Robert Malmgren
@robertmalmgren.bsky.social
cybersecurity guy, often in the context of OT. Music, guitars, concerts
Reposted by Robert Malmgren
The SEC just let SolarWinds off the hook for allegedly hiding vulnerabilities that were exploited in a major 2020 hack: www.reuters.com/legal/govern...
Read @kimzetter.bsky.social's deep dive for @wired.com on the SolarWinds breach here: www.wired.com/story/the-un...
Read @kimzetter.bsky.social's deep dive for @wired.com on the SolarWinds breach here: www.wired.com/story/the-un...
The Untold Story of the Boldest Supply-Chain Hack Ever
The attackers were in thousands of corporate and government networks. They might still be there now. Behind the scenes of the SolarWinds investigation.
www.wired.com
November 20, 2025 at 10:30 PM
The SEC just let SolarWinds off the hook for allegedly hiding vulnerabilities that were exploited in a major 2020 hack: www.reuters.com/legal/govern...
Read @kimzetter.bsky.social's deep dive for @wired.com on the SolarWinds breach here: www.wired.com/story/the-un...
Read @kimzetter.bsky.social's deep dive for @wired.com on the SolarWinds breach here: www.wired.com/story/the-un...
Reposted by Robert Malmgren
Påminnelse om att det är dags att ändra lösenordet från ”sommar2025” till ”sommar2026”.
November 20, 2025 at 5:46 PM
Påminnelse om att det är dags att ändra lösenordet från ”sommar2025” till ”sommar2026”.
Reposted by Robert Malmgren
Reposted by Robert Malmgren
CISA warns of Akira ransomware Linux encryptor targeting Nutanix VMs #cybersecurity #hacking #news #infosec #security #technology #privacy
CISA warns of Akira ransomware Linux encryptor targeting Nutanix VMs
US government agencies are warning that the Akira ransomware operation has been spotted encrypting Nutanix AHV virtual machines in attacks.
www.bleepingcomputer.com
November 14, 2025 at 7:16 AM
CISA warns of Akira ransomware Linux encryptor targeting Nutanix VMs #cybersecurity #hacking #news #infosec #security #technology #privacy
Reposted by Robert Malmgren
Henry Rollins and part of his vinyl collection
#punk #punks #punkrock #hardcorepunk #henryrollins #history #punkrockhistory #vinyl #vinylcollection
#punk #punks #punkrock #hardcorepunk #henryrollins #history #punkrockhistory #vinyl #vinylcollection
November 3, 2025 at 4:04 AM
Henry Rollins and part of his vinyl collection
#punk #punks #punkrock #hardcorepunk #henryrollins #history #punkrockhistory #vinyl #vinylcollection
#punk #punks #punkrock #hardcorepunk #henryrollins #history #punkrockhistory #vinyl #vinylcollection
Reposted by Robert Malmgren
Manufacturer issues remote kill command to disable smart vacuum after engineer blocks it from collecting data — user revives it with custom hardware and Python scripts to run offline www.tomshardware.com/tech-industr...
Manufacturer issues remote kill command to disable smart vacuum after engineer blocks it from collecting data — user revives it with custom hardware and Python scripts to run offline
The smart vacuum cleaner was remotely bricked for not collecting data.
www.tomshardware.com
November 8, 2025 at 1:42 AM
Manufacturer issues remote kill command to disable smart vacuum after engineer blocks it from collecting data — user revives it with custom hardware and Python scripts to run offline www.tomshardware.com/tech-industr...
Reposted by Robert Malmgren
When nobody checks the final copy before ship
November 8, 2025 at 1:34 AM
When nobody checks the final copy before ship
Reposted by Robert Malmgren
CYBERWARCON is almost here, and this year’s in-person turnout is our biggest ever!
Join us for early check in sponsored by Google Cloud!
Happening Tuesday, November 18 from 5:30–7:30 PM at the Hyatt Regency Crystal City in the Independence Center!
Join us for early check in sponsored by Google Cloud!
Happening Tuesday, November 18 from 5:30–7:30 PM at the Hyatt Regency Crystal City in the Independence Center!
November 7, 2025 at 8:12 PM
CYBERWARCON is almost here, and this year’s in-person turnout is our biggest ever!
Join us for early check in sponsored by Google Cloud!
Happening Tuesday, November 18 from 5:30–7:30 PM at the Hyatt Regency Crystal City in the Independence Center!
Join us for early check in sponsored by Google Cloud!
Happening Tuesday, November 18 from 5:30–7:30 PM at the Hyatt Regency Crystal City in the Independence Center!
Reposted by Robert Malmgren
New: Washington Post is the latest organization to confirm a data breach linked to the mass-hacks of Oracle E-Business apps, which companies use to store their business/HR data.
