#security — Public Fediverse posts
Live and recent posts from across the Fediverse tagged #security, aggregated by home.social.
-
Cavalcade of Copy Fails - updates on all the new "Copy Fail-class" Linux kernel exploits
https://sketchesfromahomelab.com/articles/2026/05/14/Cavalcade_of_Copy_Fails/
#linux #security #copyfail #cve #cve_2026_43284 #cve_2026_43500 #cve_2026_46300
-
Yes! It’s time to party!! It was an honor to participate at the OWASP Virtual Conference commemorating the 25th anniversary. Here is the video: youtu.be/KmjUM0EF_24?... #OWASP25thAnniversary #OWASP #AppSec #security #threatmodeling #games #agile #lean #llm #agentic #devops #cloud #fromtend
OWASP Cornucopia - Stop Lectur... -
Security products fail when they add operational friction. Learn how deployment, trust, tuning, and scale determine enterprise success. https://hackernoon.com/why-great-security-products-fail-at-scale-when-protection-works-but-the-product-doesnt #security
-
Cavalcade of Copy Fails - updates on all the new "Copy Fail-class" Linux kernel exploits
https://sketchesfromahomelab.com/articles/2026/05/14/Cavalcade_of_Copy_Fails/
#linux #security #copyfail #cve #cve_2026_43284 #cve_2026_43500 #cve_2026_46300
-
Bitlocker is a disk #encryption feature shipped with #Windows. It is designed to protect sensitive data by encrypting entire drives, ensuring that information remains secure, especially if a device is lost or stolen. Many, many, many enterprises use it to protect portable media.
A #vulnerability has just been published, that backdoors #Bitlocker completely on Win11. (Doesn't work on 10, previous versions untested.)
Researchers posit that it is a backdoor because it is undocumented, and only enabled on certain configurations.
What does this mean for you as an enduser? If you use bitlocker as your encryption, and someone has access to your system, they can jailbreak it. Is it likely? No.
What does it mean if you're corporate IT? My hair is on fire, my hair is on fire!
The bigger question is: who put the access there and why.
-
Your #iPhone Gets Stolen. Then the #Hacking Begins
A bustling #underground ecosystem is providing criminals with the tools to unlock iPhones—and wage #phishing #attacks against their contacts to access bank accounts and more.
#privacy #securityhttps://www.wired.com/story/your-iphone-gets-stolen-then-the-hacking-begins/
-
Your #iPhone Gets Stolen. Then the #Hacking Begins
A bustling #underground ecosystem is providing criminals with the tools to unlock iPhones—and wage #phishing #attacks against their contacts to access bank accounts and more.
#privacy #securityhttps://www.wired.com/story/your-iphone-gets-stolen-then-the-hacking-begins/
-
Zero-day #exploit completely defeats default #Windows11 #BitLocker protections
#zeroday #windows #security #privacy -
Zero-day #exploit completely defeats default #Windows11 #BitLocker protections
#zeroday #windows #security #privacy -
Abrigo - 711,099 breached accounts - https://www.redpacketsecurity.com/abrigo-711-099-breached-accounts/
#databreach #HaveIBeenPwnedLatestBreaches #HIBP #OSINT #Security #threatintel #TroyHunt
-
An Engineer’s Post Protesting Laptop #Surveillance Is Going #Viral Inside #Meta
Meta employees in the US and #UK are organizing against corporate software that tracks workers’ keystrokes and mouse activity.
#privacy #security #aihttps://www.wired.com/story/meta-employee-protest-mouse-tracking-surveillance-ai-training/
-
An Engineer’s Post Protesting Laptop #Surveillance Is Going #Viral Inside #Meta
Meta employees in the US and #UK are organizing against corporate software that tracks workers’ keystrokes and mouse activity.
#privacy #security #aihttps://www.wired.com/story/meta-employee-protest-mouse-tracking-surveillance-ai-training/
-
An Engineer’s Post Protesting Laptop #Surveillance Is Going #Viral Inside #Meta
Meta employees in the US and #UK are organizing against corporate software that tracks workers’ keystrokes and mouse activity.
#privacy #security #aihttps://www.wired.com/story/meta-employee-protest-mouse-tracking-surveillance-ai-training/
-
An Engineer’s Post Protesting Laptop #Surveillance Is Going #Viral Inside #Meta
Meta employees in the US and #UK are organizing against corporate software that tracks workers’ keystrokes and mouse activity.
