#securityflaw — Public Fediverse posts
Live and recent posts from across the Fediverse tagged #securityflaw, aggregated by home.social.
-
https://www.europesays.com/uk/912181/ Apple rolls out iOS 26.4.2 to fix a flaw that allowed the FBI to access push notifications #Apple #ElectronicFrontierFoundation #LatestIOSUpdate #LawEnforcementAgencies #Mobile #NotificationData #NotificationDatabase #notifications #PushNotifications #SecurityFlaw #Technology #UK #UnitedKingdom
-
https://www.europesays.com/ie/448951/ Apple rolls out iOS 26.4.2 to fix a flaw that allowed the FBI to access push notifications #Apple #Éire #ElectronicFrontierFoundation #IE #Ireland #LatestIOSUpdate #Mobile #NotificationData #NotificationDatabase #PushNotifications #SecurityFlaw #Technology
-
@signalapp Signal IMO has bad security because when someone decides they are not interested in an overpriced, underperforming service of "phone number" and stops using their SIM, they cannot deregister the number from Signal and the new owner of the number either can hijack their Signal account, or people may be blocked from using newly purchased SIMs with Signal.
Also, authoritarian regimes IMO can temporarily transfer a number into a provider's internal SIM in order to hijack a Signal account and impersonate a dissident against another dissident, facilitating abduction, torture and murder.
I feel
c o n t e m p t
towards Signal when it is designed this way.
#badsecurity #incompetence #signal #phonenumberasidentity #security #SIM #contempt #securityhole #securityflaw #attack #hijacking #torture #murder #abduction #authoritarianism #regime #authoritarian
-
@signalapp Signal IMO has bad security because when someone decides they are not interested in an overpriced, underperforming service of "phone number" and stops using their SIM, they cannot deregister the number from Signal and the new owner of the number either can hijack their Signal account, or people may be blocked from using newly purchased SIMs with Signal.
Also, authoritarian regimes IMO can temporarily transfer a number into a provider's internal SIM in order to hijack a Signal account and impersonate a dissident against another dissident, facilitating abduction, torture and murder.
I feel
c o n t e m p t
towards Signal when it is designed this way.
#badsecurity #incompetence #signal #phonenumberasidentity #security #SIM #contempt #securityhole #securityflaw #attack #hijacking #torture #murder #abduction #authoritarianism #regime #authoritarian
-
@signalapp Signal IMO has bad security because when someone decides they are not interested in an overpriced, underperforming service of "phone number" and stops using their SIM, they cannot deregister the number from Signal and the new owner of the number either can hijack their Signal account, or people may be blocked from using newly purchased SIMs with Signal.
Also, authoritarian regimes IMO can temporarily transfer a number into a provider's internal SIM in order to hijack a Signal account and impersonate a dissident against another dissident, facilitating abduction, torture and murder.
I feel
c o n t e m p t
towards Signal when it is designed this way.
#badsecurity #incompetence #signal #phonenumberasidentity #security #SIM #contempt #securityhole #securityflaw #attack #hijacking #torture #murder #abduction #authoritarianism #regime #authoritarian
-
@signalapp Signal IMO has bad security because when someone decides they are not interested in an overpriced, underperforming service of "phone number" and stops using their SIM, they cannot deregister the number from Signal and the new owner of the number either can hijack their Signal account, or people may be blocked from using newly purchased SIMs with Signal.
Also, authoritarian regimes IMO can temporarily transfer a number into a provider's internal SIM in order to hijack a Signal account and impersonate a dissident against another dissident, facilitating abduction, torture and murder.
I feel
c o n t e m p t
towards Signal when it is designed this way.
#badsecurity #incompetence #signal #phonenumberasidentity #security #SIM #contempt #securityhole #securityflaw #attack #hijacking #torture #murder #abduction #authoritarianism #regime #authoritarian
-
@signalapp Signal IMO has bad security because when someone decides they are not interested in an overpriced, underperforming service of "phone number" and stops using their SIM, they cannot deregister the number from Signal and the new owner of the number either can hijack their Signal account, or people may be blocked from using newly purchased SIMs with Signal.
