@cyberdef.bsky.social
Reposted
Sometimes one way to say "thank you" just isn't enough, so merci, danke *and* bedankt 🇧🇪
March 24, 2025 at 4:48 PM
Sometimes one way to say "thank you" just isn't enough, so merci, danke *and* bedankt 🇧🇪
Reposted
Use Signal; use Tor.
Wait, not like that.
Wait, not like that.
March 24, 2025 at 6:14 PM
Use Signal; use Tor.
Wait, not like that.
Wait, not like that.
Reposted
Incredible things are happening
You cannot make this shit up. Sharing this jaw-dropping story with a gift link -- give it a read.
The Trump Administration Accidentally Texted Me Its War Plans
U.S. national-security leaders included me in a group chat about upcoming military strikes in Yemen. I didn’t think it could be real. Then the bombs started falling.
www.theatlantic.com
March 24, 2025 at 4:39 PM
Incredible things are happening
Reposted
I just joined the @bellingcat.com community Discord and I'm obsessed 🖤
it has this gamer-retro vibes, but with loving moderation and rules! like... the best side of the internet. PLUS a bunch of OSINT nerds omg 🌟 I've made so many new friends already lol
it has this gamer-retro vibes, but with loving moderation and rules! like... the best side of the internet. PLUS a bunch of OSINT nerds omg 🌟 I've made so many new friends already lol
March 18, 2025 at 7:58 PM
I just joined the @bellingcat.com community Discord and I'm obsessed 🖤
it has this gamer-retro vibes, but with loving moderation and rules! like... the best side of the internet. PLUS a bunch of OSINT nerds omg 🌟 I've made so many new friends already lol
it has this gamer-retro vibes, but with loving moderation and rules! like... the best side of the internet. PLUS a bunch of OSINT nerds omg 🌟 I've made so many new friends already lol
Reposted
Ma tu guarda. Potrebbe essere utile avere l’indirizzo e-mail di Elon Musk.
Non c’è il suo numero di fax, ma non si può avere tutto dalla vita.
Non c’è il suo numero di fax, ma non si può avere tutto dalla vita.
March 7, 2025 at 7:24 AM
Ma tu guarda. Potrebbe essere utile avere l’indirizzo e-mail di Elon Musk.
Non c’è il suo numero di fax, ma non si può avere tutto dalla vita.
Non c’è il suo numero di fax, ma non si può avere tutto dalla vita.
Reposted
It's the entire email list for all DOGE employees. Have fun!
March 6, 2025 at 5:21 PM
It's the entire email list for all DOGE employees. Have fun!
Reposted
10 Chinese Nationals Charged With Large-Scale Hacking Of U.S. And International Victims On Behalf Of The Chinese Government (4 March 2025) www.justice.gov/usao-sdny/pr...
Indictment (.pdf, 27 pages) www.justice.gov/usao-sdny/me...
Re: i-Soon aka Anxun Information Technology.
Indictment (.pdf, 27 pages) www.justice.gov/usao-sdny/me...
Re: i-Soon aka Anxun Information Technology.
10 Chinese Nationals Charged With Large-Scale Hacking Of U.S. And International Victims On Behalf Of The Chinese Government
Matthew Podolsky, the Acting United States Attorney for the Southern District of New York; Sue J. Bai, the Head of the U.S. Department of Justice’s National Security Division; and Leslie R. Backschies...
www.justice.gov
March 7, 2025 at 5:42 AM
10 Chinese Nationals Charged With Large-Scale Hacking Of U.S. And International Victims On Behalf Of The Chinese Government (4 March 2025) www.justice.gov/usao-sdny/pr...
Indictment (.pdf, 27 pages) www.justice.gov/usao-sdny/me...
Re: i-Soon aka Anxun Information Technology.
Indictment (.pdf, 27 pages) www.justice.gov/usao-sdny/me...
Re: i-Soon aka Anxun Information Technology.
Reposted
Employees going onto social media to express confusion over their network being hit by Qilin ransomware
Indeed, "Fun day at the office"
Indeed, "Fun day at the office"
February 28, 2025 at 2:29 AM
Employees going onto social media to express confusion over their network being hit by Qilin ransomware
Indeed, "Fun day at the office"
Indeed, "Fun day at the office"
Reposted
Reposted
Two years after Apple introduced an encrypted storage feature for iPhone users, the company is pulling those security protections in Britain rather than comply with a government request that it create a tool to give law enforcement organizations access to customers’ cloud data.
