@adulau the cynic in me assumes it means "fixed without anyone noticing"

Great talk from @adulau on pivots at #FIRSTCTI25

Pointing out that many TOR services have google analytics or GTM trackers

category:onionscan -exists:app.http.tracker -since:3M

🤦‍♂️

🇫🇷 Ecritel (ecritel.fr) a été victime d'une cyberattaque autour du 08 décembre 2024.

L'entreprise de services numériques française Ecritel a été victime d'une cyberattaque par le groupe de ransomware Hunters International, qui revendique le vol de 270 Go de données. Selon Ecritel, l'attaque a été détectée et arrêtée rapidement, sans impact sur la continuité de l'activité, et seul un serveur interne de documents de travail a été compromis. Hunters International est une franchise de ransomware liée à Hive, qui a été surprise en train de recycler des données issues de cyberattaques précédemment conduites sous bannière Hive.

👉 https://www.lemagit.fr/actualites/366617337/Ransomware-Ecritel-victime-dune-cyberattaque-impliquant-Hunters-International

@GossiTheDog Have you heard about a new Forti Manager vulnerability ? There's no Fortiguard assigned , but like always, they're deploying update with short deadline.

Today, we have opened formal proceedings against TikTok for a suspected breach of the Digital Services Act.

Following serious indications that foreign actors interfered by using TikTok in the Romanian presidential elections, we are now thoroughly investigating whether TikTok has violated the DSA by failing to tackle such risks.

We must protect our democracies from any foreign interference.

More: https://europa.eu/!w7DbvY

#EU #DSA

@nixCraft or if everyone dies

Hi everyone at @hack_lu #hacklu2024 -> I picked up #CovidIsNotOver at the conference. I hope you didn’t, but please test.

Mastodon is financed by crowdfunding instead of venture capital not because we don't know that venture capital exists, not because we don't have bills to pay, and not because venture capital isn't willing to give money to new social media platforms. VCs don't want a sustainable business, they want a big exit. Every VC-backed business is on a timer to deliver or die.

So I got to do a talk at #hacklu2024 https://youtu.be/wv0syhH2e1k
Thanks @hack_lu for the opportunity and your trust 🙏

Very interesting talk by @jamesatack from #onyphe at #hacklu2024 on the october 2023 compromise of cisco XE routers. This campaign did not receive enough attention...

There is some good quality content over there ! (Both Onyphe and hack.lu).

At @hack_lu @jamesatack is profiling the threat actor behind the IOS XE compromise campaign that’s been going on the last year or so #hacklu2024

Hello! This is an automatic account, which checks every 10 minutes or so to see if there has been a lifeboat launch by the RNLI, and if there has, posts the location and time of the launch.

https://rnli.org/what-we-do/lifeboats-and-stations/latest-lifeboat-launches

I know a lot of people were very fond of the equivalent bot on twitter/X, so I made this one for you to follow and not miss out.

Please boost to spread the word!

Always consider making a donation to the RNLI if you can -
https://rnli.org/support-us/give-money/donate

Btw do I know anyone who’d be interested to help organizing a #bsidesluxembourg for 2025? LF volunteers and co-organizers. #BSIDES

Please boost for reach

💥 Vous aimez la CVE-2024-47575 qui affecte FortiManager de #Fortinet ? Vous n'êtes pas seul ! Selon les données de ONYPHE, vous pouvez ouvrir un club et commander polos et casquettes : vous êtes près de 495 000 dans le 🌍 https://www.lemagit.fr/actualites/366613950/Fortinet-passage-a-la-case-patch-pour-les-utilisateurs-de-FortiManager

FortiNet have now gone public about FortiJump, aka CVE-2024-47575 https://fortiguard.fortinet.com/psirt/FG-IR-24-423

Not in the advisory but exploitation stems to at least September, and it's being used to enter downstream networks.

#FortiJump

@claushoumann @hack_lu bitwarden obvs

@adel great talk, thanks 🙏

@claushoumann All video (when the speaker allows the video to be public) is available at the following location: https://administraitor.video/edition/Hack.lu/2024 all videos are recorded by the Master Cooper (who will be soon in the fediverse ;-).

@resingm

#video #hacklu2024 #hacklu

@GossiTheDog while seeming to spend not insignificant engineering resources on obfuscating firmware with no meaningful security benefit for customers

@SwiftOnSecurity was it PAC behaviour?