Manuel D'Orso

RT @twcitalia
📅 Sabato 15:00
📍Hackmeeting | Ponticelli, Bologna
🎯 hackmeeting.org/hackit21/arriv

Questo sabato saremo ad HackMeeting per far conoscere TWC Italia e discutere di lavoro tecnologico e di come questo si lega ai temi della tecno-politica.

Per maggiori info: hackmeeting.org/hackit21/talks

0
Manuel D'Orso

RT @carolafrediani
Su Regione Lazio, quanto uscito da fonti ufficiali/ufficiose è:
- son criminali/son terroristi
- è ransomware/non c'è riscatto
- attacco via fornitori IT/fornitori IT estranei
- entrati con phishing/no phish
- no backup/c'è(recuperato)
Appello a istituzioni: dateci + info,+chiare

0
Manuel D'Orso

Amazon Echo Dot Does Not Wipe Personal Content After Factory Reset
reddit.com/r/technology/commen

0
Manuel D'Orso

Zero-Day Attacks on Critical WooCommerce Bug Threaten Databases
threatpost.com/zero-day-attack

0
Manuel D'Orso

7 Places to do Automated Security Tests

wehackpurple.com/7-places-to-d

0
Manuel D'Orso

How to Analyze Code for Vulnerabilities with Vickie Li
addevent.com/event/xG6776528

0
Manuel D'Orso boosted
Scott Mortimer

HTTP/3 needs us (and other people) to make firewall changes

utcc.utoronto.ca/~cks/space/bl

1
Manuel D'Orso

This is not a drill: VMware vuln with 9.8 severity rating is under attack | Ars Technica
arstechnica.com/gadgets/2021/0

0
Manuel D'Orso

Shining a Light on DARKSIDE Ransomware Operations

fireeye.com/blog/threat-resear

0
Manuel D'Orso

Tracking and measuring ATT&CK coverage with attack2jira
medium.com/@mvelazco/tracking-

0
Manuel D'Orso boosted
Tactical Tech ✅

Backdoored developer tool that stole credentials escaped notice for 3 months arstechnica.com/gadgets/2021/0

0
Manuel D'Orso boosted
The New Oil

[Event] DataSecOps: Solving Global Data Security Challenges

adevait.com/events/datasecops-

0
Manuel D'Orso

Universal “netmask” npm package, used by 270,000+ projects, vulnerable to octal input data: server-side request forgery, remote file inclusion, local file inclusion, and more (CVE-2021-28918)
sick.codes/universal-netmask-n

0
Manuel D'Orso

RT @BlueLabsOnline
🪓Logger & 🧠Total Recall have been released! 🐻Grizzly releases tomorrow evening. Enjoy Defenders!
blueteamlabs.online

0
Manuel D'Orso

Blue Team Labs
Online

A gamified platform for defenders to practice their skills in security investigations and challenges covering; Incident Response, Digital Forensics, Security Operations, Reverse Engineering, and Threat Hunting.

blueteamlabs.online/

1
Manuel D'Orso

RT @FDezeure
7th EU ATT&CK Workshop on 1-2 June. attack-community.org/event/. Updates from @MITREattack, launching @CycatP, exciting news from @sigma_hq and best practices presented by peers. Participation free but registration required. @circl_lu @CERTEU @MITREengenuity

0
Manuel D'Orso

RT @unmaskparasites
WordPress "Smilodon" malware (decoded) that steals payment details and user credentials. Exfil domains redorn[.]space and predator[.]host. Found in the _vp_ai_ping_11669596 option in WP database
Thanks @_jamsec

0
Manuel D'Orso boosted
Orbital

Why hot new social app Clubhouse spells nothing but trouble

theguardian.com/commentisfree/

"Clubhouse makes unencrypted recordings of the conversations.... Agora, the company that supplies back-end infrastructure to the Clubhouse app, is based in Shanghai. This means...'a user’s unique Clubhouse ID number and chatroom ID are transmitted in plaintext, and Agora would likely have access to users’ raw audio, potentially providing access to the Chinese government.'"

0
Manuel D'Orso boosted
HCS ▋

There is a Postman API conference and it is free to attend on Thursday and Friday

hopin.com/events/galaxy

Quiet a lot of API security talks

0
Manuel D'Orso boosted
Gamberobot

Spotify secures horrifying patent to monitor users' speech - frollo
#privacy

Link: consequenceofsound.net/2021/01
Discussione: gambe.ro/s/gtdsvf

0
Show older
Infosec Exchange

A Mastodon instance for info/cyber security-minded people.

Resources

Developers

What is Mastodon?

infosec.exchange

More…