#securiy — Public Fediverse posts
Live and recent posts from across the Fediverse tagged #securiy, aggregated by home.social.
-
Poland Revokes State Honor Awarded to Zelensky Over UPA Military Unit Dispute
Polish President Karol Nawrocki said he will revoke Poland’s highest state distinction, the Order of the White Eagle,…
#Poland #Polska #PL #Europe #Europa #EU #PolishPresidentKarolNawrockisaidhewillrevokePoland’shigheststatedistinction #previouslyawardedtoUkrainian #Putin #RUSSIA #securiy #theOrderoftheWhiteEagle #UKRAINE #War
https://www.europesays.com/poland/13001/ -
https://www.heise.de/news/Phishing-Banken-nutzen-halbseidene-Domains-11327434.html
Na, wer von euch traut sich gewinnspiel-sparkasse.de ohne Bauchschmerzen aufzurufen? Fazit: die #Sparkasse geht bei sicheren Domains mit eher schlechtem Beispiel voran.
-
https://www.heise.de/news/Phishing-Banken-nutzen-halbseidene-Domains-11327434.html
Na, wer von euch traut sich gewinnspiel-sparkasse.de ohne Bauchschmerzen aufzurufen? Fazit: die #Sparkasse geht bei sicheren Domains mit eher schlechtem Beispiel voran.
-
https://www.heise.de/news/Phishing-Banken-nutzen-halbseidene-Domains-11327434.html
Na, wer von euch traut sich gewinnspiel-sparkasse.de ohne Bauchschmerzen aufzurufen? Fazit: die #Sparkasse geht bei sicheren Domains mit eher schlechtem Beispiel voran.
-
https://www.heise.de/news/Phishing-Banken-nutzen-halbseidene-Domains-11327434.html
Na, wer von euch traut sich gewinnspiel-sparkasse.de ohne Bauchschmerzen aufzurufen? Fazit: die #Sparkasse geht bei sicheren Domains mit eher schlechtem Beispiel voran.
-
Spent yesterday at #UofM to discuss Next Gen Workforce in Cyber Security with a focus on healthcare. Got to see a ton of interesting work that is going on at the college and meet a bunch of cool people.
Got to speak about #memsec and @biohacking_village.
-
Spent yesterday at #UofM to discuss Next Gen Workforce in Cyber Security with a focus on healthcare. Got to see a ton of interesting work that is going on at the college and meet a bunch of cool people.
Got to speak about #memsec and @biohacking_village.
-
Spent yesterday at #UofM to discuss Next Gen Workforce in Cyber Security with a focus on healthcare. Got to see a ton of interesting work that is going on at the college and meet a bunch of cool people.
Got to speak about #memsec and @biohacking_village.
-
Spent yesterday at #UofM to discuss Next Gen Workforce in Cyber Security with a focus on healthcare. Got to see a ton of interesting work that is going on at the college and meet a bunch of cool people.
Got to speak about #memsec and @biohacking_village.
-
Spent yesterday at #UofM to discuss Next Gen Workforce in Cyber Security with a focus on healthcare. Got to see a ton of interesting work that is going on at the college and meet a bunch of cool people.
Got to speak about #memsec and @biohacking_village.
