cybersecurity

Oh, your service logged me out for my security? Great, I'll just open up the vault that contains my private keys so that I can open up the password manager with the master password of my other vault, which has the credentials I'll use to log back into my account. And then to finish the login process you'll send me a one-time password in clear text through SMS or email because those are the only options you offer for a "second factor". I feel much more secure now thank you.

(For clarity this is a sardonic post).

#InfoSec #cybersecurity #security #web #dev #tech

Fuck.

https://www.csoonline.com/article/3963190/cve-program-faces-swift-end-after-dhs-fails-to-renew-contract-leaving-security-flaw-tracking-in-limbo.html

#CyberSecurity

A ProPublica investigation revealed how a little-known Microsoft program could leave some of the U.S. government’s most sensitive data vulnerable to hacking from its leading cyber adversary.

Here are the biggest takeaways from our reporting.
https://www.propublica.org/article/microsoft-digital-escort-china-government-data-takeaways?utm_source=mastodon&utm_medium=social&utm_campaign=mastodon-post

#News #Tech #Technology #Microsoft #Cybersecurity #Cybercrime #Government

Meine Datenschutz und Privatsphäre Übersicht 2025, für alle 🔐

als PDF Datei:

https://cryptpad.digitalcourage.de/file/#/2/file/8U95QSABpeqI+C-LJREL8I2l/

#DSGVO #TDDDG #unplugtrump
#Datenschutz #Privatsphäre #sicherheit #Verschlüsselung #Adguard
#encryption #WEtell #SoloKey #NitroKey #Email #Cybersecurity #Pixelfed #Massenűberwachung #Leta
#Google #Metadaten #WhatsApp #Threema #Cryptpad #Signal
#Hateaid #Cyberstalking #Messenger #Browser #Youtube #NewPipe #Chatkontrolle #nichtszuverbergen #ÜberwachungsKapitalismus #Microsoft #Apple #Windows10 #Linux #Matrix #Mastodon #Friendica #Fediverse #Mastodir #Loops #2FA #Ransomware #Foss #VeraCrypt #HateAid #Coreboot #Volksverpetzer #Netzpolitik #endof10 #OpenAndroidInstaller #Nobara
#Digitalisierung #FragdenStaat #Shiftphone  #OpenSource #GrapheneOS #CCC #Mail #Mullvad #PGP #GnuPG #DNS #Gaming #linuxgaming #Lutris #Protondb #eOS #Enshittification
#Bloatware #TPM #Murena  #LiberaPay #GnuTaler #Taler #PreppingforFuture
#FediLZ #BlueLZ #InstaLZ #ThreatModel
#FLOSS #UEFI #Medienkompetenz

Microsoft says it will no longer use China-based engineers to support the Pentagon. But ProPublica found that the tech giant has relied on its global workforce for years to support other federal clients, including the Justice Department.
https://www.propublica.org/article/microsoft-tech-support-government-cybersecurity-china-doj-treasury?utm_source=mastodon&utm_medium=social&utm_campaign=mastodon-post

#News #Technology #Tech #Microsoft #Pentagon #Cybersecurity #Defense #China

Do you like watching movies and/or documentaries about hackers and cyber security as much as I do?

Then I have something for you.
I have created a list of "Cyber-Security and Hacker related Documentaries". Anyone can use it, anyone can join in to contribute to it.

Go this way:
https://codeberg.org/phranck/Cyber-Security_and_Hacker_Documentaries

To let this list grow with more interesting documentaries every boost is highly appreciated.

#Film #Movie #Documentary #Hacker #CyberSecurity
@filmeundserien

Meine Datenschutz und Privatsphäre Übersicht 2025, für alle 🔐

als PDF Datei:

https://cryptpad.digitalcourage.de/file/#/2/file/8U95QSABpeqI+C-LJREL8I2l/

#DSGVO #TDDDG #unplugtrump
#Datenschutz #Privatsphäre #sicherheit #Verschlüsselung #Adguard
#encryption #WEtell #SoloKey #NitroKey #Email #Cybersecurity #Pixelfed #Massenűberwachung #Leta
#Google #Metadaten #WhatsApp #Threema #Cryptpad #Signal
#Hateaid #Cyberstalking #Messenger #Browser #Youtube #NewPipe #Chatkontrolle #nichtszuverbergen #ÜberwachungsKapitalismus #Microsoft #Apple #Windows10 #Linux #Matrix #Mastodon #Friendica #Fediverse #Mastodir #Loops #2FA #Ransomware #Foss #VeraCrypt #HateAid #Coreboot #Volksverpetzer #Netzpolitik #endof10 #OpenAndroidInstaller #Nobara
#Digitalisierung #FragdenStaat #Shiftphone  #OpenSource #GrapheneOS #CCC #Mail #Mullvad #PGP #GnuPG #DNS #Gaming #linuxgaming #Lutris #Protondb #CLOUDAct #Enshittification
#Bloatware #TPM #Murena  #LiberaPay #GnuTaler #Taler #PreppingforFuture
#FediLZ #BlueLZ #InstaLZ #ThreatModel
#FLOSS #UEFI #Medienkompetenz

#Microsoft Used China-Based Engineers to Support Product Recently Hacked by #China
==

Microsoft announced that Chinese state-sponsored hackers had exploited vulnerabilities in its popular #SharePoint software but didn’t mention that it has long used China-based engineers to maintain the product.

#News #Tech #Cybersecurity #Government #Safety #privacy

https://www.propublica.org/article/microsoft-sharepoint-hack-china-cybersecurity

Are you interested in a different kind of security conference?

Then take a look at the Open Security Conference (@OSCo). #osco25 takes place from October 2 to 5 in Rückersbach (Germany near Frankfurt) and registration is still open at https://opensecurityconference.org/.
(this is an English version of the original German thread https://infosec.exchange/@realn2s/114936419689473030)

Why?

The Open Security Conference aims to be diverse and inclusive. This also includes different levels of knowledge and experience.
It is therefore not only for security experts or for people who have (already) worked in the security sector for a long time,
but also for people who are interested in security or want to get into the field.

The #OpenSpace format not only enables expert presentations,
but also non-expert topics or questions as session topics. Sessions are not resticted to presentations, they can be interactive, collaborative, workshops or basically anything else.

Since topics do not have to be submitted months in advance,
but the agenda is created jointly by the participants, hot topics can also be covered.

The conference is non-commercial, i.e. the total costs are shared between the participants (including the organizers).
The costs include accommodation and meals in the conference hotel.

And yes, there are also sponsors who cover part of the costs.

But not everything is different.

There are great keynotes e.g. by @bkastl ("History repeating itself") and Mireia Cano ("Building an AppSec Program from Scratch").

#CyberSecurity #Security #InfoSec #AppSec #ProductSecurity #OTsecurity

Habt ihr Interesse an einer etwas anderen Sicherheitskonferenz?
#BoostWelcome

Dann schaut euch mal die #osco25 an. Sie findet vom 2-5 Oktober in Rückersbach statt und die Registrierung ist noch offen
https://opensecurityconference.org/

Warum?

Die @OSCo hat das Ziel divers und inklusiv zu sein. Das schließt auch unterschiedliche Wissens- und Erfahrungsstände mit ein. Sie ist also nicht nur für Sicherheitsexpert*innen oder für Menschen die schon lange im Sicherheitsbereich arbeiten.

Das #OpenSpace Format ermöglicht nicht nur Expert*inne-Präsentationen, sondern es können "Halbwissen"-Themen* oder auch einfach Fragen behandelt werden. Da Vorträge nicht Monate im Voraus eingereicht werden müssen sondern die Agenda von den Teilnehmenden gemeinsam erstellt wird, können auch brandaktuelle Themen behandelt werden.

Die Konferenz ist nicht-komerziell, sprich die Gesamtkosten werden zwischen den Teilnehmenden (inklusive Organisator*innen) aufgeteilt. Die Konsten enthalten die Übernachtung und Verpflegung im Tagungshotel.
Und ja, es gibt auch Sponsoren die Teile der Kosten übernehmen.

Es ist aber nicht alles anders. Es gibt auch Keynotes z.B. von @bkastl ("History repeating itself") und Mireia Cano ("Building an AppSec Program from Scratch")

Wenn es euch interessiert registriert euch unter https://register.opensecurityconference.org/

#Cybersicherhet #CyberSecurity