shakedown.social is one of the many independent Mastodon servers you can use to participate in the fediverse.
A community for live music fans with roots in the jam scene. Shakedown Social is run by a team of volunteers (led by @clifff and @sethadam1) and funded by donations.

Administered by:

Server stats:

291
active users

#ics

1 post1 participant1 post today
OTX Bot<p>Smishing Triad: Chinese eCrime Group Targets 121+ Countries, Introduces New Banking Phishing Kit</p><p>The Chinese eCrime group Smishing Triad has launched a global SMS phishing campaign targeting over 121 countries across various industries. Their infrastructure generates over one million page visits in 20 days, averaging 50,000 daily. The group has introduced a new 'Lighthouse' phishing kit focusing on banking and financial organizations, particularly in Australia and the Asia-Pacific region. Smishing Triad claims to have '300+ front desk staff worldwide' supporting their operations. They frequently rotate domains, with approximately 25,000 active during any 8-day period. The majority of phishing sites are hosted by Chinese companies Tencent and Alibaba. The campaign primarily targets postal, logistics, telecommunications, transportation, finance, retail, and public sectors.</p><p>Pulse ID: 67f80a4937d04f9036252cf7<br>Pulse Link: <a href="https://otx.alienvault.com/pulse/67f80a4937d04f9036252cf7" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">otx.alienvault.com/pulse/67f80</span><span class="invisible">a4937d04f9036252cf7</span></a> <br>Pulse Author: AlienVault<br>Created: 2025-04-10 18:13:29</p><p>Be advised, this data is unverified and should be considered preliminary. Always do further verification.</p><p><a href="https://social.raytec.co/tags/Asia" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Asia</span></a> <a href="https://social.raytec.co/tags/Australia" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Australia</span></a> <a href="https://social.raytec.co/tags/Bank" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Bank</span></a> <a href="https://social.raytec.co/tags/Chinese" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Chinese</span></a> <a href="https://social.raytec.co/tags/CyberSecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>CyberSecurity</span></a> <a href="https://social.raytec.co/tags/ICS" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>ICS</span></a> <a href="https://social.raytec.co/tags/InfoSec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>InfoSec</span></a> <a href="https://social.raytec.co/tags/OTX" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>OTX</span></a> <a href="https://social.raytec.co/tags/OpenThreatExchange" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>OpenThreatExchange</span></a> <a href="https://social.raytec.co/tags/Phishing" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Phishing</span></a> <a href="https://social.raytec.co/tags/RAT" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>RAT</span></a> <a href="https://social.raytec.co/tags/SMS" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>SMS</span></a> <a href="https://social.raytec.co/tags/Smishing" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Smishing</span></a> <a href="https://social.raytec.co/tags/Telecom" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Telecom</span></a> <a href="https://social.raytec.co/tags/Telecommunication" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Telecommunication</span></a> <a href="https://social.raytec.co/tags/bot" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>bot</span></a> <a href="https://social.raytec.co/tags/AlienVault" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>AlienVault</span></a></p>
Wokebloke for Democracy<p>Not sure if the American Gestapo cares about bad publicity, but here's one detainee story that's getting coverage.</p><p><a href="https://www.npr.org/2025/04/02/nx-s1-5341465/jasmine-mooney-canadian-actress-ice-detention" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://www.</span><span class="ellipsis">npr.org/2025/04/02/nx-s1-53414</span><span class="invisible">65/jasmine-mooney-canadian-actress-ice-detention</span></a><br><a href="https://libretooth.gr/tags/ICS" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>ICS</span></a> <a href="https://libretooth.gr/tags/Trump" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Trump</span></a> <a href="https://libretooth.gr/tags/Fascism" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Fascism</span></a></p>
Pyrzout :vm:<p>More Solar System Vulnerabilities Expose Power Grids to Hacking <a href="https://www.securityweek.com/more-solar-system-vulnerabilities-expose-power-grids-to-hacking/" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://www.</span><span class="ellipsis">securityweek.com/more-solar-sy</span><span class="invisible">stem-vulnerabilities-expose-power-grids-to-hacking/</span></a> <a href="https://social.skynetcloud.site/tags/Vulnerabilities" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Vulnerabilities</span></a> <a href="https://social.skynetcloud.site/tags/vulnerability" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>vulnerability</span></a> <a href="https://social.skynetcloud.site/tags/Featured" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Featured</span></a> <a href="https://social.skynetcloud.site/tags/ICS" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>ICS</span></a>/OT <a href="https://social.skynetcloud.site/tags/energy" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>energy</span></a> <a href="https://social.skynetcloud.site/tags/solar" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>solar</span></a> <a href="https://social.skynetcloud.site/tags/ICS" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>ICS</span></a></p>