-
Strange question and I “think” the answer is NO, but I’m looking for #fediverse wisdom. Is there a way to generate a valid #SSL certificate (not self signed, and no private CA) for a device running on the .local domain. It would need to recognised by any browser trying to connect to it without having to “accept the risk”. It’s also probably not a job for let’s encrypt because it would be great if this worked out of the box with zero config by a user after setting up. #linux #opensource #securiy
-
Strange question and I “think” the answer is NO, but I’m looking for #fediverse wisdom. Is there a way to generate a valid #SSL certificate (not self signed, and no private CA) for a device running on the .local domain. It would need to recognised by any browser trying to connect to it without having to “accept the risk”. It’s also probably not a job for let’s encrypt because it would be great if this worked out of the box with zero config by a user after setting up. #linux #opensource #securiy
-
Strange question and I “think” the answer is NO, but I’m looking for #fediverse wisdom. Is there a way to generate a valid #SSL certificate (not self signed, and no private CA) for a device running on the .local domain. It would need to recognised by any browser trying to connect to it without having to “accept the risk”. It’s also probably not a job for let’s encrypt because it would be great if this worked out of the box with zero config by a user after setting up. #linux #opensource #securiy
-
Strange question and I “think” the answer is NO, but I’m looking for #fediverse wisdom. Is there a way to generate a valid #SSL certificate (not self signed, and no private CA) for a device running on the .local domain. It would need to recognised by any browser trying to connect to it without having to “accept the risk”. It’s also probably not a job for let’s encrypt because it would be great if this worked out of the box with zero config by a user after setting up. #linux #opensource #securiy
-
Strange question and I “think” the answer is NO, but I’m looking for #fediverse wisdom. Is there a way to generate a valid #SSL certificate (not self signed, and no private CA) for a device running on the .local domain. It would need to recognised by any browser trying to connect to it without having to “accept the risk”. It’s also probably not a job for let’s encrypt because it would be great if this worked out of the box with zero config by a user after setting up. #linux #opensource #securiy
-
Maybe i need to post this agaian that everyone does understand me
I AM NOT AGAINST "SIGNAL" MESSENGER
I am just calling their demand of an phone number for registration to be the antithesis of an anonyous secure messenger
In the second when Signal allows anonymous registrations without a phone nuber, im right to join there
-
Maybe i need to post this agaian that everyone does understand me
I AM NOT AGAINST "SIGNAL" MESSENGER
I am just calling their demand of an phone number for registration to be the antithesis of an anonyous secure messenger
In the second when Signal allows anonymous registrations without a phone nuber, im right to join there
-
Maybe i need to post this agaian that everyone does understand me
I AM NOT AGAINST "SIGNAL" MESSENGER
I am just calling their demand of an phone number for registration to be the antithesis of an anonyous secure messenger
In the second when Signal allows anonymous registrations without a phone nuber, im right to join there
-
Maybe i need to post this agaian that everyone does understand me
I AM NOT AGAINST "SIGNAL" MESSENGER
I am just calling their demand of an phone number for registration to be the antithesis of an anonyous secure messenger
In the second when Signal allows anonymous registrations without a phone nuber, im right to join there
-
Maybe i need to post this agaian that everyone does understand me
I AM NOT AGAINST "SIGNAL" MESSENGER
I am just calling their demand of an phone number for registration to be the antithesis of an anonyous secure messenger
In the second when Signal allows anonymous registrations without a phone nuber, im right to join there
-
Another day, another attack to software dependencies:
This is different from the xz story, but the core idea is the same: take ownership of a popular project, and sneakily replace it with malicious code.
-
Another day, another attack to software dependencies:
This is different from the xz story, but the core idea is the same: take ownership of a popular project, and sneakily replace it with malicious code.
-
Another day, another attack to software dependencies:
This is different from the xz story, but the core idea is the same: take ownership of a popular project, and sneakily replace it with malicious code.
-
Der Markt regelt das übrigens wunderbar bei Unternehmen, die ihre physikalische #Securiy vernachlässigen https://www.spiegel.de/panorama/justiz/los-angeles-filmreifer-einbruch-diebe-erbeuten-30-millionen-dollar-aus-geldspeicher-a-c58e5ae2-284d-4221-aef7-0f61c1b4d14a#ref=rss
-
Der Markt regelt das übrigens wunderbar bei Unternehmen, die ihre physikalische #Securiy vernachlässigen https://www.spiegel.de/panorama/justiz/los-angeles-filmreifer-einbruch-diebe-erbeuten-30-millionen-dollar-aus-geldspeicher-a-c58e5ae2-284d-4221-aef7-0f61c1b4d14a#ref=rss
-
Der Markt regelt das übrigens wunderbar bei Unternehmen, die ihre physikalische #Securiy vernachlässigen https://www.spiegel.de/panorama/justiz/los-angeles-filmreifer-einbruch-diebe-erbeuten-30-millionen-dollar-aus-geldspeicher-a-c58e5ae2-284d-4221-aef7-0f61c1b4d14a#ref=rss
