When I want to tell someone that their Sharepoint is vulnerable, but they want me to use a Bugbounty provider.
I want to help you... but I'm also paid to do a job which is not filling-in-your-forms
@jamesatack.com.bsky.social
Cyber defender with an offensive name. Deputy CTO at @onyphe.io | http://onyphe.io Managing your attack surface... from Europe 👀 Opinions : all mine Special skill : machine empathy
When I want to tell someone that their Sharepoint is vulnerable, but they want me to use a Bugbounty provider.
I want to help you... but I'm also paid to do a job which is not filling-in-your-forms
“The Weather Service’s nearby San Antonio office … had significant vacancies ….
“That office’s warning coordination meteorologist left on April 30, after taking the early retirement package the Trump administration used to reduce the number of federal employees.”
www.nytimes.com/2025/07/05/u...
"It neither predicts nor explains; it just substitutes one chart for ten, with a loss of information in doing so."
Model, analyze, and quantify, without any clue about what's really going on. The Matter With Things is that the Emissary is still running about thinking they've got this...
What Google said : "an invalid automated quota update to our API management system which was distributed globally"
Was it a "quota update" that was updated automatically, or an "automated quota" component that was updated?
They wouldn't connect an LLM to their cloud back-plane - would they?
because securing BGP is [unnecessary | radical leftist | deep-state interference | liberal pandering to coastal elites | an effective prevention for being hacked by foreign governments ]?
Sadly it's the last one, isn't it
Dialect selection : Wigan
09.06.2025 08:12 — 👍 0 🔁 0 💬 0 📌 0Now we know the answer..
05.06.2025 20:03 — 👍 2614 🔁 279 💬 35 📌 10Rhino Security has found 6 vulns in the Infoblox NetMRI network automation and configuration management solution.
Bugs include an auth bypass via hardcoded credentials, privlege escalation via cookie forgery, an unauth command injection, and an SQLi
Quite bad
rhinosecuritylabs.com/research/inf...
red flag alert 🚨
04.06.2025 14:59 — 👍 6 🔁 3 💬 0 📌 0“power glitch”
<crackle> Go and investigate Gordon…
Fortinet LinkedIn post : What happens when the infrastructure designed to defend becomes a new attack surface?
Yeah gee Fortinet - wonder what that reality would look like? 🙄
<goes back to day job>
The icons or mascots of English cup-winning teams have all been birds so far this season: the Liver Bird, an Eagle and a Magpie. Will the Cockerel be next?
Ornithologically, Spurs will win the Europa League tonight
21.05.2025 11:10 — 👍 63 🔁 8 💬 3 📌 8If your library doesn't have any documentation, it can't have any bugs. Documentation specifies what your code is supposed to do. Your tests specify what it actually does. Bugs exist when your test-enforced implementation fails to match the behavior described in your documentation. Without documentation a bug is just undefined behavior. If you aim to follow semantic versioning you bump your major version when you release a backwards incompatible change. Such changes cannot exist if your code is not comprehensively documented! Inspired by a half-remembered conversation I had with Tom Insam many years ago.
If your library doesn't have any documentation, it can't have any bugs simonwillison.net/2025/May/22/...
22.05.2025 01:59 — 👍 109 🔁 19 💬 9 📌 2Botconf2025 poster with a knight holding a sword in the foreground. Below his helmet the head of a "bot" inspired by the conference logo. In the background, castle walls and the text with the dates of the Conference in Angers 20-23 May 2025.
#Botconf2025 - A few hours left before the start of the 12th edition of the Botnet and malware ecosystems fighting conference. We are welcoming 400 participants from all over the world for one day of workshops and 3 days of conference.
This conference would […]
[Original post on infosec.exchange]
GreyNoise observed a major spike in scanning against Ivanti products weeks before two zero-days were disclosed in Ivanti EPMM. Full update: www.greynoise.io/blog/surge-i...