OTX Bot<p>Operation FishMedley targeting governments, NGOs, and think tanks</p><p>ESET researchers have uncovered a global espionage operation called Operation FishMedley, conducted by the FishMonger APT group, which is operated by the Chinese contractor I-SOON. The campaign targeted governments, NGOs, and think tanks across Asia, Europe, and the United States during 2022. The attackers used implants like ShadowPad, SodaMaster, and Spyder, which are common or exclusive to China-aligned threat actors. The operation involved sophisticated tactics including lateral movement, credential theft, and custom malware deployment. Seven victims were identified across various countries and sectors. The analysis provides technical details on the malware used, initial access methods, and command and control infrastructure.</p><p>Pulse ID: 67dd406f6ba9eecd280aa95e<br>Pulse Link: <a href="https://otx.alienvault.com/pulse/67dd406f6ba9eecd280aa95e" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">otx.alienvault.com/pulse/67dd4</span><span class="invisible">06f6ba9eecd280aa95e</span></a> <br>Pulse Author: AlienVault<br>Created: 2025-03-21 10:33:19</p><p>Be advised, this data is unverified and should be considered preliminary. Always do further verification.</p><p><a href="https://social.raytec.co/tags/Asia" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Asia</span></a> <a href="https://social.raytec.co/tags/China" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>China</span></a> <a href="https://social.raytec.co/tags/Chinese" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Chinese</span></a> <a href="https://social.raytec.co/tags/CyberSecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>CyberSecurity</span></a> <a href="https://social.raytec.co/tags/ESET" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>ESET</span></a> <a href="https://social.raytec.co/tags/Espionage" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Espionage</span></a> <a href="https://social.raytec.co/tags/Europe" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Europe</span></a> <a href="https://social.raytec.co/tags/Government" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Government</span></a> <a href="https://social.raytec.co/tags/ICS" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>ICS</span></a> <a href="https://social.raytec.co/tags/ISoon" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>ISoon</span></a> <a href="https://social.raytec.co/tags/InfoSec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>InfoSec</span></a> <a href="https://social.raytec.co/tags/Malware" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Malware</span></a> <a href="https://social.raytec.co/tags/OTX" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>OTX</span></a> <a href="https://social.raytec.co/tags/OpenThreatExchange" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>OpenThreatExchange</span></a> <a href="https://social.raytec.co/tags/RAT" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>RAT</span></a> <a href="https://social.raytec.co/tags/ShadowPad" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>ShadowPad</span></a> <a href="https://social.raytec.co/tags/UnitedStates" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>UnitedStates</span></a> <a href="https://social.raytec.co/tags/bot" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>bot</span></a> <a href="https://social.raytec.co/tags/AlienVault" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>AlienVault</span></a></p>
Nicco Kunzmann<p>Thanks to the funding by <span class="h-card" translate="no"><a href="https://social.nlnet.nl/@nlnet" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@<span>nlnet</span></a></span>, I added <a href="https://toot.wales/tags/event" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>event</span></a> sign up via email to the <a href="https://toot.wales/tags/OpenWebCalendar" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>OpenWebCalendar</span></a>. In this tutorial, I show how to enable others to sign up to your events on your <span class="h-card" translate="no"><a href="https://mastodon.xyz/@nextcloud" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@<span>nextcloud</span></a></span> <a href="https://toot.wales/tags/calendar" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>calendar</span></a>.</p><p>Video: <a href="https://youtu.be/RnMz23p7UP0" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://</span><span class="">youtu.be/RnMz23p7UP0</span><span class="invisible"></span></a></p><p>Blog Post: <a href="https://open-web-calendar.quelltext.eu/news/2025-03-17-caldav-nextcloud-sign-up/" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">open-web-calendar.quelltext.eu</span><span class="invisible">/news/2025-03-17-caldav-nextcloud-sign-up/</span></a></p><p><a href="https://toot.wales/tags/selfhosting" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>selfhosting</span></a> <a href="https://toot.wales/tags/caldav" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>caldav</span></a> <a href="https://toot.wales/tags/ics" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>ics</span></a> <a href="https://toot.wales/tags/nextcloud" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>nextcloud</span></a></p>