#privacy #security #aihttps://www.wired.com/story/meta-employee-protest-mouse-tracking-surveillance-ai-training/
-
An Engineer’s Post Protesting Laptop #Surveillance Is Going #Viral Inside #Meta
Meta employees in the US and #UK are organizing against corporate software that tracks workers’ keystrokes and mouse activity.
#privacy #security #aihttps://www.wired.com/story/meta-employee-protest-mouse-tracking-surveillance-ai-training/
-
ssh-keysign-pwn: Read root-owned files as an unprivileged user https://lobste.rs/s/wskhre #linux #security
https://github.com/0xdeadbeefnetwork/ssh-keysign-pwn/ -
I attended the AITP Chicago Security SIG tonight at RSM and left with one clear takeaway: a $200 device called Flipper Zero can clone your building access badge and bypass the physical security your organization worked so hard to set up. FBI Chicago Intelligence Analysts and an InfraGard board member explained how these devices work and where organizations are vulnerable. The room was full of security professionals, many of whom had that familiar look, realizing a threat they thought was unlikely is actually much closer to home.
Here are a few key points from tonight:
・ You can buy Flipper Zero on Amazon, and teenagers are posting demo videos on YouTube. If your physical security plan assumes attackers need special equipment, that assumption is no longer true.
・ Most enterprise security programs barely address RF-based attacks on access control systems. We invest heavily in endpoint protection and network monitoring, but the badge reader by the server room often gets overlooked.
・ Mitigation is practical. Encrypted credentials and multi-factor physical access are real solutions. Most organizations just haven’t made them a priority because the threat seemed remote.If you’re a CISO or CIO and haven’t reviewed your physical access controls for RF-based attacks, now is a good time to add it to your to-do list.
Thank you to AITP Chicago, the FBI, InfraGard, and RSM for a great discussion.https://aitpchicago.com/event-6680905
#Cybersecurity #PhysicalSecurity #InfraGard #security #privacy #cloud #infosec #flipper0 -
linux server hardening — on 4grab.com secure your VPS in one afternoon — SSH keys, fail2ban, UFW, unattended upgrades, audit logging. checklist format. https://4grab.com/pay.php?id=ptag_69c43e39579a2 #prompt #linux #security #vps
-
if you want a cleaner chat experience than #WhatsApp, without distractions: no AI, no advertisements, no BS, just you and your friends and family, give a try to ArcaneChat
No phone numbers required for registration, just set a name and start chatting!
No strangers discovering and contacting your family members! Only contacts you give your invite link or show your QR can contact you.
#digitalindependence #privacy #security #family #encryption #autonomy #ArcaneChat #european #europe
-
https://www.europesays.com/iran/114402/ Can BRICS Survive Without the Security of Strait of Hormuz? #a #Abbas #active #and #Araghchi #at #attention #Brics #can #Center #convergence #Delhi #Diplomacy #emerging #Global #Hormuz #in #Iran #is #Islam #lessons #meeting #new #of #order #places #Ramadan #regional #s #security #strait #StraitOfHormuz #Survive #symbol #that #the #Times #to #trip #War #without
-
How to Harden #Security of #VPS Server
This article demonstrates how to harden security of VPS server and is intended for server administrators.
Ultimate Guide to Harden Security of a VPS Server
Securing a Virtual Private Server (VPS) is not a one-time task—it’s an ongoing discipline. Whether you’re hosting websites, applications, databases, or client workloads, a hardened VPS dramatically ...
Continued 👉 https://blog.radwebhosting.com/harden-security-of-vps-server/?utm_source=mastodon&utm_medium=social&utm_campaign=mastodon.social #ufw #firewalld #rockylinux #certbot #letsencrypt -
How to Harden #Security of #VPS Server
This article demonstrates how to harden security of VPS server and is intended for server administrators.
Ultimate Guide to Harden Security of a VPS Server
Securing a Virtual Private Server (VPS) is not a one-time task—it’s an ongoing discipline. Whether you’re hosting websites, applications, databases, or client workloads, a hardened VPS dramatically ...
Continued 👉 https://blog.radwebhosting.com/harden-security-of-vps-server/?utm_source=mastodon&utm_medium=social&utm_campaign=mastodon.social #ufw #firewalld #rockylinux #certbot #letsencrypt -
How to Harden #Security of #VPS Server
This article demonstrates how to harden security of VPS server and is intended for server administrators.
Ultimate Guide to Harden Security of a VPS Server
Securing a Virtual Private Server (VPS) is not a one-time task—it’s an ongoing discipline. Whether you’re hosting websites, applications, databases, or client workloads, a hardened VPS dramatically ...
