Search results for tag #security
⚠️ CVE-2026-1435 (CRITICAL): Graylog Web Interface 2.2.3 fails to expire old sessions, enabling token reuse & unauthorized access. Restrict access, enable MFA, and monitor sessions until patch is released. Details: https://radar.offseq.com/threat/cve-2026-1435-cwe-613-insufficient-session-expirat-34761982 #OffSeq #Graylog #Vuln #Security
Alt...
Critical threat: CVE-2026-1435: CWE-613 Insufficient Session Expiration in Graylog Graylog Web Interface
Kaspersky said it uncovered a previously undocumented backdoor built into the firmware of Android tablets.
https://therecord.media/new-backdoor-found-in-android-russia-japan-brazil
🚨 CVE-2026-2329: CRITICAL stack buffer overflow in Grandstream GXP1610 series (all models) via /cgi-bin/api.values.get. Unauth RCE possible — restrict HTTP API access, segment devices, and monitor traffic. Patch ASAP when available. https://radar.offseq.com/threat/cve-2026-2329-cwe-121-stack-based-buffer-overflow--e34cb0a5 #OffSeq #VoIP #RCE #Security
Alt...
Critical threat: CVE-2026-2329: CWE-121 Stack-based Buffer Overflow in Grandstream GXP1610
!!! ALL HAIL THE VAN PANTHER !!!
Click on, "Show More" or "Read More" to get the links!
!!! NOTE !!! This post is best viewed on a PC. Switched To Linux is, “written by a broad spectrum computer consultant to help people learn more about the Linux platform.” This account is a supporter of Switched To Linux and provides convenience posts of thumbnails art, videos and streams.
#SwitchedToLinux #Linux #Windows #Mac #Technology #Tech #AltTech #Privacy #Private #Security #Secure #FOSS #FreeAndOpenSource #FreeAndOpenSourceSoftware #FreeOpenSourceSoftware #YouTube #Odysee #Rumble #BitChute #Locals #Patreon #DLive #Twitch #AltTech #FactCheckTrue #Fediverse #SocialMedia #rufus #localaccount
!!! Tell us what you think by filling out a "SATISFACTION SURVEY or ABUSE/SPAM REPORT" form from Teh AnKorage !!!
https://cryptpad.disroot.org/form/#/2/form/view/elsOVQUrXAmGuer4kd75JhA3mNELuCj8cTjEUynrZZo/
\*Videos may take a considerable amount of time to post. If it is not present, it will be, soon(tm).
#YouTube -
https://www.youtube.com/@SwitchedtoLinux/videos
#Odysee -
https://odysee.com/@switchedtolinux:0?view=content
#Rumble -
https://rumble.com/c/SwitchedToLinux/videos
#Bitchute -
https://www.bitchute.com/channel/uf9hzD216LX0
Microsoft warnt vor kritischer Rechteausweitungslücke in Windows Admin Center
Im Windows Admin Center können Angreifer ihre Rechte ausweiten. Microsoft stuft das als kritisch ein und rät Admins zum Aktualisieren.
2026-02-17 RDP #Honeypot IOCs - 1374 scans
Thread with top 3 features in each category and links to the full dataset
#DFIR #InfoSec
Top IPs:
159.89.36.20 - 630
164.90.188.53 - 510
85.203.15.98 - 63
Top ASNs:
AS14061 - 1155
AS62240 - 63
AS396982 - 36
Top Accounts:
hello - 1230
Test - 27
Administr - 21
Top ISPs:
DigitalOcean, LLC - 1155
Clouvider Limited - 63
Google LLC - 36
Top Clients:
Unknown - 1374
Top Software:
Unknown - 1374
Top Keyboards:
Unknown - 1374
Top IP Classification:
hosting - 1227
Unknown - 75
mobile & hosting & proxy - 63
Pastebin links with full 24-hr RDP Honeypot IOC Lists:
Bad API request, invalid api_dev_key
2026-02-17 RDP #Honeypot IOCs - 916 scans
Thread with top 3 features in each category and links to the full dataset
#DFIR #InfoSec
Top IPs:
159.89.36.20 - 420
164.90.188.53 - 340
85.203.15.98 - 42
Top ASNs:
AS14061 - 770
AS62240 - 42
AS396982 - 24
Top Accounts:
hello - 820
Test - 18
Administr - 14
Top ISPs:
DigitalOcean, LLC - 770
Clouvider Limited - 42
Google LLC - 24
Top Clients:
Unknown - 916
Top Software:
Unknown - 916
Top Keyboards:
Unknown - 916
Top IP Classification:
hosting - 818
Unknown - 50
mobile & hosting & proxy - 42
Pastebin links with full 24-hr RDP Honeypot IOC Lists:
Bad API request, invalid api_dev_key
2026-02-17 RDP #Honeypot IOCs - 458 scans
Thread with top 3 features in each category and links to the full dataset
#DFIR #InfoSec
Top IPs:
159.89.36.20 - 210
164.90.188.53 - 170
85.203.15.98 - 21
Top ASNs:
AS14061 - 385
AS62240 - 21
AS396982 - 12
Top Accounts:
hello - 410
Test - 9
Administr - 7
Top ISPs:
DigitalOcean, LLC - 385
Clouvider Limited - 21
Google LLC - 12
Top Clients:
Unknown - 458
Top Software:
Unknown - 458
Top Keyboards:
Unknown - 458
Top IP Classification:
hosting - 409
Unknown - 25
mobile & hosting & proxy - 21
Pastebin links with full 24-hr RDP Honeypot IOC Lists:
Bad API request, invalid api_dev_key
Leaving a postcard-sized document with the second fold sealed.
#cybersecurity #infosec #security
RE: https://mastodon.online/@mullvadnet/116087059413472819
Are they going to bring experts from North Korea, China and Pakistan?
Also Iran might help I'd suspect.
#cyebrrights #privacy #democracy #vpn #security
Stomata boostedThe UK has announced plans to fast-track legislation requiring “age verification for VPN use”. The correct term, however, is not age verification but identity verification.
A law like this would require everyone to identify themselves in order to use a VPN. This would pose a risk to whistleblowers, violate human rights, and represent yet another step toward an authoritarian society.
But but we need to protect our toddlers...
