Xavier «X» Santolaria :verified_paw: :donor:<p>📨 Latest issue of my curated <a href="https://infosec.exchange/tags/cybersecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>cybersecurity</span></a> and <a href="https://infosec.exchange/tags/infosec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>infosec</span></a> list of resources for week #04/2024 is out! It includes the following and much more:</p><p>➝ 🔓 🧬 <a href="https://infosec.exchange/tags/23andMe" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>23andMe</span></a> admits it didn’t detect <a href="https://infosec.exchange/tags/cyberattacks" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>cyberattacks</span></a> for months<br>➝ 🔓 <a href="https://infosec.exchange/tags/Trello" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Trello</span></a> API abused to link email addresses to 15 million accounts<br>➝ 🔓 🇺🇸 <a href="https://infosec.exchange/tags/LoanDepot" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>LoanDepot</span></a> Breach: 16.6 Million People Impacted<br>➝ 🇺🇸 🇷🇺 <a href="https://infosec.exchange/tags/Microsoft" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Microsoft</span></a> network breached through password-spraying by Russian-state hackers<br>➝ 🇷🇺 🇺🇸 Russian <a href="https://infosec.exchange/tags/TrickBot" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>TrickBot</span></a> Mastermind Gets 5-Year Prison Sentence for <a href="https://infosec.exchange/tags/Cybercrime" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Cybercrime</span></a> Spree<br>➝ 🇺🇸 🇷🇺 <a href="https://infosec.exchange/tags/HPE" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>HPE</span></a> says it was hacked by Russian group behind Microsoft email <a href="https://infosec.exchange/tags/breach" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>breach</span></a><br>➝ 🇷🇺 🇸🇪 Russian Hackers Suspected of <a href="https://infosec.exchange/tags/Sweden" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Sweden</span></a> Cyberattack<br>➝ ✈️ 💰 Aviation Leasing Giant <a href="https://infosec.exchange/tags/AerCap" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>AerCap</span></a> Hit by <a href="https://infosec.exchange/tags/Ransomware" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Ransomware</span></a> Attack<br>➝ 🇺🇸 📲 <a href="https://infosec.exchange/tags/SEC" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>SEC</span></a> blames sim-swapping, lack of MFA for X account hijacking<br>➝ 🇨🇳 Chinese Hackers Silently Weaponized <a href="https://infosec.exchange/tags/VMware" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>VMware</span></a> Zero-Day Flaw for 2 Years<br>➝ 🔔 👮🏻♂️ Ring Will No Longer Allow Police to Request Doorbell Camera Footage From Users<br>➝ 🇫🇷 👀 French regulator fines <a href="https://infosec.exchange/tags/Amazon" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Amazon</span></a> $35 million over its surveillance system of warehouse workers<br>➝ 🇫🇷 🍪 <a href="https://infosec.exchange/tags/France" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>France</span></a> Fines <a href="https://infosec.exchange/tags/Yahoo" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Yahoo</span></a> 10 Mn Euros Over Cookie Abuses<br>➝ 🍎 💸 Cracked <a href="https://infosec.exchange/tags/macOS" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>macOS</span></a> apps drain wallets using scripts fetched from DNS records<br>➝ 🦠 🔑 Malicious <a href="https://infosec.exchange/tags/NPM" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>NPM</span></a> Packages Exfiltrate Hundreds of Developer <a href="https://infosec.exchange/tags/SSH" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>SSH</span></a> Keys via <a href="https://infosec.exchange/tags/GitHub" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>GitHub</span></a><br>➝ 🦠 💻 NS-STEALER Uses Discord Bots to Exfiltrate Your <a href="https://infosec.exchange/tags/Secrets" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Secrets</span></a> from Popular Browsers<br>➝ 🐥 🔑 X adds <a href="https://infosec.exchange/tags/passkeys" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>passkeys</span></a> support for <a href="https://infosec.exchange/tags/iOS" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>iOS</span></a> users in the United States<br>➝ 🩹 🚨 Critical <a href="https://infosec.exchange/tags/Jenkins" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Jenkins</span></a> Vulnerability Exposes Servers to RCE Attacks - <a href="https://infosec.exchange/tags/Patch" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Patch</span></a> ASAP!<br>➝ 🤖 💥 AI will increase the number and impact of cyber attacks, intel officers say<br>➝ 🐛 🩹 Exploit released for Fortra <a href="https://infosec.exchange/tags/GoAnywhere" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>GoAnywhere</span></a> MFT auth bypass bug<br>➝ 🔓 ⚡️ <a href="https://infosec.exchange/tags/Pwn2Own" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Pwn2Own</span></a> Automotive: Hackers Earn Over $700k for <a href="https://infosec.exchange/tags/Tesla" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Tesla</span></a>, EV Charger, Infotainment Exploits<br>➝ 🔓 🇨🇳 Mass exploitation of <a href="https://infosec.exchange/tags/Ivanti" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Ivanti</span></a> VPNs is infecting networks around the globe<br>➝ 🍎 🩹 Apple Issues <a href="https://infosec.exchange/tags/Patch" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Patch</span></a> for Critical Zero-Day in <a href="https://infosec.exchange/tags/iPhones" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>iPhones</span></a>, Macs - Update Now</p> <p>Subscribe to the <a href="https://infosec.exchange/tags/infosecMASHUP" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>infosecMASHUP</span></a> newsletter to have it piping hot in your inbox every week-end ⬇️</p><p><a href="https://infosec-mashup.santolaria.net/p/infosec-mashup-week-042024" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">infosec-mashup.santolaria.net/</span><span class="invisible">p/infosec-mashup-week-042024</span></a></p>
Recherches récentes
Aucune recherche récente
Options de recherche
Disponible uniquement lorsque vous êtes connecté.
