Tesla Cybertruck Abandoned After it Loses Control and Touches Dirt https://www.flyingpenguin.com/?p=71381 #Security

Watching the second to last season of SVU (wifey loves it) and the cops just got info from being in a Discord server. Realistic. The FBI are all over Discord too. Always keep that in mind. Say nothing sensitive there. Discord servers are NOT secure, the authorities can always easily get in, and they often do.

U.S. CISA adds Fortinet FortiWeb flaw to its Known Exploited Vulnerabilities catalog – Source: securityaffairs.com https://ciso2ciso.com/u-s-cisa-adds-fortinet-fortiweb-flaw-to-its-known-exploited-vulnerabilities-catalog-source-securityaffairs-com/ #KnownExploitedVulnerabilitiesCatalog #rssfeedpostgeneratorecho #ITInformationSecurity #SecurityAffairscom #CyberSecurityNews #PierluigiPaganini #FortinetFortiWeb #SecurityAffairs #SecurityAffairs #BreakingNews #SecurityNews #hackingnews #Security

The Palantir Commissar’s Failed U.S. Army Coup https://www.flyingpenguin.com/?p=71372 #Security #History

Kritische Kwetsbaarheid in SharePoint Actief Gebruikt
Een kritieke zero-day kwetsbaarheid in Microsoft SharePoint, geregistreerd als CVE-2025-53770, wordt actief uitgebuit sinds 18 juli, zonder beschikbare patch en met minstens 85 wereldwijd aangetas...

Lees verder op: https://koelman.it/project/nieuwe-kwetsbaarheid-in-microsoft-sharepoint-misbruikt-voor-aanvallen-nog-geen-patch-beschikbaar/

I absolutely hate web services that only offer magic link login through Gmail and don't let me set up my own 2FA. It's surprising how many just take the easy way out and do this.

Jemand die Türklingel bei Amazon gekauft?
Man hat ja nichts zu verbergen...

https://www.heise.de/news/USA-Videos-von-Ring-Tuerkameras-landen-bald-wieder-bei-der-Polizei-10493880.html

SquidLoader Malware Campaign Hits Hong Kong Financial Firms – Source:hackread.com https://ciso2ciso.com/squidloader-malware-campaign-hits-hong-kong-financial-firms-sourcehackread-com/ #1CyberSecurityNewsPost #CyberSecurityNews #cybersecurity #CyberAttack #SquidLoader #VirusTotal #Hackread #HongKong #security #malware #Trellix

If you use #AuroraStore instead of PlayStore you can find out permissions and tracker info.

I find that apps that appeal to the #EcoConscious and poor are laden with these #DataSwallowers.

#FlashFood has 39 permissions (including messages) and 12 trackers.

#Security
#Tracking
#Environmentalists

Phones are cow tags.

High effort #alttext

#Mastodon is an open-source and decentralized social network that has been growing in popularity for the past few years.
While most #socialmedia rely on commercial models harvesting users' data to sell to advertisers, Mastodon offers a human-centric alternative that doesn't seek profits from your data and attention. This means better social connections, better controls, and better #privacy.
Mastodon doesn't use your data to make money.
#fediverse #security
https://www.privacyguides.org/articles/2025/07/15/mastodon-privacy-and-security/#choosing-a-mastodon-instance

Microsoft SharePoint zero-day exploited in RCE attacks, no patch available https://www.bleepingcomputer.com/news/microsoft/microsoft-sharepoint-zero-day-exploited-in-rce-attacks-no-patch-available/ #Microsoft #Security

HPE warns of hardcoded passwords in Aruba access points https://www.bleepingcomputer.com/news/security/hpe-warns-of-hardcoded-passwords-in-aruba-access-points/ #Security

Microsoft SharePoint zero-day exploited in RCE attacks, no patch available - A critical zero-day vulnerability in Microsoft SharePoint, tracked as CVE-2025-53770, has... https://www.bleepingcomputer.com/news/microsoft/microsoft-sharepoint-zero-day-exploited-in-rce-attacks-no-patch-available/ #microsoft #security

HPE warns of hardcoded passwords in Aruba access points - Hewlett-Packard Enterprise (HPE) is warning of hardcoded credentials in Aruba Instant On ... https://www.bleepingcomputer.com/news/security/hpe-warns-of-hardcoded-passwords-in-aruba-access-points/ #security

System Security (ThinkPad T14s Gen4 AMD Ryzen)

- Untainted Kernel in Lockdown mode
- Secure boot active with modern signature
- All modern security features active
- Full-Disk-Encryption with key on physical SmartCard from @nitrokey)

(With modern UEFI CA, because of the upcoming key replacement: https://burningboard.net/@Larvitz/114884582215696742)

For privacy and security, think twice before granting AI access to your personal data

#privacy #security #AI

https://techcrunch.com/2025/07/19/for-privacy-and-security-think-twice-before-granting-ai-access-to-your-personal-data/

Mashable: ICE just got access to 79 million Americans’ Medicaid data. “In documents obtained exclusively by the Associated Press, the Department of Homeland Security (DHS) and the Centers for Medicare and Medicaid Services (CMS) agreed to provide demographic and location data to Immigration and Customs Enforcement (ICE) officials, including names, addresses, and ethnicities, in order to more […]

https://rbfirehose.com/2025/07/20/mashable-ice-just-got-access-to-79-million-americans-medicaid-data/

#epa #patientenakte #elektronischepatientenakte #gesundheit #edv #computer #pc #laptop #datenschutz #medizin #gesundheitsdaten #hacker #it #security #itsecurity #emojis #smileys #senioren #nutzer #user #krankenkassen #gematik #sicherheitslücken #datenleck #gesundheitsdatenraum #cartoon #karikatur #politik #krankenversicherte #gkv
© https://pfohlmann.de/

350M Cars, 1B Devices Exposed to 1-Click Bluetooth RCE

Four vulnerabilities in a popular Bluetooth implementation can be chained together to enable remote code execution (RCE) in untold millions of vehicles and miscellaneous devices.

#bluetooth #BlueSDK #PerfektBlue #automotive #auto #cars #security #cybersecurity #hackers #hacking

https://www.darkreading.com/vulnerabilities-threats/350m-cars-1b-devices-1-click-bluetooth-rce

Rarely is anyone thanked for the work they did to prevent the disaster that didn't happen.

— Mikko Hypponen