Brad Smith, Microsoft President and Chief Legal Officer, urges the government not to stockpile exploits, but report vulnerabilities to software firms. #ransomware
It’s Not Over, WannaCry 2.0 Ransomware Just Arrived With No 'Kill-Switch' http://thehackernews.com/2017/05/wannacry-ransomware-cyber-attack.html?m=1 #infosec #ransomware #wannacry
@jerry Are you experiencing any issues with OAuth on infosec.exchange? I can't toot with Amaroq or sign in with other oauth clients like tootstream and I'm wondering if I'm doing something wrong.
Alrighty, #infosec folks -
Looking into the NHS worm issue, this looks to be Eternalblue - a derivative of the shadow brokers "lost in translation" dump from 14-APR.
This spreads via SMB [windows shares] on, usually, port 445, and is neutered by windows patch MS17-010.
If you have that patch installed, there is nothing to worry about.
This is a photo of a crashed kiosk advertising the menu and offers at a popular Norwegian pizza restaurant chain. It shows that the kiosk was running facial recognition and basic sentiment analysis on the people looking at it.
Based on the number of people who sent me this on Twitter, it’s clear that people care and are unhappy with corporate surveillance.
The worst bit? Compared to what Google and Facebook do daily and at scale, this is a toy.
Scans for Intel ME in April: 4
Scans for Intel ME in May so far: 123
About half of them are in a huge spike May 2nd/3rd which quickly leveled off. The April probes are from a few days before the public disclosure. Neat!
New Kali release. More info here:
Support for RTL8812AU Wireless Card Injection
Streamlined Support for CUDA GPU Cracking
Amazon AWS and Microsoft Azure Availability (GPU Support)
OpenVAS 9 Packaged in Kali Repositories
Came across this video at work. Am I crazy, or is it paranoid FUD? They got a bunch of people in the comments wondering why IANA owns their phone's IP address. https://www.youtube.com/watch?v=CP1j04_X4Oo
I like making games, djent, and impractical hardware attacks. My thoughts belong to the marketing team that inspired them.
A Mastodon instance for info/cyber security-minded people.