Also, authoritarian regimes IMO can temporarily transfer a number into a provider's internal SIM in order to hijack a Signal account and impersonate a dissident against another dissident, facilitating abduction, torture and murder.
I feel
c o n t e m p t
towards Signal when it is designed this way.
#badsecurity #incompetence #signal #phonenumberasidentity #security #SIM #contempt #securityhole #securityflaw #attack #hijacking #torture #murder #abduction #authoritarianism #regime #authoritarian
-
🚨 Breaking news: Decades of programming wisdom have officially been deemed misdirection 🚨 Paul Tarvydas has cracked the code, folks! Turns out we've been using type checking as a security blanket to hide our architectural shame 🙈. Who knew all those fancy algorithms were just smoke and mirrors? 🤡
https://programmingsimplicity.substack.com/p/type-checking-is-a-symptom-not-a #programmingwisdom #typechecking #architecturalshame #securityflaw #codingrevolution #HackerNews #ngated -
🚨 Breaking news: Decades of programming wisdom have officially been deemed misdirection 🚨 Paul Tarvydas has cracked the code, folks! Turns out we've been using type checking as a security blanket to hide our architectural shame 🙈. Who knew all those fancy algorithms were just smoke and mirrors? 🤡
https://programmingsimplicity.substack.com/p/type-checking-is-a-symptom-not-a #programmingwisdom #typechecking #architecturalshame #securityflaw #codingrevolution #HackerNews #ngated -
🚨 Breaking news: Decades of programming wisdom have officially been deemed misdirection 🚨 Paul Tarvydas has cracked the code, folks! Turns out we've been using type checking as a security blanket to hide our architectural shame 🙈. Who knew all those fancy algorithms were just smoke and mirrors? 🤡
https://programmingsimplicity.substack.com/p/type-checking-is-a-symptom-not-a #programmingwisdom #typechecking #architecturalshame #securityflaw #codingrevolution #HackerNews #ngated -
🚨 Breaking news: Decades of programming wisdom have officially been deemed misdirection 🚨 Paul Tarvydas has cracked the code, folks! Turns out we've been using type checking as a security blanket to hide our architectural shame 🙈. Who knew all those fancy algorithms were just smoke and mirrors? 🤡
https://programmingsimplicity.substack.com/p/type-checking-is-a-symptom-not-a #programmingwisdom #typechecking #architecturalshame #securityflaw #codingrevolution #HackerNews #ngated -
#WinRAR has a serious #securityflaw - worrying zero-day issue lets #hackers plant #malware, so patch right away
-
Windows Remote Desktop Protocol Allows Revoked Passwords; Microsoft Calls it a Feature
#Cybersecurity #Windows11 #RDP #Microsoft #SecurityFlaw #PasswordSecurity #InfoSec #CachedCredentials #WindowsSecurity #SysAdmin
-
Windows Remote Desktop Protocol Allows Revoked Passwords; Microsoft Calls it a Feature
#Cybersecurity #Windows11 #RDP #Microsoft #SecurityFlaw #PasswordSecurity #InfoSec #CachedCredentials #WindowsSecurity #SysAdmin
-
Windows Remote Desktop Protocol Allows Revoked Passwords; Microsoft Calls it a Feature
#Cybersecurity #Windows11 #RDP #Microsoft #SecurityFlaw #PasswordSecurity #InfoSec #CachedCredentials #WindowsSecurity #SysAdmin
-
Windows Remote Desktop Protocol Allows Revoked Passwords; Microsoft Calls it a Feature
#Cybersecurity #Windows11 #RDP #Microsoft #SecurityFlaw #PasswordSecurity #InfoSec #CachedCredentials #WindowsSecurity #SysAdmin
