Everything in this image that doesn't have spikes coming off of it is a galaxy. Every. Single. Dot.

In an effort to interrupt international money laundering and cybercrime operations, indictments were unsealed against two cybercriminals. Sergey Sergeevich Ivanov allegedly operated multiple international payment services to aid cybercriminals. secretservice.gov/sites/default/…

Protect desktop, documents, and pictures folders with unique keys per user account, ensuring files are only readable during active sessions—even on shared or multi-user devices. Check out Windows 11, version 24H2's personal data encryption. #Windows1124H2 youtu.be/lgCt1Z2Da_E

Sweet! The 2024 SANS Institute #HolidayHack Challenge reg page just dropped this morn! Lotsa new game dynamics this year & fun hints in the artwork! Register to be notified when this year's free holiday-themed range launches Nov 11, 2024. Check. It. Out! sans.org/mlp/holiday-ha…

Introducing Cloudflare’s free security.txt generator, empowering all users to easily create and manage their security.txt files. cfl.re/4eK1sAq

What we know: DDOS attack–fended off for now; defacement of our website via JS library; breach of usernames/email/salted-encrypted passwords. What we’ve done: Disabled the JS library, scrubbing systems, upgrading security. Will share more as we know it.

The irony is strong with this one…

Bank of Ireland customers targeted in ‘online chat’ scam independent.ie/business/bank-…

If you find Defender for Endpoint missing in 24H2, let Jason Sandys know OEMs were notified a long time ago, and shocking, they haven't fixed it This is why Intune and other solutions should automatically remediate as part of onboarding Don't trust OEMs..

Fortinet svakheten aktivt utnyttet siden juni av UNC5820. Nå fått CVE-nummeret CVE-2024-47575. Fortinet har publisert sikkerhetsoppdatering for å patche sårbarheten. telenorsoc-news.blogspot.com/2024/10/daglig…

Dear candidates in the US election, please communicate your values, your goals and your party programs. #rotw

Internet Archive has not been archiving since 10/8. Google Cache has stopped caching. The Alexa service - the one that used to rank web traffic (not the Amazon virtual assistant) is gone. The ability of censors to memory-hole the internet is growing. brownstone.org/articles/they-…

Acting as digital detectives, we uncovered the sale of a bypass tool on underground forums. This investigation began when a bad actor tried to test an EDR bypass tool. Read what we learned from there: bit.ly/4eb8nlh

#MustRead! And please, don’t think this is not relevant because you run with a different vendor. Physical access is King, they next turn their findings into seemingly random attacks, which you may ignore as noise, before activating targeted mode. #SupplyChain

my work calendar completely packed this week

The ‘Windows Server 2025 Security Book’ is also available at techcommunity.microsoft.com/t5/security-co… Two things that caught my eye: ▪️Credential Guard is now enabled by default on servers. ▪️Delegated Managed Service Account (DMSA) is now introduced.

Did you vote in America yesterday? If so, you just got doxed This site takes voter records that can be hard to source and puts them all into one place. Name, address, voter history, for free. It turns voting into a privacy and security risk 404media.co/voted-in-ameri…

In case you missed it, back in October we published a brand new guide for deploying phishing-resistant passwordless in your organization with Entra ID: aka.ms/PasswordlessGu… ! This is the outcome of a ton of effort across Microsoft, please use it to begin your journey!