Edri protect encryption campaign, please sign the petition
Cisco upgrades security portfolio for autonomous AI agents
Anyone who wants to use AI agents also needs the appropriate security measures – Cisco believes this and is expanding its offering accordingly.
"Upload your ID or an image of your face.... Do not worry, because we do not keep the data. We just want to confirm you are an adult. And a human being."
"Your Personal Data Is Safe" - Broken Promises
#censorship #CyberSecurity #InfoSec #Security #Vulnerability
Side-Channel Attacks Against LLMs - Schneier on Security
https://www.schneier.com/blog/archives/2026/02/side-channel-attacks-against-llms.html
> Here are three papers describing different side-channel attacks against LLMs.
"Remote Timing Attacks on Efficient Language Model Inference“
“When Speculation Spills Secrets: Side Channels via Speculative Decoding in LLMs“
“Whisper Leak: a side-channel attack on Large Language Models“
Sicherheitsbedenken: EU-Parlament deaktiviert KI-Tools auf Diensthandys
EU-Abgeordnete und ihre Angestellte können auf dienstlichen Smartphones und Tablets keine KI-Funktionen mehr nutzen. Man wisse zu wenig zur Datensicherheit.
Watching humanoid robots take the stage at the Lunar New Year celebration in China 🇨🇳 means a shift in our relationship with robots. You might think of robots as stiff tools confined to factories. Buckle up... These machines show a level of coordination that mirrors our own biology. 🤯 The speed of development is incredible. It took decades to teach a machine to walk. We are now seeing them dance and interact in front of millions of people. This transition means the gap between high-level computation and physical reality is disappearing.
🧠 Humanoid models now use neural networks for movement.
⚡ China plans to lead global production by 2026.
🎓 Performance art tests the limits of machine balance.
🔍 Industrial applications will follow these public displays.
https://www.reuters.com/business/media-telecom/chinas-humanoid-robots-ready-lunar-new-year-showtime-2026-02-16/
#FutureOfWork #Robotics #Engineering #Innovation #AI #security #privacy #cloud #infosec #cybersecurity
Well, finally made the dive into GrapheneOS in my degoogling journey. Feelsgoodman.
#degoogle #DeGoogling #privacy #security #foss #opensourcesoftware #grapheneos #fuckbigtech
Alt...
Screenshot showing the GrapheneOS app store.
"Respondents in all surveyed countries see the US as more threatening than last year. Yet, in absolute terms, Russia continues to be seen as considerably more of a threat than the US across all surveyed countries."
https://securityconference.org/en/publications/munich-security-report/2026/munich-security-index-2026/ #security #safety
Last chance to get that coveted spot on our February meetup!
Thank you to 7AI for hosting us and Halycon for sponsoring food and beverages!
Bobby Rauch will explain us how he discovered a novel phishing chain and O'Shea Bowens will describe Blindness with EDR!
Update your RSVP at https://buff.ly/eGLcwez
#infosec #cybersecurity #security
I'm guessing all those great and wise security sites that give raving reviews for Nord VPN have never thought to use something like Little Snitch. Because if they had, they'd have seen that #nordvpn pulls a shitty dickhead move and tries to connect you, the user, directly to google analytics and crashalytics.
I do not give a shit what you can say to justify this. You are wrong. The very purpose of using a vpn is to add a degree of security and privacy to your online experience. Allowing a directly link to google is in no way a proper secure behaviour.
The good thing is they offer a 30day money back policy. That is most certainly my next move here. Back to Mullvad. Been happy with them for a long time. Just thought I'd sample another vpn. Never had #mullvad try to connect to google on the backside, nor anywhere else.
Introducing SafeUpdater by Michael Pastor - A security-first update framework for Electron apps, built around explicit threat models, integrity and authenticity guarantees, and real attack mitigations. Check it out today!
https://blog.doyensec.com/2026/02/16/electron-safe-updater.html
#AppSec #Electron #doyensec #security
Alt...
Hands typing with sparks coming from the monitor
Smartphone security Tipp der Woche: Du trägst deine Bankkarte nicht direkt bei deinem Smartphone
Du solltest deine Bankkarte nicht direkt neben deinem Smartphone tragen oder lagern. Malware könnte die Daten über NFC auslesen und verschicken. Nutze alternativ RFID-Schutzhüllen für deine Karten oder deaktiviere NFC.
Lies mehr zu dem Thema: https://smartphone-dont-spy.de/list/du-trgst-deine-bankkarte-nicht-direkt-bei-deinem-smartphone
Oh! Doesn't this just inspire your confidence?
#Security #researchers from ETH Zurich and Università della Svizzera italiana (USI) have been testing the zero-knowledge #encryption of three major #password managers, #Bitwarden, #LastPass, and #Dashlane. The results are concerning, to say the least.
From the article:
"The attacks don't #exploit weaknesses in the same way that remote attackers could exploit vulnerabilities and target specific users. Instead, the researchers worked to test each platform's ability to keep secrets safe in the event they were compromised.
In most cases where attacks were successful, the researchers said they could retrieve encrypted passwords from the user, and in some cases, change the entries."
APPLE DAILY: APPLE SCHALTET DIEBSTAHLSCHUTZ STANDARDMÄSSIG EIN, IOS 27 RÄUMT AUF, BILLIG-MACBOOK FARBIG
.
.
.
#apple #appledaily #applenews #ios264 #ios27 #iphone #iphonesicherheit #diebstahlschutz #security #appleupdate #macbook #macbookair #budgetmacbook #technews #appleleaks #softwareupdate #akku #performance #mobiletech #digitalnews #news
APPLE DAILY: APPLE EVENT BESTÄTIGT, ENDE-ZU-ENDE-RCS IM TEST, IPHONE 18 PRO OHNE GROSSEN SPRUNG
.
.
.
#apple #appledaily #applenews #news #appleevent #ios #ios264 #rcs #verschlüsselung #imessage #iphone #iphone18pro #appleleaks #technews #smartphone #mobiletech #iosupdate #security #chat #android #digitalnews
#Cloud-basierte #Passwortmanager bieten weniger Schutz als versprochen
https://ethz.ch/de/news-und-veranstaltungen/eth-news/news/2026/02/passwortmanager-bieten-weniger-schutz-als-versprochen.html
Forscher der ETH haben #Bitwarden, #Lastpass und #Dashlane jeweils etliche Angriffe demonstriert.
