Aryeh Goretsky
@goretsky.bsky.social
@ESET Distinguished Researcher | alum of McAfee, Microsoft MVP, Tribal Voice, Zultys | Mod @Lenovo, @Neowin.Net, Scots Newsletter forums | Intel Insider Council | Repost ≠ endorse
List of #United UA cancelled flights Nov 7-9: old.reddit.com/r/unitedairl...
UA Canceled Flight List for November 07, 2025; November 08, 2025; November 09, 2025
Posted in r/unitedairlines by u/zman9119 • 848 points and 126 comments
old.reddit.com
November 7, 2025 at 5:36 PM
List of #United UA cancelled flights Nov 7-9: old.reddit.com/r/unitedairl...
I was a guest on @secureiqlab.bsky.social's Reining in the Cloud #podcast. Listen in as I talk about the end of support for Windows 10 and what that means: www.spreaker.com/episode/wind...
www.spreaker.com
October 28, 2025 at 3:13 AM
I was a guest on @secureiqlab.bsky.social's Reining in the Cloud #podcast. Listen in as I talk about the end of support for Windows 10 and what that means: www.spreaker.com/episode/wind...
Interesting move.
VirusTotal has decided to team up with Hugging Face where people download open source language models to help identify new threats. #HuggingFace #VirusTotal
Open-source AI platform taps VirusTotal to ensure safety of downloads
VirusTotal has decided to team up with Hugging Face where people download open source language models to help identify new threats.
www.neowin.net
October 23, 2025 at 11:15 PM
Interesting move.
For those in+around Hamburg 🇩🇪 the 39th Chaos Communication Congress (aka 39C3) is December 27-30:
events.ccc.de/congress/202...
events.ccc.de/congress/202...
October 23, 2025 at 7:52 AM
For those in+around Hamburg 🇩🇪 the 39th Chaos Communication Congress (aka 39C3) is December 27-30:
events.ccc.de/congress/202...
events.ccc.de/congress/202...
Reposted by Aryeh Goretsky
#ESETresearch discovered a new wave of the well-known North Korea-aligned Lazarus campaign Operation DreamJob, now targeting the drone industry.
welivesecurity.com/en/eset-rese... 1/9
welivesecurity.com/en/eset-rese... 1/9
October 23, 2025 at 4:10 AM
#ESETresearch discovered a new wave of the well-known North Korea-aligned Lazarus campaign Operation DreamJob, now targeting the drone industry.
welivesecurity.com/en/eset-rese... 1/9
welivesecurity.com/en/eset-rese... 1/9
A trillion web pages is a lot of web pages.
Still, there's so much pre-internet content that never got archived. I've donated a few items to @archive.org and @mediaarchaeology.bsky.social to help ensure they get preserved.
If you have old files, maybe you can arrange to upload them, too.
Still, there's so much pre-internet content that never got archived. I've donated a few items to @archive.org and @mediaarchaeology.bsky.social to help ensure they get preserved.
If you have old files, maybe you can arrange to upload them, too.
October 23, 2025 at 12:34 AM
A trillion web pages is a lot of web pages.
Still, there's so much pre-internet content that never got archived. I've donated a few items to @archive.org and @mediaarchaeology.bsky.social to help ensure they get preserved.
If you have old files, maybe you can arrange to upload them, too.
Still, there's so much pre-internet content that never got archived. I've donated a few items to @archive.org and @mediaarchaeology.bsky.social to help ensure they get preserved.
If you have old files, maybe you can arrange to upload them, too.
A foreign actor infiltrated the National Nuclear Security Administration’s Kansas City National Security Campus using vulnerabilities in Microsoft’s SharePoint browser-based app, raising questions about the need to solidify further federal IT/OT security protections www.csoonline.com/article/4074...
Foreign hackers breached a US nuclear weapons plant via SharePoint flaws
A foreign actor infiltrated the National Nuclear Security Administration’s Kansas City National Security Campus through vulnerabilities in Microsoft’s SharePoint browser-based app, raising questions a...
www.csoonline.com
October 21, 2025 at 3:12 AM
A foreign actor infiltrated the National Nuclear Security Administration’s Kansas City National Security Campus using vulnerabilities in Microsoft’s SharePoint browser-based app, raising questions about the need to solidify further federal IT/OT security protections www.csoonline.com/article/4074...
The APWG's eCrime summit is coming up on Nov 3-7 in San Diego. This looks like a good opportunity to find out what's going on in the #cybercrime landscape: apwg.org/events/ecrim...
