Researchers have developed an #AI model trained with data from the Darknet – DarkBERT's source are hackers, cybercriminals, and the politically persecuted.
Don't take the unnecessary risk of running #Wireshark as #root. Instead, create your capture file (.cap, .pcap) with #tcpdump (sudo tcpdump -i eth0 -w file.pcap), then open it for analysis in Wireshark as your regular non-root user. 👍 #networking#cybersecurity#soc#gnu#linux#cli
Cybersecurity professionals who promote fear are doing harm to overall cybersecurity awareness training efforts.
As an example, I received this inquiry from a person who was unnecessarily afraid to use a legitimate payment system. Read their question and my reply below:
"Hi Bob, I have a tech question for you. I just had my car serviced at the dealer. They offered a pickup and return service (of the car) which I used, so I did not physically have to go there. When they were done they texted me a copy of the bill and there was a link to make the payment. Since I wasn’t sure how safe that was I called and made the payment, but for future reference I thought I’d ask you if it is a safe/secure way to pay.
Thanks"
My reply:
"Yes! It's safe and secure to use a link in a text message, or QR code, given to you directly by a local business. That business is paying a transaction fee to use an online credit card payment services provider."
Instead of fostering fear, teach people how to distinguish between legitimate payment links and payment links from scammers.
For anyone even vaguely interested in infosec, I highly recommend the Darknet Diaries podcast. Even if you're not deep in the weeds of security, there's lots to learn for people that like to know about the darker side of the internet. #cybersecurity
Excellent writeup on obtaining root command execution on Netatalk daemon on Western Digital MyCloudHom NAS.
credits: Etienne Helluy-Lafont and Luca Moro
It looks like Royal also hit Westside Community Services in SF. Their website is not working now, but their Twitter account describes them as "Serving SF's community since 1967. Providing free mental health, substance abuse, recovery, and housing services in the city. Visit our website for more!"
Nokowaya also has some listings I have not seen elsewhere, including a data dump with sensitive info allegedly from Wyoming County Community Health System in New York. They claim to have exfiltrated 150 GB of files.
There is no notice on the health system's site. I have reached out to them and will update when I find out more.