Let's do a Twitter era thing, especially in the #infosec community but not limited to...: Follow Friday! These people are a great follow. Whether it's content, opinions, and/or professional acumen, but friendship, comradery, and/or kindness. #FF aaaaannnnnd.
Hardenhuish School, a mixed secondary academy in Chippenham, UK, sent texts to parents and guardians of its 1,623 pupils notifying them of a ransomware attack. The identity of the ransomware group has not been revealed as yet.
Nowa rozmowa z cyklu "Rewolucja AI", który prowadzą @mateuszchrobok i Tomasz Rożek z "Nauka. To lubię" - tym razem o zagrożeniach (obecnych i potencjalnych) związanych ze sztuczną inteligencją
I can't think of the the appropriate snarky comment. I feel reminded of @HalvarFlake
mentioning in a talk that the one thing that helps with security is to limit/control complexity. #x86#infosec
Appears that Aspen Dental is a victim of a cyberattack. Not much known other than multiple business applications were affected and at least one user on Reddit is stating patient services are affected as well. Could only find one news article on this so far. No details but definitely seems to be following the standard ransomware attack path.
Just because I co-wrote a tech report critiquing a ZT roadmap (harshly, I might add) doesn't mean I want to spend an hour listening to you talk about your spreadsheet.
Are there any good sources that track recent breaches and compromised websites? A blog format is ideal but I'm interested in anything online. Reddit and Twitter used to be great sources but both have become pretty useless for this. #NetSec#InfoSec#ComputerSecurity#Hacking#Security
If you are using cloud sync on Google Authenticator, don’t. The syncing process is unencrypted, which is bad because Google can see them. If Google’s server get hacked, an attacker can gain access to them.
End to End Encryption will eventually come, but I would avoid Google Authenticator and use something else.
Security ProTip: If you have already enabled syncing in Google Authenticator and now changed your mind and want to use the app offline, opting out won't delete your tokens and their metadata from Google servers.
To remove your data from the cloud and use the app offline, you need to follow these steps:
1- Make sure syncing is active
2- Either back up the existing tokens by exporting them, or invalidate them by requesting new ones from each service (don't scan the new QR codes in this app yet)
3- Delete all the accounts from your Google Authenticator, this will let the app sync the deletion action with the cloud, and remove the accounts from the cloud, too
4- Now tap on your profile picture in the upper-right corner and tap on "Use Authenticator without an account" as shown in the screenshot*
5- Import the existing tokens from your backup or add new ones
Good day netizens. My name is Blue, and May 2023 marks my 9th year in the IT industry. I have worked a variety of roles from hands-on computer repair to NOC tech to Sys admin and more. In that time, I have accrued several certifications including the #CompTIA Net+, Sec+, Pen+, and CNVP. I'm currently looking for #remotework ideally for anywhere in the #US . I'm targeting #cybersecurity roles, since that is what I am passionate about and have my certifications in, but I am also open to other IT roles such as sysadmin, netadmin, etc. I'm a #trans woman #caretaker trying to provide for her #LGBTQIA family and any increase in pay would greatly help us make ends meet as we try to #flee our unsafe state and live in relative peace. Boosts and sharing is welcome, thanks for your time and help. #getfedihired#breakingintoinfosec#infosec#informationtechnology#sysadmin#netadmin
The Ukrainian cyber police have arrested a 36-year-old man from the city of Netishyn for selling the personal data and sensitive information of over 300 million people, citizens of Ukraine, and various European countries.
Just a reminder, if your 2FA codes are stored in your cloud provider along with the passwords, you don't have 2FA anymore.
Do NOT turn on Google Authenticator sync as it significantly decreases your security and apparently gives Google access to them..
If you want to backup your codes, buy a dedicated memory card for your point and shoot camera, and take photos of the QR codes obtained via Transfer accounts -> Export accounts.