-
Windows Remote Desktop Protocol Allows Revoked Passwords; Microsoft Calls it a Feature
#Cybersecurity #Windows11 #RDP #Microsoft #SecurityFlaw #PasswordSecurity #InfoSec #CachedCredentials #WindowsSecurity #SysAdmin
-
🚨 BREAKING: Security flaw discovered in Erlang/OTP SSH server, but don't worry, you can't read about it because the server is too busy playing hide and seek with its own responses. 🙈🔐 Meanwhile, the tech world collectively pretends this is the first time a server has dropped the ball. 😂
https://nvd.nist.gov/vuln/detail/CVE-2025-32433 #ErlangSSH #SecurityFlaw #TechNews #ServerIssues #HideAndSeek #CyberSecurity #HackerNews #ngated -
Max severity RCE flaw discovered in widely used Apache Parquet
#HackerNews #MaxSeverity #RCE #ApacheParquet #SecurityFlaw #CyberSecurity #Vulnerability
-
This top #WordPress plugin could be hiding a worrying #securityflaw, so be on your guard
-
🚨Wow, someone discovered a security flaw! All hail the tech hero who bumbled upon a bug in software made to be unhackable.🛡️ It’s like accidentally finding a secret passage in a LEGO castle—totally intentional and absolutely deserving of a blog post with a self-indulgent menu.🍽️
https://mattsayar.com/how-i-hacked-my-companys-sso-provider/ #techhero #securityflaw #softwarebug #hackingnews #accidentaldiscovery #LEGOfinds #HackerNews #ngated -
🚨Wow, someone discovered a security flaw! All hail the tech hero who bumbled upon a bug in software made to be unhackable.🛡️ It’s like accidentally finding a secret passage in a LEGO castle—totally intentional and absolutely deserving of a blog post with a self-indulgent menu.🍽️
https://mattsayar.com/how-i-hacked-my-companys-sso-provider/ #techhero #securityflaw #softwarebug #hackingnews #accidentaldiscovery #LEGOfinds #HackerNews #ngated -
🚨Wow, someone discovered a security flaw! All hail the tech hero who bumbled upon a bug in software made to be unhackable.🛡️ It’s like accidentally finding a secret passage in a LEGO castle—totally intentional and absolutely deserving of a blog post with a self-indulgent menu.🍽️
https://mattsayar.com/how-i-hacked-my-companys-sso-provider/ #techhero #securityflaw #softwarebug #hackingnews #accidentaldiscovery #LEGOfinds #HackerNews #ngated -
🚨Wow, someone discovered a security flaw! All hail the tech hero who bumbled upon a bug in software made to be unhackable.🛡️ It’s like accidentally finding a secret passage in a LEGO castle—totally intentional and absolutely deserving of a blog post with a self-indulgent menu.🍽️
https://mattsayar.com/how-i-hacked-my-companys-sso-provider/ #techhero #securityflaw #softwarebug #hackingnews #accidentaldiscovery #LEGOfinds #HackerNews #ngated -
A flaw in Microsoft Azure multi-factor authentication allowed attackers to brute-force accounts, exposing data in Teams, OneDrive, and more. #Microsoft #Cybersecurity #MFA #Authentication #DataSecurity #Microsoft365 #Azure #Hacking #Infosec #CloudSecurity #SecurityFlaw #Passwordless #CyberThreats #OasisSecurity #MicrosoftTeams
-
"He included a PoC that caused the ChatGPT app for macOS to send a verbatim copy of all user input and ChatGPT output to a server of his choice. All a target needed to do was instruct the LLM to view a web link that hosted a malicious image. From then on, all input and output to and from ChatGPT was sent to the attacker's website."
