GossiTheDog

campuscodi, 11 days ago to random

Cisco has rolled out patches for the Webex application to fix a bug that allowed unauthorized access to Webex meetings and metadata information.

The company says the bugs were exploited by security researchers at the end of May.

Cisco is notifying customers who had their data collected during the research.

https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-webex-june-2024

selenalarson, 13 days ago to random

Data brokers are bad enough, but imagine executives sell data to worse criminals who fraud the elderly and others. I hope they get the maximum.

“The scheme lasted for 10 years, resulting in hundreds of thousands of Americans losing large sums of money to fraudsters in what was essentially a targeted, data-driven scam.”

https://www.bleepingcomputer.com/news/legal/data-firm-execs-convicted-for-helping-fraudsters-target-the-elderly/

mjg59, 16 days ago to random

Just got handed yhis

GossiTheDog, 17 days ago to random

Very big cyber incident playing out at Snowflake, who describe themselves as “AI Data Cloud”. They have a free trial where anybody can sign up and upload data… and they have.

Threat actors have been scraping customer data using a tool called rapeflake, for about a month.

campuscodi, 17 days ago to random

Microsoft not saying a peep about the Recall privacy scandal is a huge tell of how much the company is focused on security

We should have had a statement by now that Recall is either re-engineered or removed

zackwhittaker, 18 days ago to random

Turns out there are a lot more U.S. hotel check-in computers compromised by pcTattletale spyware, according to an analysis of the data breach by @maia.

"Almost 270 computers at Wyndham locations had pcTattletale installed at some point."

pcTattletale has since shut down following a data breach over the weekend that exposed the information of its customers and victims.

https://maia.crimew.gay/posts/wyndham-defrauded/

evacide, 18 days ago to random

"I cannot be phased by being condescended to by old white men in legislative meetings. I have worked many years in infosec and I am dead inside" is an actual thing I said in an all-hands meeting yesterday.

campuscodi, 18 days ago to random

A coalition of international law enforcement agencies have taken down servers from multiple malware-loader botnets

Listed "victims" include:

-IcedID
-SystemBC
-Pikabot
-Smokeloader
-Bumblebee
-Trickbot

LEA calls the campaign Operation Endgame: https://operation-endgame.com/

Europol: https://www.europol.europa.eu/media-press/newsroom/news/largest-ever-operation-against-botnets-hits-dropper-malware-ecosystem

abuse_ch, 18 days ago to random

We are proud to announce that we assisted the joint international law enforcement operation #OperationEndgame, targeting the notorious botnets #IcedID, #Smokeloader, #SystemBC and #Pikabot 🔥

abuse.ch has provided key infrastructure to LEA and internal partners to disrupt these botnet operations 🛑

More information on the operation is available here:
👉 https://operation-endgame.com/

tdp_org, 19 days ago to infosec

On/around 27th May 2024, the traffic from Azerbaijan to www.bbc.com & www.bbc.co.uk reduced by over 80%.
Looking at our data, I can see that the vast majority of traffic in Azerbaijan comes from AS29049 (Delta Telecom) which is their majority ISP according to Wikipedia.
OONI says tests were passing as recently as 28th May from AS29049 but there's definitely something going on...Unsure exactly what.
(the gap in AS29049 is a GeoIP data migration)
#Azerbaijan #Censorship #InfoSec

Graph showing the daily total requests by Network AS. This shows a corresponsing drop, mainly on AS29049, Delta Telecom
OONI (ooni.org) data showing passing tests from AS29049 to www.bbc.com over the last month, all tests are passing but there are none since the 28th May

forrestbrazeal, 20 days ago to random

idk why people say funding OSS is difficult

jasonkoebler, 19 days ago to random

My explainer of exactly what's happening in the Ticketmaster monopoly case and why Live Nation is so powerful in the first place

https://www.404media.co/the-monopoly-case-against-ticketmaster-explained/

zackwhittaker, 19 days ago to random

NEW, by me: Spyware maker pcTattletale says it's shuttered and is "out of business" after a data breach over the weekend.

pcTattletale founder Bryan Fleming said he no longer has access to the company’s Amazon Web Services account, which he used to store upwards of 300 million screenshots from victims' devices over several years.

It looks like Amazon may have taken action against the spyware maker.

More: https://techcrunch.com/2024/05/28/pctattletale-spyware-shutters-data-breach/

LukaszOlejnik, 20 days ago to random

Israel allegedly conducted cyberespionage operations on International Criminal Court (ICC) for 9 years. Allegedly to intimidate the ICC and disrupt investigations into potential Israeli war crimes in Gaza. https://www.theguardian.com/world/article/2024/may/28/spying-hacking-intimidation-israel-war-icc-exposed

GossiTheDog, 20 days ago to random

deleted_by_author

antoinnesterk, 22 days ago to photography

Strandreservaat Noordvoort

#SilentSunday #Photography

detective, 22 days ago to random

I was able to get Recall working on this bad boy 😎
Snapdragon 7c+ Gen3, 3.4 GB of RAM, no NPU in sight

Will cook up a tutorial soon, it's surprisingly good even on something this low spec 😊 If you have any questions I'll do my best to answer them ✍️

image/png
image/png
image/png

pcottle, 23 days ago to random

I've always found the code golf / demo scene so impressive. This visualization from Frank Force below fits in a 256 byte standalone HTML file and produces a whole world and feeling

<canvas style=width:99% id=c onclick=setInterval('for(c.width=w=99,++t,i=6e3;i--;c.getContext2d.fillRect(i%w,i/w|0,1-d*Z/w+s,1))for(a=i%w/50-1,s=b=1-i/4e3,X=t,Y=Z=d=1;++Z<w&(Y<6-(32<Z&27<X%w&&X/9^Z/8)*8%46||d|(s=(X&Y&Z)%3/Z,a=b=1,d=Z/w));Y-=b)X+=a',t=9)>

christopherkunz, 25 days ago to random

A couple of days ago, LockBit had published an entry on their leaksite titled "telekom.com". I asked the Telekom press corps and they denied any incident.

Yesterday, LB also published the data allegedy from Telekom. I had a look at the files. So far, it seems that nothing in the 1.2GByte directory on their file share has anything to do with Deutsche Telekom. It seems that in fact, they breached a client PC owned by a non-profit in Hamburg.

#lockbit #threatintel

jasonkoebler, 26 days ago to random

An extremely bogus DMCA threat from cops against a shop selling a 'FUCK THE LAPD' shirt has helped the company's entire store sell out of almost everything they make. "Streisand effect in effect."

https://www.404media.co/fuck-the-lapd-shirt-makers-entire-shop-sold-out-after-cops-threaten-him/

pythoneer, 26 days ago to UKpolitics

🎵 "Things... can only get wetter" 🎵 😆 #UKpolitics #GE2024

GossiTheDog, 27 days ago to random

For those who aren’t aware, Microsoft have decided to bake essentially an infostealer into base Windows OS and enable by default.

From the Microsoft FAQ: “Note that Recall does not perform content moderation. It will not hide information such as passwords or financial account numbers."

Info is stored locally - but rather than something like Redline stealing your local browser password vault, now they can just steal the last 3 months of everything you’ve typed and viewed in one database.

video/mp4

selenalarson, 29 days ago to random

Devastated that my fav hot sauce appears to be discontinued, anyone have a good rec for a smoky ghost pepper based hot sauce?

evacide, 1 month ago to random

I see that everything is going fine over at the Hellsite.