Imagine ransomware that writes its own playbook on the fly. PromptLock is using AI to dodge detection and hit across every platform. How ready are we for cyber threats that constantly evolve?
https://thedefendopsdiaries.com/ai-powered-ransomware-the-rise-of-promptlock-and-its-implications/
Imagine ransomware that writes its own playbook on the fly. PromptLock is using AI to dodge detection and hit across every platform. How ready are we for cyber threats that constantly evolve?
https://thedefendopsdiaries.com/ai-powered-ransomware-the-rise-of-promptlock-and-its-implications/
Secure Messaging Apps: a very complete Comparison with juridiction, funding, transparency report, privacy, collect of customer's data... #Infosec#Privacyhttps://www.securemessagingapps.com
Secure Messaging Apps: a very complete Comparison with juridiction, funding, transparency report, privacy, collect of customer's data... #Infosec#Privacyhttps://www.securemessagingapps.com
A friend found a tab open in Safari on their iPhone that they had not (knowingly) opened and whose history indicated it had visited a succession of locations, including multiple web searches and several different websites (some related to the web searches, some not). What are the likely ways that this could have occurred? Could this indicate a larger problem?
My best guess is that a site they opened had ads from some ad network with malvertizing on it that opened the extra tab and caused it to visit the various locations, but I'm really not sure.
A friend found a tab open in Safari on their iPhone that they had not (knowingly) opened and whose history indicated it had visited a succession of locations, including multiple web searches and several different websites (some related to the web searches, some not). What are the likely ways that this could have occurred? Could this indicate a larger problem?
My best guess is that a site they opened had ads from some ad network with malvertizing on it that opened the extra tab and caused it to visit the various locations, but I'm really not sure.
It's a new Threat Model: #Cybersecurity, and @violetblue 's editorial on America's slide into authoritarian fascism is a must-read. So go do that, then share widely and send some support:
https://www.patreon.com/posts/137364702
#infosec #natsec
It's a new Threat Model: #Cybersecurity, and @violetblue 's editorial on America's slide into authoritarian fascism is a must-read. So go do that, then share widely and send some support:
https://www.patreon.com/posts/137364702
#infosec #natsec
🤍 🤍 🤍 Thank you all for helping single mum @catbailey out of the direst of situations. Your help has been, and always will be, appreciated. 🤍 🤍 🤍
Though it has been averted this time, it will too soon again become most dire.
Please keep Cat and family in mind and continue with your help and support.
Every little bit helps.
If you have heard of job openings in #infosec, please do let @catbailey know. She is just itching to get back to work.
🤍 🤍 🤍 Thank you all for helping single mum @catbailey out of the direst of situations. Your help has been, and always will be, appreciated. 🤍 🤍 🤍
Though it has been averted this time, it will too soon again become most dire.
Please keep Cat and family in mind and continue with your help and support.
Every little bit helps.
If you have heard of job openings in #infosec, please do let @catbailey know. She is just itching to get back to work.
The account by the #whistleblower, Charles Borges, underscores concerns that have led to lawsuits seeking to block young software engineers at the agency built by #ElonMusk from having access to #confidential government #data. In his complaint, Borges said #DOGE members copied the data to an internal agency server that only DOGE could access, forgoing the type of “independent security monitoring” normally required under agency policy for such sensitive data & creating “enormous vulnerabilities.”
Borges did not indicate that the database had been breached or used inappropriately.
But his disclosure stated that as of late June, “no verified audit or oversight mechanisms” existed to monitor what #DOGE was using the #data for or whether it was being shared outside the agency. That kind of #oversight would typically be provided by the agency’s career #information #security professionals, Borges said in his account.
Members of #DOGE uploaded a copy of a crucial #SocialSecurity database in June to a vulnerable #cloud server, putting the #PersonalInformation of hundreds of millions of Americans at risk of being leaked or hacked, according to a #whistleblower complaint filed by the Social Security Administration’s chief #data officer.
The database contains records of all #SocialSecurity numbers issued by the #federal #government. It includes individuals’ full names, addresses & birth dates, among other details that could be used to steal their identities, making it one of the nation’s most sensitive repositories of #PersonalInformation.
#DOGE Put Critical #SocialSecurity Data at Risk, #WhistleBlower Says
DOGE team members uploaded a database with the #PersonalInformation of hundreds of millions of Americans to a vulnerable cloud server, according to the agency’s chief data officer.
