An attacker able to access the collector via SSH or console could use the hardcoded credentials to gain a shell on the system and perform a range of attacks.
aka "Cisco Hardcoded Credentials" (CVE-2019-1723)
A good read regarding remote access trojans from Recorded Futures
Good article on firejail
Android users, check your apps: https://gizmodo.com/new-adware-with-destructive-capabilities-infects-over-2-1833265752
dnscrypt-proxy 2.0.20 released
"Cloaking can now do load-balancing between sets of IPv4 and IPv6 addresses, and startup time has been drastically reduced when using many DoH servers."
A Mastodon instance for info/cyber security-minded people.