-
Der Markt regelt das übrigens wunderbar bei Unternehmen, die ihre physikalische #Securiy vernachlässigen https://www.spiegel.de/panorama/justiz/los-angeles-filmreifer-einbruch-diebe-erbeuten-30-millionen-dollar-aus-geldspeicher-a-c58e5ae2-284d-4221-aef7-0f61c1b4d14a#ref=rss
-
Derzeit ist wieder ein #USB Wurm im Umlauf diesmal mit dem Namen #LitterDrifter. Ich finde es spannend das dies immer noch ein Ausbreitungsvector ist und Sinn macht der eigentlich nur noch für #OT Systeme wie Kraftwerke da diese hoffentlich meist gut von anderen Netzen getrennt sind. Vielleicht unterschätze ich aber auch die Nutzung von USB im privaten Bereich 🤷 - via Bruce Schneier - https://www.schneier.com/blog/archives/2023/11/litterdrifter-usb-worm.html #securiy #trojaner #malware
-
Derzeit ist wieder ein #USB Wurm im Umlauf diesmal mit dem Namen #LitterDrifter. Ich finde es spannend das dies immer noch ein Ausbreitungsvector ist und Sinn macht der eigentlich nur noch für #OT Systeme wie Kraftwerke da diese hoffentlich meist gut von anderen Netzen getrennt sind. Vielleicht unterschätze ich aber auch die Nutzung von USB im privaten Bereich 🤷 - via Bruce Schneier - https://www.schneier.com/blog/archives/2023/11/litterdrifter-usb-worm.html #securiy #trojaner #malware
-
Derzeit ist wieder ein #USB Wurm im Umlauf diesmal mit dem Namen #LitterDrifter. Ich finde es spannend das dies immer noch ein Ausbreitungsvector ist und Sinn macht der eigentlich nur noch für #OT Systeme wie Kraftwerke da diese hoffentlich meist gut von anderen Netzen getrennt sind. Vielleicht unterschätze ich aber auch die Nutzung von USB im privaten Bereich 🤷 - via Bruce Schneier - https://www.schneier.com/blog/archives/2023/11/litterdrifter-usb-worm.html #securiy #trojaner #malware
-
‘Scam-in-a-box’: #MyGov suspends thousands of accounts linked to dark web fraud kits | Australia news | The Guardian
> Exclusive: #Scams utilise phishing attacks on #Centrelink, #ATO and #Medicare accounts using obtained login details
-
‘Scam-in-a-box’: #MyGov suspends thousands of accounts linked to dark web fraud kits | Australia news | The Guardian
> Exclusive: #Scams utilise phishing attacks on #Centrelink, #ATO and #Medicare accounts using obtained login details
-
‘Scam-in-a-box’: #MyGov suspends thousands of accounts linked to dark web fraud kits | Australia news | The Guardian
> Exclusive: #Scams utilise phishing attacks on #Centrelink, #ATO and #Medicare accounts using obtained login details
-
‘Scam-in-a-box’: #MyGov suspends thousands of accounts linked to dark web fraud kits | Australia news | The Guardian
> Exclusive: #Scams utilise phishing attacks on #Centrelink, #ATO and #Medicare accounts using obtained login details
-
‘Scam-in-a-box’: #MyGov suspends thousands of accounts linked to dark web fraud kits | Australia news | The Guardian
> Exclusive: #Scams utilise phishing attacks on #Centrelink, #ATO and #Medicare accounts using obtained login details
-
"“At a high level, if nobody can point to a real-world example of it actually happening in public spaces, then it’s not something that is worth stressing about for the general public,” "
Those scary warnings of juice jacking in airports and hotels? They’re mostly nonsense https://arstechnica.com/information-technology/2023/05/fearmongering-over-public-charging-stations-needs-to-stop-heres-why
>Juice jacking attacks on mobile phones are nonexistent. So why are we so afraid? -
"“At a high level, if nobody can point to a real-world example of it actually happening in public spaces, then it’s not something that is worth stressing about for the general public,” "
Those scary warnings of juice jacking in airports and hotels? They’re mostly nonsense https://arstechnica.com/information-technology/2023/05/fearmongering-over-public-charging-stations-needs-to-stop-heres-why
>Juice jacking attacks on mobile phones are nonexistent. So why are we so afraid? -
"“At a high level, if nobody can point to a real-world example of it actually happening in public spaces, then it’s not something that is worth stressing about for the general public,” "
Those scary warnings of juice jacking in airports and hotels? They’re mostly nonsense https://arstechnica.com/information-technology/2023/05/fearmongering-over-public-charging-stations-needs-to-stop-heres-why
>Juice jacking attacks on mobile phones are nonexistent. So why are we so afraid? -
"“At a high level, if nobody can point to a real-world example of it actually happening in public spaces, then it’s not something that is worth stressing about for the general public,” "
Those scary warnings of juice jacking in airports and hotels? They’re mostly nonsense https://arstechnica.com/information-technology/2023/05/fearmongering-over-public-charging-stations-needs-to-stop-heres-why
>Juice jacking attacks on mobile phones are nonexistent. So why are we so afraid? -
"“At a high level, if nobody can point to a real-world example of it actually happening in public spaces, then it’s not something that is worth stressing about for the general public,” "
Those scary warnings of juice jacking in airports and hotels? They’re mostly nonsense https://arstechnica.com/information-technology/2023/05/fearmongering-over-public-charging-stations-needs-to-stop-heres-why
>Juice jacking attacks on mobile phones are nonexistent. So why are we so afraid? -
@heisec wie wäre es mit einer Einordnung? Oder auch mit der Erwähnung, das bereits endsprechende Tools seit langer Zeit aus dem opensource Bereich gibt?