Continued 👉 https://blog.radwebhosting.com/harden-security-of-vps-server/?utm_source=mastodon&utm_medium=social&utm_campaign=mastodon.social #ufw #firewalld #rockylinux #certbot #letsencrypt -
How to Harden #Security of #VPS Server
This article demonstrates how to harden security of VPS server and is intended for server administrators.
Ultimate Guide to Harden Security of a VPS Server
Securing a Virtual Private Server (VPS) is not a one-time task—it’s an ongoing discipline. Whether you’re hosting websites, applications, databases, or client workloads, a hardened VPS dramatically ...
Continued 👉 https://blog.radwebhosting.com/harden-security-of-vps-server/?utm_source=mastodon&utm_medium=social&utm_campaign=mastodon.social #ufw #firewalld #rockylinux #certbot #letsencrypt -
DATE: May 14, 2026 at 05:27PM
SOURCE: HEALTHCARE INFO SECURITYDirect article link at end of text block below.
What's Next for the Proposed #HIPAASecurityRule Overhaul? Will @HHSGov Make its Planned May Deadline, and What Changes Will Make the Cut?https://t.co/JDZueelsOH
Here are any URLs found in the article text:
Articles can be found by scrolling down the page at https://www.healthcareinfosecurity.com/ under the title "Latest"
-------------------------------------------------
Private, vetted email list for mental health professionals: https://www.clinicians-exchange.org
Healthcare security & privacy posts not related to IT or infosec are at @HIPAABot . Even so, they mix in some infosec with the legal & regulatory information.
-------------------------------------------------
#security #healthcare #doctors #itsecurity #hacking #doxxing #psychotherapy #securitynews #psychotherapist #mentalhealth #psychiatry #hospital #socialwork #datasecurity #webbeacons #cookies #HIPAA #privacy #datanalytics #healthcaresecurity #healthitsecurity #patientrecords @infosec #telehealth #netneutrality #socialengineering
-
DATE: May 14, 2026 at 05:27PM
SOURCE: HEALTHCARE INFO SECURITYDirect article link at end of text block below.
What's Next for the Proposed #HIPAASecurityRule Overhaul? Will @HHSGov Make its Planned May Deadline, and What Changes Will Make the Cut?https://t.co/JDZueelsOH
Here are any URLs found in the article text:
Articles can be found by scrolling down the page at https://www.healthcareinfosecurity.com/ under the title "Latest"
-------------------------------------------------
Private, vetted email list for mental health professionals: https://www.clinicians-exchange.org
Healthcare security & privacy posts not related to IT or infosec are at @HIPAABot . Even so, they mix in some infosec with the legal & regulatory information.
-------------------------------------------------
#security #healthcare #doctors #itsecurity #hacking #doxxing #psychotherapy #securitynews #psychotherapist #mentalhealth #psychiatry #hospital #socialwork #datasecurity #webbeacons #cookies #HIPAA #privacy #datanalytics #healthcaresecurity #healthitsecurity #patientrecords @infosec #telehealth #netneutrality #socialengineering
-
DATE: May 14, 2026 at 05:27PM
SOURCE: HEALTHCARE INFO SECURITYDirect article link at end of text block below.
What's Next for the Proposed #HIPAASecurityRule Overhaul? Will @HHSGov Make its Planned May Deadline, and What Changes Will Make the Cut?https://t.co/JDZueelsOH
Here are any URLs found in the article text:
Articles can be found by scrolling down the page at https://www.healthcareinfosecurity.com/ under the title "Latest"
-------------------------------------------------
Private, vetted email list for mental health professionals: https://www.clinicians-exchange.org
Healthcare security & privacy posts not related to IT or infosec are at @HIPAABot . Even so, they mix in some infosec with the legal & regulatory information.
-------------------------------------------------
#security #healthcare #doctors #itsecurity #hacking #doxxing #psychotherapy #securitynews #psychotherapist #mentalhealth #psychiatry #hospital #socialwork #datasecurity #webbeacons #cookies #HIPAA #privacy #datanalytics #healthcaresecurity #healthitsecurity #patientrecords @infosec #telehealth #netneutrality #socialengineering
-
DATE: May 14, 2026 at 05:27PM
SOURCE: HEALTHCARE INFO SECURITYDirect article link at end of text block below.
What's Next for the Proposed #HIPAASecurityRule Overhaul? Will @HHSGov Make its Planned May Deadline, and What Changes Will Make the Cut?https://t.co/JDZueelsOH
Here are any URLs found in the article text:
Articles can be found by scrolling down the page at https://www.healthcareinfosecurity.com/ under the title "Latest"
-------------------------------------------------
Private, vetted email list for mental health professionals: https://www.clinicians-exchange.org
Healthcare security & privacy posts not related to IT or infosec are at @HIPAABot . Even so, they mix in some infosec with the legal & regulatory information.
