📨 Latest issue of my curated #cybersecurity and #infosec list of resources for week #06/2024 is out! It includes the following and much more:
➝ 🔓 #Juniper Support Portal Exposed Customer Device Info
➝ 🔓 🇹🇭 Major #DataBreach in #Thailand Exposes Personal Data of 20 Million Elderly Citizens
➝ 🔓 🇫🇷 Millions at risk of fraud after massive health data hack in #France
➝ 🔓 🇺🇸 #Verizon employee inadvertently leaks data of 63 thousand colleagues
➝ 🔓 🖥️ #AnyDesk Hacked: Revokes Passwords, Certificates in Response
➝ 🔓 🇺🇸 #Clorox says #cyberattack caused $49 million in expenses
➝ 💸 📈 #Ransomware Payments Exceed $1 Billion in 2023, Hitting Record High After 2022 Decline
➝ 🇺🇸 💰 US offers $10 million for tips on #Hive ransomware leadership
➝ 🇨🇳 🇺🇸 #China-backed Volt Typhoon hackers have lurked inside US #criticalinfrastructure for ‘at least five years’
➝ 🇨🇳 🇳🇱 Chinese Hackers Exploited #FortiGate Flaw to Breach Dutch #Military Network
➝ 🇮🇷 🇮🇱 #Iran accelerates cyber ops against #Israel from chaotic start
➝ 🇧🇾 🇺🇸 Belarusian National Linked to BTC-e Faces 25 Years for $4 Billion #Crypto Money Laundering
➝ 🇭🇰 💸 #Finance worker pays out $25 million after video call with #deepfake ‘chief financial officer’
➝ 🇺🇦 #ukraine is Creating a ‘Cyber Diplomat’ Post
➝ 🇩🇰 #Denmark orders schools to stop sending student data to #Google
➝ 🇪🇺 ⚖️ #EU proposes criminalizing AI-generated child sexual abuse and deepfakes
➝ 🇳🇱 💰 #Uber Fined 10 Million Euros by Dutch Data Regulator
➝ 🇺🇸 🛂 US to Roll Out Visa Restrictions on People Who Misuse #Spyware to Target Journalists, Activists
➝ 🦠 💬 Raspberry Robin #Malware Upgrades with #Discord Spread and New Exploits
➝ 🦠 🍎 New #macOS Backdoor Linked to Prominent Ransomware Groups
🦠 🪥 Surprising 3 Million Hacked #Toothbrushes Story Goes Viral—Is It True?
➝ 🇨🇦 🐬 #Canada declares #FlipperZero public enemy No. 1 in car-theft crackdown
➝ 🩹 #Ivanti: Patch new Connect Secure auth bypass bug immediately
➝ 🐛 📍 Security flaw in a popular smart helmet allowed silent location tracking
➝ 🩹 Critical Patches Released for New Flaws in #Cisco, #Fortinet, #VMware Products
➝ 🐛 🐧 Critical Boot Loader #Vulnerability in Shim Impacts Nearly All #Linux Distros
➝ 🐛 ✈️ #Airbus App Vulnerability Introduced Aircraft Safety Risk
➝ 🩹 #QNAP Patches High-Severity Bugs in QTS, Qsync Central
--
📚 This week's recommended reading is: "x86 Software Reverse-Engineering, Cracking, and Counter-Measure" by Stephanie Domas & Christopher Domas
--
Subscribe to the #infosecMASHUP newsletter to have it piping hot in your inbox every week-end ⬇️
"The State Department is offering a reward of up to $10 million for information about the identity or location of the leaders of a global ransomware gang, known as Hive, the agency announced on Thursday. It is also offering up to $5 million for information leading to the arrest or conviction of anyone involved with Hive."