Stimmt, das klickt ja nicht... und jemanden fragen der sich damit auskennt, zum Beispiel aus dem QS-bereich ist wahrscheinlich auch zu viel.
-
@heisec wie wäre es mit einer Einordnung? Oder auch mit der Erwähnung, das bereits endsprechende Tools seit langer Zeit aus dem opensource Bereich gibt?
Stimmt, das klickt ja nicht... und jemanden fragen der sich damit auskennt, zum Beispiel aus dem QS-bereich ist wahrscheinlich auch zu viel.
-
@heisec wie wäre es mit einer Einordnung? Oder auch mit der Erwähnung, das bereits endsprechende Tools seit langer Zeit aus dem opensource Bereich gibt?
Stimmt, das klickt ja nicht... und jemanden fragen der sich damit auskennt, zum Beispiel aus dem QS-bereich ist wahrscheinlich auch zu viel.
-
@heisec wie wäre es mit einer Einordnung? Oder auch mit der Erwähnung, das bereits endsprechende Tools seit langer Zeit aus dem opensource Bereich gibt?
Stimmt, das klickt ja nicht... und jemanden fragen der sich damit auskennt, zum Beispiel aus dem QS-bereich ist wahrscheinlich auch zu viel.
-
@heisec wie wäre es mit einer Einordnung? Oder auch mit der Erwähnung, das bereits endsprechende Tools seit langer Zeit aus dem opensource Bereich gibt?
Stimmt, das klickt ja nicht... und jemanden fragen der sich damit auskennt, zum Beispiel aus dem QS-bereich ist wahrscheinlich auch zu viel.
-
Morning on the first day of #DevOpsTalks #Sydney, and it's clear it should be renamed #DevSecOps talks :)
The main focus of everyone seems to be on #securiy, which is a good surprise and a relief. Getting more people interested and pushing good security practices in #development is bound to make everyone's life easier.
-
Morning on the first day of #DevOpsTalks #Sydney, and it's clear it should be renamed #DevSecOps talks :)
The main focus of everyone seems to be on #securiy, which is a good surprise and a relief. Getting more people interested and pushing good security practices in #development is bound to make everyone's life easier.
-
Morning on the first day of #DevOpsTalks #Sydney, and it's clear it should be renamed #DevSecOps talks :)
The main focus of everyone seems to be on #securiy, which is a good surprise and a relief. Getting more people interested and pushing good security practices in #development is bound to make everyone's life easier.
-
Morning on the first day of #DevOpsTalks #Sydney, and it's clear it should be renamed #DevSecOps talks :)
The main focus of everyone seems to be on #securiy, which is a good surprise and a relief. Getting more people interested and pushing good security practices in #development is bound to make everyone's life easier.
-
Morning on the first day of #DevOpsTalks #Sydney, and it's clear it should be renamed #DevSecOps talks :)
The main focus of everyone seems to be on #securiy, which is a good surprise and a relief. Getting more people interested and pushing good security practices in #development is bound to make everyone's life easier.
-
-
-
-