Anyone gonna switch to Mozilla Firefox?

In what may be a first: AlphV filed an SEC complaint against one of its victims for not disclosing the breach to the SEC:

https://www.databreaches.net/alphv-files-an-sec-complaint-against-meridianlink-for-not-disclosing-a-breach-to-the-sec/

#databreach #SEC #compliance #infosec #cybersecurity #hacking

@brett @campuscodi @briankrebs @euroinfosec @BleepingComputer

I spent this year talking to the 3 young hackers behind Mirai, the malware that once broke the internet.

This is WIRED's resulting cover story—an epic, untold, 22,000-word tale of cybercrime, friendship, chaos, betrayal, paranoia, and redemption.

Read: https://www.wired.com/story/mirai-untold-story-three-young-hackers-web-killing-monster/

The FBI reportedly has known the identities of at least a dozen hackers tied to the notorious Scattered Spider gang (which hacked MGM and Caesars in September) for more than six months, but has failed to make any arrests, according to this new @Reuters investigation.

The unusual part: Many of the hackers are seemingly based in the U.S. and other Western nations, making arrests actually possible!

https://www.reuters.com/technology/cybersecurity/fbi-struggled-disrupt-dangerous-casino-hacking-gang-cyber-responders-say-2023-11-14/

✨ It’s true. I’ve been working on this blog post for ten years.

You see, I’ve been slowly buying up nearly 70 super rare issues of a 80s/90s gadget catalog that meant the world to me growing up. And in the process, I’ve uncovered the secret history of this lost copywriting art.

PLUS, as a bonus, I’ve scanned every single issue — so you can read them all.

I hope you enjoy: https://cabel.com/2023/11/06/dak-and-the-golden-age-of-gadget-catalogs/

Didn't believe this was a thing until I actually saw it myself.

I bank at a small, local credit union. I recently cleared my autocomplete settings so plugged their name into #Google to get back to their homepage.

The Sponsored result IS NOT my bank's website. But is skinned the same. 100% a #phishing site served as a Google ad above the legitimate business website.

This is a major problem, my friends.

Some people claim that they can use dark magics to force Linux to do what they want.

But that's just sudoscience

Important news for all nerds: The Unix timestamp will begin with 17 this Tuesday.

REMINDER: ChatGPT, Stable Diffusion, and other large trained neural models are NOT "artificial intelligence", they're just stochastic parrots, remixing and regurgitating what they've been fed. There's no theory-of-mind involved, so no understanding: there's no "there" there. (A real live parrot exhibits more intelligence than this.)

Don't call it AI; call it parrot-tech. That way you'll have a better perspective on what it can (and can't) do.

We have started scanning & reporting Roundcube Webmail servers vulnerable to CVE-2023-5631. While rated "only" CVSS 5.4, it has been used by at least one APT actor to execute JavaScript code in the browser of the victim in context of their Roundcube session.

42K found vulnerable!

Data shared in Vulnerable HTTP report: https://shadowserver.org/what-we-do/network-reporting/vulnerable-http-report/

NVD entry:
https://nvd.nist.gov/vuln/detail/CVE-2023-5631

Patch info: https://roundcube.net/news/2023/10/16/security-update-1.6.4-released

https://roundcube.net/news/2023/10/16/security-updates-1.5.5-and-1.4.15

Dashboard stats: https://dashboard.shadowserver.org/statistics/combined/tree/?day=2023-10-27&source=http_vulnerable&source=http_vulnerable6&tag=cve-2023-5631%2B&geo=all&data_set=count&scale=log

Discovery & background details by ESET:

https://www.welivesecurity.com/en/eset-research/winter-vivern-exploits-zero-day-vulnerability-roundcube-webmail-servers/

Troll/reply guy tried to get me to back down from my unequivocal statement that there's no evidence the 2020 election was stolen, claiming it's better to "meet people halfway" if I want to convince them.

No. As a researcher and educator, I believe in providing clear, accurate information.

The "evidence" that the election was stolen is made up bullshit. To call it anything else is a disservice.

If someone claims that 2+2=5, I'm not going to try to get them to compromise that it's 4.5.

EBCDIC is incompatible with GDPR 🖤🖤🖤

https://shkspr.mobi/blog/2021/10/ebcdic-is-incompatible-with-gdpr/

The “industry standard” modules used in digital braille displays are custom piezoelectric devices, costing around $100 per “letter,” making such displays impractically expensive for most applications.

I just learned about this hackaday prize winner, who has designed digital, refreshable #braille modules that cost less than $1 each, using teeny-tiny magnets and 3D printed parts.

https://youtu.be/BXi1tG78AW4
#OpenSource #accessibility technologies FTW!

The implant placed on tens of thousands of Cisco devices has been altered to check for an Authorization HTTP header value before responding which explains the recent drop in identified compromised systems. Using a different fingerprinting method 37890 Cisco devices remain compromised, according to FoxIT.

Let's see if I can get some more engagement like this:

Do you check known vulnerabilities of implicit dependencies of internally developed software? If so, please elaborate! My take:

https://infosec.place/notice/AavguT961fVYPPdMUi

Just published a disclosure for a handful of (fixed!) vulnerabilities in TitanMFT and TitanSFTP, continuing on my project to shake every file transfer tree to see what falls out :⁠-⁠)

#poc #vuln #vulnerability #research #blog

https://www.rapid7.com/blog/post/2023/10/16/multiple-vulnerabilities-in-south-river-technologies-titan-mft-and-titan-sftp-fixed/

Stop using random anti-adblock fixes you find on the internet, these are almost always out of date and interfere with the actual anti-adblock features in uBlock Origin. YouTube is changing their anti-adblock code multiple times per day.

Simply do the following:
1. Use uBlock Origin and no other adblocker. This includes disabling adblocking in "Enhancer for YouTube", and any built in browser blocker
2. Purge caches and update filters
3. Reload the tab

More info: https://github.com/uBlockOrigin/uAssets/issues/19976

Gosh, what a coincidence how a mercenary hacker decided to hack climate advocates just for fun and the fruits of that were used by Exxon Mobil to deter state AG investigations and influence judicial proceedings. Surely nothing here for the DOJ to investigate.

https://www.reuters.com/world/us/mercenary-hackers-stole-data-that-exxon-later-cited-climate-lawsuits-us-2023-10-12/

awesome paper by @dykstra & compatriots that audits three compliance standards (including PCI) to see if there are security gaps even if you’re 100% compliant.

The answer is yes, there are gaps even with perfect compliance — and they back it up with thorough evidence and analysis that is well worth reading: https://josiahdykstra.com/wp-content/uploads/2020/02/NDSS2020_Compliance_Cautions.pdf

#compliance #cybersecurity