“If in doubt, wipe it.”

Stark advice for people travelling to US:

— Delete bad jokes about US from WhatsApp and social media
— Completely wiped (or ‘burner’) phones raise red flags
— Don’t say too much in interrogations

More advice: m.independent.ie/news/if-in-d...

EFF to European Commission: Don’t Resurrect Illegal Data Retention Mandates The mandatory retention of metadata is an evergreen of European digital policy. Despite a number of rulings by Europe’s highest court, confirming again and again the incompatibility of general and ind...

The European Commission must once and for all abandon the ghost of data retention that’s been haunting EU policy discussions for decades, and shift its focus to rights respecting alternatives.

TDI butterfly logo and DEFCON33 logo. Text: The Diana Initiative is a community at DEFCON33!

We are excited to be at DEF CON this year as a community - but we need your help - we would love your ideas (or donations) for our quiet space - find out more here:
lnkd.in/gDUhiynX
#DEFCON33 #TDI2025 #SecuringOurFutureTogether

1/ A teammate of mine worked on an interesting incident where the attackers connected to the backup server via RDP, launched the Chrome browser, and searched on Google for "VirtualBox".

The VirtualBox installer was then downloaded to the home directory of the compromised user:

a woman in a black dress is dancing in front of a crowd of people in a dark room . Alt: a woman in a black dress is dancing in front of a crowd of people in a dark room .

A bit late in the day but let’s give everyone some good vibes for the evening with #MusicMonday

We are happy to announce that you can snatch some GothCon merch early this year!

You can snatch the design on tshirts and pull over hoodies!

tee-zr.com/product/goth...

Hi world! We are working on finalizing our Artist lineup for #DEFCON 33. Stay tuned for announcements soon!

OST producers: We are also still finalizing the soundtrack!

@defcon.bsky.social @defconparrot.bsky.social #defcon33 #dc33

BeyondTrust warns of pre-auth RCE in Remote Support software BeyondTrust has released security updates to fix a high-severity flaw in its Remote Support (RS) and Privileged Remote Access (PRA) solutions that can let unauthenticated attackers gain remote code ex...

BeyondTrust warns of pre-auth RCE in Remote Support software www.bleepingcomputer.com/news/securit...

a black cat with purple eyes is holding a nail clipper and says happy friday the 13th . Alt: a black cat with purple eyes is holding a nail clipper and says happy friday the 13th .

Happy Friday the 13TH!

Make sure to pet all the black cats, brew some witches brew, dance in the moonlight, and feed your local goths!

Microsoft broke DHCP for Windows Server last Patch Tuesday Some servers can't renew IP addresses, and there's no fix yet Microsoft has admitted that June's Patch Tuesday updates could break the DHCP service on Windows Server.…

Microsoft broke DHCP for Windows Server last Patch Tuesday

TDI butterfly logo and DEFCON33 logo. Text: The Diana Initiative is a community at DEFCON33!

We're excited to be coming home to DEF CON (where we started) as a
community and are putting together some content - would you be willing to help? maybe
your contest, event, community or village wants to collab? Let us know here: buff.ly/yNSnotM
#SecuringOurFutureTogether #DEFCON33

This Wrist-Mounted Keyboard Is Like Something Out of an ‘80s Cyberpunk Film Adam LeBlanc’s Schist01 wrist-mounted keyboard oozes cyberpunk style.

Adam LeBlanc’s Schist01 wrist-mounted keyboard oozes cyberpunk style.

Sega made a bunch of their retro game ports to iOS and Android free because they are officially ending support for them. Grab them before they disappear:

Ransomware Attacks Continue to Rise in an Alarming Trend  The frequency and intensity of cyberthreats seem to be increasing despite businesses' ongoing efforts to thwart malicious actors. Honeywell, a global technology and manufacturing firm that also provides cybersecurity solutions, reported a 46% rise in ransomware extortion attacks between October 1, 2024, and March 31, 2025, as compared to the previous six-month period.  Win32.Worm.Ramnit, a Trojan that typically targets the banking sector to steal account details, was found in 37% of files blocked by Honeywell's SMX product. That represented a 3,000% rise from the second quarter of 2024, when Honeywell last reported on it.  In its investigation report, Honeywell stated that "it can likely be assumed it has been repurposed to extract control system credentials" due to the Trojan's saturation presence in the ecosystems of its industrial clients. "Existing adversaries continue to disrupt operations across critical sectors, even in the absence of new ransomware variants specifically designed for industrial control systems."  1,929 ransomware incidents were made public throughout the reporting period. Eight verticals accounted for the vast majority (71%) of the cases, with the industries most affected being manufacturing, construction, healthcare, and technology.  Given that ransomware attacks are normally "more opportunistic, typically creating a normal distribution of attacks across different industries," Honeywell noted that this was a really unusual pattern. The report claims that supply chain disruptions, manual failovers, and forced production outages caused by ransomware have been experienced by manufacturing plants, water treatment facilities, and energy providers.  In response to the elevated threats, during the reporting period, some organisations "doubled down on best practices that would be considered baseline," according to Honeywell. Such procedures include, for example, immutable data backups and regular vulnerability assessments. According to Honeywell, as of October 2024, victimised organisations had paid out more than $1 billion in ransomware.  Another new cybersecurity report, from the Information Security Media Group, focused on artificial intelligence, which it described as the "defining force" of cybersecurity-related disruption.  As businesses use AI to automate threat detection and scale response capabilities, "adversaries are using the same technologies to enhance phishing, generate polymorphic malware, and conduct identity fraud with unprecedented precision," according to the ISMG research. ISMG added that the combination of AI and quantum computing "further signals a critical shift requiring crypto-agility and forward planning.”