"Wir waren überrascht, wie gross die Sicherheitslücken sind" 🤣
Leute, bitte schenkt eure geheimsten Daten doch niemals einen Cloud-Service-Anbieter! Egal welchem.
Lest https://karl-voit.at/2023/03/05/Passwortsicherheit/ und entscheidet klug.
If you or someone you know attempted to click the "Get Your Tickets!" button on the BSides Charlotte website while on mobile and were unable to actually access it, we were alerted to this issue and immediately began investigating. Turns out, there was some annoying CSS that was blocking it *only on mobile*. As soon as we determined the cause, we were able to apply a fix. So if you haven't already gotten your tickets because the site wasn't clicking to EventBrite on mobile, it should now work! Please let us know if there are any other website issues; it's the only way we can ensure the website is functional for everyone! Thank you!
Also, please don't forget that the Call for Papers, Villages, & Workshops is still open, as is the Call for Volunteers! But be aware: the Call for Volunteers closes this Friday, February 22nd! #bsides #cyber #security #conference
@SonofaGeorge the fact that #Nissan and #Kia want to collect, process and sell data about the drivers' and passengers sex life…
@cpansec published a 2025 year in review!
We had lots of activities, and good progress in many places, but can do more.
Check it out, and if you feel inspired, join us!
https://security.metacpan.org/2026/01/10/CPANSec-Retrospective-2025.html
MCSC: Cyberdefense alone is no longer enough
European military and intelligence services call for a reassessment of counterattacks in hybrid warfare. New mandates and European tools are needed.
Winter may still be here but our February meeetup is getting hot!
Thank you to 7AI for hosting us and Halycon for sponsoring food and beverages!
Bobby Rauch will explain us how he discovered a novel phishing chain and O'Shea Bowens will describe Blindness with EDR!
RSVP Fast at https://buff.ly/eGLcwez #infosec #cybersecurity #security
Europe's security paradigm is shifting. Faced with eroding trust in U.S. guarantees, leaders are openly discussing a homegrown nuclear deterrent for the first time since the Cold War.5•6 Germany and France have begun talks, signaling a move toward strategic autonomy.1 This isn't about replacing NATO, but ensuring its credibility from within.2•4 Deterrence, after all, depends on political commitment.7 A pivotal moment in global security is unfolding.
Social-Media-Konten: Schärfere Regeln für USA-Einreise nicht vor Jahresmitte
Dass bei der Einreise in die USA zukünftig auch Social-Media-Accounts angegeben werden müssen, sorgte bereits für viel Unruhe. Nun wird erst einmal entwarnt.
#Datenschutz #Netzpolitik #Security #SocialMedia #Überwachung #Wirtschaft #news
#OpenAI has deleted the word ‘safely’ from its #mission – and its new structure is a test for whether #AI serves #society or shareholders
see: theconversation.com/openai-has…
#economy #technology #news #security #humanity #future #finance #money #capitalism #ethics #problem #software #profit #politics
Location: Matrix
2026-02-14 RDP #Honeypot IOCs - 1341 scans
Thread with top 3 features in each category and links to the full dataset
#DFIR #InfoSec
Top IPs:
159.89.36.20 - 630
164.90.188.53 - 510
139.59.68.81 - 30
Top ASNs:
AS14061 - 1176
AS396982 - 48
AS8560 - 18
Top Accounts:
hello - 1191
142.93.8.59 - 75
Administr - 15
Top ISPs:
DigitalOcean, LLC - 1176
Google LLC - 48
China Unicom Jiangsu Province Network - 15
Top Clients:
Unknown - 1341
Top Software:
Unknown - 1341
Top Keyboards:
Unknown - 1341
Top IP Classification:
hosting - 1257
Unknown - 75
hosting & proxy - 6
Pastebin links with full 24-hr RDP Honeypot IOC Lists:
Bad API request, invalid api_dev_key
2026-02-14 RDP #Honeypot IOCs - 894 scans
Thread with top 3 features in each category and links to the full dataset
#DFIR #InfoSec
Top IPs:
159.89.36.20 - 420
164.90.188.53 - 340
139.59.68.81 - 20
Top ASNs:
AS14061 - 784
AS396982 - 32
AS8560 - 12
Top Accounts:
hello - 794
142.93.8.59 - 50
Administr - 10
Top ISPs:
DigitalOcean, LLC - 784
Google LLC - 32
China Unicom Jiangsu Province Network - 10
Top Clients:
Unknown - 894
Top Software:
Unknown - 894
Top Keyboards:
Unknown - 894
Top IP Classification:
hosting - 838
Unknown - 50
hosting & proxy - 4
Pastebin links with full 24-hr RDP Honeypot IOC Lists:
Bad API request, invalid api_dev_key
2026-02-14 RDP #Honeypot IOCs - 447 scans
Thread with top 3 features in each category and links to the full dataset
#DFIR #InfoSec
Top IPs:
159.89.36.20 - 210
164.90.188.53 - 170
139.59.68.81 - 10
Top ASNs:
AS14061 - 392
AS396982 - 16
AS8560 - 6
Top Accounts:
hello - 397
142.93.8.59 - 25
Administr - 5
Top ISPs:
DigitalOcean, LLC - 392
Google LLC - 16
China Unicom Jiangsu Province Network - 5
Top Clients:
Unknown - 447
Top Software:
Unknown - 447
Top Keyboards:
Unknown - 447
Top IP Classification:
hosting - 419
Unknown - 25
hosting & proxy - 2
Pastebin links with full 24-hr RDP Honeypot IOC Lists:
Bad API request, invalid api_dev_key
⚪ Mount Anything as a Drive: Git Repos, FTP/SSH, ZIP Archives, Torrents, Magnet Links and More
🗨️ In UNIX, it’s commonly said that “everything is a file.” But in practice, aside from the well‑known device files in /dev and the special filesystems /proc and /sys, there’s nothing that really goes beyond the idea of an ordinary file. We’re going to change that and turn a lot more things into filesy…
"Patch Your Network" - A powerful EDM track about defending against sophisticated adversaries! Featuring AENDZI's incredible vocals & a danceable groove that makes security awareness unforgettable. Remember: APT29 is watching!
Watch here: https://www.youtube.com/watch?v=VL57hVgsq9g
#cybersecurity #infosec #APT29 #music #EDM #security
Alt...
