whole stack of digital locks, alarms, and panic buttons.

Of course, the modern setup has its own virtues. Data can be backed up automatically, shared instantly, and protected with layered controls that the floppy-disk era never needed. NIST’s storage-encryption guidance still says organizations should physically secure devices and removable media, which is a polite way of saying: the box still matters, even when the box now lives in a server rack. Security did not become less important; it became more complicated, which is basically the same thing with extra meetings.

So yes, a locked plastic box full of floppies could be safer than a badly configured internet-facing system. But that is not because the past was wiser. It is because the past had fewer doors, fewer windows, and fewer strangers trying every handle on the planet at once. Security has always been a trade-off between convenience and control; we just used to do the math with keys instead of passwords.

Sources:
Britannica — https://www.britannica.com/technology/floppy-disk
Pew Research Center — https://www.pewresearch.org/internet/2014/02/27/part-1-how-the-internet-has-woven-itself-into-american-life/
NIST SP 800-94 — https://csrc.nist.gov/pubs/sp/800/94/final
CISA firewalls — https://www.cisa.gov/news-events/news/understanding-firewalls-home-and-small-office-use
NIST SP 800-175B Rev. 1 — https://csrc.nist.gov/pubs/sp/800/175/b/r1/final
NIST SP 800-111 — https://nvlpubs.nist.gov/nistpubs/Legacy/SP/nistspecialpublication800-111.pdf
Wikimedia Commons image page — https://commons.wikimedia.org/wiki/File:Floppy_Disk_HD.jpg

Why a Locked Floppy Disk Could Be Safer Than a Modern Network

Dear Cherubs, in the 1990s, office security had the elegance of a locked drawer and the threat model of a very determined coat thief. Floppy disks were the workhorses of the era, and Britannica notes they were popular from the 1970s until the late 1990s, made of flexible plastic coated with magnetic material. Before the internet became an everyday business utility, many workplaces were still mostly offline; Pew Research found that in 1995 only 14% of U.S. adults had internet access, and 42% had never heard of it.

THE LOCKED-BOX LOGIC

If your payroll files, drafts, and backups lived on removable media, the cleanest security move was physical control. Put the disks in a cabinet, lock the cabinet, and hope nobody on the third floor had a master key and a curious streak. It was a blunt system, but it worked because access was local, slow, and obvious. If someone needed a copy, they usually had to walk over, ask, sign something, and maybe endure a suspicious look from whoever guarded the supply room.

That is the part people forget when they romanticize the old days. The security was not magical; the attack surface was just tiny. To steal the data, someone usually had to be in the building, or at least within arm’s reach of the media. Annoyingly low-tech, yes. Also annoyingly effective.

MODERN SECURITY, NEW PROBLEMS

Once files moved onto networks and cloud systems, the game changed. NIST defines intrusion detection as monitoring events in a system or network for signs of possible incidents, and says intrusion prevention systems can also try to stop them. CISA says firewalls shield computers and networks from malicious or unnecessary traffic, while NIST says cryptography is used to protect sensitive digitized information during transmission and while in storage. In other words: the modern office traded one locked box for a whole stack of digital locks, alarms, and panic buttons.

Of course, the modern setup has its own virtues. Data can be backed up automatically, shared instantly, and protected with layered controls that the floppy-disk era never needed. NIST’s storage-encryption guidance still says organizations should physically secure devices and removable media, which is a polite way of saying: the box still matters, even when the box now lives in a server rack. Security did not become less important; it became more complicated, which is basically the same thing with extra meetings.

So yes, a locked plastic box full of floppies could be safer than a badly configured internet-facing system. But that is not because the past was wiser. It is because the past had fewer doors, fewer windows, and fewer strangers trying every handle on the planet at once. Security has always been a trade-off between convenience and control; we just used to do the math with keys instead of passwords.

