Shin Bet investigating after 15 Yesh Atid MKs briefly blocked from WhatsApp
#infosec
https://www.timesofisrael.com/shin-bet-said-investigating-after-15-yesh-atid-mks-briefly-blocked-from-whatsapp/

Le WiFi peut lire à travers les murs en utilisant la théorie géométrique de la diffraction et des cônes de Keller correspondants https://reseau.developpez.com/actu/348269/Le-WiFi-peut-lire-a-travers-les-murs-en-utilisant-la-theorie-geometrique-de-la-diffraction-et-des-cones-de-Keller-correspondants-selon-l-etude-des-chercheurs-de-Mostofi-Lab/
#InfoSec

I have been thinking lately about how much infosec is care work before technical work, do you all know any good article talking about that?
#infosec

Silly Juiciness Ultimate Patience Unmasked | 240 bits of #entropy | #cybersec #infosec #cybersecurity #infosecurity https://myownpassphrase.com/silly-juiciness-ultimate-patience-unmasked-240-bits-of-entropy-cybersec-infosec-cybersecurity-infosecurity/?utm_source=dlvr.it&utm_medium=mastodon

I subscribe to this newsletter about small UX tweaks that the author has seen in the real world and this one is great. Column, a bank infrastructure API, gives you an estimated 'time to hack' for a too short password. It will also spring up more help if needed.

This is excellent UX when you're making a user intuitively understand why they need a better password. I wish we'd see this more.

#ux #infosec

🎙️ ✨ A new episode has been published on @ITSPmagazine

Show: Redefining CyberSecurity With @seanmartin

Episode: The State of the CISO: Breaking Silos and Navigating Responsibilities

Guest: Sue Bergamo

Podcast format: Video & Audio

Enjoy!

👉https://www.itspmagazine.com/redefining-cybersecurity-podcast

#cybersecurity #CISO #CIO #CTO #datasecurity #infosec #security #technology #tech

🛡️ MGM Resorts International Suffers Cybersecurity Attack, System Outage Reported. Social media users say there are problems throughout MGM’s Las Vegas casinos. The cyber event reportedly took credit card machines, ATMs, and ticket-in ticket-out machines offline. The cybersecurity event is impacting at least all of MGM’s Las Vegas operations. The company’s website’s landing page informs customers that its online reservation systems are currently unavailable https://www.casino.org/news/mgm-resorts-suffers-cybersecurity-attack-system-outage-reported/ #infosec

Jayne Hacker, 63 – Pope County Tribune | #hacking | #cybersecurity | #infosec | #comptia | #pentest | #hacker (Latest articles about Ongoing threats) https://nationalcybersecurity.com/jayne-hacker-63-pope-county-tribune-hacking-cybersecurity-infosec-comptia-pentest-hacker/

‘Cybersecurity issue’ disables computer systems at MGM Resorts | #hacking | #cybersecurity | #infosec | #comptia | #pentest | #ransomware (Latest articles about Ongoing threats) https://nationalcybersecurity.com/cybersecurity-issue-disables-computer-systems-at-mgm-resorts-hacking-cybersecurity-infosec-comptia-pentest-ransomware/

I wonder how many people are going to run into issues on October 10th related to CVE-2022-37967 and patch #KB5020805

That's when the KrbtgtFullPacSignature Audit gets removed and the setting locks to Enforced.

https://ioc.exchange/@miketheitguy/109337062909975918

#CVE #Windows #WindowsServer #Infotech #InfoSec #SysAdmin #Kerberos #ActiveDirectory

It seems like most or at least a large part of the #infosec crowd that migrated here during the Nov-Jan twitter exodus hasn't really hung around

I'm wondering, have people:
- gone back to twitter?
- gone to some other platform, like bluesky or threads?
- given up on infosec social media altogether?
- some combination of the above?

If I wanted to find the infsoec people I used to keep up with on twitter, where is the place to do that now (if there is a place at all)?

Just managed to finish https://gandalf.lakera.ai (ChatGPT / AI prompt security bypass challenge).

My take on this: it felt like abusing a buggy af software. It was overall a terrible experience. Shuffling a bit the wording without changing the meaning could imply a completely different answer (giving up the password or refusing entirely). It was also ignoring or misunderstanding what I was asking a lot.

If people are interested in how I solved it, I can publish the answers.

#chatgpt #infosec

Looks like MGM Resorts got hacked, and their systems are apparently down, no casino, no room keys, no nothing. MGM runs the Bellagio, Mandalay Bay, Cosmopolitan, New York, Aria, Luxor, MGM Grand, Vdara.

Definitely an interesting day in Vegas 😳
https://infosec.exchange/@briankrebs/111047742636606207

#infosec

Nå er det ikke lang tid igjen til Sikkerhet og sårbarhet fra #dataforeningen i #Trondheim. Det blir masse spennende foredrag - bli med du også! #infosec https://www.dataforeningen.no/arrangement/sikkerhet-og-sarbarhet/

If you missed this, Associated Press warns AP Stylebook data breach led to #phishing attack #cybersecurity #infosec https://www.bleepingcomputer.com/news/security/associated-press-warns-that-ap-stylebook-data-breach-led-to-phishing-attack/ @BleepingComputer @lawrenceabrams

#Facebook Messenger #phishing wave targets 100K business accounts per week #cybersecurity #infosec https://www.bleepingcomputer.com/news/security/facebook-messenger-phishing-wave-targets-100k-business-accounts-per-week/ @BleepingComputer @billtoulas

Ouch. Here's hoping they have an offline backup. #cybersecurity #infosec

"LGC services and the backup systems were quickly encrypted. Mahesh Perera, CEO at ICTA, estimated all 5000 email addresses using the 'gov[dot]lk' email domain, including those used by the Cabinet Office, were affected.

#Ransomware Attack Wipes Out Four Months of Sri Lankan Government Data https://www.infosecurity-magazine.com/news/ransomware-sri-lanka-government/

#Lazarus Group Targets #macOS in Supply Chain Assault #cybersecurity #infosec https://www.infosecurity-magazine.com/news/lazarus-group-targets-macos-supply/

This is basically a defense. #cybersecurity #infosec

UK’s national cyber and crime agencies say don’t focus on #ransomware variants https://therecord.media/ransomware-ecosystem-white-paper-uk-ncsc-nca

A couple of good comments on Slashdot related to the article about Wyse cameras showing someone another person's camera.

https://yro.slashdot.org/story/23/09/09/0542212/wyze-security-camera-owners-were-briefly-able-to-see-feeds-from-other-users

#infosec #ipv6