APWG
Unifying The Global Response To Cybercrime
apwg.org
October 16, 2025 at 5:08 AM
The APWG's eCrime summit is coming up on Nov 3-7 in San Diego. This looks like a good opportunity to find out what's going on in the #cybercrime landscape: apwg.org/events/ecrim...
For my Colorado-based followers, the BSidesCOS.org security conference is coming up in just under 2 weeks.
Registration is free, includes a t-shirt, there's even a movie afterwards. But you first have to register…
Registration is free, includes a t-shirt, there's even a movie afterwards. But you first have to register…
BSides: Colorado Springs
BSidesCOS.org
October 14, 2025 at 12:08 AM
For my Colorado-based followers, the BSidesCOS.org security conference is coming up in just under 2 weeks.
Registration is free, includes a t-shirt, there's even a movie afterwards. But you first have to register…
Registration is free, includes a t-shirt, there's even a movie afterwards. But you first have to register…
Reposted by Aryeh Goretsky
Game publishers take note.
October 8, 2025 at 9:07 PM
Game publishers take note.
So, I stumbled across a coordinated influence/platform manipulation operation on #reddit:
infosec.exchange/@goretsky/11...
infosec.exchange/@goretsky/11...
Aryeh Goretsky (@goretsky@infosec.exchange)
I stumbled into a case of coordinated platform manipulation on Reddit yesterday. Political. One reads about these kinds of things all the time, but it is interesting seeing one happen right in front...
infosec.exchange
October 6, 2025 at 4:21 AM
So, I stumbled across a coordinated influence/platform manipulation operation on #reddit:
infosec.exchange/@goretsky/11...
infosec.exchange/@goretsky/11...
Went to the park today and saw bighorn sheep doing bighorn sheep things.
October 5, 2025 at 6:01 AM
Went to the park today and saw bighorn sheep doing bighorn sheep things.
You know, I try to go one day, just one single day, without thinking about the Roman Empire… and then this has to show up in my feed.
October 5, 2025 at 3:26 AM
You know, I try to go one day, just one single day, without thinking about the Roman Empire… and then this has to show up in my feed.
Reposted by Aryeh Goretsky
"just upload a scanned image of your drivers license no big deal"
Discord customer service data breach leaks user info and scanned photo IDs
Discord customer service data breach leaks user info and scanned photo IDs
An “unauthorized party” may have accessed the names of users, the last four digits of credit card numbers, and more.
buff.ly
October 4, 2025 at 12:06 AM
"just upload a scanned image of your drivers license no big deal"
Some advice for @discord.com
users I put together on the emerging hack story on #Reddit's r/antivirus group: redd.it/1nxg9ik
H/T @intcyberdigest.bsky.social + @vxundergroundre.bsky.social + @theverge.com!
users I put together on the emerging hack story on #Reddit's r/antivirus group: redd.it/1nxg9ik
H/T @intcyberdigest.bsky.social + @vxundergroundre.bsky.social + @theverge.com!
From the antivirus community on Reddit: My discord account
Explore this post and more from the antivirus community
redd.it
October 4, 2025 at 4:21 AM
Some advice for @discord.com
users I put together on the emerging hack story on #Reddit's r/antivirus group: redd.it/1nxg9ik
H/T @intcyberdigest.bsky.social + @vxundergroundre.bsky.social + @theverge.com!
users I put together on the emerging hack story on #Reddit's r/antivirus group: redd.it/1nxg9ik
H/T @intcyberdigest.bsky.social + @vxundergroundre.bsky.social + @theverge.com!
Looking through a rarely-used email account, found this phish.
October 4, 2025 at 2:06 AM
Looking through a rarely-used email account, found this phish.
