⠠⠵ avuko<p>Okay:</p><p>Universal Basic Cybersecurity. *</p><p>For every organisation, the people through the government provide the means (not money but tools, knowledge and information) to have basic information security in place.</p><p>This as a response to the “Security Poverty Line” and the abysmal state of information security, especially (but certainly not exclusively) amongst the SMEs.</p><p>*) you can probably guess why I don’t pitch it as “Universal Basic Informationsecurity”. Also, just “Security” doesn’t work, because that is (rightly) used in the discourse around UBI. If it is confused with Universal Background Checks, that’s just a happy little coincidence.</p><p><a href="https://infosec.exchange/tags/ShowerThoughts" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>ShowerThoughts</span></a> <a href="https://infosec.exchange/tags/UniversalBasicCyberSecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>UniversalBasicCyberSecurity</span></a> <a href="https://infosec.exchange/tags/UBC" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>UBC</span></a> <a href="https://infosec.exchange/tags/SecuirtyPovertyLine" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>SecuirtyPovertyLine</span></a> <a href="https://infosec.exchange/tags/infosec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>infosec</span></a> <a href="https://infosec.exchange/tags/CyberSecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>CyberSecurity</span></a><br><a href="https://infosec.exchange/tags/UBI" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>UBI</span></a></p>
Recent searches
No recent searches
Search options
Only available when logged in.
c.im is one of the many independent Mastodon servers you can use to participate in the fediverse.
C.IM is a general, mainly English-speaking Mastodon instance.
Administered by:
Server stats:
2.9Kactive users
c.im: About · Status · Profiles directory · Privacy policy
Mastodon: About · Get the app · Keyboard shortcuts · View source code · v4.3.6
#infosec
817 posts · 388 participants · 28 posts today
BeyondMachines :verified:<p>Turknet reports cyberattac, data breach affecting over 1.5 Million customers <br><a href="https://infosec.exchange/tags/cybersecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>cybersecurity</span></a> <a href="https://infosec.exchange/tags/infosec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>infosec</span></a> <a href="https://infosec.exchange/tags/incident" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>incident</span></a> <a href="https://infosec.exchange/tags/vulnerability" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>vulnerability</span></a><br><a href="https://beyondmachines.net/event_details/turknet-reports-cyberattac-data-breach-affecting-over-1-5-million-customers-u-4-c-g-5/gD2P6Ple2L" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">beyondmachines.net/event_detai</span><span class="invisible">ls/turknet-reports-cyberattac-data-breach-affecting-over-1-5-million-customers-u-4-c-g-5/gD2P6Ple2L</span></a></p>
Shodan Safari<p>ASN: AS12912<br>Location: Warsaw, PL<br>Added: 2025-03-13T19:06</p><p><a href="https://infosec.exchange/tags/shodansafari" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>shodansafari</span></a> <a href="https://infosec.exchange/tags/infosec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>infosec</span></a></p>
Shodan Safari<p>ASN: AS4847<br>Location: Beijing, CN<br>Added: 2025-03-15T16:49</p><p><a href="https://infosec.exchange/tags/shodansafari" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>shodansafari</span></a> <a href="https://infosec.exchange/tags/infosec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>infosec</span></a></p>
CTI.FYI<p>🚨New ransom group blog post!🚨</p><p>Group name: killsecurity<br>Post title: Harcourts Prime Properties<br>Info: <a href="https://cti.fyi/groups/killsecurity.html" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">cti.fyi/groups/killsecurity.ht</span><span class="invisible">ml</span></a></p><p><a href="https://infosec.exchange/tags/ransomware" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>ransomware</span></a> <a href="https://infosec.exchange/tags/cti" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>cti</span></a> <a href="https://infosec.exchange/tags/threatintelligence" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>threatintelligence</span></a> <a href="https://infosec.exchange/tags/cybersecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>cybersecurity</span></a> <a href="https://infosec.exchange/tags/infosec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>infosec</span></a></p>
