📨 Latest issue of my curated #cybersecurity and #infosec list of resources for week #13/2025 is out!

It includes the following and much more:

➝ DNA of 15 Million People for Sale in #23andMe Bankruptcy,

➝ #Trump administration accidentally texted a journalist its war plans,

➝ Critical Ingress #NGINX controller vulnerability allows RCE without authentication,

➝ #Cyberattack hits Ukraine's state railway,

➝ Troy Hunt's Mailchimp account was successfully phished,

➝ #OpenAI Offering $100K Bounties for Critical #Vulnerabilities,

➝ #Meta AI is now available in #WhatsApp for users in 41 European countries... and cannot be turned off

Subscribe to the #infosecMASHUP newsletter to have it piping hot in your inbox every week-end ⬇️

https://infosec-mashup.santolaria.net/p/infosec-mashup-13-2025

Just got a cold call email advertising training in “ChatGPT for Accountants”.

Folks, I just want to remind you all that “vibe accounting” is better known as “fraud” or “embezzlement”. Please plan accordingly.

#InfoSec
#InformationSecurity

An ok overview of security considerations & mitigating controls to protect privacy and reduce risk of harm when crossing the US border.

The author misses some utterly crucial details however.

1) When your encrypted device is on, it is in an *unlocked* state. Only by powering off such a device is it in an encrypted state. Further, MicroSD cards are often unencrypted. Check before you fly, and power off before the border.

2) (next post)

https://www.theguardian.com/technology/2025/mar/26/phone-search-privacy-us-border-immigration

#privacy #infosec

When your encryption is sober but your opsec is drunk https://www.nytimes.com/2025/03/24/us/politics/hegseth-classified-war-plans-group-chat.html

#infosec #opsec

December 2023: US District Attorney Jessica Aber indicts 4 Russians for war crimes in #Ukraine

September 2024: US District Attorney Jessica Aber indicts Russian cryptocurrency money launderer / cybercriminal #SergeyIvanov

November 2024: US District Attorney Jessica Aber accuses Virginia based companies of running "three different schemes to illegally transship sensitive American technology to Russia," including sending equipment to a Russian telecommunications company linked to the #Kremlin and Russia's notorious #FSB security agency.

March 2025: Former US District Attorney Jessica Aber found dead at age 43

More: https://www.newsweek.com/jessica-aber-death-2049234

#Putin #VladimirPutin #JessicaAber #Russia #UkraineWar #Virginia #Vapol #crime #alexandria #TrueCrime #uspol #eupol #eu #AsifRahman #infosec #ransomware #cybersecurity

The lack of sharing about spam campaigns is a little sad. I'd love to have a list of every IP/email used by nicole across the fediverse, and then we could send a report of a known threat actor to some of the SOCs (depending on which providers they use) to get their accounts shutdown in bulk.

Pig butchering isn't going to stop if you ignore it like it does with the script kiddies and discord ethugs.

#infosec

Virtue or Vice? A First Look at Paragon's Proliferating Spyware Operations

The report investigates Paragon Solutions, an Israeli spyware company founded in 2019 that sells a product called Graphite. Through infrastructure analysis, the researchers identified potential Paragon deployments in several countries. They also found evidence linking Paragon to the Canadian Ontario Provincial Police. Working with WhatsApp, they discovered and mitigated a Paragon zero-click exploit targeting civil society members. Forensic analysis of Android devices in Italy confirmed Paragon infections. The report also examines a potentially related iPhone spyware case. It highlights Paragon's targeting of individuals involved in migrant rescue operations in the Mediterranean, raising questions about the company's claims of only selling to customers respecting human rights. The findings challenge Paragon's marketing approach and demonstrate the ongoing risks of mercenary spyware abuse, even in democracies.

Pulse ID: 67db3e42358011c1a3975302
Pulse Link: https://otx.alienvault.com/pulse/67db3e42358011c1a3975302
Pulse Author: AlienVault
Created: 2025-03-19 21:59:30

Be advised, this data is unverified and should be considered preliminary. Always do further verification.