-
Major Flaw in Microsoft Mac Apps Could Let Hackers Spy Through Mic and Camera https://thecyberexpress.com/microsoft-apps-macs-hackers-flaw/ #TheCyberExpressNews #VulnerabilityNews #CybersecurityNews #Vulnerabilities #TheCyberExpress #FirewallDaily #cybersecurity #Vulnerability #securityflaw #Cyberattack #databreach #Microphone #Microsoft #Hackers #malware #Privacy #Camera #macOS
-
Cisco discloses a 10.0 CVSS rating vulnerability in SSM On-Prem
https://stackdiary.com/cisco-discloses-cve-2024-20419-for-ssm-on-prem/
#Cisco #Security #Vulnerability #Cybersecurity #CVSS #Hackers #Exploitation #ITsecurity #DataBreach #Software #TechNews #SecurityFlaw #NetworkSecurity #CriticalUpdate #Admins #DataProtection #PatchNow #Infosec #CyberThreats #SecureNetworks #TechUpdate #DigitalSafety #SoftwareBug #CyberDefense #CriticalVulnerability #ITupdate #SystemAdmin #SecureSoftware #NetworkAdmin #CyberAlert #CVE
-
Cisco discloses a 10.0 CVSS rating vulnerability in SSM On-Prem
https://stackdiary.com/cisco-discloses-cve-2024-20419-for-ssm-on-prem/
#Cisco #Security #Vulnerability #Cybersecurity #CVSS #Hackers #Exploitation #ITsecurity #DataBreach #Software #TechNews #SecurityFlaw #NetworkSecurity #CriticalUpdate #Admins #DataProtection #PatchNow #Infosec #CyberThreats #SecureNetworks #TechUpdate #DigitalSafety #SoftwareBug #CyberDefense #CriticalVulnerability #ITupdate #SystemAdmin #SecureSoftware #NetworkAdmin #CyberAlert #CVE
-
Cisco discloses a 10.0 CVSS rating vulnerability in SSM On-Prem
https://stackdiary.com/cisco-discloses-cve-2024-20419-for-ssm-on-prem/
#Cisco #Security #Vulnerability #Cybersecurity #CVSS #Hackers #Exploitation #ITsecurity #DataBreach #Software #TechNews #SecurityFlaw #NetworkSecurity #CriticalUpdate #Admins #DataProtection #PatchNow #Infosec #CyberThreats #SecureNetworks #TechUpdate #DigitalSafety #SoftwareBug #CyberDefense #CriticalVulnerability #ITupdate #SystemAdmin #SecureSoftware #NetworkAdmin #CyberAlert #CVE
-
Cisco discloses a 10.0 CVSS rating vulnerability in SSM On-Prem
https://stackdiary.com/cisco-discloses-cve-2024-20419-for-ssm-on-prem/
#Cisco #Security #Vulnerability #Cybersecurity #CVSS #Hackers #Exploitation #ITsecurity #DataBreach #Software #TechNews #SecurityFlaw #NetworkSecurity #CriticalUpdate #Admins #DataProtection #PatchNow #Infosec #CyberThreats #SecureNetworks #TechUpdate #DigitalSafety #SoftwareBug #CyberDefense #CriticalVulnerability #ITupdate #SystemAdmin #SecureSoftware #NetworkAdmin #CyberAlert #CVE
-
Cisco discloses a 10.0 CVSS rating vulnerability in SSM On-Prem
https://stackdiary.com/cisco-discloses-cve-2024-20419-for-ssm-on-prem/
#Cisco #Security #Vulnerability #Cybersecurity #CVSS #Hackers #Exploitation #ITsecurity #DataBreach #Software #TechNews #SecurityFlaw #NetworkSecurity #CriticalUpdate #Admins #DataProtection #PatchNow #Infosec #CyberThreats #SecureNetworks #TechUpdate #DigitalSafety #SoftwareBug #CyberDefense #CriticalVulnerability #ITupdate #SystemAdmin #SecureSoftware #NetworkAdmin #CyberAlert #CVE
-
