Lmst

TurkuSec Disarray 2025 Call for Papers is open!
We are looking for talks in cyber-security, product security, offense and defense both. If your talk is about hacking a ship you get bonus points of course, but the conference itself is not maritime focused. Just happens on a cruise (and stays on the cruise if you like).
https://forms.gle/ysxEvPWuK2oVdvzr5

@turkukaupunki welcome to the Mastodon! Very cool of you! <3

Our last speaker is our very own Ismayil!

@joohoi took a selfie with us using super "advanced" camera, and of course it uses floppy disk as memory card xD

Our second speaker is our very own @joohoi with the talk “Fantastic Features Used by Few”

Linus Nyman is on stage talking about his new book Good Hackers!

TurkuSec ry boosted:

@hamatti Happy birthday to the
@turkusec event. 😊

TurkuSec ry boosted:

I can't think of a better way to kickstart the weekend than @turkusec 9th birthday meetup.

#TurkuSec #TurkuDev

A classroom full of people with Päivi speaking in front of the room

Our second speaker Päivi Mattila with "RDI activities in TUAS Cyber and Hybrid Resilience research group” talk!

We are starting our 9th Birthday meetup! First up is our sponsors - Olemisen Balansia ry!

(•_•)
<) )╯TURKU
/ \

(•_•)
( (> SEC
/ \

(•_•)
<) )╯DAY!!!1!
/ \

TurkuSec Ninth Birthday Meetup!

Date: 23.05.2025 (Friday)
Time: 17:40 – Onwards

"RDI activities in TUAS Cyber and Hybrid Resilience research group" by Päivi Mattila

"Fantastic Features Used by Few” by Joona Hoikkala

"Application of Large Language Models in Cybersecurity: A Systematic Attempt at Sounding Smarter than the Hackers" by Mystery Speaker

MEETUP REGISTRATION: https://events.turkusec.fi/9thBirthday/

(•_•)
<) )╯TURKU
/ \

(•_•)
( (> SEC
/ \

(•_•)
<) )╯DAY!!!1!
/ \

Welcome to the TurkuSec April meetup!

The event is powered and hosted by Lyyti!

Date: 24.04.2025 (Thursday)
Time: 17:45 – Onwards

"Safeguarding Your Critical: Trust in Your Supply Chains in the Era of De-Risking" by Petteri Nakamura

"A brief confusing look at SPF, DKIM and DMARC" by Shamil Alifov

More info: https://turkusec.fi/turkusec-april-meetup-lyyti/

#TurkuSec #Meetup #CitySec #Turku #Åbo #Finland

TurkuSec ry boosted:

Finnish Post has decided to start using your data for service planning and development. What for? Well of course for "personalized content and targeted advertising". This is opt-in by default.

"My data may be used for service planning and development, as well as for delivering personalized content and targeted advertising using profiling.
Profiling refers to automated processing of personal data where the information is used to evaluate personal characteristics, such as interests or service usage. The purpose of profiling is to enhance the customer experience and ensure that the customer receives relevant and interesting recommendations and services."

Notably for some reason this is separate from "Marketing consents" and is enabled by default.

You can turn off this option at: https://my.account.posti.fi/settings

#profiling #privacy #gdpr #enshittification

Posti "Profiling" setting, enabled by default.

TurkuSec ry boosted:

@jerry Everyone knows the hottest CVE meltdown memes are cooked up right here on Fedi. Gotta get'm while they're hot!

TurkuSec ry boosted:

Hello everyone! I’m proud and honored to introduce my very first academic white paper through SANS, which discusses the nuances and needs for planning for #ransomware in OT / industrial networks. https://www.sans.org/mlp/ics-ot-malware-and-ransomware/?utm_medium=Email&utm_source=HL-Global&utm_content=1468901_Simple_Framework_Whp_image&utm_campaign=ICS_OT_Malware_Ransomware_2025&utm_rdetail=Global&utm_goal=Leads&utm_type=Global_Campaign&is=be394332d8ab70db9bb29b280bd08c2899042252f80b48f1e01cd5b75d22b1c1

TurkuSec ry boosted:

Pretty cool explainer on why MITRE's CVE is so central to the the process of how a vulnerability disclosure becomes official, and widely recognized. From James Berthoty on LinkedIn @jamesberthoty

$I'm just a Vuln: How a disclosure becomes a finding 1. Vulnerability Discovered and disclosed optionel CVE Numbering Authority PPTs Funded by Corporations Themselves. Pr 1. Validotes the issue and assigns a CVE << __ 2. Usually a Title & Effected Product Only See - Raa EA 2. MITRE FA\ Adobe] B® Microsof{ Google ~~~ Funded by Department of Homeland Security, CISA, amount not public 1. Publishes to CVE.org C/E <----This could go away debian aff pa \ = Cisco a (This might be & GroMuB Security Advisory For example, which may or may not become a CVE) pes N ae 3. WD AN y3 _ Funded by Department of Commerce, NIST, $2.5 Al A 3rd Party Vuln Enrichment Vendors = — -°F%°7 ©" 1 Pulls VES from CVE.org ~ R 2. Adds: CVSS, CPE, CWE, Config & Mitigation mre N Vulncheck [IS J Lawful Albatross a] pr AN Te Vv oz 2 TOA Security Scammers ~~ 4. CISA issues KEV when relevant Funded by DHS, $3 Billion % [i snyk (Many security tools have internal numbering systems for their discovered vulnerabilities that might not get a CVE)$

TurkuSec ry boosted:

🐍🇫🇮 Hei maailma! Hello world!

🐍🇫🇮 We're back!

🐍🇫🇮 The first PyCon Finland in nearly 10 years will take place on Friday, 17th October in Jyväskylä! It will be a special one-day event in cooperation with @ploneconf

🐍🇫🇮 The call for proposals and ticket sales are open now!

🐍🇫🇮 Please boost and follow!

https://pyconfi.ploneconf.org
https://www.linkedin.com/company/pyconfi
https://fosstodon.org/@HelPy/114342773288376107

#Python #Finland #PyCon #PyConFI #PyConFinland #Plone #PloneConf

TurkuSec ry boosted:

CfP for BalCCon2k25 is open until 1st July! Let's make this year event unforgettable!
https://cfp.balccon.org/balccon2k25-2025/cfp

Client Info