Apple Pulls iPhone Security Feature in UK
Law enforcement in the country was pressuring the company to create a tool that would act like a back door into customers’ data.
www.nytimes.com
February 22, 2025 at 6:50 AM
Two years after Apple introduced an encrypted storage feature for iPhone users, the company is pulling those security protections in Britain rather than comply with a government request that it create a tool to give law enforcement organizations access to customers’ cloud data.
Reposted
Yeesh. I suspect the same could happen here. www.theguardian.com/technology/2...
Apple removes advanced data protection tool in face of UK government request
Apple says removal of tool after government asked for right to see data will make iCloud users more vulnerable
www.theguardian.com
February 21, 2025 at 10:28 PM
Yeesh. I suspect the same could happen here. www.theguardian.com/technology/2...
Reposted
UPDATE: Someone from Signal's dev team reached out to me. Where things go from here, I don't know. But the at least they're aware of it, and will hopefully implement the (likely simple) patch in an upcoming update
Attempts to notify @signal.org (via email and intermediary) have repeatedly failed.
🚨 Using the Signal app to send a voice memo may reveal metadata indicating the type of device and OS you're using. 🚨
This can help track users (at desk or away) or be combined with other exploits targeting devices.
🚨 Using the Signal app to send a voice memo may reveal metadata indicating the type of device and OS you're using. 🚨
This can help track users (at desk or away) or be combined with other exploits targeting devices.
To answer a few questions early: as far as I can tell, it does not compromise the user's identity or encryption, but it does reveal things about the device they're using
February 22, 2025 at 2:05 PM
UPDATE: Someone from Signal's dev team reached out to me. Where things go from here, I don't know. But the at least they're aware of it, and will hopefully implement the (likely simple) patch in an upcoming update
Reposted
Mullvad labels us adult-content. You cannot visit vx-underground if "Adult Content' option is enabled.
Malware is now erotic
Malware is now erotic
February 18, 2025 at 6:16 PM
Mullvad labels us adult-content. You cannot visit vx-underground if "Adult Content' option is enabled.
Malware is now erotic
Malware is now erotic
Reposted
The U.K. government doesn't want you to encrypt your iCloud data, which means you should definitely turn on Advanced Data Protection under Settings and iCloud. freedom.press/issues/secre...
Secret U.K. spy order imperils press freedom
By demanding a back door into end-to-end encrypted iCloud data, the U.K. undermines journalist-source confidentiality
freedom.press
February 14, 2025 at 11:38 AM
The U.K. government doesn't want you to encrypt your iCloud data, which means you should definitely turn on Advanced Data Protection under Settings and iCloud. freedom.press/issues/secre...
Reposted
Finally, after a very long review process, our new paper (with @ikiga1.bsky.social, @scinawa.bsky.social and @johnmc88.bsky.social) is out!
We explore how promising is Quantum Machine Learning for cybersecurity applications.
www.sciencedirect.com/science/arti...
We explore how promising is Quantum Machine Learning for cybersecurity applications.
www.sciencedirect.com/science/arti...
Evaluating the potential of quantum machine learning in cybersecurity: A case-study on PCA-based intrusion detection systems
Quantum computing promises to revolutionize our understanding of the limits of computation, and its implications in cryptography have long been eviden…
www.sciencedirect.com
February 6, 2025 at 3:06 PM
Finally, after a very long review process, our new paper (with @ikiga1.bsky.social, @scinawa.bsky.social and @johnmc88.bsky.social) is out!
We explore how promising is Quantum Machine Learning for cybersecurity applications.
www.sciencedirect.com/science/arti...
We explore how promising is Quantum Machine Learning for cybersecurity applications.
www.sciencedirect.com/science/arti...
Reposted
February 2, 2025 at 10:33 PM
Reposted
Just read Google's report on APTs abusing Gemini, where they claim their guardrails prevented development of a Chrome infostealer. Either the threat actors they're dealing with are dumb as hell, or Google is way overstating their anti-abuse capabilities. This was literally my first attempt.