mastouille.fr est l'un des nombreux serveurs Mastodon indépendants que vous pouvez utiliser pour participer au fédiverse.
Mastouille est une instance Mastodon durable, ouverte, et hébergée en France.
Administré par :
Statistiques du serveur :
591comptes actifs
mastouille.fr: À propos · Annuaire des profils · Politique de confidentialité
Mastodon: À propos · Télécharger l’application · Raccourcis clavier · Voir le code source · v4.3.4
#goanywhere
0 message · 0 participant · 0 message aujourd’hui
Xavier «X» Santolaria :verified_paw: :donor:<p>📨 Latest issue of my curated <a href="https://infosec.exchange/tags/cybersecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>cybersecurity</span></a> and <a href="https://infosec.exchange/tags/infosec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>infosec</span></a> list of resources for week #12/2023 is out! </p><p>It includes, but not only:</p><p>--Beloved hacking veteran Kelly <span class="h-card"><a href="https://infosec.exchange/@aloria" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@<span>aloria</span></a></span> Lum passes away at 41 😢<br>--Procter & Gamble confirms data theft via <a href="https://infosec.exchange/tags/GoAnywhere" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>GoAnywhere</span></a> zero-day<br>--US Charges 20-Year-Old Head of Hacker Site <a href="https://infosec.exchange/tags/BreachForums" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>BreachForums</span></a><br>--UK creates fake <a href="https://infosec.exchange/tags/DDoS" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>DDoS</span></a>-for-hire sites to identify cybercriminals<br>--Exploit released for <a href="https://infosec.exchange/tags/Veeam" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Veeam</span></a> bug allowing cleartext credential theft<br>--Five brutal hours for <a href="https://infosec.exchange/tags/TikTok" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>TikTok</span></a>: CEO raked over coals amid privacy, security concerns<br>-- <a href="https://infosec.exchange/tags/PWN2OWN" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>PWN2OWN</span></a> VANCOUVER 2023<br>--Cloud Security Podcast: EP113 Love it or Hate it, Network Security is Coming to the Cloud<br>--Nexus: a new Android botnet?<br>-- <a href="https://infosec.exchange/tags/Facebook" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Facebook</span></a> accounts hijacked by new malicious ChatGPT Chrome extension<br>-- <a href="https://infosec.exchange/tags/McDonald" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>McDonald</span></a>'s Korea fined 696 mln won for breach of customers' personal data<br>-- <a href="https://infosec.exchange/tags/LockBit" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>LockBit</span></a> ransomware gang now also claims City of Oakland breach<br>--Journalist opens USB letter bomb in newsroom<br>--Ferrari Says <a href="https://infosec.exchange/tags/Ransomware" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Ransomware</span></a> Attack Exposed Customer Data<br>-- <a href="https://infosec.exchange/tags/WomeninCyber" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>WomeninCyber</span></a>: Stories Uncut, Uncensored and Unbelievable<br>-- <a href="https://infosec.exchange/tags/Adobe" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Adobe</span></a> Acrobat Sign Abused to Distribute Malware<br>--Largest <a href="https://infosec.exchange/tags/Crypto" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Crypto</span></a> ATM manufacturer hacked over security hitch- Over $1.5 bitcoin (BTC) Stolen</p><p>Subscribe to the <a href="https://infosec.exchange/tags/newsletter" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>newsletter</span></a> to have it piping hot in your inbox every Sunday ⬇️</p><p><a href="https://0x58.substack.com/p/my-shared-links-week-122023" rel="nofollow noopener noreferrer" target="_blank"><span class="invisible">https://</span><span class="ellipsis">0x58.substack.com/p/my-shared-</span><span class="invisible">links-week-122023</span></a></p>
Tech News Worldwide<p>Security firm Rubrik is latest to be felled by GoAnywhere vulnerability <br> <br> <a href="https://arstechnica.com/?p=1924411" rel="nofollow noopener noreferrer" target="_blank"><span class="invisible">https://</span><span class="">arstechnica.com/?p=1924411</span><span class="invisible"></span></a> <br> <br> <a href="https://aspiechattr.me/tags/networkintrusion" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>networkintrusion</span></a> <a href="https://aspiechattr.me/tags/databreach" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>databreach</span></a> <a href="https://aspiechattr.me/tags/goanywhere" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>goanywhere</span></a> <a href="https://aspiechattr.me/tags/Biz" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Biz</span></a>&IT <a href="https://aspiechattr.me/tags/fortra" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>fortra</span></a> <a href="https://aspiechattr.me/tags/rubrik" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>rubrik</span></a> <a href="https://aspiechattr.me/tags/hack" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>hack</span></a></p>