#Trump#Musk#InfoSec #privacy #law
https://www.nytimes.com/2025/08/26/us/politics/doge-social-security-data.html?unlocked_article_code=1.hE8.TyKa.8TjUsntnon_C&smid=nytcore-ios-share&referringSource=articleShare
Members of #DOGE uploaded a copy of a crucial #SocialSecurity database in June to a vulnerable #cloud server, putting the #PersonalInformation of hundreds of millions of Americans at risk of being leaked or hacked, according to a #whistleblower complaint filed by the Social Security Administration’s chief #data officer.
#DOGE Put Critical #SocialSecurity Data at Risk, #WhistleBlower Says
DOGE team members uploaded a database with the #PersonalInformation of hundreds of millions of Americans to a vulnerable cloud server, according to the agency’s chief data officer.
#Trump#Musk#InfoSec #privacy #law
https://www.nytimes.com/2025/08/26/us/politics/doge-social-security-data.html?unlocked_article_code=1.hE8.TyKa.8TjUsntnon_C&smid=nytcore-ios-share&referringSource=articleShare
P.S. I should mention that although I fixed our family mail server to work with the #Windows Mail app, I don't actually think my daughter or anyone else should be using it, because it's a #privacy and #infosec nightmare. The app stores the user's credentials and emails on #Microsoft servers; logs into the user's email account from those servers; and displays targeted ads that look just like email messages and can't be disabled. It's a case study in shitty tech. Use Thunderbird!
P.S. I should mention that although I fixed our family mail server to work with the #Windows Mail app, I don't actually think my daughter or anyone else should be using it, because it's a #privacy and #infosec nightmare. The app stores the user's credentials and emails on #Microsoft servers; logs into the user's email account from those servers; and displays targeted ads that look just like email messages and can't be disabled. It's a case study in shitty tech. Use Thunderbird!
🇫🇷
#Codeberg sous l’assaut de robots #IA : Le système de défense #Anubis contourné.
Le 15 août 2025, The Register a révélé que Codeberg, une plateforme d’hébergement de code axée sur la gratuité et l’open source, se trouve confrontée à un problème croissant : une prolifération de robots alimentés par l’intelligence artificielle (IA). Ces robots parviennent désormais à déjouer les mesures de sécurité mises en place par Codeberg, notamment son système de défense surnommé « Anubis ».
https://fr.itb.co.jp/2025/08/19/codeberg-sous-lassaut-de-robots-ia-le-systeme-de-defense-anubis-contournethe-register/
🇬🇧
Codeberg beset by AI bots that now bypass Anubis tarpit
Codeberg, a Berlin-based code hosting community, is struggling to cope with a deluge of AI bots that can now bypass previously effective defenses.
In a series of posts to the Mastodon social network on Friday, Codeberg volunteer staff said AI crawlers are no longer being kept at bay by Anubis, an AI bot tarpit.
"It seems like the #AI crawlers learned how to solve the Anubis challenges," the Codeberg account said.
#Anubis #OpenSource#CyberSecurity#Security#InfoSec#IA#NoAI#Technology
🇫🇷
#Codeberg sous l’assaut de robots #IA : Le système de défense #Anubis contourné.
Le 15 août 2025, The Register a révélé que Codeberg, une plateforme d’hébergement de code axée sur la gratuité et l’open source, se trouve confrontée à un problème croissant : une prolifération de robots alimentés par l’intelligence artificielle (IA). Ces robots parviennent désormais à déjouer les mesures de sécurité mises en place par Codeberg, notamment son système de défense surnommé « Anubis ».
https://fr.itb.co.jp/2025/08/19/codeberg-sous-lassaut-de-robots-ia-le-systeme-de-defense-anubis-contournethe-register/
🇬🇧
Codeberg beset by AI bots that now bypass Anubis tarpit
Codeberg, a Berlin-based code hosting community, is struggling to cope with a deluge of AI bots that can now bypass previously effective defenses.
In a series of posts to the Mastodon social network on Friday, Codeberg volunteer staff said AI crawlers are no longer being kept at bay by Anubis, an AI bot tarpit.
"It seems like the #AI crawlers learned how to solve the Anubis challenges," the Codeberg account said.
#Anubis #OpenSource#CyberSecurity#Security#InfoSec#IA#NoAI#Technology
We are a network of scientists, developers and organizations building the next generation of digital spaces for open science.