Youtube thumbnail image for the video: Patch Your Network (feat. AENDZI)
The first fold can contain an overview of the service.
#cybersecurity #infosec #security
In the name of "safety", these assholes (print&go) are trying to get their spyware baked into everyone's 3d printers.
#3dprinting #spyware #security
Alt...
Screenshot:
"3. Complete print traceability
The system keeps a record of everything that's printed, including who printed it, what was printed, and even where they were when it was printed. If someone does manage to print a gun, the authorities will be able to identify and trace any instances of printing gun-related material."
"Discord alternatives" searches jump 10,000% overnight as the gaming platform introduces global age verification — Is a total collapse imminent?
https://www.windowscentral.com/software-apps/discord-alternative-search-10000-percent-stoat
#Discord #AgeVerification #IDverification #privacy #surveillance #enshittification #dystopia #security #technology #gaming #messaging #socialmedia
📺 https://peer.adalta.social/w/gLN9VWgNVMH4B8fmtkLh2d
🔗 [🇩🇪🇺🇸🇫🇷](https://p4u.xyz/ID_LEN4DON8/1)
🔗 [Source](https://www.redpacketsecurity.com/dragonforce-ransomware-victim-yem-chio-co/)
Ein automatisierter Leak-Eintrag ohne Beweise für tatsächlichen Datenabfluss markiert eine neue Phase der Ransomware-Kommunikation.
2026-02-13 RDP #Honeypot IOCs - 1302 scans
Thread with top 3 features in each category and links to the full dataset
#DFIR #InfoSec
Top IPs:
164.90.188.53 - 1020
139.59.68.81 - 51
50.61.41.199 - 18
Top ASNs:
AS14061 - 1086
AS8560 - 27
AS396982 - 27
Top Accounts:
hello - 1086
142.93.8.59 - 135
Test - 27
Top ISPs:
DigitalOcean, LLC - 1086
arsys.es - 27
Google LLC - 27
Top Clients:
Unknown - 1302
Top Software:
Unknown - 1302
Top Keyboards:
Unknown - 1302
Top IP Classification:
hosting - 1167
Unknown - 129
hosting & proxy - 3
Pastebin links with full 24-hr RDP Honeypot IOC Lists:
Bad API request, invalid api_dev_key
2026-02-13 RDP #Honeypot IOCs - 868 scans
Thread with top 3 features in each category and links to the full dataset
#DFIR #InfoSec
Top IPs:
164.90.188.53 - 680
139.59.68.81 - 34
50.61.41.199 - 12
Top ASNs:
AS14061 - 724
AS8560 - 18
AS396982 - 18
Top Accounts:
hello - 724
142.93.8.59 - 90
Test - 18
Top ISPs:
DigitalOcean, LLC - 724
arsys.es - 18
Google LLC - 18
Top Clients:
Unknown - 868
Top Software:
Unknown - 868
Top Keyboards:
Unknown - 868
Top IP Classification:
hosting - 778
Unknown - 86
hosting & proxy - 2
Pastebin links with full 24-hr RDP Honeypot IOC Lists:
Bad API request, invalid api_dev_key
2026-02-13 RDP #Honeypot IOCs - 434 scans
Thread with top 3 features in each category and links to the full dataset
#DFIR #InfoSec
Top IPs:
164.90.188.53 - 340
139.59.68.81 - 17
50.61.41.199 - 6
Top ASNs:
AS14061 - 362
AS8560 - 9
AS396982 - 9
Top Accounts:
hello - 362
142.93.8.59 - 45
Test - 9
Top ISPs:
DigitalOcean, LLC - 362
arsys.es - 9
Google LLC - 9
Top Clients:
Unknown - 434
Top Software:
Unknown - 434
Top Keyboards:
Unknown - 434
Top IP Classification:
hosting - 389
Unknown - 43
hosting & proxy - 1
Pastebin links with full 24-hr RDP Honeypot IOC Lists:
Bad API request, invalid api_dev_key
🔴 CRITICAL: CVE-2026-26273 in Known <1.6.3 leaks password reset tokens in HTML — full account takeover possible without email access. Upgrade to 1.6.3+ & audit reset flows. https://radar.offseq.com/threat/cve-2026-26273-cwe-200-exposure-of-sensitive-infor-d59f1dbb #OffSeq #CVE202626273 #Vuln #Security
Alt...
Critical threat: CVE-2026-26273: CWE-200: Exposure of Sensitive Information to an Unauthorized Actor in idno known
⚪ Exploiting GitHub Enterprise: Stealing Access Tokens and Achieving Arbitrary Code Execution
🗨️ A critical vulnerability in the enterprise edition of the hugely popular GitHub version control platform allows any authenticated user to execute arbitrary code on the system. Exploiting this flaw requires chaining several techniques: injecting into the caching service and performing object injection.
📺 https://peer.adalta.social/w/9QtDyL4G69Eia4pLk9PChv
🔗 [🇩🇪🇺🇸🇫🇷](https://p4u.xyz/ID_0FUJG7UJ/1)
🔗 [Source](https://moncarnet.com/2026/02/13/wi-fi-public-en-2026-pourquoi-le-risque-augmente/)
La connectivité omniprésente est devenue un terrain de chasse privilégié pour des cyberattaques de plus en plus sophistiquées, rendant les protections traditionnelles comme le VPN insuffisantes.
📺 https://peer.adalta.social/w/eSbNGeDj8827xJPFjhLuPL
🔗 [🇩🇪🇺🇸🇫🇷](https://p4u.xyz/ID_0FUJG7UJ/1)
🔗 [Source](https://moncarnet.com/2026/02/13/wi-fi-public-en-2026-pourquoi-le-risque-augmente/)
Die allgegenwärtige Konnektivität in öffentlichen Räumen hat sich 2026 zu einem bevorzugten Jagdrevier für Cyberkriminelle entwickelt, da sich die Bedrohungen schneller entwickeln als die Gewohnheiten der Nutzer und selbst VPNs keinen umfassenden Schutz mehr garantieren.
The Z-Fold postcard is ideal for the password backup service.
