@greg-thomson.bsky.social
@patrick.risky.biz @metlstorm.risky.biz
New Zealand NCSC warns 2600 New Zealanders of Lumma Stealer malware infections on their devices.
www.ownyouronline.govt.nz/news-and-ale...
www.rnz.co.nz/news/top/581...
New Zealand NCSC warns 2600 New Zealanders of Lumma Stealer malware infections on their devices.
www.ownyouronline.govt.nz/news-and-ale...
www.rnz.co.nz/news/top/581...
Lumma Stealer malware affecting thousands | Own Your Online
The National Cyber Security Centre (NCSC) has alerted thousands of New Zealanders to let them know their device has been infected with malware known as Lumma Stealer. We’re encouraging all those affec...
www.ownyouronline.govt.nz
December 9, 2025 at 6:46 PM
@patrick.risky.biz @metlstorm.risky.biz
New Zealand NCSC warns 2600 New Zealanders of Lumma Stealer malware infections on their devices.
www.ownyouronline.govt.nz/news-and-ale...
www.rnz.co.nz/news/top/581...
New Zealand NCSC warns 2600 New Zealanders of Lumma Stealer malware infections on their devices.
www.ownyouronline.govt.nz/news-and-ale...
www.rnz.co.nz/news/top/581...
New Zealand NCSC warns 2600 New Zealanders of Lumma Stealer malware infections on their devices.
www.ownyouronline.govt.nz/news-and-ale...
www.rnz.co.nz/news/top/581...
www.ownyouronline.govt.nz/news-and-ale...
www.rnz.co.nz/news/top/581...
26,000 New Zealanders' devices infected with malicious software, cyber security agency warns
The cyber security agency is emailing about tens of thousands of people.
www.rnz.co.nz
December 9, 2025 at 6:44 PM
New Zealand NCSC warns 2600 New Zealanders of Lumma Stealer malware infections on their devices.
www.ownyouronline.govt.nz/news-and-ale...
www.rnz.co.nz/news/top/581...
www.ownyouronline.govt.nz/news-and-ale...
www.rnz.co.nz/news/top/581...
@merill.net Entra Chat is on the Risky Business podcast.
Risky Business #798 -- Mexican cartel surveilled the FBI to identify, kill witnesses - Risky Business Media share.google/4pTvHWUFa5hZ...
Risky Business #798 -- Mexican cartel surveilled the FBI to identify, kill witnesses - Risky Business Media share.google/4pTvHWUFa5hZ...
Risky Business #798 -- Mexican cartel surveilled the FBI to identify, kill witnesses - Risky Business Media
On this week’s show Patrick Gray and Adam Boileau discuss the week’s cybersecurity news:* Australian airline Qantas looks like it got a Sc [Read More]
share.google
July 2, 2025 at 8:21 AM
@merill.net Entra Chat is on the Risky Business podcast.
Risky Business #798 -- Mexican cartel surveilled the FBI to identify, kill witnesses - Risky Business Media share.google/4pTvHWUFa5hZ...
Risky Business #798 -- Mexican cartel surveilled the FBI to identify, kill witnesses - Risky Business Media share.google/4pTvHWUFa5hZ...
@patrick.risky.biz @metlstorm.risky.biz Change is coming on the Entra permissions front. An area you both frequently comment on. MS is making small but important changes to the default policy and giving orgs more levers for control. Not perfect but we can't have everything
youtu.be/JBt-sB0qXqk?...
youtu.be/JBt-sB0qXqk?...
The Ultimate Guide to App Consent in Microsoft Entra
YouTube video by Merill Fernando
youtu.be
June 28, 2025 at 2:17 AM
@patrick.risky.biz @metlstorm.risky.biz Change is coming on the Entra permissions front. An area you both frequently comment on. MS is making small but important changes to the default policy and giving orgs more levers for control. Not perfect but we can't have everything
youtu.be/JBt-sB0qXqk?...
youtu.be/JBt-sB0qXqk?...
@patrick.risky.biz What's up with the Risky Bulletin feed? Episode #125 of Risky Business! What a blast from the past.
June 12, 2025 at 11:17 AM
@patrick.risky.biz What's up with the Risky Bulletin feed? Episode #125 of Risky Business! What a blast from the past.
@dangoodin.bsky.social There might be a typo in your recent post. "The site then uses the private key it has on hand to verify the signature is valid." I'm pretty sure the site holds the public key and not the private key.
arstechnica.com/security/202...
arstechnica.com/security/202...
Microsoft’s new “passwordless by default” is great but comes at a cost
The move is part of an industry-wide push for users to adopt passkeys.
arstechnica.com
May 5, 2025 at 4:09 AM
@dangoodin.bsky.social There might be a typo in your recent post. "The site then uses the private key it has on hand to verify the signature is valid." I'm pretty sure the site holds the public key and not the private key.
arstechnica.com/security/202...
arstechnica.com/security/202...
@patrick.risky.biz Contrary to popular belief, secrets accidentally checked into GitHub are not permanently recorded in the repo's history.
youtu.be/s-z6kJxdNJw?...
Thanks @merill.net
youtu.be/s-z6kJxdNJw?...
Thanks @merill.net
How to Remove Leaked Secrets from Git History FAST!
YouTube video by Merill Fernando
youtu.be
April 26, 2025 at 5:13 AM
@patrick.risky.biz Contrary to popular belief, secrets accidentally checked into GitHub are not permanently recorded in the repo's history.
youtu.be/s-z6kJxdNJw?...
Thanks @merill.net
youtu.be/s-z6kJxdNJw?...
Thanks @merill.net
@merill.net I looks like the FIDO Alliance has released the content from the last Authenticate conference. There might be some good content there for your next entra.news update.
youtube.com/@thefidoalli...
youtube.com/@thefidoalli...
FIDO Alliance
The FIDO (Fast IDentity Online) Alliance is a 501(c) 6 non-profit organization nominally formed in July 2012 to address the lack of interoperability among strong authentication devices as well as the ...
youtube.com
February 8, 2025 at 11:03 PM
@merill.net I looks like the FIDO Alliance has released the content from the last Authenticate conference. There might be some good content there for your next entra.news update.
youtube.com/@thefidoalli...
youtube.com/@thefidoalli...