February 2, 2025 at 6:40 PM
Just read Google's report on APTs abusing Gemini, where they claim their guardrails prevented development of a Chrome infostealer. Either the threat actors they're dealing with are dumb as hell, or Google is way overstating their anti-abuse capabilities. This was literally my first attempt.
Reposted
Reposted
Here we are! 🥳 ISSA International is trying our hand at the BlueSky platform, and this is our first post! 🎊
Due to Member requests, we have added this profile to our Social Media portfolio. Follow us and let us know what you would like to see more of posted here!
#cybersecurity #ISSAIntl
Due to Member requests, we have added this profile to our Social Media portfolio. Follow us and let us know what you would like to see more of posted here!
#cybersecurity #ISSAIntl
January 24, 2025 at 11:57 PM
Here we are! 🥳 ISSA International is trying our hand at the BlueSky platform, and this is our first post! 🎊
Due to Member requests, we have added this profile to our Social Media portfolio. Follow us and let us know what you would like to see more of posted here!
#cybersecurity #ISSAIntl
Due to Member requests, we have added this profile to our Social Media portfolio. Follow us and let us know what you would like to see more of posted here!
#cybersecurity #ISSAIntl
Reposted
Marc is one of the best humans I met in the hacking world. I promise: even if you don’t know, he probably protected you (your freedom, your rights and/or your data) at least once.
He will fight like hell, and the least we can do is to have his back this time: gofund.me/334b8f7e
He will fight like hell, and the least we can do is to have his back this time: gofund.me/334b8f7e
Donate to Support Marc Rogers' Road to Recovery, organized by Katie Vogel
cjunkie (Marc Rogers) is an invaluable and beloved member of our hacker community: a… Katie Vogel needs your support for Support Marc Rogers' Road to Recovery
gofund.me
January 6, 2025 at 9:37 AM
Marc is one of the best humans I met in the hacking world. I promise: even if you don’t know, he probably protected you (your freedom, your rights and/or your data) at least once.
He will fight like hell, and the least we can do is to have his back this time: gofund.me/334b8f7e
He will fight like hell, and the least we can do is to have his back this time: gofund.me/334b8f7e
Reposted
I'm creating a proactive Defender AV performance monitoring solution, and we can now query potential AV impacts! :)
This uses a script (Live response, Intune, etc) to send MPLog EstimatedImpact events to Log Analytics via Logs Ingestion API
Setup/script:
github.com/nathanmcn...
This uses a script (Live response, Intune, etc) to send MPLog EstimatedImpact events to Log Analytics via Logs Ingestion API
Setup/script:
github.com/nathanmcn...
December 23, 2024 at 11:23 PM
I'm creating a proactive Defender AV performance monitoring solution, and we can now query potential AV impacts! :)
This uses a script (Live response, Intune, etc) to send MPLog EstimatedImpact events to Log Analytics via Logs Ingestion API
Setup/script:
github.com/nathanmcn...
This uses a script (Live response, Intune, etc) to send MPLog EstimatedImpact events to Log Analytics via Logs Ingestion API
Setup/script:
github.com/nathanmcn...
Reposted
This article documents some interesting tactics, including using the voices of prominent professors to create synthetic audio content, overlaid onto images and videos, in ways that suggest the professor and their academic institution have created/endorsed the message.
Everybody's moving from X to Bluesky, including the Russian disinfo network “Matryoshka.” theins.ru/en/news/277378
Russian disinfo network “Matryoshka” is migrating to Bluesky as exodus from X continues
The Russian disinformation network “Matryoshka” has launched a new campaign on the Bluesky social network. Eliot Higgins, founder of the investigative journalism group Bellingcat, has been one of the ...
theins.ru
December 21, 2024 at 10:18 PM
This article documents some interesting tactics, including using the voices of prominent professors to create synthetic audio content, overlaid onto images and videos, in ways that suggest the professor and their academic institution have created/endorsed the message.
Reposted
CTO at NCSC Summary: week ending December 22nd
🤶 Santa 🎅edition 🧑🎄
ctoatncsc.substack.com
December 20, 2024 at 6:11 PM