"These APT actors are having considerable success using publicly known CVEs to gain access to networks, so organizations are strongly encouraged to prioritize patching in a way that is proportionate to this threat, such as by sequencing patches to address the highest risks first." 🥳🥳
28.08.2025 07:51 — 👍 0 🔁 0 💬 0 📌 0
Spyware startup Variston is losing staff — some say it's closing | TechCrunch
The Barcelona-based startup's malware has been used to target iPhones, Android devices and PCs running Windows Defender.
Barcelona-based spyware maker Variston seems to be shutting down. The company is comprised mainly of Israelis and their best-known customer is UAE. Do I expect all these folks to be working together under another name soon? Yes.
techcrunch.com/2024/02/15/v...
13.02.2025 19:09 — 👍 158 🔁 39 💬 2 📌 0
(NUEVO) App Móvil - Sede
El proceso de obtención del Certificado software con Dispositivo Móvil (como archivo descargable) de Ciudadano, se divide en cuatro pasos que deben realizarse en el orden señalado:
ℹ️ INFORMACIÓN DE INTERÉS PÚBLICO
Cómo sacarse el certificado digital de la FNMT en 5 minutos desde el sofá:
Resulta que la FNMT ha sacado una app móvil para poder hacerlo rápido y fácil... Y FUNCIONA. Es que sigo sin creérmelo. 🥹
🔗 El link con la info, aquí:
www.sede.fnmt.gob.es/certificados...
26.12.2024 12:31 — 👍 111 🔁 46 💬 23 📌 4
China mala.. new age. Como nadie más tiene vulnerabilidades... 🤔
18.12.2024 22:01 — 👍 0 🔁 0 💬 0 📌 0
GitHub - cisagov/ScubaGear: Automation to assess the state of your M365 tenant against CISA's baselines
Automation to assess the state of your M365 tenant against CISA's baselines - cisagov/ScubaGear
Agencies will also have to run CISA's SCuBA tool to audit their Microsoft 365 tenants for common misconfigurations. Agencies will have to integrate the tool's result feeds with CISA's monitoring solutions by April 25.
github.com/cisagov/Scub...
18.12.2024 21:40 — 👍 7 🔁 2 💬 0 📌 0
CISA has ordered federal government agencies to review and secure their Microsoft cloud environments.
Federal agencies will be required to inventory and report all their cloud infrastructure to CISA by February 21, next year: www.cisa.gov/news-events/...
18.12.2024 21:39 — 👍 23 🔁 6 💬 1 📌 1
YouTube video by Virus Bulletin
The Mask has been unmasked again - Georgy Kucherin & Marc Rivero López
Russian security firm Kaspersky says it spotted new activity from Careto, one of the oldest known APT groups.
Also known as The Mask, the group was first seen in 2007 and is believed to operate from a Spanish-speaking country.
securelist.com/careto-is-ba...
www.youtube.com/watch?v=d3DS...
12.12.2024 11:25 — 👍 16 🔁 7 💬 0 📌 0
Exploiting Device Authentication Vulns in Cloud-Managed IoT Devices
Exploiting Device Authentication Vulns in Cloud-Managed IoT Devices
12.12.2024 15:09 — 👍 1 🔁 1 💬 0 📌 0
Romania's cybersecurity agency says the Lynx ransomware is behind the attack on the country's largest electricity provider
dnsc.ro/citeste/aler...
Per PAN, Lynx is allegedly a rebrand of the old INC gang: unit42.paloaltonetworks.com/inc-ransomwa...
11.12.2024 18:58 — 👍 21 🔁 5 💬 0 📌 0
DNSC
ALERTĂ: LYNX Ransomware - Indicators of Compromise (IOCs)
For those of you involved in the energy sector (and indeed all others) here are the IOCs and YARA rules relating to the Lynx ransomware incident at the Romanian utility Electrica
dnsc.ro/citeste/aler...
11.12.2024 19:34 — 👍 2 🔁 2 💬 0 📌 0
Hola mundo. Aquí estamos a ver si este es un lugar más "limpio"
11.12.2024 01:32 — 👍 0 🔁 0 💬 0 📌 0
My legal name really is MegaZone, one word. Principal Security Engineer - F5 SIRT. All opinions are my own and not my employer's. He/him.
☆ Cybersecurity reporter
★ Newsletters at Risky Business
#infosec #cybersecurity
https://risky.biz
Democratizing Cyber Security. Threat intelligence platform for Cyber Security professionals and Small / Medium business. Insights from Darkweb and Threat Actors.
Summarizes the hottest content on r/cybersecurity once per hour. Warning, the summaries are generated by an LLM and are not guaranteed to be 100% correct. Operated by @tweedge.net, open source @ https://github.com/r-cybersecurity/best-of-bot
DARPA/Google/Stripe/L0pht/Twitter/…/DARPA/[redacted]
https://en.wikipedia.org/wiki/Peiter_Zatko
GreyNoise analyzes Internet background noise. Use GreyNoise to remove pointless security alerts, find compromised devices, or identify emerging threats.
CPO/CSO of Corridor.dev, teaching at Stanford.
Dad, Powerlifter, Security at Apple, Photographer
Just a biologist that loves to break cyber-stuff. Adepts of 0xCC founder.
Security Researcher with @GHSecurityLab. CTF #int3pids. Opinions here are mine!
Security researcher/programmer ⁂ Managing director @ HexArcana ⁂ @DragonSectorCTF founder ⁂ he/him
Trabajo en @apachectl.bsky.social
y http://davidhernandez.es | Edu: Hacker & free Culture. Más en https://daboblog.com y https://debianhackers.net. Subo montañas, a veces gano al ajedrez.
¿Hacktivista? (legítima defensa) # GPG Key 0xBC695F37
BleepingComputer is a premier destination for cybersecurity news for over 20 years, delivering breaking stories on the latest hacks, malware threats, and […]
🌉 bridged from 🌐 https://bleepingcomputer.com/: https://fed.brid.gy/web/bleepingcomputer.com
The Only official HackerOne bsky account.
Peace of mind from security's greatest minds.
#HackForGood
MITRE ATT&CK® - A knowledge base for describing the behavior of adversaries. Replying/Following/Reposting ≠ endorsement.
Tecnología, cómputo, seguridad informática, redes.
