photog.social is one of the many independent Mastodon servers you can use to participate in the fediverse.
A place for your photos and banter. Photog first is our motto Please refer to the site rules before posting.

Administered by:

Server stats:

246
active users

#CyberSecurityAwareness

0 posts0 participants0 posts today

⚠️Il mondo della cybersecurity evolve ogni giorno
📚 34 settimane di formazione intensiva
💻 HackMeUp: la piattaforma dove metti in pratica le tue skill
👉 Per chi vuole entrare (o crescere) nel mondo dell’ethical hacking
E non sei solo: entrando nel corso, contribuisci anche allo sviluppo della community RHC, da anni al fianco della divulgazione cyber in Italia.
⏳ Promo attiva fino all’11 aprile alle 18
Dopo, addio prezzo scontato.
🔗cybersecurityup.it/ethical-hac

📞3755931011 ✉️ e.picconi@fatainformatica.it

🚨 PassMark released a report on CPU performance, highlighting a recent bottleneck in performance growth since 2023. Is Moore's Law truly becoming obsolete? How might this impact legal and legislative discussions on technology advancement? Stay informed on these key developments and their implications for privacy and cybersecurity. #TechLaw #PrivacyRights #CybersecurityAwareness 💻🔒 What are your thoughts on this evolving landscape? Let's discuss!

Read more: steelefamlaw.com/OfWKcL

HKEPC HardwarePassMark 公布年 CPU 效能報告 近年 CPU 出現性能成長瓶頸【Moore's Law 失效 ⚠️】著名 Benchmark 軟件 PassMark 上週公布了 CPU 性能追蹤報告,發現自 2023 年開始,x86 CPU 的最高性能增長出現了瓶頸。相比自 2016 年以來的高速增長,現在卻停滯不前,難道 Moore's Law 定律真的已經失效了?

DeepSeek or DeepRisk?

A new AI powerhouse is making waves—DeepSeek has skyrocketed in popularity, rivaling top AI models at a fraction of the cost.

But with data stored in China and unknown security safeguards, is your organization at risk?

Join @sherridavidoff and @MDurrin in our latest episode of Cyberside Chats for an in-depth look at DeepSeek’s cybersecurity implications!

🎥 Watch here: youtu.be/3DoZbzLMsI8
🎧 Listen here: chatcyberside.com/e/deepseek-a

Follow us for weekly Cyberside Chats episodes!

QR-codes: privacy/security-drama

Minister Beljaarts is niet goed bij zijn hoofd (nos.nl/artikel/2553994-ministe). Marketingmensen willen dit niet, niet iedereen heeft een smartphone of wil QR-codes scannen, en bovendien zijn URL-QR-codes een privacy- en security-drama.

QR-codes op de meeste producten in de supermarkt wijzen namelijk naar websites van derde partijen en/of gebruiken URL-verkorters (die zijn zeker van derde parijen).

Ook zijn er veel QR-codes met een http- (in plaats van https-link) of geheel zonder protocolaanduiding (wat browsers nog steeds als http interpreteren. Waarom dat een risico is leest u in mijn antwoord op deze toot.

Voorbeelden van hufterige QR-codes (ik heb steeds een spatie tussen // en de domeinnaam gevoegd zodat Mastodon de http/https informatie niet verstopt).

Prodent tandpasta
🔗 https:// dl.ulcp.io/01/3014230002601

Calvé pindakaas
🔗 https:// qr.ulcp.io/W5NKZMFC

Crystal Clear framboos/bosbes
🔗 https:// qrco.de/crystalclear_3

Flesje Coke Zero
🔗 https:// cokeurl.com/srn5000112646702

Bus Pringles
🚨 http:// pringles.eu/1w9vz52

Lassie Bio Zilvervliesrijst
🚨 http:// l.ead.me/462ZILVER

Merk op dat *elke* "doorstuurwebsite vanalles over u te weten kan komen en cookies kan zetten. Ook kan een "doorstuurder" door een criminele partij worden overgenomen, en uw browser naar een andere website sturen dan de maker van het product bedoelde. Op zo'n nepsite kunt u vervolgens worden opgelicht.

Maar ook maken maketeers, die graag aanrommelen met QR-codes, fouten - zoals (in 2015) Heinz met ketchupflessen (id.nl/huis-en-entertainment/co).

🧵 1/2

Cybersecurity is a crucial aspect of our digital lives. From understanding the basics to knowing the different types of cyber threats, being informed helps us stay protected. 🔍🔐

Encryption plays a vital role in safeguarding data and preventing unauthorized access, making it a must-have tool in our security arsenal. Let's prioritize digital safety and be proactive in securing our information. 🚨✨

For my SecOps role, it’s fairly important to keep on top of the types of social engineering scams out there, and reddit.com/r/Scams/ is a great resource for this.

However it still find it really concerning the number of people struggling to identify scam red flags - they are doing the right thing by asking, but it would be great if they knew straight up.