Beehive FLIR. The bright yellow area is warmer--where the hive is clustered. If you put your ear or a stethoscope up to the side of the hive, you can hear the colony gently beating their wings to generate heat. #beekeeping#flir#infrared
Same beehive with slightly different tones. Will be interesting to see what size this hive actually is. I am going to say 3-4 frames, in the bottom hive. #beekeeping#bees#flir#infrared#imaging#hive#beehive
📨 Latest issue of my curated #cybersecurity and #infosec list of resources for week #50/2023 is out! It includes the following and much more:
➝ 🔓 🇺🇸 U.S. nuclear research lab #databreach impacts 45,000 people
➝ 🇩🇪 #Toyota Germany Says Customer Data Stolen in #Ransomware Attack
➝ 🔓 🏧 #Bitcoin ATM company Coin Cloud got hacked. Even its new owners don’t know how
➝ 🔓 🇺🇸 Norton #Healthcare discloses data breach after May ransomware attack
➝ 🇷🇺 Russian SVR-Linked #APT29 Targets #JetBrains TeamCity Servers in Ongoing Attacks
➝ 👥 #LockBit ransomware now poaching #BlackCat, NoEscape affiliates
➝ 🇻🇳 💻 #Microsoft seizes domains used to sell fraudulent #Outlook accounts
➝ 🇫🇷 💸 French police arrests Russian suspect linked to #Hive ransomware
➝ 🇨🇳 Chinese APT Volt Typhoon Linked to Unkillable SOHO Router #Botnet
➝ 🇺🇦 🇷🇺 Ukrainian military says it hacked #Russia's federal tax agency
➝ 🇨🇳 🚪 Researchers Unmask Sandman APT's Hidden Link to China-Based #KEYPLUG Backdoor
➝ 🇺🇦 📡 #Ukraine’s largest mobile communications provider down after apparent #cyberattack
➝ 🇪🇸 Kelvin Security hacking group leader arrested in #Spain
➝ 🔻 👮🏻♂️ #ALPHV ransomware site outage rumored to be caused by law enforcement
➝ 📹 🕵🏻♂️ #UniFi devices broadcasted private video to other users’ accounts
➝ 🇷🇺 🇪🇺 Russian Diplomat Expelled Amid EU Spy Purge Is Now An OSCE Election Observer In Serbia
➝ 🇺🇸 Harry Coker confirmed to be the next National Cyber Director
➝ 🇪🇸 🇺🇸 Spain expels two US spies for infiltrating secret service
➝ 📝 #MITRE Unveils EMB3D Threat Model for Embedded Devices Used in Critical Infrastructure
➝ 🩹 #ICS Patch Tuesday: Electromagnetic Fault Injection, Critical Redis Vulnerability
➝ 🦠 🇵🇸 New Pierogi++ #Malware by #Gaza Cyber Gang Targeting Palestinian Entities
➝ 🦠 🇮🇷 Iranian State-Sponsored #OilRig Group Deploys 3 New Malware Downloaders
➝ 🦠 🇩🇪 New MrAnon Stealer Malware Targeting German Users via Booking-Themed #Scam
➝ 🍪 #Google's New Tracking Protection in Chrome Blocks Third-Party #Cookies
➝ 🐛 👨🏻💻 #Zoom Unveils Open Source Vulnerability Impact Scoring System
➝ 🩹 🧱 #Sophos backports RCE fix after attacks on unsupported #firewalls
➝ 🔓 🧱 Over 1,450 #pfSense servers exposed to RCE attacks via bug chain
➝ 🩹 🍏 #Apple Ships iOS 17.2 With Urgent Security #Patches
➝ 🐛 Over 30% of #Log4J apps use a vulnerable version of the library
📚 This week's recommended reading is: "Black Hat Python, 2nd Edition: Python Programming for Hackers and Pentesters (2nd Edition)" by Justin Seitz and Tim Arnold
Subscribe to the #infosecMASHUP newsletter to have it piping hot in your inbox every week-end ⬇️
Europol gelingt in Ukraine Schlag gegen Cyberkriminelle
Sie sollen für Hunderte Cyberangriffe und Erpressungen des zerschlagenen Netzwerks "Hive" verantwortlich sein - jetzt haben Ermittler in der Ukraine einen mutmaßlichen Hacker-Anführer und Komplizen festgenommen.
