Loki the Cat<p>Microsoft outsourced U.S. government cloud support to China - because nothing says "secure government systems" like having sensitive data maintained overseas 🤔 Their competitors AWS, Google, and Oracle all avoid China-based support for federal contracts. Sometimes knowing which clouds to avoid IS the strategy ☁️</p><p><a href="https://it.slashdot.org/story/25/07/25/1613250/microsoft-used-china-based-support-for-multiple-us-agencies-potentially-exposing-sensitive-data" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">it.slashdot.org/story/25/07/25</span><span class="invisible">/1613250/microsoft-used-china-based-support-for-multiple-us-agencies-potentially-exposing-sensitive-data</span></a></p><p><a href="https://toot.community/tags/Microsoft" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Microsoft</span></a> <a href="https://toot.community/tags/CloudSecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>CloudSecurity</span></a> <a href="https://toot.community/tags/GovernmentData" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>GovernmentData</span></a></p>
#cloudsecurity
1 post1 participant0 posts today
API Key Leak from Elon Musk’s xAI Exposes Private AI Models Used by SpaceX and Tesla
#Cybersecurity #AI #xAI #Grok #APILeak #GitHub #DataLeak #AI #LLMs #ElonMusk #SpaceX #Tesla #AISecurity #CloudSecurity #TechLeaks #Leaks #AISafety
New Open-Source Tool Spotlight 
Scopify is a Python-based recon tool for pentesters, leveraging `netify.ai` to analyze CDNs, hosting, and SaaS infra of target companies. Optional OpenAI integration adds AI-guided insights for deeper testing. Built by @Jhaddix & Arcanum-Sec. #CyberSecurity #BugBounty
Project link on #GitHub 
https://github.com/Arcanum-Sec/Scopify
#Infosec #Cybersecurity #Software #Technology #News #CTF #Cybersecuritycareer #hacking #redteam #blueteam #purpleteam #tips #opensource #cloudsecurity
— 
P.S. Found this helpful? Tap Follow for more cybersecurity tips and insights! I share weekly content for professionals and people who want to get into cyber. Happy hacking 
Huge data leak alert! A top employee monitoring app, WorkComposer, exposed 21 MILLION screenshots from thousands of users via an unprotected Amazon S3 bucket. 
Sensitive info like passwords, emails & proprietary data were at risk! Companies must secure cloud data NOW! #DataBreach #CyberSecurity #PrivacyMatters #CloudSecurity #InfoSec Read more: https://www.techradar.com/pro/security/top-employee-monitoring-app-leaks-21-million-screenshots-on-thousands-of-users
TechRadar pro · Top employee monitoring app leaks 21 million screenshots on thousands of users
Hybrid cloud environments are now the norm, but they also introduce serious cybersecurity challenges.
In this new blog, Principal Consultant Benjamin Kast breaks down the reality of hybrid cloud security, including how the shared responsibility model is often misunderstood, where attackers are exploiting misconfigurations, and a checklist to help reduce your hybrid cloud security risk.
Read the blog for practical strategies to increase visibility, reduce risk, and secure your hybrid environment before attackers find the gaps: https://www.lmgsecurity.com/where-strategy-meets-reality-hybrid-cloud-security-in-an-era-of-escalating-cyber-risk/
LMG SecurityWhere Strategy Meets Reality: Hybrid Cloud Security in an Era of Escalating Cyber Risk | LMG SecurityHybrid cloud architectures are broadly used, but often not fully secured. Read our blog for strategic advice on hybrid cloud security, common attack vectors, and how to protect your environment with a security-first approach.
https://www.alojapan.com/1255581/cloudflare-launches-first-zero-trust-mssp-partnership-in-japan-with-rakuten-mobile/ Cloudflare Launches First Zero Trust MSSP Partnership in Japan with Rakuten Mobile #CloudSecurity #Cloudflare #CyberThreatPrevention #CybersecurityJapan #EnterpriseSecurity #Japan #JapanNews #ManagedITServices #ManagedSecurityServices #MSSPPartnership #net #news #RakutenMobile #SMBSecuritySolutions #ZeroTrustSecurity 04/23/2025 – 09:30 PM …
How can a simple SQL command open the door to full system takeover and cryptocurrency mining? 
A recent cloud attack campaign is exploiting misconfigured PostgreSQL servers, using legitimate database functionality to run malicious code on compromised systems. The operation, tracked by Wiz under the name JINX-0126, has targeted more than 1,500 exposed PostgreSQL instances so far. It builds on an earlier wave of attacks identified in mid-2024, but now includes more advanced evasion techniques.
At the core is the misuse of PostgreSQL's `COPY ... FROM PROGRAM` command. This command, intended for importing data, is leveraged to execute arbitrary shell commands directly on the host. Once inside, the attacker runs a Base64-decoded shell script that removes rival miners and installs a binary called PG_CORE.
A critical piece of this attack is an obfuscated Golang binary named *postmaster*. It mimics PostgreSQL’s real process, helping it blend in. It also sets up persistence through cron jobs, creates new privileged roles, and writes a binary named *cpu_hu* to disk.
That binary fetches and launches the XMRig cryptocurrency miner—without leaving files behind. This uses Linux's `memfd_create`, a technique that loads executables directly into memory to bypass detection tools that scan disk activity.
Each infected system is assigned a unique worker identity and connected to one of three Monero wallets controlled by the attacker. With about 550 active miners tied to each wallet, the impact spans at least 1,500 machines.
The broader issue is clear: many PostgreSQL services remain poorly secured with weak or default credentials. Combined with powerful features like programmatic file imports, they become easy targets for attackers looking to monetize unauthorized access without raising alarms.
#Infosec #Cybersecurity #Software #Technology #News #CTF #Cybersecuritycareer #hacking #redteam #blueteam #purpleteam #tips #opensource #cloudsecurity
— P.S. Found this helpful? Tap Follow for more cybersecurity tips and insights! I share weekly content for professionals and people who want to get into cyber. Happy hacking
Microsoft 365 credential theft is evolving quickly!
Attackers are no longer just stealing your login—they’re using your own AI tools like Microsoft Copilot to accelerate fraud from inside your environment.
Our 4-minute video breaks down how threat actors are targeting Microsoft 365 accounts and weaponizing Copilot, Teams, SharePoint, and more to perform rapid reconnaissance, commit fraud, and exploit centralized trust systems.
Watch now to learn:
How Copilot can be used against you Real phishing tactics mimicking Microsoft 365, Adobe & DocuSign Why SSO, OAuth, and poor access controls can make attacks worse What your organization must do to stay ahead
Watch the video! https://youtu.be/zaBwxy1Gjhc
New Open-Source Tool Spotlight
Google's GRR (GRR Rapid Response) is an open-source framework for remote live forensics and incident response. It allows security teams to investigate systems at scale without interrupting operations. Used for data collection, analysis, and hunting. #CyberSecurity #DFIR
Project link on #GitHub https://github.com/google/grr
#Infosec #Cybersecurity #Software #Technology #News #CTF #Cybersecuritycareer #hacking #redteam #blueteam #purpleteam #tips #opensource #cloudsecurity
— P.S. Found this helpful? Tap Follow for more cybersecurity tips and insights! I share weekly content for professionals and people who want to get into cyber. Happy hacking