Ransomware Attacks Continue to Rise in an Alarming Trend #BusinessSecurity #CyberSecurity #HoneyWell

Training AI on Mastodon posts? The idea's extinct after terms updated Such rules could be tricky to enforce in the Fediverse, though Mastodon is the latest platform to push back against AI training, updating its terms and conditions to ban the use of user content for large language models (LLMs).…

Training AI on Mastodon posts? The idea's extinct after terms updated

Podcast Episode: Securing Journalism on the ‘Data-Greedy’ Internet Public-interest journalism speaks truth to power, so protecting press freedom is part of protecting democracy. But what does it take to digitally secure journalists’ work in an environment where criti...

NEW: @freedom.press' @harloholm.es joins EFF’s “How to Fix the Internet” to discuss protecting journalists and sources on the “data-greedy” internet.

#DEFCON33 stuff is spread across such a wide variety of places, one of my goals is to help people find stuff - defcon.outel.org/dcwp/def-con... - a list of interesting URLs of posts and pages - let me know if you think somethings missing, I'll add it #defcon #infosec #security

Firefox is dead to me – and I'm not the only one who is fed up Parent company Mozilla's not my fave either Opinion  I know some people still love Firefox. But, folks, it's a bad relationship, and the problems have been going on for a while now.…

Firefox is dead to me – and I'm not the only one who is fed up

How Discord Was Ported to Windows 95 and NT 3.1 On the desktop, most people use the official HTML and JavaScript-based client for Discord in either a browser or a still-smells-like-a-browser Electron package. Yet what if there was a way …read more

How Discord Was Ported to Windows 95 and NT 3.1

Honda dips its toes in cargo delivery micromobility | TechCrunch Honda will supply last-mile delivery companies with the Fastport eQuad.

Honda dips its toes in cargo delivery micromobility

Build your own pocket AI terminal! 📟

IoT_HUB brings Google Gemini to life using our XIAO ESP32C3 & OLED display. Ask via Serial Monitor, get live AI replies on-screen, and scroll with buttons. Smart, simple & all embedded.

🔗 Full project on @hacksterio.bsky.social: bit.ly/460fkoW

You know us, you love us! See Skytalks at BSidesLV presents QuietRoar with 'Mapping the Gaps: How Disconnects in Critical Infrastructure Leave Cities Vulnerable' #skytalks #bsideslv

Bots are overwhelming websites with their hunger for AI data GLAM-E Labs report warns of risk to online cultural resources Bots harvesting content for AI companies have proliferated to the point that they're threatening digital collections of arts and culture.…

Bots are overwhelming websites with their hunger for AI data

The 2025 Fundraiser is live!

Help us raise money for a good cause! Order by 06 July and ship to your home or ship to the conference if you will be there to pick up!

www.customink.com/fu...

Google’s $32 Billion Wiz Deal Draws DOJ Antitrust Scrutiny: Report According to reports, the US Department of Justice will assess whether the deal would harm competition in the cybersecurity market.

Google’s $32 Billion Wiz Deal Draws DOJ Antitrust Scrutiny: Report www.securityweek.com/googles-32-b...

1/ "But in Q1, we also saw a new social engineering lure where the attackers started using fake website cookie banners to spread malware.

A cookie banner, which is required for GDPR compliance, is a pop-up message displayed on a website to inform users about the use of cookies and other tracking

Spiraling with ChatGPT | TechCrunch ChatGPT seems to have pushed some users towards delusional or conspiratorial thinking, according to a recent feature in The New York Times.

Spiraling with ChatGPT

Hosting images inside dns records using TXT.

How to Protest Safely in the Age of Surveillance Law enforcement has more tools than ever to track your movements and access your communications. Here’s how to protect your privacy if you plan to protest.

First, let's talk about your phone. Should you bring it? What data can officers glean from a smartphone?

“The device in your pocket is definitely going to give off information that could be used to identify you,” says Harlo Holmes, director of digital security @freedom.press.

User demanded a ‘wireless’ computer and was outraged when its battery died Abusive manager had to be told there's no such thing as an atomic laptop On Call  By Friday morning, Reg readers’ batteries can sometimes be a little low, which is why we always use the day to offer a jolt of amusement in the form of On Call – the reader contributed column in which we celebrate the lows and lows of tech support.…

User demanded a ‘wireless’ computer and was outraged when its battery died