#cybersecurity #infosec #security
W miarę bezpieczne przekazywanie sekretów w powłoce ( https://nfsec.pl/security/6702 ) #linux #bash #security
Dark Visitors - A List of Known AI Agents on the Internet
Insight into the hidden ecosystem of autonomous chatbots and data scrapers crawling across the web. Protect your website from unwanted AI agent access.
#ai #internet #block #LLMs #chatbots #it #security #datascraping #protection #web
GrapheneOS version 2026021200 released:
https://grapheneos.org/releases#2026021200
See the linked release notes for a summary of the improvements over the previous release.
Forum discussion thread:
https://discuss.grapheneos.org/d/31873-grapheneos-version-2026021200-released
📺 https://peer.adalta.social/w/bCyVvj3tC54jNaQfURYcu8
🔗 [🇩🇪🇺🇸🇫🇷](https://p4u.xyz/ID_RGTG94H_/1)
🔗 [Source](https://news.osna.fm/?p=34320)
Le ministre allemand de la Défense décrit une guerre d'usure où la terreur civile et la résilience économique russe définissent une impasse stratégique prolongée.
📺 https://peer.adalta.social/w/jvvPZuBMdavBETKjYQ3RxJ
🔗 [🇩🇪🇺🇸🇫🇷](https://p4u.xyz/ID_RGTG94H_/1)
🔗 [Source](https://news.osna.fm/?p=34320)
German Defence Minister describes a static war of attrition fueled by Russian resources and civilian terror.
📺 https://peer.adalta.social/w/1Mj2BN7NggNk7bFF63acLd
🔗 [🇩🇪🇺🇸🇫🇷](https://p4u.xyz/ID_RGTG94H_/1)
🔗 [Source](https://news.osna.fm/?p=34320)
Der deutsche Verteidigungsminister warnt vor einer stagnierenden militärischen Lage bei gleichzeitiger Eskalation des russischen Terrors gegen Zivilisten.
Thought-provoking Things Worth Sharing - Issue 184
Rolling into Mardi Gras up on two wheels
#Careers #AI #MentalHealth #Security #Privacy #M365
https://mikemcbride.substack.com/p/thought-provoking-things-worth-sharing-441
Apple fixed a critical flaw in iOS 26.3 that had existed since 2007. 🛡️
The dyld bug (CVE‑2026‑20700) allowed targeted zero‑click attacks before sandboxing took effect. ⚠️
Its longevity raises questions about legacy code review and long‑term security auditing. 🔍
#TechNews #Apple #iPhone #iOS #iOS26 #Security #Privacy #ZeroClick #CVE #Cybersecurity #Update #Vulnerability #BugBounty #DataProtection #Infosec
"We will launch during a dynamic political environment where many civil society groups that we would expect to attack us would have their resources focused on other concerns."
Nice try!
#news #USNews #technology #TechNews #meta #FacialRecognition #privacy #security
📺 https://peer.adalta.social/w/hZffawesb6HdSiLWqkwKNs
🔗 [🇩🇪🇺🇸🇫🇷](https://p4u.xyz/ID_YR67Y5EV/1)
🔗 [Source](https://techupdate.io/datenschutz/das-unsichtbare-netz-warum-tiktok-dich-auch-ohne-app-verfolgt/50966/)
La surveillance étendue via les pixels de suivi menace la vie privée des utilisateurs et des non-utilisateurs.
Anyone here know of any good #Charlotte #Security #meetups?
I have done a bit looking around for a friend|coworker, but seems not to be too active from what I have seen.
Thanks in advance!
📺 https://peer.adalta.social/w/9Ff95qp6fanEUvHA5mCiZ5
🔗 [🇩🇪🇺🇸🇫🇷](https://p4u.xyz/ID_YR67Y5EV/1)
🔗 [Source](https://techupdate.io/datenschutz/das-unsichtbare-netz-warum-tiktok-dich-auch-ohne-app-verfolgt/50966/)
TikTok's tracking pixel infrastructure collects sensitive user data from across the web, regardless of account ownership, creating a pervasive privacy threat that demands active countermeasures.
📺 https://peer.adalta.social/w/oTBA9aRKHggJwu1tQvUZpR
🔗 [🇩🇪🇺🇸🇫🇷](https://p4u.xyz/ID_YR67Y5EV/1)
🔗 [Source](https://techupdate.io/datenschutz/das-unsichtbare-netz-warum-tiktok-dich-auch-ohne-app-verfolgt/50966/)
TikTok spannt über Tracking-Pixel ein globales Überwachungsnetz, das auch Nicht-Nutzer erfasst und sensible Daten aus dem gesamten Web abschöpft.
The fresh 4th edition of The Book of PF in physical form has reached Europe (Ireland), https://www.linkedin.com/posts/tomsmythconnect_thebookofpf-openbsd-packetfilter-activity-7427686906349555713-7s4w - so my stack of author copies are hopefully on the way too.
The book home page is at https://nostarch.com/book-of-pf-4th-edition
Some background https://nxdomain.no/~peter/yes_the_book_of_pf_4th_ed_is_coming.html @nostarch #bookofpf #openbsd #freebsd #pf #packetfilter #networking #security
Tails 7.4.2 mit Kernel-Notfall-Patch
https://linuxnews.de/tails-7-4-2-mit-kernel-notfall-patch/ #tails #security #debian #debian #linuxnews
Linus Torvalds rejected Linux 7.0’s MMC updates as “untested garbage.” ⚙️
The move delays new eMMC features but reinforces Linux’s focus on stability and sound testing. 🧩
Debate follows on quality standards, transparency, and contributor accountability. ⚖️
🔗 https://www.techedubyte.com/linus-torvalds-rejects-linux-7-0-updates-controversy/
#TechNews #Linux #OpenSource #Privacy #Kernel #Software #Testing #QA #Security #Innovation #Accountability #Developers #Hardware #FOSS #Coding #Freedom #Freesoftware #Ubuntu #Debian #Fedora #Community
Israeli exec at Paragon accidentally exposed Graphite spyware dashboard on LinkedIn—real-time access to Czech user's WhatsApp, Signal, geolocation, camera/mic via zero-click exploits 🔍
Post deleted, shows US agency sales after Trump lifted rights bans, fueling surveillance concerns ⚠️
🔗 https://news-pravda.com/world/2026/02/12/2071096.html
#TechNews #Privacy #Spyware #Security #Surveillance #Cybersecurity #Data #Encryption #Graphite #HumanRights #Tech #FOSS #DigitalRights #Cyber #Israel #Paragon #CzechRepublic #US #Trump
#ArcaneChat: Private Family Chats
No SIM card needed! No phone numbers required for registration, just set a name and start chatting!