#Android #Canadian #CyberSecurity #InfoSec #Israel #Italy #OTX #OpenThreatExchange #RAT #RCE #SpyWare #WhatsApp #bot #AlienVault

Back on my boring post grind to document my learning.

New #Blog post going through a #TryHackMe challenge. This time detecting two different attack types with snort!

https://ligniform.blog/posts/snort-live-attacks/

💜 🌱

#InfoSec #Learning #CyberSecurity #BlueTeam #Hacking

“By firing skilled human workers & replacing them w/spicy autocomplete, Musk is assuming his final form as both…kind of boss who can be conned into replacing you w/a defective chatbot *&* as…fast-talking sales rep who cons your boss. Musk is transforming key government functions into high-speed error-generating machines whose human minders are only the payroll to take the fall for the coming tsunami of robot fuckups.”

https://pluralistic.net/2025/03/18/asbestos-in-the-walls/

#USpol #musk #elon #ai #DataEthics #infosec #safety

🔎#Google realizează cea mai mare achiziție din istoria sa. A încheiat un acord pentru preluarea start-up-ului 🇮🇱#Israel‎ian de 🕵🏻‍♂️#securitateCibernetică Wiz, în schimbul a 32 de miliarde 💵#USD.

🔗 https://biziday.ro/?p=313782

#Știri #InfoSec #SecuritateInformatică

Mastodon friends, I've heard a few suggestions of companies moving from US cloud providers to those based in the EU, due to risks with the Trump administration/Cloud Act, etc.

Has anyone come across any businesses that have made the leap recently? Feel free to DM or message on Signal, mattburgess.20

#infosec #privacy #cloud #security

New #Blog: My Scammer Girlfriend: Baiting A Romance Fraudster
Author: Ben Tasker

https://www.bentasker.co.uk/posts/blog/security/seducing-a-romance-scammer.html?utm_source=rss

#infosec #osint #scams #security

I met Lena at BSides London; she's an exceptional, very talented, enthusiastic and passionate human being

sadly, it wasn't valued in Japanese #InfoSec society, esp. when calling out sexual harassment & because of that Lena was ostracised. she deserves better than this

sharing her msg in hope someone in #Fediverse would be interested in hiring her outside of Japan. reposts appreciated

https://lambdamamba.com/index.html

#FediHired #GetFediHired #Malware #CyberSecurity #Job #JobSearch #Hiring #Security

After trying out #deltachat and #arcanechat, I've discovered the #webxdc app store. My Dad loves #Sudoku puzzles, and I was tempted to play some competitive Sudoku with him. What assurance is there that there are no sketchy apps in the webxdc app store? Can these apps break out of their little jail, and root my phone? What would the #infosec community say? There's somewhat of a thread on the "threat model"/security of webxdc here (but I think it still needs more scrutiny):
https://support.delta.chat/t/webxdc-threat-model/3018
#puzzle #puzzles #competitive #game #multiplayer

Israeli military creating ChatGPT-like tool using vast collection of Palestinian surveillance data https://www.theguardian.com/world/2025/mar/06/israel-military-ai-surveillance #israel #palestine #surveillance #ai #infosec

📣 Check out this blog about online child safety and cybersecurity ! 🛡️

https://www.pysec.online/blog

#blog #technology #security #onlinechildsafety #infosec

Reposting on new instance:

Journey to ⁨#FOSS⁩ (updated Mar 3)
🧵1/2

--Messages ➡️ Signal-FOSS
--Chrome ➡️ Fennec & Bitwarden
--Gmail ➡️ Thunderbird & TBA*
--Keep ➡️ Quillpad
--Drive/Dropbox ➡️ TBA/ProtonDrive**
--Photos/editor ➡️ Ente/Fossify Gallery
--Maps ➡️ Magic Earth**
--Contacts & calc ➡️ Fossify & yetCalc
--Camera ➡️ TBA*
--Translate ➡️ Translate You
--YT ➡️ NewPipe**
--Swiftkey ➡️ HeliBoard w/ Whisper
--Authy ➡️ Aegis
--GReaderPro ➡️ Capy Reader
--G Song ID ➡️ Audile

#Android #InfoSec

Erstmal "Android Safety Core" deinstalliert.

