« Recently, security researcher Dirk-Jan Mollema disclosed CVE-2025–55241, a vulnerability so catastrophic that it reads like fiction : a single token, obtained from any test tenant, could have granted complete administrative control over every Microsoft Entra ID (Azure AD) tenant in the world. Every. Single. One. »

› https://tide.org/blog/god-mode-vulnerability-microsoft-authorityless-security

#Microsoft #Flaw #InfoSec #CyberSecurity #CVE #Azure #Cloud

« Recently, security researcher Dirk-Jan Mollema disclosed CVE-2025–55241, a vulnerability so catastrophic that it reads like fiction : a single token, obtained from any test tenant, could have granted complete administrative control over every Microsoft Entra ID (Azure AD) tenant in the world. Every. Single. One. »

› https://tide.org/blog/god-mode-vulnerability-microsoft-authorityless-security

#Microsoft #Flaw #InfoSec #CyberSecurity #CVE #Azure #Cloud

LinkedIn will share user data with Microsoft for AI training starting Nov 3, 2025.
You’re opted in by default 🔄

To opt out:
1️⃣ Go to Settings & Privacy
2️⃣ Select Data privacy → Data for Generative AI improvement
3️⃣ Toggle off “Use my data for training content creation AI models”
4️⃣ Access the Data Processing Objection Form here and send a request: https://www.linkedin.com/help/linkedin/ask/TS-DPRO
🔐

🔗 https://proton.me/blog/linkedin-ai-training

#Privacy #LinkedIn #AI #DataProtection #TechNews #OpenSource #Security #Cybersecurity #DataPrivacy

LinkedIn will share user data with Microsoft for AI training starting Nov 3, 2025.
You’re opted in by default 🔄

To opt out:
1️⃣ Go to Settings & Privacy
2️⃣ Select Data privacy → Data for Generative AI improvement
3️⃣ Toggle off “Use my data for training content creation AI models”
4️⃣ Access the Data Processing Objection Form here and send a request: https://www.linkedin.com/help/linkedin/ask/TS-DPRO
🔐

🔗 https://proton.me/blog/linkedin-ai-training

#Privacy #LinkedIn #AI #DataProtection #TechNews #OpenSource #Security #Cybersecurity #DataPrivacy

The EU Council is again pushing “Chat Control,” a proposal to scan all private messages—even those protected by end-to-end encryption. 🔍

If passed, providers like Signal may exit the EU. 📵
Client-side scanning = mass surveillance. 🕵️
Privacy for journalists, activists, and everyday users is at serious risk. 🛡️

@eff

🔗 https://www.eff.org/deeplinks/2025/09/chat-control-back-menu-eu-it-still-must-be-stopped-0

#TechNews #Privacy #Encryption #Surveillance #CyberSecurity #Signal #WhatsApp #BigTech #HumanRights #DataProtection #DigitalRights #OpenSource #EU #Europe

The EU Council is again pushing “Chat Control,” a proposal to scan all private messages—even those protected by end-to-end encryption. 🔍

If passed, providers like Signal may exit the EU. 📵
Client-side scanning = mass surveillance. 🕵️
Privacy for journalists, activists, and everyday users is at serious risk. 🛡️

@eff

🔗 https://www.eff.org/deeplinks/2025/09/chat-control-back-menu-eu-it-still-must-be-stopped-0

#TechNews #Privacy #Encryption #Surveillance #CyberSecurity #Signal #WhatsApp #BigTech #HumanRights #DataProtection #DigitalRights #OpenSource #EU #Europe

"Despite years of congressional hearings, lawsuits, academic research, whistleblowers and testimony from parents and teenagers about the dangers of Instagram, Meta’s wildly popular app has failed to protect children from harm, with 'woefully ineffective' safety measures, according to a new report from former employee and whistleblower Arturo Bejar and four nonprofit groups."

https://apnews.com/article/instagram-teens-safety-meta-bejar-13276348cde2dcc1ee94c66227ea25dc

