Thanasis Papathanasiou's Avatar

Thanasis Papathanasiou

@than404.bsky.social

IT & Information Security // CISSP, CEH, ITIL Amateur Photographer

51 Followers  |  83 Following  |  1 Posts  |  Joined: 20.11.2024  |  1.8401

Latest posts by than404.bsky.social on Bluesky

Preview
Signals of Trouble: Multiple Russia-Aligned Threat Actors Actively Targeting Signal Messenger | Google Cloud Blog Russia state-aligned threat actors target Signal Messenger accounts used by individuals of interest to Russia's intelligence services.

Today, Google Threat Intelligence is alerting the community to increasing efforts from several Russia state-aligned threat actors (GRU, FSB, etc.) to compromise Signal Messenger accounts.

cloud.google.com/blog/topics/...

19.02.2025 11:05 β€” πŸ‘ 168    πŸ” 119    πŸ’¬ 3    πŸ“Œ 15
How to: Use Signal Download location: Google Play Store, Apple App Store System requirements: Android 5 or later, iOS 13 or later Version used in this guide: Android: 7.0. iPhone: 7.0 License: GPLv3 Level: Beginner Time...

Some useful Surveillance Self Defense links for people who want to lock their shit down right now:

Attending a protest: ssd.eff.org/module/atten...

How to Use Signal: ssd.eff.org/module/how-t...

Security starter pack: ssd.eff.org/playlist/wan...

03.02.2025 06:09 β€” πŸ‘ 1698    πŸ” 996    πŸ’¬ 72    πŸ“Œ 33
Preview
C2 Tracker: Live Feed of C2 servers, tools, and botnets Free to use IOC feed for various tools/malware. It started for just C2 tools but has morphed into tracking infostealers and botnets as well

C2 Tracker: Live Feed of C2 servers, tools, and botnets meterpreter.org/c2-tracker-l...

30.01.2025 03:46 β€” πŸ‘ 3    πŸ” 1    πŸ’¬ 0    πŸ“Œ 0

Bellingcat is currently working with universities to develop open source investigation courses in various fields and creating student-led investigative hubs at those universities, which seems well timed.

20.01.2025 07:27 β€” πŸ‘ 1534    πŸ” 310    πŸ’¬ 29    πŸ“Œ 15
Preview
Online Behavioral Ads Fuel the Surveillance Industryβ€”Here’s How Each time you see a targeted ad, your personal information is exposed to thousands of advertisers and data brokers through a process called β€œreal-time bidding” (RTB). This process does more than deliv...

Targeted Advertising and the risks of Real-Time Bidding (RTB)

The Electronic Frontier Foundation highlights RTB as an unregulated system that significantly undermines user privacy.

16.01.2025 12:00 β€” πŸ‘ 2    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0
Preview
Hackers leak configs and VPN credentials for 15,000 FortiGate devices A new hacking group has leaked the configuration files, IP addresses, and VPN credentials for over 15,000 FortiGate devices for free on the dark web, exposing a great deal of sensitive technical information to other cybercriminals.

A new hacking group has leaked the configuration files, IP addresses, and VPN credentials for over 15,000 FortiGate devices for free on the dark web, exposing a great deal of sensitive technical information to other cybercriminals.

15.01.2025 21:57 β€” πŸ‘ 21    πŸ” 11    πŸ’¬ 0    πŸ“Œ 0

I can never fully know if I already read this "Fortinet 0day in the wild" article 3 weeks ago or if it’s new. Ha, never mind! It’s new πŸ₯²

14.01.2025 21:14 β€” πŸ‘ 17    πŸ” 8    πŸ’¬ 3    πŸ“Œ 0
Preview
Hackers are exploiting a new Ivanti VPN security bug to hack into company networks | TechCrunch Mandiant says a Chinese cyberespionage group has been exploiting the critical-rated vulnerability since at least mid-December.

Ivanti has warned that a zero-day vulnerability in its widely-used enterprise VPN appliance has been exploited to compromise customer networks. Mandiant, which discovered the flaw, has linked the attacks to a China-backed cyberespionage group techcrunch.com/2025/01/09/h...

09.01.2025 12:57 β€” πŸ‘ 11    πŸ” 8    πŸ’¬ 3    πŸ“Œ 1
Post image Post image Post image Post image

πŸ›°οΈ The Gravy Analytics breach exposes how easily citizens can be tracked:
- Seen at Space Launch Complex 36
- Work commute mapped
- Stops at Home Depot & family visits near Kansas City logged

πŸ”’ A stark reminder of the privacy risks in location data collection.

09.01.2025 12:27 β€” πŸ‘ 19    πŸ” 14    πŸ’¬ 0    πŸ“Œ 0
Post image Post image Post image Post image

Hackers claim to have breached Gravy Analytics, a US location data broker selling to government agencies.

They shared 3 samples on a Russian forum, exposing millions of location points across the US, Russia, and Europe.

08.01.2025 16:25 β€” πŸ‘ 51    πŸ” 26    πŸ’¬ 1    πŸ“Œ 8

Man-in-the-middle attacks on Public WiFi networks haven't been a realistic threat in a decade. Almost all websites use encryption by default, and anything of value uses HSTS to prevent attackers from downgrading / disabling encryption. It's a non issue.

20.12.2024 03:11 β€” πŸ‘ 741    πŸ” 94    πŸ’¬ 29    πŸ“Œ 9

@than404 is following 20 prominent accounts