Sources:
Britannica — https://www.britannica.com/technology/floppy-disk
Pew Research Center — https://www.pewresearch.org/internet/2014/02/27/part-1-how-the-internet-has-woven-itself-into-american-life/
NIST SP 800-94 — https://csrc.nist.gov/pubs/sp/800/94/final
CISA firewalls — https://www.cisa.gov/news-events/news/understanding-firewalls-home-and-small-office-use
NIST SP 800-175B Rev. 1 — https://csrc.nist.gov/pubs/sp/800/175/b/r1/final
NIST SP 800-111 — https://nvlpubs.nist.gov/nistpubs/Legacy/SP/nistspecialpublication800-111.pdf
Wikimedia Commons image page — https://commons.wikimedia.org/wiki/File:Floppy_Disk_HD.jpg

Why a Locked Floppy Disk Could Be Safer Than a Modern Network

Dear Cherubs, in the 1990s, office security had the elegance of a locked drawer and the threat model of a very determined coat thief. Floppy disks were the workhorses of the era, and Britannica notes they were popular from the 1970s until the late 1990s, made of flexible plastic coated with magnetic material. Before the internet became an everyday business utility, many workplaces were still mostly offline; Pew Research found that in 1995 only 14% of U.S. adults had internet access, and 42% had never heard of it.

THE LOCKED-BOX LOGIC

If your payroll files, drafts, and backups lived on removable media, the cleanest security move was physical control. Put the disks in a cabinet, lock the cabinet, and hope nobody on the third floor had a master key and a curious streak. It was a blunt system, but it worked because access was local, slow, and obvious. If someone needed a copy, they usually had to walk over, ask, sign something, and maybe endure a suspicious look from whoever guarded the supply room.

That is the part people forget when they romanticize the old days. The security was not magical; the attack surface was just tiny. To steal the data, someone usually had to be in the building, or at least within arm’s reach of the media. Annoyingly low-tech, yes. Also annoyingly effective.

MODERN SECURITY, NEW PROBLEMS

Once files moved onto networks and cloud systems, the game changed. NIST defines intrusion detection as monitoring events in a system or network for signs of possible incidents, and says intrusion prevention systems can also try to stop them. CISA says firewalls shield computers and networks from malicious or unnecessary traffic, while NIST says cryptography is used to protect sensitive digitized information during transmission and while in storage. In other words: the modern office traded one locked box for a whole stack of digital locks, alarms, and panic buttons.

Of course, the modern setup has its own virtues. Data can be backed up automatically, shared instantly, and protected with layered controls that the floppy-disk era never needed. NIST’s storage-encryption guidance still says organizations should physically secure devices and removable media, which is a polite way of saying: the box still matters, even when the box now lives in a server rack. Security did not become less important; it became more complicated, which is basically the same thing with extra meetings.

So yes, a locked plastic box full of floppies could be safer than a badly configured internet-facing system. But that is not because the past was wiser. It is because the past had fewer doors, fewer windows, and fewer strangers trying every handle on the planet at once. Security has always been a trade-off between convenience and control; we just used to do the math with keys instead of passwords.

Sources:
Britannica — https://www.britannica.com/technology/floppy-disk
Pew Research Center — https://www.pewresearch.org/internet/2014/02/27/part-1-how-the-internet-has-woven-itself-into-american-life/
NIST SP 800-94 — https://csrc.nist.gov/pubs/sp/800/94/final
CISA firewalls — https://www.cisa.gov/news-events/news/understanding-firewalls-home-and-small-office-use
NIST SP 800-175B Rev. 1 — https://csrc.nist.gov/pubs/sp/800/175/b/r1/final
NIST SP 800-111 — https://nvlpubs.nist.gov/nistpubs/Legacy/SP/nistspecialpublication800-111.pdf
Wikimedia Commons image page — https://commons.wikimedia.org/wiki/File:Floppy_Disk_HD.jpg

https://www.europesays.com/ch/46844/ SEALSQ and IC’Alps achieve key common criteria certification steps #Alps #CCEAL5+Certification #CommonCriteria(CC) #HardwareSecurity #IC'Alps #PhysicalSecurity #PostQuantumCryptographic(PQC) #QS7001 #QVault #SEALSQCorp #Security #SecurityCertificationPrograms #SERMA #SERMACESTI #SiteCertification

Fitness Equipment Exposes Weak Link in Gym Security

A recent security mishap at a gym serves as a stark reminder of the importance of safeguarding sensitive information, as a technician's careless mistake - stapling configuration details to a cupboard - left fitness equipment vulnerable to exploitation by mischief makers. This embarrassing blunder highlights the need for vigilance in…

https://osintsights.com/fitness-equipment-exposes-weak-link-in-gym-security?utm_source=mastodon&utm_medium=social

#GymSecurity #PhysicalSecurity #IotSecurity #EmergingThreats #FitnessEquipment

This guy is handcuffed in our village! If you want to learn how to get out of handcuffs come by RSAC, in Moscone South 204 before we close at 2pm! #RSAC #RSAC2026 #RSAConference #physicalsecurity #handcuffs #physicalsecurityvillage

Beyond the surface of a steel door lies a world of precision engineering. From internal reinforcements to blast-resistant cores. Ever wondered what makes a security door virtually impenetrable?