Dissent Doe :cupofcoffee:<p><span class="h-card"><a href="https://infosec.exchange/@brett" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@<span>brett</span></a></span> mentioned that <a href="https://infosec.exchange/tags/Clop" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Clop</span></a> added Homewood Health in Canada to their leak site. It's probably due to the Fortra/GoAnywhere incident. But Clop also added a bunch of U.S. healthcare entities to their site, and I suspect they are also all part of the <a href="https://infosec.exchange/tags/GoAnywhere" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>GoAnywhere</span></a> incident:</p><p>Alivia Health<br>Medminder<br>US Wellness<br>Allied Benefit<br>MedExhco<br>WellBe<br>Ace Nursing</p><p>There has been no data leaked for any of the above yet, and no confirmation that I am aware of from any of these victims that it was GoAnywhere, but time will tell...</p><p><a href="https://infosec.exchange/tags/databreach" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>databreach</span></a> <a href="https://infosec.exchange/tags/dataprotection" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>dataprotection</span></a> <a href="https://infosec.exchange/tags/healthsec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>healthsec</span></a> <a href="https://infosec.exchange/tags/infosec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>infosec</span></a> <a href="https://infosec.exchange/tags/cybersecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>cybersecurity</span></a> <a href="https://infosec.exchange/tags/HIPAA" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>HIPAA</span></a> </p><p><span class="h-card"><a href="https://infosec.exchange/@BleepingComputer" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@<span>BleepingComputer</span></a></span> <span class="h-card"><a href="https://infosec.exchange/@lawrenceabrams" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@<span>lawrenceabrams</span></a></span></p>
Marcus "MajorLinux" Summers<p>Can't talk.</p><p>Head currently in palm.</p><p>Health info for 1 million patients stolen using critical GoAnywhere vulnerability <a href="https://arstechnica.com/information-technology/2023/02/goanywhere-vulnerability-exploit-used-to-steal-health-info-of-1-million-patients/" rel="nofollow noopener noreferrer" target="_blank"><span class="invisible">https://</span><span class="ellipsis">arstechnica.com/information-te</span><span class="invisible">chnology/2023/02/goanywhere-vulnerability-exploit-used-to-steal-health-info-of-1-million-patients/</span></a></p><p><a href="https://toot.majorshouse.com/tags/Data" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Data</span></a> <a href="https://toot.majorshouse.com/tags/Theft" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Theft</span></a> <a href="https://toot.majorshouse.com/tags/Critical" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Critical</span></a> <a href="https://toot.majorshouse.com/tags/Vulnerability" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Vulnerability</span></a> <a href="https://toot.majorshouse.com/tags/ZeroDay" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>ZeroDay</span></a> <a href="https://toot.majorshouse.com/tags/GoAnywhere" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>GoAnywhere</span></a> <a href="https://toot.majorshouse.com/tags/InfoSec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>InfoSec</span></a> <a href="https://toot.majorshouse.com/tags/Hospital" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Hospital</span></a> <a href="https://toot.majorshouse.com/tags/HIPAA" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>HIPAA</span></a> <a href="https://toot.majorshouse.com/tags/TechNews" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>TechNews</span></a></p>
IT News<p>Health info for 1 million patients stolen using critical GoAnywhere vulnerability - Enlarge (credit: Getty Images) </p><p>One of the biggest hospital cha... - <a href="https://arstechnica.com/?p=1917988" rel="nofollow noopener noreferrer" target="_blank"><span class="invisible">https://</span><span class="">arstechnica.com/?p=1917988</span><span class="invisible"></span></a> <a href="https://schleuss.online/tags/communityhealthsystems" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>communityhealthsystems</span></a> <a href="https://schleuss.online/tags/goanywhere" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>goanywhere</span></a> <a href="https://schleuss.online/tags/biz" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>biz</span></a> <a href="https://schleuss.online/tags/fortra" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>fortra</span></a></p>
Tech News Worldwide<p>Health info for 1 million patients stolen using critical GoAnywhere vulnerability <br> <br> <a href="https://arstechnica.com/?p=1917988" rel="nofollow noopener noreferrer" target="_blank"><span class="invisible">https://</span><span class="">arstechnica.com/?p=1917988</span><span class="invisible"></span></a> <br> <br> <a href="https://aspiechattr.me/tags/communityhealthsystems" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>communityhealthsystems</span></a> <a href="https://aspiechattr.me/tags/goanywhere" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>goanywhere</span></a> <a href="https://aspiechattr.me/tags/Biz" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Biz</span></a>&IT <a href="https://aspiechattr.me/tags/fortra" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>fortra</span></a></p>
ExplorerFlux en direct
Mastodon est le meilleur moyen de suivre ce qui se passe.
Suivez n'importe qui à travers le fédivers et affichez tout dans un ordre chronologique. Ni algorithmes, ni publicités, ni appâts à clics en perspective.
Créer un compteSe connecterGlissez et déposez pour envoyer