DodgeThisSecurity
@shotgunner101.bsky.social
Computer Security Professional. Tweets are my own.
Rooster Teeth Archive Project:
https://rtarchive.org/videos
Blog: dodgethissecurity.com
Rooster Teeth Archive Project:
https://rtarchive.org/videos
Blog: dodgethissecurity.com
Reposted by DodgeThisSecurity
In wake of Horizon scandal, forensics prof says digital evidence is a minefield
In wake of Horizon scandal, forensics prof says digital evidence is a minefield
Outdated and misinformed legal presumptions at the heart of concerns
Digital forensics in the UK is in need of reform, says one expert, as the deadline to advise the government on computer evidence rules arrives.…
dlvr.it
April 16, 2025 at 11:29 AM
In wake of Horizon scandal, forensics prof says digital evidence is a minefield
Reposted by DodgeThisSecurity
www.cnet.com/personal-fin...
“Security and Exchange Commission Chairman John Clayton released a lengthy statement yesterday on cybersecurity. Buried about 1,400 words in, you'll find an eyebrow-raising disclosure -- the SEC was apparently hacked in 2016.”
“Security and Exchange Commission Chairman John Clayton released a lengthy statement yesterday on cybersecurity. Buried about 1,400 words in, you'll find an eyebrow-raising disclosure -- the SEC was apparently hacked in 2016.”
After breach, SEC says hackers used stolen data to buy stocks
After accessing the Security and Exchange Commission's nonpublic filings, hackers may have used the stolen data to pad their portfolios with tomorrow's hot stocks.
www.cnet.com
April 16, 2025 at 6:58 AM
www.cnet.com/personal-fin...
“Security and Exchange Commission Chairman John Clayton released a lengthy statement yesterday on cybersecurity. Buried about 1,400 words in, you'll find an eyebrow-raising disclosure -- the SEC was apparently hacked in 2016.”
“Security and Exchange Commission Chairman John Clayton released a lengthy statement yesterday on cybersecurity. Buried about 1,400 words in, you'll find an eyebrow-raising disclosure -- the SEC was apparently hacked in 2016.”
Reposted by DodgeThisSecurity
I did a thing. news.sophos.com/en-us/2025/0...
The Sophos Annual Threat Report: Cybercrime on Main Street 2025
Ransomware remains the biggest threat, but old and misconfigured network devices are making it too easy
news.sophos.com
April 16, 2025 at 11:35 AM
I did a thing. news.sophos.com/en-us/2025/0...
Reposted by DodgeThisSecurity
RE: potential 4chan Hack: 'Rumors also started circulating... that the breach is the result of 4chan running legacy, unpatched software that exposed the platform to attack.' - @mattburgess1.bsky.social & @lhn.bsky.social in @wired.com www.wired.com/story/2025-4... @gate15.bsky.social #cybersecurity
Suspected 4chan Hack Could Expose Longtime, Anonymous Admins
Though the exact details of the situation have not been confirmed, community infighting seems to have spilled out in a breach of the notorious image board.
www.wired.com
April 16, 2025 at 11:34 AM
RE: potential 4chan Hack: 'Rumors also started circulating... that the breach is the result of 4chan running legacy, unpatched software that exposed the platform to attack.' - @mattburgess1.bsky.social & @lhn.bsky.social in @wired.com www.wired.com/story/2025-4... @gate15.bsky.social #cybersecurity
Reposted by DodgeThisSecurity
Hello everyone! I’m proud and honored to introduce my very first academic white paper through SANS, which discusses the nuances and needs for planning for #ransomware in OT / industrial networks. www.sans.org/mlp/ics-ot-m...
April 16, 2025 at 3:39 AM
Hello everyone! I’m proud and honored to introduce my very first academic white paper through SANS, which discusses the nuances and needs for planning for #ransomware in OT / industrial networks. www.sans.org/mlp/ics-ot-m...
Reposted by DodgeThisSecurity
Blue Screen of Panic: Microsoft Updates Turn PCs into Drama Queens
Windows 11 users beware: Blue screen chaos ahead! Learn how to dodge the dreaded SECURE_KERNEL_ERROR and keep your PC happy.
thenimblenerd.com?p=1042978
Windows 11 users beware: Blue screen chaos ahead! Learn how to dodge the dreaded SECURE_KERNEL_ERROR and keep your PC happy.
thenimblenerd.com?p=1042978
Blue Screen of Panic: Microsoft Updates Turn PCs into Drama Queens
Microsoft warns of a potential blue screen error on Windows 11 due to recent updates. The dreaded SECURE_KERNEL_ERROR could crash your PC, but fear not! Microsoft's Known Issue Rollback is here to save the day. Restart your device to hasten the fix, and remember, sometimes even technology needs a little reboot therapy.
