Michael (@mspreitz@infosec.exchange) (@m_spreitz) 's Twitter Profile
Michael (@[email protected])

@m_spreitz

- Mobile-Security and Forensics Enthusiast - ISO27001 & KRITIS Auditor - [Tweets are my own and not the views of my employer]

ID: 128213477

linkhttp://forensics.spreitzenbarth.de calendar_today31-03-2010 13:07:20

13,13K Tweet

632 Takipçi

422 Takip Edilen

Jens Lange (@ein_isb) 's Twitter Profile Photo

#Datenpanne der "Stay Informed App", die deutschlandweit in 9.500 Kitas genutzt wird. Personenbezogene Daten (auch "besondere") waren über das Internet abrufbar. Auf stayinformed.de/kitas kann man in einer interaktiven OSM-Karte die Einrichtungen sehen, die die App nutzen.

#Datenpanne der "Stay Informed App", die deutschlandweit in 9.500 Kitas genutzt wird. Personenbezogene Daten (auch "besondere") waren über das Internet abrufbar. Auf stayinformed.de/kitas kann man in einer interaktiven OSM-Karte die Einrichtungen sehen, die die App nutzen.
Matt Johansen (@mattjay) 's Twitter Profile Photo

Woah found a new resource for free security training - pwn.college Looks like they get pretty advanced in their topics too. Love seeing free trainings for folks trying to up their skills.

Woah found a new resource for free security training - pwn.college

Looks like they get pretty advanced in their topics too. Love seeing free trainings for folks trying to up their skills.
Konrad Rieck 🌈 (@mlsec) 's Twitter Profile Photo

Ah, we are finally back on the road to reality in automatic vulnerability detection! "Attempts to improve performance through advanced training techniques and larger models like GPT-3.5 and GPT-4 were unsuccessful, with results akin to random guessing" arxiv.org/pdf/2403.18624…

Scott Piper (@0xdabbad00) 's Twitter Profile Photo

Google Cloud accidentally deleted a company's entire cloud environment (Unisuper, an investment company, which manages $80B). The company had backups in another region, but GCP deleted those too. Luckily, they had yet more backups on another provider. theguardian.com/australia-news…

Jack Rhysider 🏴‍☠️ (@jackrhysider) 's Twitter Profile Photo

So the news is, both Russian and Chinese threat actors broke into Microsoft Exchange servers and read emails of senior leaders. This is really awful. One question... WHY DOESN'T MICROSOFT DO END TO END ENCRYPTION ON EMAILS!!?? theregister.com/2024/05/10/mic…

@HonkHase.bsky.social & @HonkHase@chaos.social (@honkhase) 's Twitter Profile Photo

API missbraucht: Hacker teilt Details zum Cyberangriff auf Dell "Ein Cyberkrimineller hat rund 49 Millionen #Kundendatensätze von #Dell abgegriffen. Möglich gewesen ist ihm dies über eine unzureichend geschützte API eines Partnerportals" #TeamDatwnschutz golem.de/news/api-missb…

DFRWS (@dfrws) 's Twitter Profile Photo

Call for papers is open for DFRWS-APAC 2024! Submit your title & abstract by May 27, 2024. Accepted authors will be able to join us in Brisbane, Australia in October! Learn more & submit here: buff.ly/4b4ne0c #dfrws #conference #digitalforensics #apac #brisbane

Michael Roy (@mikeroysoft) 's Twitter Profile Photo

Here’s the big news: VMware Fusion Pro and Workstation Pro are both now available Free for Personal Use! VCF Division blog: blogs.vmware.com/cloud-foundati…

Here’s the big news: VMware Fusion Pro and Workstation Pro are both now available Free for Personal Use!

VCF Division blog:

blogs.vmware.com/cloud-foundati…
Chetan Nayak (Brute Ratel C4 Author) (@ninjaparanoid) 's Twitter Profile Photo

The biggest problem in #infosec isnt less skilled people or cost of security, its the ego of leadership or top level managers who value their pride so much more over productivity and results, that they are ready to take down the company with them just to bolster their ego.

