Just a reminder, you can support infosec.exchange through liberapay: https://liberapay.com/Infosec.exchange/
Published “Security 101: Four eye principle” talking about reviewing everything you do, not only merge requests. https://www.timo-zimmermann.de/2019/10/security-101-four-eye-principle/
Week in review: Umasking cybercriminals, improving incident response, macOS Catalina security https://www.helpnetsecurity.com/2019/10/13/week-in-review-umasking-cybercriminals-improving-incident-response-macos-catalina-security/ #cybersecurity
New post: Windows Registry Auditing including list of HKEY_* subkeys to audit based on MITRE ATT&CK and more https://hannahsuarez.github.io/2019/hkey-mitre/
This is the rejection letter for the work that just won the Nobel Prize.
Believe in yourself.
Everyone else will catch up eventually.
C2M is apparently not pointing the finger to #CloudFlare, but they don't indicate that they know how the leak occured either.
-- APT41 compromised company behind TeamViewer - which enabled them to access *any* system with TeamViewer installed via @cglyer
- TL;DR - it doesn't take nation-state funding to create a hardware backdoor. How's your supply chain security looking now?
- A year after Bloomberg's questionable spy chip story, a researcher has shown how those hardware implants aren't just possible, but potentially cheap: With $200 in gear, he hid a tiny chip in a Cisco firewall that gives him remote access. Would you spot it?
Adobe is deactivating all accounts in Venezuela.
"The cloud is the future" my ass.
Adobe deactivates all Venezuelan accounts
Fuck this cloud shit