#Datenpanne der "Stay Informed App", die deutschlandweit in 9.500 Kitas genutzt wird. Personenbezogene Daten (auch "besondere") waren über das Internet abrufbar. Auf stayinformed.de/kitas kann man in einer interaktiven OSM-Karte die Einrichtungen sehen, die die App nutzen.

Woah found a new resource for free security training - pwn.college Looks like they get pretty advanced in their topics too. Love seeing free trainings for folks trying to up their skills.

Ah, we are finally back on the road to reality in automatic vulnerability detection! "Attempts to improve performance through advanced training techniques and larger models like GPT-3.5 and GPT-4 were unsuccessful, with results akin to random guessing" arxiv.org/pdf/2403.18624…

Google Cloud accidentally deleted a company's entire cloud environment (Unisuper, an investment company, which manages $80B). The company had backups in another region, but GCP deleted those too. Luckily, they had yet more backups on another provider. theguardian.com/australia-news…

So the news is, both Russian and Chinese threat actors broke into Microsoft Exchange servers and read emails of senior leaders. This is really awful. One question... WHY DOESN'T MICROSOFT DO END TO END ENCRYPTION ON EMAILS!!?? theregister.com/2024/05/10/mic…

API missbraucht: Hacker teilt Details zum Cyberangriff auf Dell "Ein Cyberkrimineller hat rund 49 Millionen #Kundendatensätze von #Dell abgegriffen. Möglich gewesen ist ihm dies über eine unzureichend geschützte API eines Partnerportals" #TeamDatwnschutz golem.de/news/api-missb…

Call for papers is open for DFRWS-APAC 2024! Submit your title & abstract by May 27, 2024. Accepted authors will be able to join us in Brisbane, Australia in October! Learn more & submit here: buff.ly/4b4ne0c #dfrws #conference #digitalforensics #apac #brisbane

Here’s the big news: VMware Fusion Pro and Workstation Pro are both now available Free for Personal Use! VCF Division blog: blogs.vmware.com/cloud-foundati…

The biggest problem in #infosec isnt less skilled people or cost of security, its the ego of leadership or top level managers who value their pride so much more over productivity and results, that they are ready to take down the company with them just to bolster their ego.

If your website uses polyfill.io, remove it immediately. In Feb, a Chinese company bought the domain & Github account. Since then, this domain was caught injecting malware on mobile devices via any site that embeds cdn.polyfill.io sansec.io/research/polyf…

With the #GhostWrite CPU vulnerability, all isolation boundaries are broken - sandbox/container/VM can't prevent GhostWrite from writing and reading arbitrary physical memory on affected RISC-V CPUs. Deterministic, fast, and reliable - no side channels. ghostwriteattack.com

Remember "EventLogCrasher", the 0day that allows any domain user to stop Windows Event Logging on all domain computers? (blog.0patch.com/2024/01/the-ev…) Well, it's still working.

Red Teamer Idan Ron built tldfinder with ProjectDiscovery to uncover TLDs, associated subdomains, and related domain names. Read about the tool, and how it can be used to identify new attack surfaces! Learn more: bit.ly/3WP3qbt

Empire v5.11.4 was just released with updates and bug fixes! - Updated Rubeus to v2.3.2 - Added nameserver check for linux hosts - Fixed Rubeus only using first arg - Fixed Rubeus killing agent when using System.Environment.Exit - And more

Frida 16.5.0 is out! 🎉 frida.re/news/2024/09/0… Check out the release notes for a fun walkthrough of how to use the new watchpoint support to work out how to run your own code when bullets are fired in id Software's amazing DOOM 2024 re-release 🥳

How does the new iOS inactivity reboot work? What does it protect from? I reverse engineered the kernel extension and the secure enclave processor, where this feature is implemented. naehrdine.blogspot.com/2024/11/revers…

We’re now accepting poster proposals on a rolling basis! Submit to DFRWS for the chance to receive feedback during a dedicated poster session. You have until 28 February. Learn more: dfrws.org/conferences/df… #dfrws #conference #digitalforensics #eu #Brno #cybersecurity #dfir

You know what's satisfying? Knowing you received the early 🐦bird🐦 rate for FIRSTCON25. This rate expires on Monday, Feb 10th...HURRY! 🔗 go.first.org/hvJUY

PipeViewer. GUI tool for viewing Windows Named Pipes and searching for insecure permissions github.com/cyberark/PipeV…

🛑 WARNING: CVE-2025-20393 is rated 10.0, with no patch available. Cisco confirmed active exploitation of an AsyncOS zero-day by a China-linked APT. The flaw allows root-level command execution on affected email security appliances and enables attackers to establish