Paolo Vecchi
Had a go at MISP Project Italian translation today and got it up to 42%.
Any other #Italian working in #Security willing to chip in and 'beat' the Danes that are already at 47%? ;-)
You can find the translation platform here:
https://crowdin.com/project/misp
Maybe @rysiek knows someone? ;-)
Tobias Dausend
r҉ustic cy͠be̸rpu̵nk🤠🤖
TYPO3 Seems to have a fair number of security vulnerabilities
I don't think anywhere near WordPress, but then again, it also doesn't have the widespread user base of WP or the same scrutiny
Samuel Hodgkins (samis) 🍄
That's enough exploring #warsaw for now I think. I'm off to go play a bit of #xonotic - however, someone did link me https://jspin.re/2016/05/01/adventure-time-warsaw-osx/ which paints a rather bad picture of things in the actual binary. Maybe later/in the future I'll see if the #security problems mentioned in the post exist in the presumably updated Linux version I've been looking at.
r҉ustic cy͠be̸rpu̵nk🤠🤖
Timehop:
"Some data was breached. These include names, email addresses, and some phone numbers. This affects some 21 million of our users. No private/direct messages, financial data, or social media or photo content, or Timehop data including streaks were affected.
To reiterate: none of your “memories” - the social media posts & photos that Timehop stores - were accessed."
Awesome
hoergen
Linux Liaison
Nope! You're not dreaming. That's a Microsoft tutorial for a product that's been EOL for years. Legacy is important, unfortunately, so you gotta learn it at some point. Here's the next post in the Installing Exchange series:
https://linuxliaison.org/forefront-tmg-2010-getting-started-wizard/
![[MOVED] Patrick L Archibald](https://nu.federati.net/avatar/12409-48-20180416152246.jpeg){kind=small}
[MOVED] Patrick L Archibald
#Pixelbook has a hardware #U2F token. Here is Keith I Myers's blog post on how to activate it: https://kmyers.me/blog/chromeos/the-pixelbook-has-a-hardware-u2f-token-built-in-here-is-how-you-can-use-it-now/ #2FactorAuth #security #ChromeOS
Antanicus
Potere al Popolo (ie. "Power to the People"), an Italian left-wing movement that has been growing very fast in the past months, have just launched their own forum:
http://forum.poterealpopolo.org/
Both the "register" and "login" pages are served over plain http...
#facepalm #security
Harald Eilertsen
peter hessler @openbsd
#PGP and #GPG are so broken, the EFF is recommending that you immediately stop using them until after publication of the problem. #infosec #security #GoodLuck #WereAllDoomed
Ominous: https://twitter.com/seecurity/status/995913231418961920
~セラフ~
The #Equifax breach was worse than they thought:
> The company originally said 143 million customers were affected; now, after reviewing all the affected data, Equifax says that it was 146.6 million people who had their name and date of birth exposed, and 145.5 million of those who had their Social Security numbers exposed.
#security #infosec #data #privacy
http://www.businessinsider.com/equifax-breach-check-details-update-2018-5
~セラフ~
> While 2FA has been strongly recommended by security professionals for both personal and commercial applications, it is not an infallible solution. 2FA implementations have been successfully defeated using real-time phishing techniques.
Enter ReelPhish.
https://n0where.net/real-time-two-factor-phishing-tool-reelphish
make 🇫🇮
Harald Eilertsen
JordiGH
Pet peeve: bank website that thinks my ¿¡Spanish punctuation!? is a #security hazard and forces me to remove it from a thank you message.
☠️ Grumpy Oldman
~セラフ~
Yet another bad attempt at #network #security.
Seems to me that the ODNS servers would be very vulnerable to #DDoS #attack, e.g, flooding of bad #DNS lookups that take a long time to resolve.
Even with ODNS, countries can still implement #censorship to prevent access to these ODNS services on grounds of suspicion and so-called #NationalSecurity. These are essentially network chokepoints and points of reliance. Potentially a priority target for compromise as well. #internet #privacy #cybersec
~セラフ~
Turns out it's easy to #hijack #emergency #sirens with a #radio transmitter.
#security #opsec #hack
https://gizmodo.com/hackers-can-hijack-emergency-sirens-with-a-radio-1825137941
~セラフ~
Oh, Bucket! Thai mobile operator spills 46k people's data (~32GB)
#fail #breach #dataleak #infosec #websec #opsec #security #aws #amazon #cloud
http://www.theregister.co.uk/2018/04/13/thai_mobile_operator_data_breach/
Federati Nu: Federated N-series GNU Social is a social network, courtesy of Federati Networks. It runs on GNU social, version 1.2.0-beta4, available under the GNU Affero General Public License.
All Federati Nu: Federated N-series GNU Social content and data are available under the Creative Commons Attribution 3.0 license.