-------------------------------------------------
#security #healthcare #doctors #itsecurity #hacking #doxxing #psychotherapy #securitynews #psychotherapist #mentalhealth #psychiatry #hospital #socialwork #datasecurity #webbeacons #cookies #HIPAA #privacy #datanalytics #healthcaresecurity #healthitsecurity #patientrecords @infosec #telehealth #netneutrality #socialengineering
-
DATE: May 14, 2026 at 05:25PM
SOURCE: HEALTHCARE INFO SECURITYDirect article link at end of text block below.
What's Next for the Proposed HIPAA Security Rule Overhaul? https://t.co/JDZueelsOH
Here are any URLs found in the article text:
Articles can be found by scrolling down the page at https://www.healthcareinfosecurity.com/ under the title "Latest"
-------------------------------------------------
Private, vetted email list for mental health professionals: https://www.clinicians-exchange.org
Healthcare security & privacy posts not related to IT or infosec are at @HIPAABot . Even so, they mix in some infosec with the legal & regulatory information.
-------------------------------------------------
#security #healthcare #doctors #itsecurity #hacking #doxxing #psychotherapy #securitynews #psychotherapist #mentalhealth #psychiatry #hospital #socialwork #datasecurity #webbeacons #cookies #HIPAA #privacy #datanalytics #healthcaresecurity #healthitsecurity #patientrecords @infosec #telehealth #netneutrality #socialengineering
-
DATE: May 14, 2026 at 05:25PM
SOURCE: HEALTHCARE INFO SECURITYDirect article link at end of text block below.
What's Next for the Proposed HIPAA Security Rule Overhaul? https://t.co/JDZueelsOH
Here are any URLs found in the article text:
Articles can be found by scrolling down the page at https://www.healthcareinfosecurity.com/ under the title "Latest"
-------------------------------------------------
Private, vetted email list for mental health professionals: https://www.clinicians-exchange.org
Healthcare security & privacy posts not related to IT or infosec are at @HIPAABot . Even so, they mix in some infosec with the legal & regulatory information.
-------------------------------------------------
#security #healthcare #doctors #itsecurity #hacking #doxxing #psychotherapy #securitynews #psychotherapist #mentalhealth #psychiatry #hospital #socialwork #datasecurity #webbeacons #cookies #HIPAA #privacy #datanalytics #healthcaresecurity #healthitsecurity #patientrecords @infosec #telehealth #netneutrality #socialengineering
-
DATE: May 14, 2026 at 05:25PM
SOURCE: HEALTHCARE INFO SECURITYDirect article link at end of text block below.
What's Next for the Proposed HIPAA Security Rule Overhaul? https://t.co/JDZueelsOH
Here are any URLs found in the article text:
Articles can be found by scrolling down the page at https://www.healthcareinfosecurity.com/ under the title "Latest"
-------------------------------------------------
Private, vetted email list for mental health professionals: https://www.clinicians-exchange.org
Healthcare security & privacy posts not related to IT or infosec are at @HIPAABot . Even so, they mix in some infosec with the legal & regulatory information.
-------------------------------------------------
#security #healthcare #doctors #itsecurity #hacking #doxxing #psychotherapy #securitynews #psychotherapist #mentalhealth #psychiatry #hospital #socialwork #datasecurity #webbeacons #cookies #HIPAA #privacy #datanalytics #healthcaresecurity #healthitsecurity #patientrecords @infosec #telehealth #netneutrality #socialengineering
-
DATE: May 14, 2026 at 05:25PM
SOURCE: HEALTHCARE INFO SECURITYDirect article link at end of text block below.
What's Next for the Proposed HIPAA Security Rule Overhaul? https://t.co/JDZueelsOH
Here are any URLs found in the article text:
Articles can be found by scrolling down the page at https://www.healthcareinfosecurity.com/ under the title "Latest"
-------------------------------------------------
Private, vetted email list for mental health professionals: https://www.clinicians-exchange.org
Healthcare security & privacy posts not related to IT or infosec are at @HIPAABot . Even so, they mix in some infosec with the legal & regulatory information.