No strangers discovering and contacting your family members!
No discoverable public groups or channels with inappropriate content. Only the family chat!
All your conversations and pictures are end-to-end encrypted, only visible by family members, no 3rd party trust needed!
Keep the family safe! 🤗💜
#Family #Autonomy #DigitalIndependence #privacy #security
Stop memorizing your passwords. Seriously.
Your brain is designed for patterns, not encryption. If you can remember your password, it is weak.
In the next video, we are fixing your digital hygiene. No closed source "just trust me, bro" apps. No browser saving. FOSS digital sovereignty.
Which side are you on right now?
#Bitwarden #Vaultwarden #Proton #ProtonPass #KeePassXC #Firefox #Chrome #Edge #Safari #Passwords #Password #Cybersecurity #Security #Privacy #FOSS #OpenSource #GNULinux #GNU #Linux #NoAI #DigitalSovereignty
| Team Cloud (Bitwarden/Proton): | 11 |
| Team Local (KeePassXC): | 7 |
| I still use my Browser 😬: | 1 |
| I use a sticky note... 🤦: | 0 |
📺 https://peer.adalta.social/w/jJCnxh2Swgngq9uwjNnPcX
🔗 [🇩🇪🇺🇸🇫🇷](https://p4u.xyz/ID_W5W-8POX/1)
La quête de sécurité d'Amazon Ring sacrifie les libertés fondamentales sous couvert de protection animale.
Apple fixes zero-day flaw used in 'extremely sophisticated' attacks
#cybersecurity #security-patch #zero-day
📺 https://peer.adalta.social/w/2vGPX5wiRcK5E5VasVZ2gS
🔗 [🇩🇪🇺🇸🇫🇷](https://p4u.xyz/ID_W5W-8POX/1)
Amazon Ring's Super Bowl ad for its "Search Party" feature masks a dangerous expansion of networked biometric surveillance under the guise of reuniting lost pets.
📺 https://peer.adalta.social/w/dmsPsEAgZ2nLs8jvaPZYY3
🔗 [🇩🇪🇺🇸🇫🇷](https://p4u.xyz/ID_W5W-8POX/1)
Ein emotionaler Super-Bowl-Spot maskiert die Expansion eines biometrischen Überwachungsnetzwerks in öffentlichen Räumen.
Less than a month after 6.7, suckless pushed a security fix and bumped
the version. That's pretty rare for dwm.
If you noticed Telegram's image previews shaking in 6.7, that's why —
a wrong return value check broke atom property reading entirely.
Patch: https://git.suckless.org/dwm/commit/a9aa0d8ffbb548b0b1f9f755557aef2482c0f820.html
Six lines changed.
Update your build.
✨ No One, Including Our Furry Friends, Will Be Safer in Ring's #Surveillance Nightmare
Amazon Ring's Super Bowl ad for its "Search Party" feature masks a dangerous expansion of networked biometric #Surveillance under the guise of reuniting lost pets.
🔗 https://p4u.xyz/ID_W5W-8POX/1 (🇩🇪🇺🇸🇫🇷)
France launches "LaSuite," an open-source office suite for digital sovereignty, reducing reliance on foreign proprietary software. 🖥️
Built on Matrix/TChap, LiveKit/Visio, Grist, and Drive—all MIT-licensed for any organization to deploy. 🇪🇺
🔗 https://www.sinologic.net/en/2026-01/france-chooses-open-source-to-secure-european-sovereignty.html
#TechNews #OpenSource #France #French #DigitalSovereignty #FOSS #Matrix #Privacy #EU #Security #Software #Linux #SelfHost #Government #Europe #Data #IT #PublicSector #Microsoft #Office #Tech #Cloud #LibreOffice
New strategies, bold #technologies, and meaningful connections. Join the global #cybersecurity community at #RSAC Conference, March 23-26 in San Francisco.
Register by February 20 to save $600 on an All Access Pass.
▶ www.rsaconference.com/itspmag26
#infosec #technology #security #infosecurity #ai
New strategies, bold #technologies, and meaningful connections. Join the global #cybersecurity community at #RSAC Conference, March 23-26 in San Francisco.
Register by February 20 to save $600 on an All Access Pass.
▶ www.rsaconference.com/itspmag26
@signalapp Signal IMO has bad security because when someone decides they are not interested in an overpriced, underperforming service of "phone number" and stops using their SIM, they cannot deregister the number from Signal and the new owner of the number either can hijack their Signal account, or people may be blocked from using newly purchased SIMs with Signal.
Also, authoritarian regimes IMO can temporarily transfer a number into a provider's internal SIM in order to hijack a Signal account and impersonate a dissident against another dissident, facilitating abduction, torture and murder.
I feel
c o n t e m p t
towards Signal when it is designed this way.
#badsecurity #incompetence #signal #phonenumberasidentity #security #SIM #contempt #securityhole #securityflaw #attack #hijacking #torture #murder #abduction #authoritarianism #regime #authoritarian
"Switzerland’s military has terminated its contract with Palantir… following a security audit… concluded that U.S. intelligence agencies could potentially access sensitive Swiss defense data… significant reputational warning for the data analytics firm"
https://www.newscase.com/palantirs-swiss-exit-highlights-global-data-sovereignty-challenge/
Yet another feature that nobody asked for leveraging tech that nobody wants enabled.
