vp · @vpavlyshyn
67 followers · 440 posts · Server fosstodon.orghttps://volodymyrpavlyshyn.medium.com/trust-is-not-verifiable-b7c142b4bf45
What do we verify in VC? #ssi #verifiable #credential #trust
#ssi #verifiable #credential #trust
Bjorn Toft Madsen · @BjornToftMadsen
41 followers · 184 posts · Server social.coop@imaginethatok @jasonpettus but hardly any #password #hacking happens at the front door. Presume hackers have a hashed+salted password list and they can go on forever. Once you’ve discovered a re-used password (from two lists) you have a 99% known good #credential. Passwords are broken, the only way forward is #passkeys.
#password #hacking #credential #passkeys
Seshu · @seshu
8 followers · 7 posts · Server infosec.exchangeFixing #AWS temporary #credential sprawl the messy way:
https://www.linkedin.com/pulse/fixing-aws-temporary-credential-sprawl-messy-way-seshubabu-pasam
#aws #credential #cloudsecurity
Digital Untertauchen-🤿 🤿 · @Digitaluntertauchen
132 followers · 1343 posts · Server social.tchncs.deNothing is sacred anymore.... Chick-fil-a #DataBreach
They removed login with #facebook but kept login with #google and login with #apple.
It seems to have been a facebook #credential reuse attack
https://www.chron.com/news/local/article/chick-fil-a-hacked-data-breach-17824760.php
#credential #apple #google #facebook #databreach
securityaffairs · @securityaffairs
469 followers · 418 posts · Server infosec.exchange#Credential #Stuffing attack on #Chick-fil-A impacted +71K users
https://securityaffairs.com/143051/data-breach/credential-stuffing-chick-fil-a.html
#securityaffairs #hacking
#credential #stuffing #chick #securityaffairs #hacking
Tracy Rosenberg · @twrling
326 followers · 261 posts · Server sfba.social
Community program looking to bring more #teachers into Bay Area classrooms. Support to earn a #Masters degree and teaching #credential.
#teachers #masters #credential
DarkOperator 🚀 · @DarkOperator
1219 followers · 1756 posts · Server infosec.exchange
#PayPal notifies 34942 users of data #breach over #credential #stuffing attack https://securityaffairs.com/141072/data-breach/paypal-data-breach-credential-stuffing.html
#paypal #breach #credential #stuffing
securityaffairs · @securityaffairs
349 followers · 234 posts · Server infosec.exchange
#PayPal notifies 34942 users of data breach over #credential #stuffing attack
https://securityaffairs.com/141072/cyber-crime/paypal-data-breach-credential-stuffing.html
#securityaffairs #hacking
#paypal #credential #stuffing #securityaffairs #hacking
Thomas Cloer 🇪🇺 🇺🇦 · @teezeh
417 followers · 5771 posts · Server digitalcourage.social
Knapp 35.000 #PayPal-Konten wurden Anfang Dezember mittels #Credential #Stuffing (= Ausprobieren von anderswo benutzten und geklauten Logins und Passwörtern) gehackt.
En3pY - Sebastian Zdrojewski · @en3py
31 followers · 243 posts · Server infosec.exchange
Please tell me again where you keep your... sources!
This time it's #Slack's turn: private #repos on #GitHub were hacked over the holiday season. This is at least the third breach of public (albeit private!) #software repositories in the last month and a half - and I'm just counting from memory - after #Dropbox and #OKTA.
There are several considerations to be made here:
- holidays are a perfect opportunity to hack unsupervised systems
- the dispersion of #intellectual #property makes it difficult to apply #data #governance
- resource turnover and inefficient #credential management certainly help
- entrusting the #cloud with #intellectual property is not synonymous with #security
At the moment Slack informs us that there has been no impact on its customers (just as there hasn't been with OKTA and Dropbox) but the source code may offer opportunities for #0day discovery of which we will only see the results in a few months.
Let's hope not.
