Daniel Cid boosted
Daniel Cid boosted

After over 15 years of using , my account has been permanently disabled without any reason given. All my emails, contacts, photos, docs, accounts connecting with google, etc.... Everything is gone. Without warning or chance of recovery. I'm at a complete loss...

twitter.com/Cleroth/status/131

Daniel Cid boosted

Loginizer < 1.6.4 - Unauthenticated SQL Injection

wpscan.com/vulnerability/10441

This is serious. Over 1m WordPress sites have this plugin running.

If you are using WordPress, check if this plugin is installed - and update now.

Daniel Cid boosted

@ScottMortimer Love learning about new tools to try. thanks for sharing.

Daniel Cid boosted

~Open Source Security Tool of the Day~

#osstotd

Fully automated offensive security framework for reconnaissance and vulnerability scanning

j3ssie.github.io/Osmedeus/

Daniel Cid boosted

The level of blatant censorship occurring on all social platforms, regardless of where you sit on the political spectrum, should worry us all. Social platforms should not be arbiters of truth, and it's just getting worse.

Daniel Cid boosted

My “we have no evidence this outage is caused by a security breach or hack” shirt has people asking a lot of questions already answered by my shirt.

Daniel Cid boosted

Outlook RCE bug is much more serious, but the bug you have to be on the same physical network to exploit got a name, so it's the one people (read: media and managers) think is serious.

Daniel Cid boosted

Ok, let's move on to more pressing issues..

What's your highest score: trex-game.skipser.com/

Daniel Cid boosted

-2m scanned websites contained outdated software which could potentially lead to an exploit.

-70k sites were infected with SEO spam, accounting for 39.59% of website infections.

-19k scanned websites contained malicious scripts or iframes from blacklisted domains.

-11% of infected sites were found to include scripts and iframes from blacklisted domains.

Pretty good report from Sucuri:

blog.sucuri.net/2020/10/sitech

Daniel Cid boosted

Amid an Embarrassment of Riches, Ransom Gangs Increasingly Outsource Their Work.

There's an old adage in information security: "Every company gets penetration tested, whether or not they pay someone for the pleasure." Many organizations that do hire professionals to test their network security posture unfortunately tend to focus on fixing vulnerabilities hackers could use to ...
krebsonsecurity.com/?p=53255

Did you know that back in 2003, Verisign thought that it was a good idea to hijack NXDOMAIN answers for all .com and .net domains?

And pushed all those domain typos to their sitefinder product?

antonym.org/2003/10/verisign-v

jdebp.uk./FGA/verisign-internet-coup.html

Glad that did not last.

Daniel Cid boosted
If you are on mastodon.social please go on another instance
Not because it's a bad one but because it's ruining the federation point by concentrating too many users on a single instance

Many Mastodon, Pleroma, GNU Social, Honk and so on instances would be glad to welcome new users
And those are cool and generally extremely friendly
Daniel Cid boosted
Daniel Cid boosted

My thoughts on the Apple walled garden after spending a couple of years in the iOS ecosystem.

kevq.uk/the-apple-walled-garde

#Apple #iOS

Daniel Cid boosted

Who’s Behind Monday’s 14-State 911 Outage?.

Emergency 911 systems were down for more than an hour on Monday in towns and cities across 14 U.S. states. The outages led many news outlets to speculate the problem was related to Microsoft's Azure web services platform, which also was struggling with a widespread outage at the time. However, mu...
krebsonsecurity.com/?p=53121

Daniel Cid boosted

I went totally the wrong way with #LinkChomp

ShadyURL - Don't just shorten your URL, make it suspicious and frightening.
shadyurl.com/

Show more
Noc.Social

Open Source Social Network. Focused on technology, networking, linux, privacy and security, but open to anyone. Managed by the noc.org team.