#Ivanti #GreyNoise #Cybersecurity #ZeroDays
You won't be surprised
19.05.2025 06:32 — 👍 2 🔁 2 💬 0 📌 0A small alcove with two shelves holding a variety of electronic devices and chargers. Bottom shelf has a large Pendix bike battery.
A well-used family charging shelf
- get phones out of bedrooms
- ensure teens go out with charged devices
- never have to look for a charger
“The attacks have spooked the industry, which has called, somewhat ironically, for enhanced protections from the government”
LOL
arstechnica.com/security/202...
“The attacks have spooked the industry, which has called, somewhat ironically, for enhanced protections from the government”
LOL
arstechnica.com/security/202...
Typical bureaucracy behaviour :
- To get budget you need to be noticed.
- To be noticed you have to spit out projects for the latest trend/craze
This operates at all levels from operations up to political governance.
People on the ground know it's bullshit but it's play along or leave
Yeah why would we need those
15.05.2025 14:05 — 👍 0 🔁 0 💬 0 📌 0Apple is placing warnings on EU apps that don’t use App Store payments. Blatant scare tactics to put consumers off using cheaper external payments systems, where Apple doesn't earn its 30% cut www.theverge.com/news/667484/...
15.05.2025 11:24 — 👍 340 🔁 94 💬 14 📌 10But, they said they now take security seriously 😧
14.05.2025 14:46 — 👍 0 🔁 0 💬 0 📌 0Alerte de sécurité
⚠️Vulnérabilités Fortinet et Ivanti.
📢Le @cert-fr.bsky.social a publié deux bulletins d'alerte après avoir pris connaissance de multiples vulnérabilités affectant des produits Fortinet et Ivanti.
➡️ www.cert.ssi.gouv.fr/alerte/CERTF...
➡️ www.cert.ssi.gouv.fr/alerte/CERTF...
Microsoft Teams: Enhanced Meeting Protection - Prevent Screen Capture Microsoft Teams To address the issue of unauthorized screen captures during meetings, the Prevent Screen Capture feature ensures that if a user attempts to take a screen capture, the meeting window will turn black, thereby protecting sensitive information. This feature will be available on Teams desktop applications (both Windows and Mac) and Teams mobile applications (both iOS and Android. For users joining from unsupported platforms, they will be placed in audio-only mode to maintain the integrity of the meeting's content. Roadmap ID 490561 Cloud instances(s) Worldwide (Standard Multi-Tenant) Platform (s) Android, Desktop, iOS, Web IN I ROLLOUT S July 2025 Release phases(s) General Availability, Targeted Release Added to roadmap: 05/05/2025 SHARE Last modified: 05/06/2025
Good luck with that Microsoft.
Thanks iPhone for the ALT text
New "Branch Privilege Injection" CPU flaw (CVE-2024-45332) affects all Intel processors since 2018.
Attackers can exploit it to access sensitive data from memory regions allocated to privileged software, such as the operating system kernel.
www.bleepingcomputer.com/news/securit...
#MustRead du jour : tout ce que vous avez toujours voulu savoir sur les auditions parlementaires du DG de l'@anssi-fr.bsky.socialsur #NIS2 sans jamais oser le demander.
technique-et-droit-du-numerique.fr/anssi-auditi...
Rappel : la prochaine réunion de l'OSSIR, c'est demain (mardi) à 14h00 chez @own_fr (18 pl. de la Madeleine, Paris).
N'oubliez pas de vous inscrire gratuitement sur https://billetweb.fr/reunion-ossir-mai-2025 si vous êtes en présentiel.
J’utilise proxmox community pour gérer 4 VM et une petite dizaine de containers. C’est solide. L’interface admin m’a sauvé de mes propres bêtises au moins une fois
10.05.2025 10:05 — 👍 0 🔁 0 💬 0 📌 0J'ai découvert deux choses très intéressantes cette semaine :
- Une baie serveur 19 pouces, ça coûte facilement dans les 1000€
- Les tables basses Ikea (5€ sur leboncoin) ont un espacement qui mesure précisément 19 pouces