mle✨<p>Water utilities would get cybersecurity boost under bipartisan Senate bill:<br>The Cybersecurity for Rural Water Systems Act would expand USDA’s Circuit Rider Program. </p><p><a href="https://cyberscoop.com/rural-water-utilities-cybersecurity-senate-bill/" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">cyberscoop.com/rural-water-uti</span><span class="invisible">lities-cybersecurity-senate-bill/</span></a></p><p><a href="https://infosec.exchange/tags/water" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>water</span></a> <a href="https://infosec.exchange/tags/ics" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>ics</span></a></p>
OTX Bot<p>Camera off: Akira deploys ransomware via webcam</p><p>Akira, a prominent ransomware group, accounted for 15% of incidents in 2024, showcasing novel evasion techniques. In a recent attack, Akira circumvented an Endpoint Detection and Response (EDR) tool by compromising an unsecured webcam to deploy ransomware. After initial detection, the group pivoted to exploit IoT devices, particularly a vulnerable webcam running Linux. This allowed them to execute their Linux ransomware variant without EDR interference. The incident highlights the importance of comprehensive security measures, including IoT device monitoring, network segmentation, and regular audits. Key takeaways include prioritizing patch management for all devices, adapting to evolving threat actor tactics, and ensuring proper EDR implementation.</p><p>Pulse ID: 67d046979aa7a5f6ddc6aa12<br>Pulse Link: <a href="https://otx.alienvault.com/pulse/67d046979aa7a5f6ddc6aa12" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">otx.alienvault.com/pulse/67d04</span><span class="invisible">6979aa7a5f6ddc6aa12</span></a> <br>Pulse Author: AlienVault<br>Created: 2025-03-11 14:20:07</p><p>Be advised, this data is unverified and should be considered preliminary. Always do further verification.</p><p><a href="https://social.raytec.co/tags/Akira" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Akira</span></a> <a href="https://social.raytec.co/tags/CyberSecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>CyberSecurity</span></a> <a href="https://social.raytec.co/tags/EDR" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>EDR</span></a> <a href="https://social.raytec.co/tags/Endpoint" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Endpoint</span></a> <a href="https://social.raytec.co/tags/EndpointDetectionandResponse" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>EndpointDetectionandResponse</span></a> <a href="https://social.raytec.co/tags/ICS" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>ICS</span></a> <a href="https://social.raytec.co/tags/InfoSec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>InfoSec</span></a> <a href="https://social.raytec.co/tags/IoT" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>IoT</span></a> <a href="https://social.raytec.co/tags/Linux" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Linux</span></a> <a href="https://social.raytec.co/tags/OTX" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>OTX</span></a> <a href="https://social.raytec.co/tags/OpenThreatExchange" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>OpenThreatExchange</span></a> <a href="https://social.raytec.co/tags/RansomWare" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>RansomWare</span></a> <a href="https://social.raytec.co/tags/bot" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>bot</span></a> <a href="https://social.raytec.co/tags/AlienVault" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>AlienVault</span></a></p>
🦅 🪿RKeller Photography🏳️‍🌈<p>Light tunneling and squiggles.</p><p><a href="https://toot.community/tags/PhotoHour" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>PhotoHour</span></a> <a href="https://toot.community/tags/abstract" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>abstract</span></a> <a href="https://toot.community/tags/AbstractPhotography" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>AbstractPhotography</span></a> <a href="https://toot.community/tags/improvisation" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>improvisation</span></a> <a href="https://toot.community/tags/night" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>night</span></a> <a href="https://toot.community/tags/nightphotography" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>nightphotography</span></a> <a href="https://toot.community/tags/street" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>street</span></a> <a href="https://toot.community/tags/interstate" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>interstate</span></a> <a href="https://toot.community/tags/I80" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>I80</span></a> <a href="https://toot.community/tags/icm" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>icm</span></a> <a href="https://toot.community/tags/ics" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>ics</span></a> <a href="https://toot.community/tags/photography" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>photography</span></a> <a href="https://toot.community/tags/AltText" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>AltText</span></a></p>