We’re peeling back the steel layers to show you.

https://vocal.media/stories/the-hidden-engineering-behind-high-security-steel-doors
#SecurityEngineering #SteelDoors #PhysicalSecurity #Architecture #BuildingDefense

It's barely #2024newyear and the newest worst #lock trend has begun.

#newyears #newyear #newyear2023 #newyear2024 #lockpick #lockpicking #locksport #physicalsecurity @TOOOL @physsec @defcon @deviantollam @nite0wl @c3lock

It's barely #2024newyear and the newest worst #lock trend has begun.

#newyears #newyear #newyear2023 #newyear2024 #lockpick #lockpicking #locksport #physicalsecurity @TOOOL @physsec @defcon @deviantollam @nite0wl @c3lock

It's barely #2024newyear and the newest worst #lock trend has begun.

#newyears #newyear #newyear2023 #newyear2024 #lockpick #lockpicking #locksport #physicalsecurity @TOOOL @physsec @defcon @deviantollam @nite0wl @c3lock

It's barely #2024newyear and the newest worst #lock trend has begun.

#newyears #newyear #newyear2023 #newyear2024 #lockpick #lockpicking #locksport #physicalsecurity @TOOOL @physsec @defcon @deviantollam @nite0wl @c3lock

It's barely #2024newyear and the newest worst #lock trend has begun.

#newyears #newyear #newyear2023 #newyear2024 #lockpick #lockpicking #locksport #physicalsecurity @TOOOL @physsec @defcon @deviantollam @nite0wl @c3lock

UPDATE:

We're so sorry we keep delaying this episode, @Sidepocket weekend sucked.

TOMORROW (Jan 9th), 10pm EST, join #DCG201 Co-Founder & #TOOOL member Sidepocket for The Master of Unlocking 🔐 celebrating #NewYear2023 playtesting our ruleset for the #Lockpicking Lawyer Drinking Game! 🍻🥴

Watch in #Twitch, #YouTube, #dLive, @peertube & @torproject: https://linktr.ee/defcon201

@defcon #bypass #locks #locksport #physicalsecurity

UPDATE:

We're so sorry we keep delaying this episode, @Sidepocket weekend sucked.

TOMORROW (Jan 9th), 10pm EST, join #DCG201 Co-Founder & #TOOOL member Sidepocket for The Master of Unlocking 🔐 celebrating #NewYear2023 playtesting our ruleset for the #Lockpicking Lawyer Drinking Game! 🍻🥴

Watch in #Twitch, #YouTube, #dLive, @peertube & @torproject: https://linktr.ee/defcon201

@defcon #bypass #locks #locksport #physicalsecurity

UPDATE:

We're so sorry we keep delaying this episode, @Sidepocket weekend sucked.

TOMORROW (Jan 9th), 10pm EST, join #DCG201 Co-Founder & #TOOOL member Sidepocket for The Master of Unlocking 🔐 celebrating #NewYear2023 playtesting our ruleset for the #Lockpicking Lawyer Drinking Game! 🍻🥴

Watch in #Twitch, #YouTube, #dLive, @peertube & @torproject: https://linktr.ee/defcon201

@defcon #bypass #locks #locksport #physicalsecurity

UPDATE:

We're so sorry we keep delaying this episode, @Sidepocket weekend sucked.

TOMORROW (Jan 9th), 10pm EST, join #DCG201 Co-Founder & #TOOOL member Sidepocket for The Master of Unlocking 🔐 celebrating #NewYear2023 playtesting our ruleset for the #Lockpicking Lawyer Drinking Game! 🍻🥴

Watch in #Twitch, #YouTube, #dLive, @peertube & @torproject: https://linktr.ee/defcon201

@defcon #bypass #locks #locksport #physicalsecurity

UPDATE:

We're so sorry we keep delaying this episode, @Sidepocket weekend sucked.