seism0saurus<p>Guten Morgen liebe*r Leser*in,</p><p>Lass Geräte offline, wenn dir das keinen großen Mehrwert bietet. Achte schon beim Kauf auf die Möglichkeit etwas offline zu betreiben oder ob es OpenSource Alternativen für die Anbindung gibt.<br>Vor einiger Zeit geisterte die Geschichte eines Botnetzes aus vernetzten Zahnbürsten durchs Internet. Es stellte sich heraus, dass nur von einem möglichen Szenario gesprochen wurde und das (noch) nicht passiert ist. Doch die Geschichte war zu glaubwürdig und verbreitete sich rasch im Fediverse. Sobald etwas vernetzt ist, wird es früher oder später angegriffen werden. Ob die Angriffe gelingen oder ob das Gerät sicher ist, hängt davon ab, wie sauber der Hersteller und Zulieferer gearbeitet haben und ob sie Meldungen über Lücken annehmen und diese zeitnah beheben. Doch für die meisten Unternehmen ist es nicht wirtschaftlich auch nach 1, 3, 5 oder 10 Jahren noch in ein altes Produkt zu investieren. Bei anderen bekommst du nicht mal das und das Gerät wird schon mit veralteter Software ausgeliefert und wird nie aktualisiert.<br>Das Problem ist deutlich kleiner, wenn dein Gerät gar nicht erst ins Internet oder mit dem Smartphone gekoppelt werden muss, um zu funktionieren. Angreifer*innen bleibt der einfache Zugriff aus der Ferne verwehrt.<br> <br>Ein weiterer Aspekt ist die Verfügbarkeit. Manche Geräte wurden nach wenigen Jahren zu Elektroschrott, weil der Hersteller die Server nicht mehr betreiben wollte oder konnte. Die Geräte konnten nicht mehr mit den Servern kommunizieren und stellten die Funktion ein.<br>Gerade im Smart Home gibt es viele Geräte, auf die du quelloffene Firmware aufspielen kannst und so auch ohne den Hersteller Updates von der Community bekommst. Durch Integration in ein lokal laufendes Home Assistant wirst du unabhängig von Servern und kannst viele Geräte in ein separates Netzwerk ohne Internetverbindung stecken.<br>Nimm den heutigen Tag als Anlass und prüfe, welche Geräte mit deinem Netzwerk oder Smartphone verbunden sind.</p><p>Habt einen wundervollen Tag</p><p><a href="https://infosec.exchange/tags/infosec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>infosec</span></a> <a href="https://infosec.exchange/tags/itsecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>itsecurity</span></a> <a href="https://infosec.exchange/tags/goodmorning" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>goodmorning</span></a> <a href="https://infosec.exchange/tags/shakeupitsecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>shakeupitsecurity</span></a> <a href="https://infosec.exchange/tags/wisdomoftheday" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>wisdomoftheday</span></a></p>
Shodan Safari<p>ASN: AS58461<br>Location: Shanghai, CN<br>Added: 2025-03-13T11:29</p><p><a href="https://infosec.exchange/tags/shodansafari" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>shodansafari</span></a> <a href="https://infosec.exchange/tags/infosec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>infosec</span></a></p>
Shodan Safari<p>ASN: AS35378<br>Location: Włocławek, PL<br>Added: 2025-03-15T08:10</p><p><a href="https://infosec.exchange/tags/shodansafari" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>shodansafari</span></a> <a href="https://infosec.exchange/tags/infosec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>infosec</span></a></p>
Matthias Schulze<p>Surveillance in Trump’s America <a href="https://ojs.library.queensu.ca/index.php/surveillance-and-society/article/view/19220" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">ojs.library.queensu.ca/index.p</span><span class="invisible">hp/surveillance-and-society/article/view/19220</span></a> <a href="https://ioc.exchange/tags/cybersecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>cybersecurity</span></a> <a href="https://ioc.exchange/tags/infosec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>infosec</span></a></p>