🦅 🪿RKeller Photography🏳️‍🌈<p>Sprites &amp; sinusoidal waves.</p><p>Walking near I-80 last night so decided to head up to a nearby walking bridge that crosses it. Haven't done one of these in a few yrs. Don't have a cityscape as a backdrop to my traffic pics so I "liven" them up.</p><p><a href="https://toot.community/tags/StormHour" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>StormHour</span></a> <a href="https://toot.community/tags/ics" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>ics</span></a> <a href="https://toot.community/tags/abstract" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>abstract</span></a> <a href="https://toot.community/tags/AbstractPhotography" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>AbstractPhotography</span></a> <a href="https://toot.community/tags/photography" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>photography</span></a> <a href="https://toot.community/tags/AltText" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>AltText</span></a></p>
Geriatric Gardener<p>Starmer &amp; Streeting are both total c*nts! </p><p>“Video: UnitedHealth, deeply embedded in NHS, says its ‘critical’ role is to prevent ‘unsustainable’ treatment”</p><p>by Skwawkbox <span class="h-card" translate="no"><a href="https://mastodon.social/@skwawkbox" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@<span>skwawkbox</span></a></span> <span class="h-card" translate="no"><a href="https://mastodon.cloud/@UKLabour" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@<span>UKLabour</span></a></span> </p><p>“22yo US man died after price of asthma inhaler increased by $473 – CEO’s comments put spotlight on govt’s NHS health rationing plans”</p><p><a href="https://skwawkbox.org/2025/02/16/video-unitedhealth-deeply-embedded-in-nhs-says-its-critical-role-is-to-prevent-unsustainable-treatment/" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">skwawkbox.org/2025/02/16/video</span><span class="invisible">-unitedhealth-deeply-embedded-in-nhs-says-its-critical-role-is-to-prevent-unsustainable-treatment/</span></a></p><p><a href="https://mstdn.social/tags/Press" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Press</span></a> <a href="https://mstdn.social/tags/Britain" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Britain</span></a> <a href="https://mstdn.social/tags/UK" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>UK</span></a> <a href="https://mstdn.social/tags/NHS" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>NHS</span></a> <a href="https://mstdn.social/tags/UnitedHealth" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>UnitedHealth</span></a> <a href="https://mstdn.social/tags/UHG" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>UHG</span></a> <a href="https://mstdn.social/tags/OptumRX" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>OptumRX</span></a> <a href="https://mstdn.social/tags/Witty" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Witty</span></a> <a href="https://mstdn.social/tags/ICS" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>ICS</span></a> <a href="https://mstdn.social/tags/Starmer" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Starmer</span></a> <a href="https://mstdn.social/tags/Streeting" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Streeting</span></a> <a href="https://mstdn.social/tags/Labour" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Labour</span></a> <a href="https://mstdn.social/tags/Rationing" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Rationing</span></a> <a href="https://mstdn.social/tags/Neoliberal" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Neoliberal</span></a> <a href="https://mstdn.social/tags/ProfitBeforePatients" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>ProfitBeforePatients</span></a></p>
Kerry Tomlinson<p>It's rap time! This year's <a href="https://mastodon.social/tags/S4x25" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>S4x25</span></a> OT security conf rap riffed on organizer Dale Peterson's keynote re: be an "OT security artist."</p><p>References to his talk, Grammy's Song of the Year "Not Like Us" by<br>Kendrick Lamar w/line "I see dead people" &amp; a Picasso-attributed quote re: wield the rules like a pro, then break them like an artist. </p><p>Read the rap straight up in bold &amp; yellow highlight and/or read the reference notes below each line.</p><p><a href="https://mastodon.social/tags/OTSecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>OTSecurity</span></a> <a href="https://mastodon.social/tags/OTCybersecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>OTCybersecurity</span></a> <a href="https://mastodon.social/tags/ICS" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>ICS</span></a> <a href="https://mastodon.social/tags/ICSSecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>ICSSecurity</span></a> <a href="https://mastodon.social/tags/cybersecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>cybersecurity</span></a></p>
