Jonas Hünig (@jonashrem) Twitter Tweets • TwiCopy

OpenMage Project

2 years ago

As it seems to be a good time to mention, also OpenMage is on the search for more financial support to give our maintainers more stability and support. opencollective.com/openmage

thumb_up_off_alt4

chat_bubble_outline0

repeat3

shareShare

Ich finde es normalerweise unangemessen, als Laie immerzu irgendwelche Gerichtsurteile zu kommentieren. In diesem Fall aber ist es anders. Die Details, die hier aus der Verhandlung berichtet werden, machen mich sprachlos. Ist unser Rechtsstaat noch intakt? zeit.de/2024/18/christ…

thumb_up_off_alt1,1K

chat_bubble_outline187

repeat179

shareShare

Luisa Neubauer

@luisamneubauer

2 years ago

Ja, wer es mal radikal oder bevormundend fand, dass man Gewalt gegen, sagen wir, Ehefrauen verbieten wollte, der findet es möglicherweise heute radikal, wenn man die gewaltvolle Zerstörung von sicheren Lebensgrundlagen an mancher Stelle verbieten will. Das ist politisch durchaus

thumb_up_off_alt2,2K

chat_bubble_outline420

repeat241

shareShare

UnionWatch / @[email protected]

@watch_union

2 years ago

Ja, das hat er sich verdient, der Maggus. Photos machen, fahrradfahren und dann wollte noch "Irgendjemand" mit ihm über seine politischen Entscheidungen sprechen. Jetzt muss Herr Markus Söder erst mal an sich denken. /PM

thumb_up_off_alt387

chat_bubble_outline29

repeat24

shareShare

Sansec

@sansecio

2 years ago

CosmicSting attack threatens 75% of Adobe Commerce stores. One week after the release of a critical security fix, just a quarter of all Adobe Commerce and Magento stores have been patched. sansec.io/research/cosmi…

thumb_up_off_alt33

chat_bubble_outline0

repeat22

shareShare

Daniel Sloof

@daniel_sloof

2 years ago

In worst case, this leads to remote code execution. If you haven't patched yet, now is the time. 🫡

thumb_up_off_alt8

chat_bubble_outline1

repeat3

shareShare

Randall Munroe

@xkcd

2 years ago

Electric vs Gas xkcd.com/2948

thumb_up_off_alt8,8K

chat_bubble_outline280

repeat814

shareShare

Daniel Sloof

@daniel_sloof

2 years ago

CosmicSting is actually worse than we initially thought, as it allows creation of API JWTs with full admin permissions. Article has been updated with a reference to the original research (spacewasp).

thumb_up_off_alt20

chat_bubble_outline0

repeat19

shareShare

Sansec

@sansecio

2 years ago

ICYMI: the formerly legit polyfill.io is now in Chinese hands and serving malware. eComscan will alert you to any Magento modules that embed polyfill.io. Some 110K+ sites are affected 😱 sansec.io/research/polyf…

thumb_up_off_alt68

chat_bubble_outline1

repeat60

shareShare

Sansec

@sansecio

2 years ago

After our Polyfill publication, someone launched a DDoS attack against our infra. We restored our primary services, but now the attack has shifted to our payment provider who has temporarily suspended us. x.com/sansecio/statu…

thumb_up_off_alt74

chat_bubble_outline2

repeat26

shareShare

Sansec

@sansecio

2 years ago

🚨 Critical Alert 🚨 Threat actors have began mass scanning for CosmicSting (CVE-2024-34102). Adobe released an isolated Magento security patch yesterday, which you should apply NOW if you somehow cannot upgrade. See article below H/t Hypernode! x.com/sansecio/statu…

thumb_up_off_alt23

chat_bubble_outline1

repeat12

shareShare

Daniel Sloof

@daniel_sloof

2 years ago

Since it allows for exfiltration of the encryption key, attackers can continue to generate JWTs even after you patch. Be sure to change it 👉 experienceleague.adobe.com/en/docs/commer…

thumb_up_off_alt7

chat_bubble_outline0

repeat3

shareShare

nixCraft 🐧

@nixcraft

2 years ago

Heads up: regreSSHion: Remote Unauthenticated Code Execution Vulnerability in OpenSSH server. Patch your server ASAP. blog.qualys.com/vulnerabilitie… also see my openssh security guide for more info cyberciti.biz/tips/linux-uni…

thumb_up_off_alt259

chat_bubble_outline6

repeat128

shareShare

Sansec

@sansecio

2 years ago

🚨 CosmicSting attacks have started hitting major stores, with 3 to 5 stores being hacked every hour. Merchants might still be at risk despite patching. We cover some additional mitigation steps 👉 sansec.io/research/cosmi…

thumb_up_off_alt11

chat_bubble_outline2

repeat6

shareShare

vermaden

@vermaden

2 years ago

We miss Dennis Ritchie ...

thumb_up_off_alt19,19K

chat_bubble_outline461

repeat2,2K

shareShare

Luisa Neubauer

@luisamneubauer

2 years ago

Hurricane #Helene zerstört gerade weite Teile North Carolinas, 400 Straßen sind unbefahrbar, Evakuierungen teils unmöglich, Angehörige können durch Stromausfälle nicht über Verstorbene informiert werden. Zeitgleich der UK: 2 Jahre Haft für Suppenwurf von Klimaaktivisten.

thumb_up_off_alt914

chat_bubble_outline1

repeat228

shareShare

Jonas Hünig

@jonashrem

a year ago

So, MC Donald's workers are doing "low level" work in your standpoint? Interesting ...

thumb_up_off_alt0

chat_bubble_outline0

repeat0

shareShare

Sansec

@sansecio

a year ago

3000 stores just got hit with the "statepulseapp[.]com" skimmer, injected by Group Laski. Sansec is the only vendor that recognises it: virustotal.com/gui/domain/sta…

thumb_up_off_alt15

chat_bubble_outline0

repeat5

shareShare

Neo Tokyo

@neo_tokyo_shop

a year ago

[#GIVEAWAY] Happy #Nikolaus 🎅Zur Feier des Tages verlosen wir dieses Snackpaket🥳🤤 Teilnahme: bis Montag um 12 Uhr! So geht’s: 1. Liken❤️& Retweeten✨ 2. falls noch nicht: Neo Tokyo folgen👍🏻 3. Kommentiert mit #NeoSnacks und sagt uns, wie lange ihr zum Aufessen braucht😂

thumb_up_off_alt252

chat_bubble_outline196

repeat178

shareShare

Jonas Hünig

OpenMage Project

Korinna Hennig

Luisa Neubauer

UnionWatch / @[email protected]

Sansec

Daniel Sloof

Randall Munroe

Daniel Sloof

Sansec

Sansec

Sansec

Daniel Sloof

nixCraft 🐧

Sansec

vermaden

Luisa Neubauer

Jonas Hünig

Sansec

Neo Tokyo