Nonilex<p>…The WH is the latest govt property on which <a href="https://masto.ai/tags/Starlink" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Starlink</span></a> now operates.</p><p>In recent weeks, Starlink was also set up at the <a href="https://masto.ai/tags/GSA" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>GSA</span></a>, which has served as a hub for <a href="https://masto.ai/tags/Musk" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Musk</span></a>’s government-shrinking efforts…</p><p>While several <a href="https://masto.ai/tags/FederalAgencies" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>FederalAgencies</span></a> contract w/Starlink, the satellite service is typically used to provide internet access in emergency situations & to remote locations — not at federal buildings in DC, which already have ample internet options.</p><p><a href="https://masto.ai/tags/Trump" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Trump</span></a> <a href="https://masto.ai/tags/NationalSecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>NationalSecurity</span></a> <a href="https://masto.ai/tags/InfoSec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>InfoSec</span></a> <a href="https://masto.ai/tags/technocracy" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>technocracy</span></a> <a href="https://masto.ai/tags/broligarchy" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>broligarchy</span></a></p>
Nonilex<p>…<a href="https://masto.ai/tags/Trump" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Trump</span></a> WH ofcls said that <a href="https://masto.ai/tags/Starlink" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Starlink</span></a> had “donated” the service &…had been vetted by the WH Counsel’s <a href="https://masto.ai/tags/ethics" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>ethics</span></a> lawyer.<br>Fmr ofcls were unclear about how such a donation could work.<br>Clare Martorana, fmr chief <a href="https://masto.ai/tags/information" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>information</span></a> officer during the <a href="https://masto.ai/tags/Biden" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Biden</span></a> admin, said typically people cannot simply give <a href="https://masto.ai/tags/technology" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>technology</span></a> to the govt.…The WH’s chief information officer would need to sign off on a new system to ensure it was properly secured, as would the chief information officer at GSA.</p><p><a href="https://masto.ai/tags/NationalSecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>NationalSecurity</span></a> <a href="https://masto.ai/tags/InfoSec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>InfoSec</span></a></p>
Nonilex<p><a href="https://masto.ai/tags/ElonMusk" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>ElonMusk</span></a>’s <a href="https://masto.ai/tags/Starlink" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Starlink</span></a> Expands Across <a href="https://masto.ai/tags/WhiteHouse" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>WhiteHouse</span></a> Complex</p><p>Starlink, the satellite internet service operated by <a href="https://masto.ai/tags/Musk" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Musk</span></a>’s <a href="https://masto.ai/tags/SpaceX" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>SpaceX</span></a>, is now accessible across the White House campus. It is the latest installation of the Wi-Fi network across the govt since Musk joined the <a href="https://masto.ai/tags/Trump" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Trump</span></a> administration as an *unpaid* [if you don’t count all the extra contracts he’s gotten] adviser.</p><p><a href="https://masto.ai/tags/law" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>law</span></a> <a href="https://masto.ai/tags/USpol" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>USpol</span></a> <a href="https://masto.ai/tags/NationalSecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>NationalSecurity</span></a> <a href="https://masto.ai/tags/InfoSec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>InfoSec</span></a> <a href="https://masto.ai/tags/technocracy" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>technocracy</span></a> <a href="https://masto.ai/tags/broligarchy" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>broligarchy</span></a> <a href="https://masto.ai/tags/kleptocracy" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>kleptocracy</span></a> <br><a href="https://www.nytimes.com/2025/03/17/us/politics/elon-musk-starlink-white-house.html?smid=nytcore-ios-share&referringSource=articleShare&sgrp=p&pvid=08504AF5-44B4-4B40-977F-61893CA9733D" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://www.</span><span class="ellipsis">nytimes.com/2025/03/17/us/poli</span><span class="invisible">tics/elon-musk-starlink-white-house.html?smid=nytcore-ios-share&referringSource=articleShare&sgrp=p&pvid=08504AF5-44B4-4B40-977F-61893CA9733D</span></a></p>
Shodan Safari<p>ASN: AS31898<br>Location: Toronto, CA<br>Added: 2025-03-14T09:28</p><p><a href="https://infosec.exchange/tags/shodansafari" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>shodansafari</span></a> <a href="https://infosec.exchange/tags/infosec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>infosec</span></a></p>