#InfoSec #Android #Google #Pixel

Concerned about Microsoft Windows 11 Recall? You should be.

Recall allows Microsoft’s Windows 11 Copilot+ devices to screenshot every action a person takes on their PC.

What can you do? Switching to Linux is the clear answer, but some don't know what distro to try.

DistroSea.com is a website that lets you run and test 60+ Linux distributions straight from your web browser.

Have fun!

Source: https://distrosea.com/

#Linux #Computer #Windows #DOS #OPSEC #InfoSec #Privacy #Surveillance

The US supports Israel full stop while they make software to spy on-

Damn it! I did it again!

Apple currently only able to detect Pegasus spyware in half of infected iPhones

https://9to5mac.com/2025/02/20/apple-currently-only-able-to-detect-pegasus-spyware-in-half-of-infected-iphones/

#Apple #Pegasus #NSOGroup #Israel #iPhone #InfoSec #Tech

I'm loving the infosec community and those in cybersecurity fields taking the mantle of Creed working in the dark to serve the light for those who blindly follow the truth and those limited by morality or law.

Thank you.

#infosec #cybersecurity

I wonder when more people in the #press will call out Mark's #segregationstrategy in the largest #malware software pusher on #SocialMedia & how 5/6th of the world isn't on #Meta 👀👀

Perhaps they could ask about the use of #GammaGroup's #FinFisher #FinSpy #Finsky software used for targeting users at around a 250k run rate since 2015 & how that's a key user acquisition strategy software component wise but is never mentioned for some reason in the #press as a key component of ' non-organic growth ' but basic racketeering ( #RICO ) ¯\_(ツ)_/¯

#infosec #KiwiFarmsClone site #Meta #FacebookGroups #StalkerForums #StateSponsoredMalware use cases

This is *the most malicious, brutal* malicious compliance I've seen in quite some time, possibly ever, and I am HERE FOR IT. Thank you, @jwz

https://www.jwz.org/xscreensaver/google.html

#privacy #security #infosec #Android #screensaver

On Sunday, WaPo reported that #DOGE is seeking access to a heavily guarded system at the #IRS w/detailed #financial #information about every #taxpayer, #business & #nonprofit in the country, & #ElonMusk’s associates have also sought access to sensitive information at the #Labor Dept.

#law #privacy #Trump #InfoSec #PersonalFinance

#ElonMusk’s associates already sought access to records that are typically closely held across the federal #government, prompting disputes w/senior officials across numerous #FederalAgencies. The highest-ranking civil servant at the #Treasury Dept recently resigned after refusing to grant #DOGE access to the Bureau of the Fiscal Service, which manages >$5R in annual payments.

#law #privacy #Trump #InfoSec #PersonalFinance

The #SocialSecurity Administration is responsible for managing #pension payments for >70 million American #seniors & manages significant troves of personal #data, including those related to Americans’ work & pay history, & where they live. It was not immediately clear precisely which data #ElonMusk associates wanted or the exact circumstances leading to King’s departure.

#law #privacy #Trump #InfoSec #PersonalFinance

In selecting Dudek, #Trump bypassed dozens of other senior executives who sat higher in the agency’s leadership hierarchy, touching off alarm in & around the agency, which has already faced years of budget & staffing difficulties.

“At this rate, they will break it. And they will break it fast, & there will be an interruption of #benefits,” said Martin O’Malley, the #SocialSecurity commissioner under the Biden admin & a fmr Maryland governor.