TikTok US launches a local feed that leverages a user's exact location
#TikTok #US #Local #Location #Security #Privacy #Surveillance #SocialMedia #Tech
2026-02-11 RDP #Honeypot IOCs - 2310 scans
Thread with top 3 features in each category and links to the full dataset
#DFIR #InfoSec
Top IPs:
164.90.188.53 - 1656
134.199.198.215 - 510
185.180.141.37 - 18
Top ASNs:
AS14061 - 2184
AS396982 - 36
AS21859 - 18
Top Accounts:
hello - 2202
root - 18
Test - 18
Top ISPs:
DigitalOcean, LLC - 2184
Google LLC - 36
Zenlayer Inc - 18
Top Clients:
Unknown - 2310
Top Software:
Unknown - 2310
Top Keyboards:
Unknown - 2310
Top IP Classification:
hosting - 2259
Unknown - 36
proxy - 12
Pastebin links with full 24-hr RDP Honeypot IOC Lists:
Bad API request, invalid api_dev_key
2026-02-11 RDP #Honeypot IOCs - 1540 scans
Thread with top 3 features in each category and links to the full dataset
#DFIR #InfoSec
Top IPs:
164.90.188.53 - 1104
134.199.198.215 - 340
185.180.141.37 - 12
Top ASNs:
AS14061 - 1456
AS396982 - 24
AS21859 - 12
Top Accounts:
hello - 1468
root - 12
Test - 12
Top ISPs:
DigitalOcean, LLC - 1456
Google LLC - 24
Zenlayer Inc - 12
Top Clients:
Unknown - 1540
Top Software:
Unknown - 1540
Top Keyboards:
Unknown - 1540
Top IP Classification:
hosting - 1506
Unknown - 24
proxy - 8
Pastebin links with full 24-hr RDP Honeypot IOC Lists:
Bad API request, invalid api_dev_key
2026-02-11 RDP #Honeypot IOCs - 770 scans
Thread with top 3 features in each category and links to the full dataset
#DFIR #InfoSec
Top IPs:
164.90.188.53 - 552
134.199.198.215 - 170
185.180.141.37 - 6
Top ASNs:
AS14061 - 728
AS396982 - 12
AS21859 - 6
Top Accounts:
hello - 734
root - 6
Test - 6
Top ISPs:
DigitalOcean, LLC - 728
Google LLC - 12
Zenlayer Inc - 6
Top Clients:
Unknown - 770
Top Software:
Unknown - 770
Top Keyboards:
Unknown - 770
Top IP Classification:
hosting - 753
Unknown - 12
proxy - 4
Pastebin links with full 24-hr RDP Honeypot IOC Lists:
Bad API request, invalid api_dev_key
Some businesses even use security tinting on the reverse side to protect sensitive information.
#cybersecurity #infosec #security
🐛 NEW SECURITY CONTENT 🐛
🌐 Safari 26.3 - 8 bugs fixed
https://support.apple.com/en-us/126354
Tesla exec tells Congress ‘no one has ever’ taken control of its vehicles — but that’s not true
Tesla Vice President of Vehicle Engineering Lars Moravy told a Senate committee this week that no one has ever remotely taken control of Tesla vehicles. That claim doesn’t hold up to the facts of history.
In fact, a single hacker once gained control of Tesla’s entire fleet.
#LarsMoravy #tesla #security #cybersecurity #automotive #auto #cars #transportation #hacked
Windows Notepad just received a critical security fix for an RCE bug (CVE‑2026‑20841) in the modern Store app that can run malicious code via crafted Markdown links ⚠️
Attackers can abuse untrusted .md files with custom links to trigger remote commands.
Updating Notepad and avoiding suspicious files is essential 🔍
🔗 https://cybersecuritynews.com/windows-notepad-rce-vulnerability/
#TechNews #CyberSecurity #Notepad #Windows #RCE #Vulnerability #PatchTuesday #Microsoft #Infosec #AppSec #Exploit #Security #Updates #Malware #OnlineSafety
A cat is auditing your home security
#security #caturday #caturdayeveryday
Alt...
An orange cat reaches a paw through a slightly open door, paw outstretched, ready to grab anything that moves
My Meshtastic security disclosure is out!
Check it out at https://cezarlungu.com/meshtastic-security-disclosure/
I'm watching the drama about Discord's age verification thing and I'm like... yawwwnn
Seriously, who ever thought Discord was a good idea at any point in time? Just trash that crap, please.
I wrote about my... felings for Discord already: https://gagliardoni.net/#im_battle_2025
#discord #cryptography #privacy #ageverification #security #drama
📣 EMERGENCY UPDATES 📣
Apple pushed updates for 1 new zero-day that may have been actively exploited and additional updates for 2 zero-days.
🐛 CVE-2025-14174 (dyld) additional patches,
🐛 CVE-2025-43529 (dyld) additional patches,
🐛 CVE-2026-20700 (dyld):
- iOS and iPadOS 26.3
- macOS Tahoe 26.3
- tvOS 26.3
- visionOS 26.3
- watchOS 26.3
⚒️ FIXED IN iOS and iPadOS 26.3 ⚒️
- 6 bugs in WebKit
- 3 bugs in CoreServices
- 3 bugs in dyld
- 3 bugs in Kernel
and 26 other vulnerabilities fixed
https://support.apple.com/en-us/126346
🐛 NEW SECURITY CONTENT 🐛
💻 macOS Tahoe 26.3 - 57 bugs fixed
https://support.apple.com/en-us/126348
💻 macOS Sonoma 14.8.4 - 42 bugs fixed
https://support.apple.com/en-us/126350
📱 iOS and iPadOS 26.3 - 41 bugs fixed
https://support.apple.com/en-us/126346
📱 iOS and iPadOS 18.7.5 - 37 bugs fixed
https://support.apple.com/en-us/126347
💻 macOS Sequoia 15.7.4 - 36 bugs fixed
https://support.apple.com/en-us/126349
🥽 visionOS 26.3 - 29 bugs fixed
https://support.apple.com/en-us/126353
⌚ watchOS 26.3 - 18 bugs fixed
https://support.apple.com/en-us/126352
📺 tvOS 26.3 - 16 bugs fixed
https://support.apple.com/en-us/126351
The public isn't buying Ring's bullshit!
'Dystopian' Ring Search Party feature sparks public backlash [Video] - 9to5Mac
https://9to5mac.com/2026/02/11/dystopian-ring-search-party-feature-sparks-public-backlash-video/
#Dystopian #Ring #SearchParty #Surveillance #Security #Privacy #Tech
We are seeing a high volume of blocked #DNS queries to the domain linked to the #Mozi botnet and the #React2Shell exploit. This identified malicious domain is provided by our #threatintel partner, ThreatSTOP.
Our proactive DNS filtering is currently preventing these connections to keep your devices secure.
Alt...
Line graph showing the volume of Quad9 blocks to Mozi Botnet and React2Shell exploit domain from February 5 to 9, 2026, with fluctuating values.