Google previously said that over 100 organizations have been hacked as part of the campaign.
Google previously said that over 100 organizations have been hacked as part of the campaign.
Washington Post confirms data breach linked to Oracle hacks | TechCrunch
The Washington Post is the latest victim of a hacking campaign by the notorious Clop ransomware gang, which relied on vulnerabilities in Oracle software used by many corporations.
techcrunch.com
November 7, 2025 at 8:02 PM
New: Washington Post is the latest organization to confirm a data breach linked to the mass-hacks of Oracle E-Business apps, which companies use to store their business/HR data.
Google previously said that over 100 organizations have been hacked as part of the campaign.
Google previously said that over 100 organizations have been hacked as part of the campaign.
Reposted by Robert Malmgren
For months, extremely personal and sensitive ChatGPT conversations have been leaking into an unexpected destination.
Oddest ChatGPT leaks yet: Cringey chat logs found in Google analytics tool
ChatGPT leaks seem to confirm OpenAI scrapes Google, expert says.
arstechnica.com
November 7, 2025 at 7:48 PM
For months, extremely personal and sensitive ChatGPT conversations have been leaking into an unexpected destination.
Reposted by Robert Malmgren
With the AWS outage, now‘s as good a time as any to post this old strip.
October 20, 2025 at 10:18 AM
With the AWS outage, now‘s as good a time as any to post this old strip.
Reposted by Robert Malmgren
Even the Inventor of 'Vibe Coding' Says Vibe Coding Can't Cut It
Even the Inventor of 'Vibe Coding' Says Vibe Coding Can't Cut It
Humans keep hanging on.
gizmodo.com
October 19, 2025 at 7:12 PM
Even the Inventor of 'Vibe Coding' Says Vibe Coding Can't Cut It
Reposted by Robert Malmgren
Chinese cyberspies snoop on Russian IT biz in rare east-on-east attack www.theregister.com/2025/10/16/c...
Chinese cyberspies compromised Russian tech provider
: Who needs enemies when you have friends like Xi?
www.theregister.com
October 19, 2025 at 7:42 AM
Chinese cyberspies snoop on Russian IT biz in rare east-on-east attack www.theregister.com/2025/10/16/c...
Reposted by Robert Malmgren
npm, PyPI, and RubyGems Packages Found Sending Developer Data to Discord Channels thehackernews.com/2025/10/npm-...
npm, PyPI, and RubyGems Packages Found Sending Developer Data to Discord Channels
Researchers expose Discord webhook C2 in npm, PyPI, RubyGems; North Korean actors published 338 malicious npm packages with 50k+ downloads.
thehackernews.com
October 18, 2025 at 3:12 AM
npm, PyPI, and RubyGems Packages Found Sending Developer Data to Discord Channels thehackernews.com/2025/10/npm-...
Reposted by Robert Malmgren
Fuji Electric HMI Configurator Flaws Expose Industrial Organizations to Hacking www.securityweek.com/fuji-electri...
Fuji Electric HMI Configurator Flaws Expose Industrial Organizations to Hacking
Fuji Electric has released patches and Japan’s JPCERT has informed organizations about the vulnerabilities.
www.securityweek.com
October 17, 2025 at 9:12 PM
Fuji Electric HMI Configurator Flaws Expose Industrial Organizations to Hacking www.securityweek.com/fuji-electri...
Reposted by Robert Malmgren
Great investigation from Trend Micro with the contributions from Joey Chen! Threat actor are actively targeting the SNMP protocol on routers for exploitation.
www.trendmicro.com/en_us/resear...
www.trendmicro.com/en_us/resear...
Operation Zero Disco: Attackers Exploit Cisco SNMP Vulnerability to Deploy Rootkits
Trend™ Research has uncovered an attack campaign exploiting the Cisco SNMP vulnerability CVE-2025-20352, allowing remote code execution and rootkit deployment on unprotected devices, with impacts obse...
www.trendmicro.com
October 15, 2025 at 2:18 PM
Great investigation from Trend Micro with the contributions from Joey Chen! Threat actor are actively targeting the SNMP protocol on routers for exploitation.
www.trendmicro.com/en_us/resear...
www.trendmicro.com/en_us/resear...
Reposted by Robert Malmgren
Contrary to popular belief, some things shouldn't be connected to any network.
October 15, 2025 at 12:13 AM
Contrary to popular belief, some things shouldn't be connected to any network.
Reposted by Robert Malmgren
Attacks on Palo Alto PAN-OS Global Protect Login Portals Surge from 2,200 IPs share.google/3AKnoRQdBoy1...