Paul Shread<p>Just what we need, another Russian threat group tampering with critical infrastructure control panels. <br><a href="https://masto.ai/tags/Russia" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Russia</span></a> <a href="https://masto.ai/tags/ThreatIntelligence" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>ThreatIntelligence</span></a> <a href="https://masto.ai/tags/Cybersecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Cybersecurity</span></a> <a href="https://masto.ai/tags/CriticalInfrastructure" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>CriticalInfrastructure</span></a> <a href="https://masto.ai/tags/OT" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>OT</span></a> <a href="https://masto.ai/tags/ICS" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>ICS</span></a> <a href="https://masto.ai/tags/SCADA" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>SCADA</span></a> <a href="https://masto.ai/tags/Hackers" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Hackers</span></a> <a href="https://masto.ai/tags/Security" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Security</span></a> <a href="https://masto.ai/tags/NationalSecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>NationalSecurity</span></a> </p><p><a href="https://cyble.com/blog/dark-web-activity-new-hacktivist-group-emerges/" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">cyble.com/blog/dark-web-activi</span><span class="invisible">ty-new-hacktivist-group-emerges/</span></a></p>
mle✨<p>Our team at <span class="h-card" translate="no"><a href="https://infosec.exchange/@censys" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@<span>censys</span></a></span> has studied Internet exposure of <a href="https://infosec.exchange/tags/ICS" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>ICS</span></a> for the better part of a year, learning more about the products, protocols, and nuances of this space. </p><p>Today I'm excited to share our third annual ✨State of the Internet Report detailing what we've learned! A few highlights:</p><p>🛜 Most ICS protocols and HMIs we've observed run on 5G/LTE (e.g., Verizon) or SOHO/business-grade ISPs (e.g., Comcast). We initially observed this in the U.S. and in this most recent research found that it's a global phenomenon. This surprised me initially, but industrial devices often need to run in places where a wired connection might not be available. While great for connectivity, use of such networks makes it often impossible to determine who owns or operates a given service, as the host metadata points back to the telco itself. </p><p>💧 Analysis of over 200 C-More human-machine interfaces (HMIs) revealed over a third appear to be related to water and wastewater systems (WWS). WWS has seen increased targeting over the last ~year, and these exposures suggest still more work is needed to adequately protect and defend this sector. </p><p>⛔️ We found nearly 200 hosts globally running HMIs alongside products banned by U.S. NDAA Section 889. While this act applies only to a specific set of operators within the U.S. federal government, it's interesting to note what technologies operators implement alongside potentially critical services.</p><p><a href="https://infosec.exchange/tags/infosec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>infosec</span></a> <a href="https://infosec.exchange/tags/cybersecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>cybersecurity</span></a> <a href="https://infosec.exchange/tags/OT" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>OT</span></a> </p><p>You can find a copy of the report with all the details here! 👇</p><p><a href="https://censys.com/the-2024-state-of-the-internet-report/" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">censys.com/the-2024-state-of-t</span><span class="invisible">he-internet-report/</span></a></p>
Lesley Carhart :unverified:<p>Critical infrastructure / <a href="https://infosec.exchange/tags/ICS" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>ICS</span></a> system owners should be watching these three discrete <span class="h-card" translate="no"><a href="https://infosec.exchange/@BleepingComputer" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@<span>BleepingComputer</span></a></span> stories regarding vulnerable (and popular) perimeter devices: </p><p>- <a href="https://bit.ly/3OlV5I9" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://</span><span class="">bit.ly/3OlV5I9</span><span class="invisible"></span></a></p><p>- <a href="https://bit.ly/3AJty0n" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://</span><span class="">bit.ly/3AJty0n</span><span class="invisible"></span></a></p><p>- <a href="http://bit.ly/48YvT3X" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">http://</span><span class="">bit.ly/48YvT3X</span><span class="invisible"></span></a></p><p>It’s almost always the perimeter.</p>

CISA has warned that hackers continue to be capable of compromising industrial control systems using "unsophisticated methods" - suggesting that much more still needs to be done to secure them properly.

Meanwhile, hackers claim to have changed chlorine levels at Lebanese water facilities...

Read more in my article on the Tripwire blog: tripwire.com/state-of-security