#PublicHealth #Meta #instagram #ChildrensHealth #SocialMedia #cybersecurity

"Despite years of congressional hearings, lawsuits, academic research, whistleblowers and testimony from parents and teenagers about the dangers of Instagram, Meta’s wildly popular app has failed to protect children from harm, with 'woefully ineffective' safety measures, according to a new report from former employee and whistleblower Arturo Bejar and four nonprofit groups."

https://apnews.com/article/instagram-teens-safety-meta-bejar-13276348cde2dcc1ee94c66227ea25dc

#PublicHealth #Meta #instagram #ChildrensHealth #SocialMedia #cybersecurity

🇨🇦 ⚠️ 🚨 Federal cyber agency warns of 'serious and urgent' attack on tech used by remote workers

Cisco says hackers may be able to scrape data from compromised devices
"Take our warning seriously," a spokesperson said in an email to CBC News.

h/t @GottaLaff

#Cdnpoli #Canada #CyberSecurity
#VPN #Internet #Privacy #Computer

https://www.cbc.ca/news/politics/cisco-cyber-attack-vpn-1.7644591

ICYMI, quick reminder that @DomainTools Investigations published a comprehensive writeup on SALT TYPHOON yesterday.

I'm particularly proud of it, and we're getting really positive feedback on it.

#threatintel #infosec #cybersecurity

https://dti.domaintools.com/inside-salt-typhoon-chinas-state-corporate-advanced-persistent-threat/

🇨🇦 ⚠️ 🚨 Federal cyber agency warns of 'serious and urgent' attack on tech used by remote workers

Cisco says hackers may be able to scrape data from compromised devices
"Take our warning seriously," a spokesperson said in an email to CBC News.

h/t @GottaLaff

#Cdnpoli #Canada #CyberSecurity
#VPN #Internet #Privacy #Computer

https://www.cbc.ca/news/politics/cisco-cyber-attack-vpn-1.7644591

🇨🇦 ⚠️ 🚨 Federal cyber agency warns of 'serious and urgent' attack on tech used by remote workers

Cisco says hackers may be able to scrape data from compromised devices
"Take our warning seriously," a spokesperson said in an email to CBC News.

h/t @GottaLaff

#Cdnpoli #Canada #CyberSecurity
#VPN #Internet #Privacy #Computer

https://www.cbc.ca/news/politics/cisco-cyber-attack-vpn-1.7644591

ICYMI, quick reminder that @DomainTools Investigations published a comprehensive writeup on SALT TYPHOON yesterday.

I'm particularly proud of it, and we're getting really positive feedback on it.

#threatintel #infosec #cybersecurity

https://dti.domaintools.com/inside-salt-typhoon-chinas-state-corporate-advanced-persistent-threat/

Dis mastodon, est-ce que tu pourrais me dire tous les risques de sécurité de windows ?

Genre par exemple des sources sur le fait que Microsoft peut donner un accès au gouvernement américain ?

Ou que copilote peut lire les mails fermés ? Qu'il peut aussi donner accès aux autres documents d'un SharePoint auxquelles normalement je n'ai pas accès?

J'aimerais faire un petit résumé pour une institution qui m'impose de changer de boite mail pour protéger le secret professionnel auquel je suis tenue et qui refuse catégoriquement d'entendre parler de logiciels libres.

Le repouet fait grandir la liberté

#cybersecurity
#windows
#logicielslibres

I wrote an article about what I wish juniors in cybersecurity would ask for and contribute when asking for a mentor and career guidance, in light of the terrible tech jobs market.

https://tisiphone.net/2025/09/24/reasonable-expectations-for-cybersecurity-mentees/

#Cybersecurity #Infosec #MentoringMonday #Mentoring #CybersecurityCareers

🇺🇦 🇷🇺 Cyber experts from Defence Intelligence of #Ukraine have paralysed #Russia’s national Faster Payment System SBP, widely used for transfers to Russian "charitable and volunteer organisations" supporting the war against Ukraine.

https://www.pravda.com.ua/eng/news/2025/09/25/7532447/

#cybersecurity