Dumb Password Rules<p>This dumb password rule is from Capital One.</p><p>- May only use the following characters: Aa-Zz 0-9 - _ . / \\ @ $ * & ! #<br>- No spaces</p><p><a href="https://dumbpasswordrules.com/sites/capital-one/" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">dumbpasswordrules.com/sites/ca</span><span class="invisible">pital-one/</span></a></p><p><a href="https://infosec.exchange/tags/password" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>password</span></a> <a href="https://infosec.exchange/tags/passwords" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>passwords</span></a> <a href="https://infosec.exchange/tags/infosec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>infosec</span></a> <a href="https://infosec.exchange/tags/cybersecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>cybersecurity</span></a> <a href="https://infosec.exchange/tags/dumbpasswordrules" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>dumbpasswordrules</span></a></p>
mark carter<p>🤯 Alphabet Inc. Said in Talks to Buy Cyber Firm Wiz for $33 Billion <a href="https://www.bloomberg.com/news/articles/2025-03-17/alphabet-in-talks-to-buy-cloud-security-firm-wiz-for-33-billion" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://www.</span><span class="ellipsis">bloomberg.com/news/articles/20</span><span class="invisible">25-03-17/alphabet-in-talks-to-buy-cloud-security-firm-wiz-for-33-billion</span></a> <a href="https://infosec.exchange/tags/Infosec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Infosec</span></a> <a href="https://infosec.exchange/tags/Google" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Google</span></a></p>
Shodan Safari<p>ASN: AS197549<br>Location: Hofheim am Taunus, DE<br>Added: 2025-03-14T05:55</p><p><a href="https://infosec.exchange/tags/shodansafari" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>shodansafari</span></a> <a href="https://infosec.exchange/tags/infosec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>infosec</span></a></p>
Matthias Schulze<p>Authoritarian Surveillance Trends: Structural Racism and Transnationalism <a href="https://ojs.library.queensu.ca/index.php/surveillance-and-society/article/view/18902" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">ojs.library.queensu.ca/index.p</span><span class="invisible">hp/surveillance-and-society/article/view/18902</span></a> <a href="https://ioc.exchange/tags/cybersecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>cybersecurity</span></a> <a href="https://ioc.exchange/tags/infosec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>infosec</span></a></p>
mark carter<p>🛡️ 'Dead simple' hijacking hole in Apache Tomcat 'now actively exploited in the wild'. Authentication is not required to pull off an attack, and the end result is the ability to run arbitrary code on the targeted Tomcat server by miscreants, allowing them to access data among other nefarious things. "We've already seen this in operation by Chinese operators, and CISA [The US government's Cybersecurity and Infrastructure Security Agency] got in touch tonight and are going to add the exploit to its warning list," Ivan Novikov Wallarm's CEO, told The Register </p><p><a href="https://www.theregister.com/2025/03/18/apache_tomcat_java_rce_flaw/" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://www.</span><span class="ellipsis">theregister.com/2025/03/18/apa</span><span class="invisible">che_tomcat_java_rce_flaw/</span></a> <a href="https://infosec.exchange/tags/Infosec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Infosec</span></a></p>
Shodan Safari<p>ASN: AS24994<br>Location: Fiumicino, IT<br>Added: 2025-03-14T22:45</p><p><a href="https://infosec.exchange/tags/shodansafari" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>shodansafari</span></a> <a href="https://infosec.exchange/tags/infosec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>infosec</span></a></p>
Shodan Safari<p>ASN: AS29119<br>Location: Madrid, ES<br>Added: 2025-03-13T22:30</p><p><a href="https://infosec.exchange/tags/shodansafari" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>shodansafari</span></a> <a href="https://infosec.exchange/tags/infosec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>infosec</span></a></p>
ExploreLive feeds
Mastodon is the best way to keep up with what's happening.
Follow anyone across the fediverse and see it all in chronological order. No algorithms, ads, or clickbait in sight.
Create accountLoginDrag & drop to upload