Multiple Cryptocurrency Firms Fall Victim to Squarespace Domain Hijacking https://thecyberexpress.com/cryptocurrency-squarespace-domain-hijacking/ #Squarespacedomainhijacking #MultifactorAuthentication #TheCyberExpressNews #CybersecurityNews #TheCyberExpress #DataBreachNews #cryptocurrency #FirewallDaily #GoogleDomains #HackerClaims #securityflaw #Squarespace #HackerNews #Phishing
-
Multiple Cryptocurrency Firms Fall Victim to Squarespace Domain Hijacking https://thecyberexpress.com/cryptocurrency-squarespace-domain-hijacking/ #Squarespacedomainhijacking #MultifactorAuthentication #TheCyberExpressNews #CybersecurityNews #TheCyberExpress #DataBreachNews #cryptocurrency #FirewallDaily #GoogleDomains #HackerClaims #securityflaw #Squarespace #HackerNews #Phishing
-
Multiple Cryptocurrency Firms Fall Victim to Squarespace Domain Hijacking https://thecyberexpress.com/cryptocurrency-squarespace-domain-hijacking/ #Squarespacedomainhijacking #MultifactorAuthentication #TheCyberExpressNews #CybersecurityNews #TheCyberExpress #DataBreachNews #cryptocurrency #FirewallDaily #GoogleDomains #HackerClaims #securityflaw #Squarespace #HackerNews #Phishing
-
Multiple Cryptocurrency Firms Fall Victim to Squarespace Domain Hijacking https://thecyberexpress.com/cryptocurrency-squarespace-domain-hijacking/ #Squarespacedomainhijacking #MultifactorAuthentication #TheCyberExpressNews #CybersecurityNews #TheCyberExpress #DataBreachNews #cryptocurrency #FirewallDaily #GoogleDomains #HackerClaims #securityflaw #Squarespace #HackerNews #Phishing
-
IdentifyMobile incident exposed 200M records from hundreds of companies
https://stackdiary.com/identifymobile-incident-exposed-200m-records-from-hundreds-of-companies/
#Security #DataBreach #IdentifyMobile #SMS #AWS #Cybersecurity #Privacy #Hack #2FA #Authentication #DataProtection #InfoSec #CCC #TechNews #OnlineSecurity #Encryption #DataLeak #Vulnerability #Incident #TechSafety #ConfigurationError #Webex #AWSsecurity #DigitalSecurity #CloudSecurity #DataPrivacy #TechBreach #SecurityFlaw #CyberSafety #DataSecurity
-
IdentifyMobile incident exposed 200M records from hundreds of companies
https://stackdiary.com/identifymobile-incident-exposed-200m-records-from-hundreds-of-companies/
#Security #DataBreach #IdentifyMobile #SMS #AWS #Cybersecurity #Privacy #Hack #2FA #Authentication #DataProtection #InfoSec #CCC #TechNews #OnlineSecurity #Encryption #DataLeak #Vulnerability #Incident #TechSafety #ConfigurationError #Webex #AWSsecurity #DigitalSecurity #CloudSecurity #DataPrivacy #TechBreach #SecurityFlaw #CyberSafety #DataSecurity
-
IdentifyMobile incident exposed 200M records from hundreds of companies
https://stackdiary.com/identifymobile-incident-exposed-200m-records-from-hundreds-of-companies/
#Security #DataBreach #IdentifyMobile #SMS #AWS #Cybersecurity #Privacy #Hack #2FA #Authentication #DataProtection #InfoSec #CCC #TechNews #OnlineSecurity #Encryption #DataLeak #Vulnerability #Incident #TechSafety #ConfigurationError #Webex #AWSsecurity #DigitalSecurity #CloudSecurity #DataPrivacy #TechBreach #SecurityFlaw #CyberSafety #DataSecurity
-
IdentifyMobile incident exposed 200M records from hundreds of companies