OpenSource XDR/SIEM "Wazuh" v4.14.3 released
I compared 20+ platforms on privacy.
The results are brutal.
OUT OF 20+ PLATFORMS:
🔴 14 are EXTREME RISK (avoid)
🟡 6 are MODERATE RISK (caution)
🟢 2 are LOW RISK (acceptable)
🔵 2 are BUILT FOR PRIVACY (trustworthy)
Only Signal and Snugg are actually designed for privacy from the ground up.
Everything else is surveillance with marketing.
Full comparison: https://snugg.social/en/blog/platform-comparison-chart
#Privacy #Security #Surveillance #E2E #OpenSource
There is a law protecting personal privacy, especially for minors/children (online) Therefore, I view the use of personal photos/names from Gaza with concern - Furthermore, any public distribution of personal #data can lead to phishing attacks targeting those affected
🔹 Technical safeguards for family data are therefore essential
Distribution on various platforms must also be regulated with #security measures US search engines can intercept personal from Gaza
To all companies out there that value #CyberSecurity, #Community and #DEI: Are you up for supporting a unique space where all kinds of folks can share and learn together? The Open Security Conference is looking for sponsors!
💜 Our values: https://opensecurityconference.org/about/values/
📦 Our sponsor packages: https://opensecurityconference.org/support/sponsorship/
💬 How to reach out: https://opensecurityconference.org/contact/
See you at #osco on November 5-8 in Rückersbach! 🤩
#osco26 #Security #InfoSec #AppSec #OTSecurity [lisi]
🚨 CVE-2026-21531: Critical RCE in Azure AI Language Authoring SDK v1.0.0 via deserialization of untrusted data. Unauthenticated attackers can execute code remotely. Restrict access & monitor endpoints until patched. https://radar.offseq.com/threat/cve-2026-21531-cwe-502-deserialization-of-untruste-4a5578f9 #OffSeq #Azure #Security
Alt...
Critical threat: CVE-2026-21531: CWE-502: Deserialization of Untrusted Data in Microsoft Azure AI Language Authoring
My company under my last push, started to move all our security system from the US hosted CVE database to the GCVE database from EU.
If you have any say in your company do the same
#cve #gcve #eu #europe #europa #sovereinty #security #cybersecurity #resillience #noUS #noBIGTech @0x3e4
Data Breach Discord Announces Global Age Verification
Discord has announced that they will begin demanding everyone abide by age verification starting in March.
https://www.freezenet.ca/data-breach-discord-announces-global-age-verification/
#Censorship #News #Privacy #Security #AgeVerification #DataBreach #Discord #FacialRecognition #ID #PersonalInformation
Poland's historic mobilization: 500k ready troops, 400k civilians to be trained, borders fortified with mines, society preparing go-bags. This is a whole-nation shift to a "fortress" defense posture, signaling a profound loss of faith in deterrence-by-guarantee alone. A pivotal European strategic development.
https://newsgroup.site/%d0%bf%d0%be%d0%bb%d1%8c%d1%89%d0%b0-%d0%b3%d0%be%d1%82%d1%83%d1%94%d1%82%d1%8c%d1%81%d1%8f-%d0%b4%d0%be-%d0%b2%d1%96%d0%b9%d0%bd%d0%b8-%d0%bc%d0%be%d0%b1%d1%96%d0%bb%d1%96%d0%b7%d0%b0%d1%86%d1%96/
#Poland #defense #security
2026-02-10 RDP #Honeypot IOCs - 678 scans
Thread with top 3 features in each category and links to the full dataset
#DFIR #InfoSec
Top IPs:
164.90.188.53 - 510
194.164.107.5 - 30
159.223.88.130 - 18
Top ASNs:
AS14061 - 549
AS396982 - 36
AS50219 - 30
Top Accounts:
hello - 546
Administr - 21
Test - 18
Top ISPs:
DigitalOcean, LLC - 549
Google LLC - 36
LNK SYSTEMS MUNTENIA SRL - 30
Top Clients:
Unknown - 678
Top Software:
Unknown - 678
Top Keyboards:
Unknown - 678
Top IP Classification:
hosting - 594
Unknown - 84
Pastebin links with full 24-hr RDP Honeypot IOC Lists:
Bad API request, invalid api_dev_key
2026-02-10 RDP #Honeypot IOCs - 452 scans
Thread with top 3 features in each category and links to the full dataset
#DFIR #InfoSec
Top IPs:
164.90.188.53 - 340
194.164.107.5 - 20
159.223.88.130 - 12
Top ASNs:
AS14061 - 366
AS396982 - 24
AS50219 - 20
Top Accounts:
hello - 364
Administr - 14
Test - 12
Top ISPs:
DigitalOcean, LLC - 366
Google LLC - 24
LNK SYSTEMS MUNTENIA SRL - 20
Top Clients:
Unknown - 452
Top Software:
Unknown - 452
Top Keyboards:
Unknown - 452
Top IP Classification:
hosting - 396
Unknown - 56
Pastebin links with full 24-hr RDP Honeypot IOC Lists:
Bad API request, invalid api_dev_key
2026-02-10 RDP #Honeypot IOCs - 226 scans
Thread with top 3 features in each category and links to the full dataset
#DFIR #InfoSec
Top IPs:
164.90.188.53 - 170
194.164.107.5 - 10
159.223.88.130 - 6
Top ASNs:
AS14061 - 183
AS396982 - 12
AS50219 - 10
Top Accounts:
hello - 182
Administr - 7
Test - 6
Top ISPs:
DigitalOcean, LLC - 183
Google LLC - 12
LNK SYSTEMS MUNTENIA SRL - 10
Top Clients:
Unknown - 226
Top Software:
Unknown - 226
Top Keyboards:
Unknown - 226
Top IP Classification:
hosting - 198
Unknown - 28
Pastebin links with full 24-hr RDP Honeypot IOC Lists:
Bad API request, invalid api_dev_key
The Z-Fold format typically features postal details on one side, with marketing content often found on the opposite side.
#cybersecurity #infosec #security
This #PlayIntegrity stuff is really questionable. My banking app won't run on a #GoogleFree #LineageOS running #Android 16 with all the latest security updates. But a #GooglePlay device running Android 10 that was last updated in 2021 is approved. This is not a real #security check. This looks like a #gatekeeper #monopoly check.