Chris Wysopal (@weldpond) 's Twitter Profile Photo

If your website uses polyfill.io, remove it immediately. In Feb, a Chinese company bought the domain & Github account. Since then, this domain was caught injecting malware on mobile devices via any site that embeds cdn.polyfill.io sansec.io/research/polyf…

Michael Schwarz (@misc0110) 's Twitter Profile Photo

With the #GhostWrite CPU vulnerability, all isolation boundaries are broken - sandbox/container/VM can't prevent GhostWrite from writing and reading arbitrary physical memory on affected RISC-V CPUs. Deterministic, fast, and reliable - no side channels. ghostwriteattack.com

With the #GhostWrite CPU vulnerability, all isolation boundaries are broken - sandbox/container/VM can't prevent GhostWrite from writing and reading arbitrary physical memory on affected RISC-V CPUs. Deterministic, fast, and reliable - no side channels. ghostwriteattack.com
Mitja Kolsek (@mkolsek) 's Twitter Profile Photo

Remember "EventLogCrasher", the 0day that allows any domain user to stop Windows Event Logging on all domain computers? (blog.0patch.com/2024/01/the-ev…) Well, it's still working.

Mandiant (part of Google Cloud) (@mandiant) 's Twitter Profile Photo

Red Teamer Idan Ron built tldfinder with ProjectDiscovery to uncover TLDs, associated subdomains, and related domain names. Read about the tool, and how it can be used to identify new attack surfaces! Learn more: bit.ly/3WP3qbt

Red Teamer Idan Ron built tldfinder with <a href="/pdiscoveryio/">ProjectDiscovery</a> to uncover TLDs, associated subdomains, and related domain names. 

Read about the tool, and how it can be used to identify new attack surfaces! Learn more: bit.ly/3WP3qbt
Empire (@empirec2project) 's Twitter Profile Photo

Empire v5.11.4 was just released with updates and bug fixes! - Updated Rubeus to v2.3.2 - Added nameserver check for linux hosts - Fixed Rubeus only using first arg - Fixed Rubeus killing agent when using System.Environment.Exit - And more

Frida (@fridadotre) 's Twitter Profile Photo

Frida 16.5.0 is out! 🎉 frida.re/news/2024/09/0… Check out the release notes for a fun walkthrough of how to use the new watchpoint support to work out how to run your own code when bullets are fired in id Software's amazing DOOM 2024 re-release 🥳

Jiska (@naehrdine) 's Twitter Profile Photo

How does the new iOS inactivity reboot work? What does it protect from? I reverse engineered the kernel extension and the secure enclave processor, where this feature is implemented. naehrdine.blogspot.com/2024/11/revers…

How does the new iOS inactivity reboot work? What does it protect from?

I reverse engineered the kernel extension and the secure enclave processor, where this feature is implemented.

naehrdine.blogspot.com/2024/11/revers…
DFRWS (@dfrws) 's Twitter Profile Photo

We’re now accepting poster proposals on a rolling basis! Submit to DFRWS for the chance to receive feedback during a dedicated poster session. You have until 28 February. Learn more: dfrws.org/conferences/df… #dfrws #conference #digitalforensics #eu #Brno #cybersecurity #dfir

FIRST.org (@firstdotorg) 's Twitter Profile Photo

You know what's satisfying? Knowing you received the early 🐦bird🐦 rate for FIRSTCON25. This rate expires on Monday, Feb 10th...HURRY! 🔗 go.first.org/hvJUY

The Hacker News (@thehackersnews) 's Twitter Profile Photo

🛑 WARNING: CVE-2025-20393 is rated 10.0, with no patch available. Cisco confirmed active exploitation of an AsyncOS zero-day by a China-linked APT. The flaw allows root-level command execution on affected email security appliances and enables attackers to establish

🛑 WARNING: CVE-2025-20393 is rated 10.0, with no patch available.

Cisco confirmed active exploitation of an AsyncOS zero-day by a China-linked APT.

The flaw allows root-level command execution on affected email security appliances and enables attackers to establish