TOMORROW (Jan 9th), 10pm EST, join #DCG201 Co-Founder & #TOOOL member Sidepocket for The Master of Unlocking 🔐 celebrating #NewYear2023 playtesting our ruleset for the #Lockpicking Lawyer Drinking Game! 🍻🥴

Watch in #Twitch, #YouTube, #dLive, @peertube & @torproject: https://linktr.ee/defcon201

@defcon #bypass #locks #locksport #physicalsecurity

Canada, Nordics Deepen Arctic Security Ties, Back Greenland Sovereignty

Source: AFP (Bloomberg) — Canada and the Nordic countries agreed to ramp up defense production and deepen security…
#Conflict #Conflicts #War #bloomberg #Canada #Danmark #denmark #Greenland #MarkCarney #physicalsecurity #TheArctic
https://www.europesays.com/2855064/

https://www.europesays.com/dk/40692/ Canada, Nordics Deepen Arctic Security Ties, Back Greenland Sovereignty #Bloomberg #Canada #Greenland #MarkCarney #PhysicalSecurity #TheArctic

So for @deviantollam and the other lock folks I know around the fediverse, I have a question. I have a last minute zoom interview for a automotive locksmith role, I'm not needing direct experience for it, but they want someone with potential. They even cover the 13 week locksmith certification course, paid.

This role just seems like it would be a good stepping stone for me, since eventually I would like to get involved in the physical security aspect of cyber/info sec.

My question is, do you all have any advice for me during the interview with the hiring manager this afternoon? Like, something I could ask that may wow them, or just some way I can phrase/position my experience in an extremely positive way for the interview?

#locksmith #locksport #automotivelocksmith #hacker #infosec #cybersecurity #physicalsecurity

“If interested in becoming a locksmith in the West Suburbs of Chicago, we are located about 40-45 mins west of the city in Elgin, IL! Open since the 1920s, our business is under threat of going under from a skilled workers shortage”
https://www.reddit.com/r/lockpicking/comments/1c6jc97/who_wants_to_be_a_locksmith/ #locksmith #chicago #employment #security #physicalsecurity #physsec #elgin

#physicalsecurity #cybersecurity #trustedplatformmodule #tpm #fujitsu secured! The tpm is only plugged and the only defense against simply unplugging it and taking it away together with the mass storage is a strategically dremeled screw. Well, it is a rather cheap system, but still...

#physicalsecurity #cybersecurity #trustedplatformmodule #tpm #fujitsu secured! The tpm is only plugged and the only defense against simply unplugging it and taking it away together with the mass storage is a strategically dremeled screw. Well, it is a rather cheap system, but still...

The suspected rail sabotage in northern Italy highlights a recurring challenge: protecting physical infrastructure during high-profile global events.

With fires, damaged signaling components, and hours-long delays reported, the incident underscores how transport systems remain exposed to disruption even without advanced technical methods.

Source: https://therecord.media/italy-suspected-sabotage-winter-olympics-trains

💬 How should critical infrastructure protection evolve for large-scale international events?

🔔 Follow TechNadu for ongoing analysis of infrastructure and security risks

#CriticalInfrastructure #InfrastructureSecurity #PhysicalSecurity #RiskAssessment #PublicTransport #TechNadu

Caetra new release v1.2.0; added new shield that reacts when a webcam turns it on/off.

With this shield we are trying to avoid privacy leaks from you and others, among possible security visual breaches like harvesting information about your surroundings. Do not forget to cover your webcam with a nice cat sticker :3

https://github.com/carvilsi/caetra

#physicalSecurity #physicalAttacks #linuxhardening #hardwareSecurity #bpf #ebpF #bcc

caetra new release v1.1.0; added new shield to react when the CD-DVD-ROM tray opens or closes.

https://github.com/carvilsi/caetra?tab=readme-ov-file#12-cd_dvd_rom

#physicalSecurity #physicalAttacks #linuxhardening #hardwareSecurity #bpf #ebpF #bcc

Many trust physical access control systems (PACS) to secure their spaces, but did you know access cards can often be easily cloned?