Attacks on Palo Alto PAN-OS Global Protect Login Portals Surge from 2,200 IPs
A massive escalation in attacks targeting Palo Alto Networks PAN-OS GlobalProtect login portals, with over 2,200 unique IP addresses conducting reconnaissance operations as of October 7, 2025.
share.google
October 11, 2025 at 6:23 PM
Attacks on Palo Alto PAN-OS Global Protect Login Portals Surge from 2,200 IPs share.google/3AKnoRQdBoy1...
Reposted by Robert Malmgren
FBI takedown banner appears on BreachForums site as Scattered Spider promotes leak #cybersecurity #hacking #news #infosec #security #technology #privacy
FBI takedown banner appears on BreachForums site as Scattered Spider promotes leak
As part of its plan to extort high-profile customers of Salesforce, the Scattered Spider group had revived the BreachForums platform. The site now bears an FBI seizure notice.
therecord.media
October 11, 2025 at 11:44 AM
FBI takedown banner appears on BreachForums site as Scattered Spider promotes leak #cybersecurity #hacking #news #infosec #security #technology #privacy
Reposted by Robert Malmgren
Fanns det problem med hela den här approachen "skicka en bild av ditt pass/ID", alltså?
www.bbc.com/news/article...
www.bbc.com/news/article...
ID photos of 70,000 users may have been leaked, Discord says
The platform says hackers targeted a firm that helped to verify the ages of its users.
www.bbc.com
October 9, 2025 at 5:49 PM
Fanns det problem med hela den här approachen "skicka en bild av ditt pass/ID", alltså?
www.bbc.com/news/article...
www.bbc.com/news/article...
Reposted by Robert Malmgren
Huh, ID checks not such a great idea
BREAKING: A catastrophic breach has impacted Discord user data including selfies and identity documents uploaded as part of the app’s verification process, email addresses, phone numbers, approximately where the user lives, and much more.
🔗 www.404media.co/the-discord-...
🔗 www.404media.co/the-discord-...
The Discord Hack is Every Users’ Worst Nightmare
A hack impacting Discord’s age verification process shows in stark terms the risk of tech companies collecting users’ ID documents. Now the hackers are posting peoples’ IDs and other sensitive informa...
www.404media.co
October 9, 2025 at 7:15 PM
Huh, ID checks not such a great idea
Reposted by Robert Malmgren
RediShell security flaw in Redis:
-remotely exploitable
-CVSSv3 10/10
-impacts all versions released over the past 13 years
-impacts 75% of cloud instances
www.wiz.io/blog/wiz-res...
redis.io/blog/securit...
-remotely exploitable
-CVSSv3 10/10
-impacts all versions released over the past 13 years
-impacts 75% of cloud instances
www.wiz.io/blog/wiz-res...
redis.io/blog/securit...
Wiz Finds Critical Redis RCE Vulnerability: CVE‑2025‑49844 | Wiz Blog
A 13‑year Redis flaw (CVE‑2025‑49844) allows attackers to escape Lua sandbox and run code on hosts. See Wiz Research’s analysis and mitigations.
www.wiz.io
October 7, 2025 at 10:29 AM
RediShell security flaw in Redis:
-remotely exploitable
-CVSSv3 10/10
-impacts all versions released over the past 13 years
-impacts 75% of cloud instances
www.wiz.io/blog/wiz-res...
redis.io/blog/securit...
-remotely exploitable
-CVSSv3 10/10
-impacts all versions released over the past 13 years
-impacts 75% of cloud instances
www.wiz.io/blog/wiz-res...
redis.io/blog/securit...
Reposted by Robert Malmgren
A fire at the National Information Resources Service (NIRS) Daejeon headquarters destroyed the government’s G-Drive cloud storage system, erasing work files saved individually by some 750,000 civil servants.
NIRS fire destroys government's cloud storage system, no backups available
A fire at the National Information Resources Service (NIRS) Daejeon headquarters destroyed the government’s G-Drive cloud storage system, erasing work files saved individually by some 750,000 civil servants.
koreajoongangdaily.joins.com
October 5, 2025 at 9:02 PM
A fire at the National Information Resources Service (NIRS) Daejeon headquarters destroyed the government’s G-Drive cloud storage system, erasing work files saved individually by some 750,000 civil servants.
Reposted by Robert Malmgren
Cryptography Performance Improvements Coming For Linux 6.18 - https://www.phoronix.com/news/Linux-6.18-Faster-Crypto
Cryptography Performance Improvements Coming For Linux 6.18
Adding to the list of pull requests submitted early in advance of the Linux 6.18 merge window opening are several cryptography-related improvements. In particular, some nice performance optimizations once again for the Linux kernel...
www.phoronix.com
September 28, 2025 at 10:16 AM
Cryptography Performance Improvements Coming For Linux 6.18 - https://www.phoronix.com/news/Linux-6.18-Faster-Crypto