Catalin Cimpanu (@[email protected]) - Mastodon
source link: https://mastodon.social/@campuscodi
Go to the source link to view the article. You can view the picture content, updated content and better typesetting reading experience. If the link is broken, please click the button below to view the snapshot at that time.
Catalin Cimpanu (@[email protected])
Prank your future self by wasting your life
Did you ever believe that Hunter Biden took a #laptop full of incriminating information into a computer repair shop and abandoned it there? That the repair shop decided to examine its contents and transmit them to Rudy Giuliani and Steve Bannon?
Of course not. Because you have more common sense than reporters and editors at every major news organization.
The whole thing was a Russian disinformation op, in partnership with the GOP. And it's ongoing. Where's the press?
Amazon, Trader Joeâs, and SpaceX are all fighting in court to have the NLRB declared unconstitutional.
All three companies have a disgraceful history of worker abuse and union busting.
They canât stop workers from organizing, so now they want to destroy the whole system.
Did I mention that the data broker industry must be destroyed? Because yeah.
DevSecOps platform Boost Security has published a new project named LOTP (Living Off the Pipeline).
The project lists development tools (typically CLIs), commonly used in CI/CD pipelines, that have lesser-known RCE-by-Design features.
The project is similar to other initiatives that track benign tools that can be abused for attacks on Windows (LOLBAS, LOLDrivers, and LOFLCAB), Linux (GTFOBins), and macOS (LOOBins).
ClearSky and SentinelLabs have discovered a new wave of Russian information warfare campaign named DoppelgĂ€nger NG. DoppelgĂ€nger is a global information warfare campaign publishing false information on hundreds of fake websites and social media channels. Their research revealed that âDoppelgĂ€nger NGâ is again fully operational in 2024, using new infrastructure. They also found a link between the âDoppelgĂ€nger NGâ Campaign and the Russian state-sponsored APT28 (Fancy Bear). IOC provided.
https://www.clearskysec.com/dg/
cc: @campuscodi
VulnCheck's Jacob Baines has discovered that a recent vulnerability disclosed in Zyxel firewalls by SSD researchers is actually an older bug tracked as CVE-2023-33012.
"The associated disclosure did not mention any caveats to exploitation, but it turns out only an uncommon configuration is affected. There are currently about 600 internet-facing Zyxel firewalls vulnerable to this issue (out of ~26,000)."
There is no evidence of exploitation in the wild.
in the spirit of transparency, hereâs our response to CISAâs RFI on Secure by Design: https://kellyshortridge.com/papers/CISA-2023-0027-Shortridge-Sensemaking.pdf
SbD should not incentivize lip service or #security theater. It should not be at odds with business goals.
So, @rpetrich and I wrote what SbD should be and not be.
We hope mastonerds especially appreciate our recommendations in Section 1.2.1 for how #software teams can start investing in SbD while supporting velocity, dev productivity, & reliability.
blog: https://kellyshortridge.com/blog/posts/rfi-secure-by-design-response/
Kemp Technologies has published a security update for its LoadMaster load balancer appliance.
The update fixes a critical security flaw that allows threat actors to access the device's management interface. Kemp says attackers can take over devices via malicious API commands. No authentication required.
The vulnerability is tracked as CVE-2024-1212. (cc @simontsui)
French security firm Sekoia has published a report looking at the evolution of the Scattered Spider group and all its connections and infosec codenamesâ0ktapus (Group-IB), Scatter Swine (Okta), UNC3944 (Mandiant), Octo Tempest (previously Storm-0875, Microsoft), Star Fraud (SentinelOne), Muddled Libra (Unit42) and others.
Recommend
About Joyk
Aggregate valuable and interesting links.
Joyk means Joy of geeK