https://stackdiary.com/identifymobile-incident-exposed-200m-records-from-hundreds-of-companies/
#Security #DataBreach #IdentifyMobile #SMS #AWS #Cybersecurity #Privacy #Hack #2FA #Authentication #DataProtection #InfoSec #CCC #TechNews #OnlineSecurity #Encryption #DataLeak #Vulnerability #Incident #TechSafety #ConfigurationError #Webex #AWSsecurity #DigitalSecurity #CloudSecurity #DataPrivacy #TechBreach #SecurityFlaw #CyberSafety #DataSecurity
-
Linksys Velop routers send Wi-Fi passwords in plaintext to US servers
https://stackdiary.com/linksys-velop-routers-send-wi-fi-passwords-in-plaintext-to-us-servers/
#Linksys #Velop #WiFi #Router #Security #DataBreach #Cybersecurity #Privacy #Encryption #Hackers #MeshNetwork #TechNews #ConsumerAlert #Testaankoop #Amazon #Plaintext #SSID #Password #Firmware #Vulnerability #CyberAttack #NetworkSecurity #DigitalPrivacy #TechSafety #UserData #WiFiSecurity #InternetSafety #HomeNetwork #ITsecurity #TechAlert #SecurityFlaw
-
Linksys Velop routers send Wi-Fi passwords in plaintext to US servers
https://stackdiary.com/linksys-velop-routers-send-wi-fi-passwords-in-plaintext-to-us-servers/
#Linksys #Velop #WiFi #Router #Security #DataBreach #Cybersecurity #Privacy #Encryption #Hackers #MeshNetwork #TechNews #ConsumerAlert #Testaankoop #Amazon #Plaintext #SSID #Password #Firmware #Vulnerability #CyberAttack #NetworkSecurity #DigitalPrivacy #TechSafety #UserData #WiFiSecurity #InternetSafety #HomeNetwork #ITsecurity #TechAlert #SecurityFlaw
-
Linksys Velop routers send Wi-Fi passwords in plaintext to US servers
https://stackdiary.com/linksys-velop-routers-send-wi-fi-passwords-in-plaintext-to-us-servers/
#Linksys #Velop #WiFi #Router #Security #DataBreach #Cybersecurity #Privacy #Encryption #Hackers #MeshNetwork #TechNews #ConsumerAlert #Testaankoop #Amazon #Plaintext #SSID #Password #Firmware #Vulnerability #CyberAttack #NetworkSecurity #DigitalPrivacy #TechSafety #UserData #WiFiSecurity #InternetSafety #HomeNetwork #ITsecurity #TechAlert #SecurityFlaw
-
Linksys Velop routers send Wi-Fi passwords in plaintext to US servers
https://stackdiary.com/linksys-velop-routers-send-wi-fi-passwords-in-plaintext-to-us-servers/
#Linksys #Velop #WiFi #Router #Security #DataBreach #Cybersecurity #Privacy #Encryption #Hackers #MeshNetwork #TechNews #ConsumerAlert #Testaankoop #Amazon #Plaintext #SSID #Password #Firmware #Vulnerability #CyberAttack #NetworkSecurity #DigitalPrivacy #TechSafety #UserData #WiFiSecurity #InternetSafety #HomeNetwork #ITsecurity #TechAlert #SecurityFlaw
-
Linksys Velop routers send Wi-Fi passwords in plaintext to US servers
https://stackdiary.com/linksys-velop-routers-send-wi-fi-passwords-in-plaintext-to-us-servers/
#Linksys #Velop #WiFi #Router #Security #DataBreach #Cybersecurity #Privacy #Encryption #Hackers #MeshNetwork #TechNews #ConsumerAlert #Testaankoop #Amazon #Plaintext #SSID #Password #Firmware #Vulnerability #CyberAttack #NetworkSecurity #DigitalPrivacy #TechSafety #UserData #WiFiSecurity #InternetSafety #HomeNetwork #ITsecurity #TechAlert #SecurityFlaw