#law #PersonalFinance #privacy #ElonMusk #InfoSec

#Trump appointed Leland Dudek, a manager in charge of #SocialSecurity’s anti-fraud office, as acting commissioner while Frank Bisignano, Trump’s nom for permanent commissioner, is vetted by the Senate, acc/to 3 individuals…. A public announcement is expected this week. Dudek had posted positive remarks on #socialmedia about #DOGE’s efforts to cut costs and search for fraud in federal agencies, acc/to 2 of the individuals. [that’s all it takes in this admin💨🍑]

#law #privacy #ElonMusk #InfoSec

The acting commissioner of the #SocialSecurity Administration left her job this weekend after a clash with billionaire #ElonMusk’s US #DOGE Service over its attempts to access sensitive government records, 3 people familiar with her departure said Monday.

Michelle King, who spent several decades at the agency before being named its acting commissioner last month, left her position Sunday after the disagreement, the people said.

#law #privacy #Trump #InfoSec

Top #SocialSecurity official exits after clash with #Musk’s #DOGE over #data

Yet another top career staffer is leaving the administration amid a disagreement over a request by #ElonMusk’s team for sensitive government #information.

#law #privacy #Trump #InfoSec
https://www.washingtonpost.com/politics/2025/02/17/doge-social-security-musk/

If you know of or are involved with an organization that helps people in a way that the #TrumpAdministration doesn't approve of, and the org is worried about continuing to do their work while protecting their employees, volunteers, and clients, I am happy to meet for free with the org to work through with them what their threat model is and how they can improve their security posture. They can reach out to me on Signal at jik.87. Please for reach.
#politics #USPol #resist #infosec

Before I was fired tonight, I was in charge of information security for VA.gov, which has millions of users per month and stores and processes huge amounts of veterans' personal information. I've been told by people I've worked with that I'm the best at what I do of anyone they've ever worked with. Now there will be _no one_ in charge of information security for VA.gov.
Does this seem like improving government efficiency?
#politics #USPol #DOGE #USDS #VA #infosec
2/2

The Shadowserver Foundation is warning of an alarming surge in brute force login attacks targeting web logins for multiple network devices.

#CyberSecurity #cyberattacks #logins #Networking #infosec

https://cnews.link/over-2-million-ips-attacking-edge-network-devices-1/

Calling #infosec and security-peeps:
We need people to test (also trash^^) a prototype (website + back-end) we're working on & to open/submit issues.

A central index of archives, with metadata about who archived what, when, to be disseminated widely alongside torrent files.

Please contact me on Matrix or Signal:
Matrix: @schoeneh:matrix.org
Signal: upon request via DM

Please boost and share! 🚀🔁
#SafeguardingResearch @SafeguardingResearch

Auf Reddit gerade eine Nachricht, dass es eine große Lebensmittelkette mit einem Ransomware-Angriff zerrissen hat. Es erfolgte auch schon so lange, dass Backups nicht "erreichbar" sind.

Gerade mal die Kassensysteme funktionieren wohl.

Wer mag das wohl sein …

Unabhängig davon:

Habt ein Incident Management. Habt einen Manager dafür. Spielt Szenarien durch (Testen, Testen, Testen). Macht Backups, die offline gesichert werden. Monitored eure Systeme.

#InfoSec #Ransomeware

So if we downloaded apps from F-Droid (which it turns out is, um, not entirely reliable) we need to re-download them from Aurora, I assume? Is that how it works?

#Android #Fdroid #InfoSec

Even with end-to-end encryption, maintain information security. Zero day vulnerabilities may still allow back-door access to communication. Do not write anything in email or text msgs that would be incriminating. (4/x)

#infosec #OperationRubicon

https://www.pcmag.com/how-to/what-are-zero-day-exploits-and-attacks

Switch your text communications to an end-to-end encrypted messaging app (such as Signal) ensuring protection of your messages. Do it now. (3/x)

https://signal.org/

#Resistance #Infosec