-------------------------------------------------
#security #healthcare #doctors #itsecurity #hacking #doxxing #psychotherapy #securitynews #psychotherapist #mentalhealth #psychiatry #hospital #socialwork #datasecurity #webbeacons #cookies #HIPAA #privacy #datanalytics #healthcaresecurity #healthitsecurity #patientrecords @infosec #telehealth #netneutrality #socialengineering
-
Passkey transfer: Some promising steps in an important part of the push to end passwords. You can move your passkey credentials between apps.
https://www.androidauthority.com/google-passkeys-move-to-another-password-manager-android-3666965/
#authentication #via:reddit #passwords #1password #passkeys #security #+ -
Foxconn plants in North America attacked by ransomware group Nitrogen
The contract manufacturer confirms the cyberattack. Nitrogen boasts of having stolen 11 million files from Apple, Nvidia, and other customers.
-
Foxconn plants in North America attacked by ransomware group Nitrogen
The contract manufacturer confirms the cyberattack. Nitrogen boasts of having stolen 11 million files from Apple, Nvidia, and other customers.
-
Foxconn plants in North America attacked by ransomware group Nitrogen
The contract manufacturer confirms the cyberattack. Nitrogen boasts of having stolen 11 million files from Apple, Nvidia, and other customers.
-
Foxconn plants in North America attacked by ransomware group Nitrogen
The contract manufacturer confirms the cyberattack. Nitrogen boasts of having stolen 11 million files from Apple, Nvidia, and other customers.
-
Foxconn plants in North America attacked by ransomware group Nitrogen
The contract manufacturer confirms the cyberattack. Nitrogen boasts of having stolen 11 million files from Apple, Nvidia, and other customers.
-
BSI on the risks of public charging stations
The BSI has investigated the IT security of the public charging network – and identified problems. In the worst case, network stability is at risk.
-
BSI on the risks of public charging stations
The BSI has investigated the IT security of the public charging network – and identified problems. In the worst case, network stability is at risk.
-
BSI on the risks of public charging stations
The BSI has investigated the IT security of the public charging network – and identified problems. In the worst case, network stability is at risk.
-
BSI on the risks of public charging stations
The BSI has investigated the IT security of the public charging network – and identified problems. In the worst case, network stability is at risk.
-
Google’s QR-code reCAPTCHA now requires approved Android or iOS devices, blocking some deGoogled and privacy-focused operating systems from verification 📱
@GrapheneOS says the system expands hardware attestation and increases dependence on Apple or Google-controlled mobile ecosystems 🔒🔗 https://cybernews.com/privacy/google-qr-code-recaptcha-requires-approved-phone/
#TechNews #Google #reCAPTCHA #GrapheneOS #Android #Apple #iPhone #iOS #Privacy #OpenSource #FOSS #Cybersecurity #Encryption #Linux #Surveillance #Freedom #Security #CAPTCHA #DeGoogle
-
Google’s QR-code reCAPTCHA now requires approved Android or iOS devices, blocking some deGoogled and privacy-focused operating systems from verification 📱
@GrapheneOS says the system expands hardware attestation and increases dependence on Apple or Google-controlled mobile ecosystems 🔒🔗 https://cybernews.com/privacy/google-qr-code-recaptcha-requires-approved-phone/
#TechNews #Google #reCAPTCHA #GrapheneOS #Android #Apple #iPhone #iOS #Privacy #OpenSource #FOSS #Cybersecurity #Encryption #Linux #Surveillance #Freedom #Security #CAPTCHA #DeGoogle
-
Google’s QR-code reCAPTCHA now requires approved Android or iOS devices, blocking some deGoogled and privacy-focused operating systems from verification 📱
@GrapheneOS says the system expands hardware attestation and increases dependence on Apple or Google-controlled mobile ecosystems 🔒🔗 https://cybernews.com/privacy/google-qr-code-recaptcha-requires-approved-phone/
#TechNews #Google #reCAPTCHA #GrapheneOS #Android #Apple #iPhone #iOS #Privacy #OpenSource #FOSS #Cybersecurity #Encryption #Linux #Surveillance #Freedom #Security #CAPTCHA #DeGoogle
-
Google’s QR-code reCAPTCHA now requires approved Android or iOS devices, blocking some deGoogled and privacy-focused operating systems from verification 📱
@GrapheneOS says the system expands hardware attestation and increases dependence on Apple or Google-controlled mobile ecosystems 🔒🔗 https://cybernews.com/privacy/google-qr-code-recaptcha-requires-approved-phone/
#TechNews #Google #reCAPTCHA #GrapheneOS #Android #Apple #iPhone #iOS #Privacy #OpenSource #FOSS #Cybersecurity #Encryption #Linux #Surveillance #Freedom #Security #CAPTCHA #DeGoogle