For some reason my Hive Integration in @homeassistant just stopped working about an hour ago. This coincided with the hive hub losing connection to the boiler which i have since resolved by following it's troubleshooting steps, and all my hive devices are working and connected to the cloud, but the entities in #homeassistant are still showing as unavailable. Has anyone else experienced problems like this with #hive and Home Assistant?
Always makes me smile when podcasters and others say 'crypto is a dead fad' when I am using it every day via #Hive. Yes there is still plenty of hype about various coins, but we just get on with changing lives.
I want to see this documentary about #Hive even though I know most of the story of how it broke away from a blockchain that got taken over by a predatory 'entrepreneur'. The community run it now. There are a lot of closed minds when it comes to #cryptocurrency, but you cannot generalise about it. Hive offers something different and is changing lives.
>Resources will be reallocated to slowing the spread of the #pest
>Non-compliance from #beekeepers and illegal #hive movement was a major factor in the failed eradication effort
>#Government and #industry groups made the unanimous decision to move to a #management approach
Our original #hive has made what we think is a queen cell. 🤔😆 It was not there when we did hive inspections and introduced a frame of brood from the swarm hive. Interestingly, this creation is not on that frame! The plot thickens. Still a mystery. We were thinking, timing wise, that this queen cell must be very close to hatching between today and tomorrow as it wasn't there on Labor Day. #beekeeping#bees
Did #beehive inspections today. Our original #hive is still in stasis - a lot of #honey, but very little brood, & are only working on the original 5 drawn out frames that came with the #nuc we purchased in spring. There must be a new #virginqueen in the hive because we saw a few larva. We cannot figure out why she hasn't laid a bunch of brood, unless she died recently. Stumped.
In contrast, our swarm hive is outta control & made burr comb on the underside of the queen excluder!😂 #Beekeeping /1
How is this not illegal? You prevent my equipment that was working perfectly fine from working and demand money from me for a new one? Isn't that extortion? #Hive#BritishGas
More #beekeeping and #science. Audio recording of an annoyed hive (spicier than others, harvesting honey... a couple of stings to my son's suit, lots of angry head bopping) here.
#beekeeping#science Here's the recording of a #calm hive. We opened it, this is about 10 minutes later when they are just happily gathering honey, and ignoring the beekeepers. You'll note you don't hear any angry bees flying around... just a constant hum (probably some of these #bees blowing air into the #hive) Temps around 82-85F.
#beekeeping#science Sound frequency analysis on this calm #hive. D#3, D#4 are the primary frequencies. Not sure what corresponds with what, but it's interesting they are different.
Wired vient de sortir un excellent comparatif entre les nouvelles #apps de réseaux sociaux concurrents de #Twitter et notamment quelles données captent-ils ?
En résumé, faut mieux éviter #Threads#hive#spill. #bluesky, la nouvelle app de Dorsey s'en sort relativement... Eh bien sûr #mastodon les bat tous haut la main sur la protection de nos données.
This may be a very unpopular take on here, but I feel that some people on #ActivityPub / #Fediverse are showing some elitism.
While I do understand the very real threat that #Meta poses to communities and understand the want...I'm sorry...NEED to protect them, a lot more people are out here trying to take some moral high ground.
It just seems really weird to me outside of the desire to be trendy by hating on the next big thing, but also being very assholey to those who choose to or have to use it in order to communicate.
Understand, for most people, the Fediverse is complicated and they want something simple.
Others have businesses where their clientele are on other platforms.
I feel that the hostility that people are showing to the platform and to those who use it because "it's cool to dump on #Meta" are actually going to be what hinders people from coming over from other platforms when they realize it's just not working for them.
@davew I think #Hive allows for 64k, but I may be wrong. I've never run out. This site allows for a comment feed and those don't have titles. People are running microblogs using comments. You can build what you want on it. https://hiverss.com/