In our latest blog, "How easily access cards can be cloned and why your PACS might be vulnerable," Warren reveals how attackers exploit outdated configurations and default encryption keys to bypass these systems: https://www.pentestpartners.com/security-blog/how-easily-access-cards-can-be-cloned-and-why-your-pacs-might-be-vulnerable/

You’ll learn:
What PACS are and how they work
How attackers identify and clone common tokens
What makes a system insecure—and how to fix it

#CyberSecurity #PACS #AccessControl #PhysicalSecurity #DataProtection #CloningRisks #SecurityTips #CyberThreats

Your door's Physical Access Control System (PACS) helps keep your building secure, but it can be susceptible to cloning attacks.

Our Warren recently demonstrated this risk to an audience of security professionals by cloning an access badge in just a few minutes—right before their eyes.

His blog post highlights the top five checks you can take to prevent cloning: https://www.pentestpartners.com/security-blog/making-sure-your-door-access-control-system-is-secure-top-5-things-to-check/

#AccessControl #PhysicalSecurity #CyberSec #RFID #PACS #BuildingSecurity #CardCloning #SecurityTips

We spend so much time hardening our #GrapheneOS devices and sandboxing our apps, but we often leave our front doors wide open to analog tracking. 📬

In Episode 19 of Impractical Privacy, we dive into:
🔹 The MICT program
🔹 The Informed Delivery trap
🔹 Physical Defense

Your residence shouldn't be a data point on a broker's map. It’s time to shred the paper trail. ✂️
Listen here: impracticalprivacy.com
#Privacy #DigitalSovereignty #Metadata #Sudo #OptOut #SelfHosting #PhysicalSecurity #USPS

TOMORROW @ 10pm EST, join #DCG201 Co-Founder & #TOOOL Member @Sidepocket for The Master Of Unlocking 🔓 celebrating #chinesenewyear by testing & using the Mr. Lishi for SC4 keyways! (Donated by @nite0wl)

Watch on #Twitch, #dLive, #YouTube, @peertube & @torproject: https://linktr.ee/defcon201

#lockpicking #locksport #physicalsecurity #bypass #china #rabbit #lishi #mrlishi @defcon @DCGVR

New Caetra release; Fix bug related with bcc adding missing struct bpf_wq to support kernel 6.14.0-37 on 24.04.1-Ubuntu (noble)

https://github.com/carvilsi/caetra

#eBPF #physicalSecurity #securityTools #monitoring

The suspected rail sabotage in northern Italy highlights a recurring challenge: protecting physical infrastructure during high-profile global events.

With fires, damaged signaling components, and hours-long delays reported, the incident underscores how transport systems remain exposed to disruption even without advanced technical methods.

Source: https://therecord.media/italy-suspected-sabotage-winter-olympics-trains

💬 How should critical infrastructure protection evolve for large-scale international events?

🔔 Follow TechNadu for ongoing analysis of infrastructure and security risks

#CriticalInfrastructure #InfrastructureSecurity #PhysicalSecurity #RiskAssessment #PublicTransport #TechNadu

The suspected rail sabotage in northern Italy highlights a recurring challenge: protecting physical infrastructure during high-profile global events.

With fires, damaged signaling components, and hours-long delays reported, the incident underscores how transport systems remain exposed to disruption even without advanced technical methods.

Source: https://therecord.media/italy-suspected-sabotage-winter-olympics-trains

💬 How should critical infrastructure protection evolve for large-scale international events?

🔔 Follow TechNadu for ongoing analysis of infrastructure and security risks

#CriticalInfrastructure #InfrastructureSecurity #PhysicalSecurity #RiskAssessment #PublicTransport #TechNadu

The suspected rail sabotage in northern Italy highlights a recurring challenge: protecting physical infrastructure during high-profile global events.

With fires, damaged signaling components, and hours-long delays reported, the incident underscores how transport systems remain exposed to disruption even without advanced technical methods.

Source: https://therecord.media/italy-suspected-sabotage-winter-olympics-trains

💬 How should critical infrastructure protection evolve for large-scale international events?

🔔 Follow TechNadu for ongoing analysis of infrastructure and security risks

#CriticalInfrastructure #InfrastructureSecurity #PhysicalSecurity #RiskAssessment #PublicTransport #TechNadu