thenimblenerd.com
April 16, 2025 at 11:46 AM
Blue Screen of Panic: Microsoft Updates Turn PCs into Drama Queens
Windows 11 users beware: Blue screen chaos ahead! Learn how to dodge the dreaded SECURE_KERNEL_ERROR and keep your PC happy.
thenimblenerd.com?p=1042978
Windows 11 users beware: Blue screen chaos ahead! Learn how to dodge the dreaded SECURE_KERNEL_ERROR and keep your PC happy.
thenimblenerd.com?p=1042978
Reposted by DodgeThisSecurity
Apache Roller Bug: The Persistent Session Nightmare You Didn’t Know You Had
Apache Roller vulnerability allows hackers to abuse old sessions for persistent access despite password changes. Here's how updates fix it.
thenimblenerd.com?p=1042980
Apache Roller vulnerability allows hackers to abuse old sessions for persistent access despite password changes. Here's how updates fix it.
thenimblenerd.com?p=1042980
Apache Roller Bug: The Persistent Session Nightmare You Didn’t Know You Had
A critical vulnerability in Apache Roller allows attackers to maintain persistent access even after password changes. Roller version 6.1.5 fixes this session management flaw, ensuring all active sessions are properly invalidated. With a CVSS score of 10/10, this patch is a must for users wishing to avoid surprise guests in their virtual living room.
thenimblenerd.com
April 16, 2025 at 11:47 AM
Apache Roller Bug: The Persistent Session Nightmare You Didn’t Know You Had
Apache Roller vulnerability allows hackers to abuse old sessions for persistent access despite password changes. Here's how updates fix it.
thenimblenerd.com?p=1042980
Apache Roller vulnerability allows hackers to abuse old sessions for persistent access despite password changes. Here's how updates fix it.
thenimblenerd.com?p=1042980
Reposted by DodgeThisSecurity
Most Microsoft tenants do not have Advanced Auditing configured correctly, and orgs only find out after it is too late :(
I tried really hard to make this as short and simple as possible. Please be nice to your IR folks and set this up, it's important ;)
nathanmcnulty.com/bl...
I tried really hard to make this as short and simple as possible. Please be nice to your IR folks and set this up, it's important ;)
nathanmcnulty.com/bl...
Comprehensive Guide to Configuring Advanced Auditing
This post provides everything you need to ensure Advanced Auditing is fully configured and auditing everything we possibly can for both existing and new users. I recently shared guidance for this via social media (see below), and it felt like a perfect time to revisit my previous posts and combine everything into one comprehensive guide :)
You likely aren't collecting all available events to the Unified Audit Log
First, not all events are enabled or retained optimally. Consider creating this policy in the Purview portal (leave users and record types blank to collect everything).
Retention is based on license... pic.twitter.com/IEKKfrkpI8
nathanmcnulty.com
April 16, 2025 at 5:13 AM
Most Microsoft tenants do not have Advanced Auditing configured correctly, and orgs only find out after it is too late :(
I tried really hard to make this as short and simple as possible. Please be nice to your IR folks and set this up, it's important ;)
nathanmcnulty.com/bl...
I tried really hard to make this as short and simple as possible. Please be nice to your IR folks and set this up, it's important ;)
nathanmcnulty.com/bl...
Reposted by DodgeThisSecurity
"CVE Foundation Launched to Secure the Future of the CVE Program"
Please note this is not an official CVE Board action, but the action of a rogue group within the CVE Board to try and save the CVE Program.
www.linkedin.com/in/...
bsky.app/profile/cve...
Please note this is not an official CVE Board action, but the action of a rogue group within the CVE Board to try and save the CVE Program.
www.linkedin.com/in/...
bsky.app/profile/cve...
April 16, 2025 at 8:00 AM
"CVE Foundation Launched to Secure the Future of the CVE Program"
Please note this is not an official CVE Board action, but the action of a rogue group within the CVE Board to try and save the CVE Program.
www.linkedin.com/in/...
bsky.app/profile/cve...
Please note this is not an official CVE Board action, but the action of a rogue group within the CVE Board to try and save the CVE Program.
www.linkedin.com/in/...
bsky.app/profile/cve...
Reposted by DodgeThisSecurity
BSidesLV is extending to two and a half days this year!
The donor drive will open on Apr 20, but the room block is open now. Discounted rates are available from August 1 through August 11. Resort fee is waived.
Details here: bsideslv.org/venue
April 16, 2025 at 12:00 PM
BSidesLV is extending to two and a half days this year!
The donor drive will open on Apr 20, but the room block is open now. Discounted rates are available from August 1 through August 11. Resort fee is waived.
Details here: bsideslv.org/venue