Reposted by Aryeh Goretsky
#ESETresearch has identified two campaigns targeting Android users in the 🇦🇪. The campaigns, which are still ongoing, distribute previously undocumented spyware impersonating #Signal and #ToTok via deceptive websites. www.welivesecurity.com/en/eset-rese... 1/6
New spyware campaigns target privacy-conscious Android users in the UAE
ESET researchers have discovered campaigns distributing spyware disguised as Android Signal and ToTok apps, targeting users in the United Arab Emirates.
www.welivesecurity.com
October 2, 2025 at 9:24 AM
#ESETresearch has identified two campaigns targeting Android users in the 🇦🇪. The campaigns, which are still ongoing, distribute previously undocumented spyware impersonating #Signal and #ToTok via deceptive websites. www.welivesecurity.com/en/eset-rese... 1/6
Reposted by Aryeh Goretsky
#ESETresearch has observed #Gamaredon exploiting CVE-2025-8088 (#WinRAR path traversal) in an ongoing spearphishing campaign. This vulnerability allows arbitrary file write via crafted RAR archives. 1/6
September 26, 2025 at 1:13 PM
#ESETresearch has observed #Gamaredon exploiting CVE-2025-8088 (#WinRAR path traversal) in an ongoing spearphishing campaign. This vulnerability allows arbitrary file write via crafted RAR archives. 1/6
Add a ThinkPad X1e Gen 3 to the list.
Tested update to 25H2 on #Lenovo #ThinkPad P43s, T480, X1 Yoga Gen 4, X9 15 Aura Ed Gen 1 + X13 Gen 1 running Windows 11 24H2.
Updates all went smoothly.
Updates all went smoothly.
Windows 11 version 25H2 ISO and eKB download links are now live before the official announcement from Microsoft is made. #Microsoft #Windows1125h2 #ISO
September 25, 2025 at 11:19 AM
Add a ThinkPad X1e Gen 3 to the list.
Good way to get some additional storage into (and use out of) older ThinkPads, etc.
introducing the ThinkMoth ExpressCard to NVME! an open source adapter that lets you use an M.2 2230/2242 NVMe SSD in an ExpressCard laptop, with support for booting via microSD!
prototype production is happening right now!
#opensource #kicad
mothenjoyer69.net/blog/0
github.com/mothenjoyer6...
prototype production is happening right now!
#opensource #kicad
mothenjoyer69.net/blog/0
github.com/mothenjoyer6...
September 25, 2025 at 8:47 AM
Good way to get some additional storage into (and use out of) older ThinkPads, etc.
Tested update to 25H2 on #Lenovo #ThinkPad P43s, T480, X1 Yoga Gen 4, X9 15 Aura Ed Gen 1 + X13 Gen 1 running Windows 11 24H2.
Updates all went smoothly.
Updates all went smoothly.
Windows 11 version 25H2 ISO and eKB download links are now live before the official announcement from Microsoft is made. #Microsoft #Windows1125h2 #ISO
Download links for Windows 11 25H2 ISOs now available before official Microsoft release
Windows 11 version 25H2 ISO and eKB download links are now live before the official announcement from Microsoft is made.
www.neowin.net
September 24, 2025 at 12:22 PM
Reposted by Aryeh Goretsky
Two exciting panels featuring #ESETresearch’s Righard Zwienenberg at #VB2025 in Berlin @virusbtn - from stories of the past to debates about the future of vulnerability handling. Here's what to expect 👇1/3
September 22, 2025 at 12:25 PM
Two exciting panels featuring #ESETresearch’s Righard Zwienenberg at #VB2025 in Berlin @virusbtn - from stories of the past to debates about the future of vulnerability handling. Here's what to expect 👇1/3
Reposted by Aryeh Goretsky
#ESETresearch’s Robert Lipovský will present at Labscon 2025: “ The Curse of Salt Typhoon: FamousSparrow goes after the US financial sector“. Join him in Scottsdale, AZ, September 19 at 12:00 PM MST 1/5
September 18, 2025 at 5:36 AM
#ESETresearch’s Robert Lipovský will present at Labscon 2025: “ The Curse of Salt Typhoon: FamousSparrow goes after the US financial sector“. Join him in Scottsdale, AZ, September 19 at 12:00 PM MST 1/5
Reposted by Aryeh Goretsky
#ESETresearch has discovered the first known cases of collaboration between Gamaredon and Turla, in Ukraine. Both groups are affiliated with the FSB, Russia’s main domestic intelligence and security agency. www.welivesecurity.com/en/eset-rese...
1/3
1/3
Gamaredon X Turla collab
ESET researchers reveal how the notorious APT group Turla collaborates with fellow FSB-associated group known as Gamaredon to compromise high‑profile targets in Ukraine.
www.welivesecurity.com
September 19, 2025 at 9:27 AM
#ESETresearch has discovered the first known cases of collaboration between Gamaredon and Turla, in Ukraine. Both groups are affiliated with the FSB, Russia’s main domestic intelligence and security agency. www.welivesecurity.com/en/eset-rese...
1/3
1/3