Article (first comment) by @BleepingComputer
- Researching at @RightsChain
#slack #repos #github #software #dropbox #okta #intellectual #property #data #governance #credential #cloud #security #0day
Lorraine · @Lorrrraaaaine
120 followers · 260 posts · Server zeroes.ca@rhtunstall
there’s a #trend to blame mRNA vaccines, which is patently #absurd even tho i prefer #Novavax
somebody told me #irl that #rsv cases are going up & nobody who is somebody ie. #credential is there to explain to them a weakened immune system is probs cause of it all
My friend heard from her friend that “she was so happy her Covid was like a cold & over so quickly” but her husband is quite ill still “but it’s since he’s much older”
People have lost #reasoning abilities,so yeah,#never
#trend #absurd #novavax #irl #rsv #credential #reasoning #never
André Gasser · @andregasser
94 followers · 11 posts · Server fosstodon.orgDon't forget to remove credentals from code / config before pushing code to public repos. For #SpringBoot, everything you need to know is descriped in chapter "Externalized Configuration": https://docs.spring.io/spring-boot/docs/current/reference/htmlsingle/#features.external-config #git #security #credential #leak
#springboot #git #security #credential #leak
DarkOperator 🚀 · @DarkOperator
512 followers · 224 posts · Server infosec.exchangeAn analysis of the numerous #LDAP queries that Russian cyberespionage group #APT29 had made to the Active Directory system has led to the discovery of a #vulnerability in Windows’ ‘#credential #roaming’ functionality.
https://www.securityweek.com/analysis-russian-cyberspy-attacks-leads-discovery-windows-vulnerability
#ldap #apt29 #vulnerability #credential #roaming
IoT for All · @iot4all_bot
24 followers · 1768 posts · Server social.platypush.techReferenced link: https://www.iotforall.com/passwords-arent-going-anywhere
Discuss on https://discu.eu/q/https://www.iotforall.com/passwords-arent-going-anywhere
Originally posted by IoT For All / @iotforall@twitter.com: https://twitter.com/iotforall/status/1566468149112872960#m
Here's an exploration from Michael Greene of how companies can ensure #credential integrity. Read more here! https://www.iotforall.com/passwords-arent-going-anywhere
ITSEC News · @itsecbot
687 followers · 32461 posts · Server schleuss.online
Biden Campaign Staffers Targeted in Cyberattack Leveraging Anti-Virus Lure, Dropbox Ploy - Google's Threat Analysis Group sheds more light on targeted credential phishing and malware attack... https://threatpost.com/biden-campaign-staffers-targeted-in-cyberattack-leveraging-anti-virus-lure-dropbox-ploy/160234/ #googlethreatanalysisgroup #uspresidentialelection #electionsecurity #vulnerabilities #spearphishing #websecurity #cyberattack #donaldtrump #government #credential #joebiden #google
#google #joebiden #credential #government #donaldtrump #cyberattack #websecurity #spearphishing #vulnerabilities #electionsecurity #uspresidentialelection #googlethreatanalysisgroup
MathieuB · @MathieuB
28 followers · 484 posts · Server mastodon.xyzLessons Learned from #SSH #Credential #Honeypots :
https://www.reddit.com/r/netsec/comments/imt8a4/lessons_learned_from_ssh_credential_honeypots
ITSEC News · @itsecbot
687 followers · 32461 posts · Server schleuss.online
Attackers Steal Outlook Credentials Via Overlay Screens on Legitimate Sites - A phishing campaign uses overlay screens and email 'quarantine' policies to steal targets' Microso... https://threatpost.com/attackers-steal-outlook-credentials-overlay-screens/158969/ #passwordharvesting #quarantineemail #overlayscreens #phishingemail #websecurity #credential #phishing #cofense #outlook #hacks
#hacks #outlook #cofense #phishing #credential #websecurity #phishingemail #overlayscreens #quarantineemail #passwordharvesting
Laura Hilliger · @epilepticrabbit
533 followers · 2457 posts · Server mastodon.social
RT @WeAreOpenCoop@twitter.com: The Learning Fractal - Issue #19 - https://mailchi.mp/284107a951fd/learning-fractal-7862654 Featuring IBM's 3 millionth #digitalbadge; how to make lifelong learning work; a new grant for mapping the training marketplace and articulating #credential information; emplo…
🐦🔗:
ITSEC News · @itsecbot
687 followers · 32461 posts · Server schleuss.online
Instagram ‘Help Center’ Phishing Scam Pilfers Credentials - Researchers warn that a phishing scam is targeting Instagram users via direct messages on the app.... https://threatpost.com/instagram-help-center-phishing-scam-pilfers-credentials/158777/ #instagramhelpcenter #emailcredentials #mobilesecurity #websecurity #socialmedia #credential #instagram #phishing #hacks #scam
#scam #hacks #phishing #instagram #credential #socialmedia #websecurity #mobilesecurity #emailcredentials #instagramhelpcenter