#Infosec community, if you are in a position to do so and haven't already, please take the time to have a chat with family and friends about what to look out for with scam messages and staying safe online :)

reddit/r/ScamsOnline, offline, email, or postal. If you think someone is trying to scam you, this is the place to ask about it. Post your questions here and...

Underground Zeroday: 10.000 dollari per 110.000 siti WordPress!

La piattaforma di #intelligence sulle minacce informatiche ThreatMon ha riferito che su un noto #forum di #hacker è #apparsa una pubblicità per la vendita di un #exploit #ZeroDay per #WordPress .

Il venditore afferma che l’exploit, implementato come script PHP, può essere utilizzato insieme a un plugin WordPress per caricare script di shell su circa 110.000 siti Web e recuperare un elenco dei loro URL.

Condividi questo post se hai trovato la news interessante.

#redhotcyber #online #it #web #ai #hacking #privacy #cybersecurity #cybercrime #intelligence #intelligenzaartificiale #informationsecurity #ethicalhacking #dataprotection #cybersecurityawareness #cybersecuritytraining #cybersecuritynews #infosecurity

redhotcyber.com/post/undergrou

Red Hot Cyber · Underground Zeroday: 10.000 dollari per 110.000 siti Wordpress!La piattaforma di intelligence ThreatMon ha rivelato la vendita di un pericoloso exploit Zero-Day per WordPress su un forum di hacker.

Happy New Year! Here are the ICS Advisory Project 2023 Annual Summary Slides for CISA ICS Advisories and this week's Other CERT & Vendor vulnerability advisories weekly summary for 25 – 29 December 2023. Attached are 2023's Annual summary slides.

Link to ICS Advisory Project Annual Summary Slides: drive.google.com/file/d/1HYDE_

This past week, CISA did not release any new ICS Advisories. In its place, the ICS[AP] provided a high-level summary of the 380 CISA ICS Advisories released in 2023. Within this summary, you will find a high-level review of the following:

- Total Number of vendors reported in ICS Advisories ranked by country
- Vendors with a high number of critical severity vulnerabilities
- Overview of Vendor & products Affected Global Distribution & Updated CISA Advisories in 2023
- Overview of 2023 CISA ICS Advisories CVE CVSS Vectors by Severity
- Top 10 CWEs identified on MITRE's 2023 CWE Top 25 Most Dangerous Software Weaknesses (MDSW).
- Most reported impacted Critical Infrastructure sectors and by Vendor
- ICS Asset Type metrics
- Total number of CISA ICS Advisories correlated to CISA KEV Catalog
- Mitigation statics based on CISA ICS Advisories recommendations
- Top Independent Vulnerability Researchers and Research Organizations for 2023

ICS[AP] identified 12 new other CERT and vendor products security advisories were released this week for vulnerabilities in the following Vendor products: Moxa (LTE Wireless Gateway & Ethernet remote I/O with 2-port Ethernet switch), Buffalo (Router), Weintek (HMI), and Gallagher (Access Control System). See Weekly Summary of Other Vendor & CERT Advisories for potentially impacted CI sectors.

View the summary details of other CERT & Vendor product advisories identified last week (25 – 29 December 2023) at: drive.google.com/file/d/1wBofo

No updates were added to the CISA KEV Catalog this week.

Visit the ICS[AP] CISA KEV Catalog Dashboards: icsadvisoryproject.com/ics-adv

View previous ICS Advisory Project annual and weekly summaries: icsadvisoryproject.com/ics-adv

To view the updated ICS Advisory Project Dashboards, visit: icsadvisoryproject.com

We appreciate everyone's comments & support. Have a great week!

#CISA #ot #ics #otcybersecurity #otsecurity #icscybersecurity
#cybersecurity #cybersecuritythreats #cybersecurityawareness

🔒 TechCrunch's analysis of the 23andMe breach highlights the vulnerability of personal genetic data, raising concerns about data protection and transparency.


What do you think about this new case of a user data breach by a company revealing sensitive user data? And what steps do you take to ensure the security of your sensitive information? Share your thoughts and experiences with us!

#CyberSecurityAwareness #DataSecurity #DigitalPrivacy

techcrunch.com/2023/12/04/23an

TechCrunch · 23andMe confirms hackers stole ancestry data on 6.9 million users | TechCrunchGenetic testing company 23andMe revealed that its data breach was much worse than previously reported, hitting about half of its total customers.

This is your #infosec Public Service Announcement: Today is the first day of Fall (in the upper hemisphere).

All users should now rotate their passwords to:

  • Fall2023
  • Fall2023! (If they're secure.)

If they are fancy, they can rotate their passwords to:

  • Autumn2023
  • Autumn2023! (If they're secure.)

Note, users should change their passwords to their local language, eg:

  • Autunno2023
  • Autunno2023! (Se sono sicuri.)
  • Осень2023
  • Осень2023! (Если они в безопасности.)

Further Note, if users are in the southern hemisphere, please use the corresponding terms for Spring.