#Tag · Open Science

« Recently, security researcher Dirk-Jan Mollema disclosed CVE-2025–55241, a vulnerability so catastrophic that it reads like fiction : a single token, obtained from any test tenant, could have granted complete administrative control over every Microsoft Entra ID (Azure AD) tenant in the world. Every. Single. One. »

› https://tide.org/blog/god-mode-vulnerability-microsoft-authorityless-security

#Microsoft #Flaw #InfoSec #CyberSecurity #CVE #Azure #Cloud

Tide Foundation

The God Mode Vulnerability That Should Kill "Trust Microsoft"

How CVE-2025-55241 exposed a catastrophic flaw affecting every Microsoft tenant worldwide, and why authorityless security is the only path forward.

DansLeRuSH ᴱᶰ

@danslerush@floss.social · yesterday

› https://tide.org/blog/god-mode-vulnerability-microsoft-authorityless-security

#Microsoft #Flaw #InfoSec #CyberSecurity #CVE #Azure #Cloud

Tide Foundation

The God Mode Vulnerability That Should Kill "Trust Microsoft"

How CVE-2025-55241 exposed a catastrophic flaw affecting every Microsoft tenant worldwide, and why authorityless security is the only path forward.

Lazarou Monkey Terror 🚀💙🌈 boosted

Ryan Daws 🤓

@gadgetry@techhub.social · 6 days ago

BritCard: The real obstacle for UK digital ID is a national trust deficit https://www.telecomstechnews.com/news/britcard-real-obstacle-uk-digital-id-national-trust-deficit/ #britcard #digitalid #infosec #privacy #uk #politics #government #tech #news #technology

Telecoms Tech News

BritCard: The real obstacle for UK digital ID is a national trust deficit

We've been hearing whispers about a national digital ID from the UK Government for years, and now it has a name: 'BritCard'.

Lazarou Monkey Terror 🚀💙🌈 boosted

Ian Campbell

@neurovagrant@masto.deoan.org · 6 days ago

ICYMI, quick reminder that @DomainTools Investigations published a comprehensive writeup on SALT TYPHOON yesterday.

I'm particularly proud of it, and we're getting really positive feedback on it.

#threatintel #infosec #cybersecurity

https://dti.domaintools.com/inside-salt-typhoon-chinas-state-corporate-advanced-persistent-threat/

DomainTools Investigations | DTI

Inside Salt Typhoon: China’s State-Corporate Advanced Persistent Threat - DomainTools Investigations | DTI

Salt Typhoon is a Chinese state-sponsored cyber threat group aligned with the Ministry of State Security (MSS), specializing in long-term espionage operations targeting global telecommunications infrastructure. Active since at least 2019, Salt Typhoon has demonstrated advanced capabilities in exploiting network edge devices, establishing deep persistence, and harvesting sensitive communications metadata, VoIP configurations, lawful intercept data, and subscriber profiles from telecom providers and adjacent critical infrastructure sectors.

Lazarou Monkey Terror 🚀💙🌈

@Lazarou@mastodon.social · 6 days ago

Mandate Digital ID for everyone, what could go wrong?

https://www.theguardian.com/technology/2025/sep/26/kido-nursery-hackers-radiant-threaten-publish-children-profiles

#Infosec #UKPOL #UKPOLITICS #DigitalID #KidoNurseryHack

Ian Campbell

@neurovagrant@masto.deoan.org · 6 days ago

ICYMI, quick reminder that @DomainTools Investigations published a comprehensive writeup on SALT TYPHOON yesterday.

I'm particularly proud of it, and we're getting really positive feedback on it.

#threatintel #infosec #cybersecurity

https://dti.domaintools.com/inside-salt-typhoon-chinas-state-corporate-advanced-persistent-threat/

DomainTools Investigations | DTI

Inside Salt Typhoon: China’s State-Corporate Advanced Persistent Threat - DomainTools Investigations | DTI

Lazarou Monkey Terror 🚀💙🌈

@Lazarou@mastodon.social · 6 days ago

The British Public's reaction to Keir Starmer's 'Big Idea'....DigitalID

When I looked yesterday it was at 400,000 signatures....

#DigtialID #KeirStarmer #Starmer #UKPOL #UKPOLITICS #Privacy #Technology

Petition
Do not introduce Digital ID cards
We demand that the UK Government immediately commits to not
introducing a digital ID cards. There are reports that this is being looked at.
» More details

Sign this petition
1 ,007,390 signatures
I
Show on a map 100,000 — Petition Do not introduce Digital ID cards We demand that the UK Government immediately commits to not introducing a digital ID cards. There are reports that this is being looked at. » More details Sign this petition 1 ,007,390 signatures I Show on a map 100,000

Lazarou Monkey Terror 🚀💙🌈

@Lazarou@mastodon.social replied · 6 days ago

#DigitalID #UKPOL #UKPOLITICS #Technology #Starmer #KeirStarmer #Labour #Privacy #Infosec

3nago 1232657 @

Online petition saying government should not introduce
digitial ID cards heading for 900,00 signatures

An online petition on the parliamentary website saying the government
should not introduce digital ID cards has attracted more than 860,000
signatures. It has gained more than 600,000 of those names since last night
and the numbers are continuing to rise very quickly.

Petitions which get more than 100,000 petitions are debated in Westminster
Hall at parliament, but there is little evidence that they have ever affected
government decision making. More than six million people signed one
calling for Brexit to be reversed. — 3nago 1232657 @ Online petition saying government should not introduce digitial ID cards heading for 900,00 signatures An online petition on the parliamentary website saying the government should not introduce digital ID cards has attracted more than 860,000 signatures. It has gained more than 600,000 of those names since last night and the numbers are continuing to rise very quickly. Petitions which get more than 100,000 petitions are debated in Westminster Hall at parliament, but there is little evidence that they have ever affected government decision making. More than six million people signed one calling for Brexit to be reversed.

Ryan Daws 🤓

@gadgetry@techhub.social · 6 days ago

Telecoms Tech News

BritCard: The real obstacle for UK digital ID is a national trust deficit

We've been hearing whispers about a national digital ID from the UK Government for years, and now it has a name: 'BritCard'.

Lazarou Monkey Terror 🚀💙🌈 and 1 other boosted

Lesley Carhart :unverified:

@hacks4pancakes@infosec.exchange · last week

I wrote an article about what I wish juniors in cybersecurity would ask for and contribute when asking for a mentor and career guidance, in light of the terrible tech jobs market.

https://tisiphone.net/2025/09/24/reasonable-expectations-for-cybersecurity-mentees/

#Cybersecurity #Infosec #MentoringMonday #Mentoring #CybersecurityCareers

Lesley Carhart's Cybersecurity Blog

Reasonable Expectations for Cybersecurity Mentees

Most of my audience is on the more senior end of the career spectrum. As a result, a lot of my writing about careers is aimed at senior cybersecurity professionals, encouraging managers and experie…