Original post on infosec.exchange
Acknowledging Reality in Vulnerability Disclosure.
Every few years, vulnerability disclosure is declared settled. We are told that the ecosystem has matured, that coordinated disclosure is the answer, and that whatever remains outside this model is either irresponsible, obsolete, or simply [โฆ]
08.02.2026 14:57 โ ๐ 1 ๐ 2 ๐ฌ 0 ๐ 0
EU Launches GCVE to Track Vulnerabilities Without Relying on US
Follow us on Bluesky, Twitter (X), Mastodon and Facebook at @Hackread
#Europe launches GCVE to track security vulnerabilities without relying on the US, creating a new independent platform for reporting security flaws in software.
Read: hackread.com/eu-launches-...
#CyberSecurity #InfoSec #Vulnerabilities #EU #GCVE
20.01.2026 16:50 โ ๐ 1 ๐ 1 ๐ฌ 0 ๐ 0
Original post on infosec.exchange
Weโve published new research from the EU co-funded project NGSOTI: โLearning from large-scale IPv4 blackhole: Behavioral analysis of SNMP trafficโ.
Over a 12-month period (Nov 2024โOct 2025), our network telescope captured ~634 million unsolicited SNMP queries from more than 153,000 unique IPv4 [โฆ]
27.11.2025 15:09 โ ๐ 3 ๐ 9 ๐ฌ 1 ๐ 1
Updated MISP galaxy with more than 480+ UAVs/.
One entry of an UAV in the MISP galaxy.
The MISP Galaxy now includes an updated knowledge base of UAVs and drones covering both civilian and military models.
It comes with detailed attributes such as manufacturer, cost, and technical specs.
You can now easily classify, model, and share [โฆ]
[Original post on infosec.exchange]
06.11.2025 16:44 โ ๐ 1 ๐ 2 ๐ฌ 0 ๐ 0
What might one pay for this amount of excellence? Google suggests to me that $136,365.99 will get you ONE ENTIRE YEAR of the ability to use the product.
17.01.2024 19:56 โ ๐ 1 ๐ 1 ๐ฌ 1 ๐ 0
๐ Kunai pushes further integration with MISP!
This week, we've made significant progress in bridging Kunai with @misp to enhance threat intelligence sharing. Our focus has been on developing kunai-to-misp, a new tool available at [โฆ]
[Original post on infosec.exchange]
07.02.2025 10:14 โ ๐ 0 ๐ 5 ๐ฌ 0 ๐ 0
Original post on infosec.exchange
During the hackathon.lu, we thought about making large datasets available locally to enable participants to conduct experiments or develop new open-source security tools.
A full Common Crawl dataset will be accessible, along with extensive passive DNS dumps.
If you think of a large open [โฆ]
09.02.2025 09:08 โ ๐ 0 ๐ 5 ๐ฌ 0 ๐ 0
Original post on infosec.exchange
Sonicwall (SonicOS) vulnerabilities.
SonicOS SSLVPN Authentication Bypass Vulnerability. CVE-2024-53704 sounds not very good but the others seem quite critical too.
Bundle created in @vulnerability_lookup from a imgur reference.
๐ [โฆ]
07.01.2025 12:44 โ ๐ 1 ๐ 2 ๐ฌ 0 ๐ 0
cvelistv5 - CVE-2023-34990
Vulnerability-Lookup - Fast vulnerability lookup correlation from different sources.
A relative path traversal in Fortinet FortiWLM version 8.6.0 through 8.6.5 and 8.5.0 through 8.5.4 allows attacker to execute unauthorized code or commands via specially crafted web requests.
vulnerability.circl.lu/cve/CVE-2023...
#vulnerability #fortinet #cybersecurity
18.12.2024 14:49 โ ๐ 0 ๐ 0 ๐ฌ 0 ๐ 0
Improving Cybersecurity Impact Taxonomies
Personal webpage of Alexandre Dulaunoy - from information security to open source and art
New blog post: Improving Cybersecurity Taxonomies Describing Impact and Cyber Harms Against Organizations
Iโve introduced a new MISP taxonomy & shared insights into the critical role of impact description in information sharing.
#CyberSecurity #MISP #taxonomies #taxonomy
foo.be/2024/12/Impr...
08.12.2024 13:06 โ ๐ 0 ๐ 0 ๐ฌ 0 ๐ 0
cve-2024-53054 withdrawn from NVD but published in GHSA.
Ever wondered what happens to rejected CVEs that still appear in other sources? Tools like vulnerability-lookup highlight these cases...
#vulnerability #cve #cybersecurity #opensource #opendata #linuxkernel
๐ vulnerability.circl.lu/vuln/cve-202...
29.11.2024 09:28 โ ๐ 2 ๐ 1 ๐ฌ 0 ๐ 0
Author of Neuromancer and, most recently, Agency (still above from โKill Switchโ, The X-Files, Season 5, Episode 11, co-written with Tom Maddox)
Bienvenue sur Le Sillon Fictionnel, un espace dรฉdiรฉ ร la passion de la lecture au sein dโun club un peu atypique.
#livres #livre #critique #culture [โฆ]
[bridged from https://paperbay.org/@sillon_fictionnel on the fediverse by https://fed.brid.gy/ ]
Senior reporter at @CybersecurityDive.bsky.social covering all things digital security. I also co-host @hothtakes.bsky.social. | Send me tips: https://ericjgeller.com/contact.html
Enjoy when humans are using machines in unexpected ways. I break stuff and I do stuff. Paperbay.org is my chaotic librarian side and the server is operated by yours [โฆ]
[bridged from https://paperbay.org/@a on the fediverse by https://fed.brid.gy/ ]
Enjoy when humans are using machines in unexpected ways. I break stuff and I do stuff.
The other side is at @a (photography, art and free software at large) [โฆ]
[bridged from https://infosec.exchange/@adulau on the fediverse by https://fed.brid.gy/ ]
Founder and creative director of Bellingcat and director of Bellingcat Productions BV. Author of We Are Bellingcat.
Journaliste pour la cellule enquรชtes de @telerama.bsky.social. Essayiste anxieux. Dernier livre : "Apocalypse Nerds" chez @divergences.bsky.social.
โ๏ธ Signal : tesq.37
https://linktr.ee/oliviertesquet
Bellingcat is an independent investigative collective of researchers, investigators and citizen journalists brought together by a passion for open source research.
Want to support our charity? bellingcat.com/donate
Our mission is to make the Internet more secure by bringing to light vulnerabilities, malicious activity and emerging threats. Join our Alliance!
https://shadowserver.org/partner
Scientist, safecracker, etc. McDevitt Professor of Computer Science and Law at Georgetown. So-called expert on election security and a few other things. Slow photographer. RF nerd. Occasionally blogs at https://mattblaze.org/blog
Freelancer. CSIRT. Incident Response. Threat Intelligence. Security, IDS, Linux, OpenBSD, Honeypots, Jazz, Literature, Modern Art. https://cudeso.be
Converting Club Mate into MISP
Journaliste, aux manettes de la newsletter cybercrime Pwned | gabrielthierry@protonmail.com https://linktr.ee/gabrielthierry
official Bluesky account (check username๐)
Bugs, feature requests, feedback: support@bsky.app
