Senior Specialist, Customer Success, Cybersecurity Payments
Mastercard
Beşiktaş, Türkiye

Apply now: https://totalcyber.io/jobs/mastercard/senior-specialist-customer-success-cybersecurity-payments-1

Insider Threat Analyst
Coinbase
Multiple remote locations

Apply now: https://totalcyber.io/jobs/coinbase/insider-threat-analyst-2

Who wants to join my Anarcho Syndicalist Tech Collective? We buy some used Taco trucks except we fit them out with inverters and lots of networking tech, and we drive around Los Angeles doing guerrilla Debian installs and selling phones with Graphene OS pre installed. Bring your own laptop and we wipe it and have our FAI server give you preconfigured desktop environment. Sell mini PCs with Nextcloud and Photo prism set up as .onion dark web sites... #infosec #tech #freedom

Principal Security Technical Architect – Innovation Hub
Microsoft
Multiple locations

Apply now: https://totalcyber.io/jobs/microsoft/principal-security-technical-architect-innovation-hub

So I go to pick my kids up at school and get there early the yearbook teacher wants me to come help her get photos from a Google photos album I made at a track meet a week ago.

I had sent her a link to the shared album but that "didn't work". It turns out because the school filters that site. "Can't you just air drop them to me"... Well, no, that's an iPhone only thing. So I suggest she bulk downloads the album on her phone. But the photos app doesn't have that option

NEW BETA RELEASES

iOS 18.4 RC 2 (22E240)
iPadOS 18.4 RC 2 (22E240)

KrebsonSecurity, from yesterday: When Getting Phished Puts You in Mortal Danger https://krebsonsecurity.com/2025/03/when-getting-phished-puts-you-in-mortal-danger/ @briankrebs #cybersecurity #Infosec #phishing

Happy #followfriday! Here's some cool #infosec / #cybersecurity accounts I've discovered this past week...

- @hyperplane
- @carrickdb
- @0x40k
- @malte
- @ovelny

As a bonus! Feel free to follow my other account @shellsharks@malici.ous.computer , where I tend to share the weekly notice about my "Scrolls" newsletter (because those posts typically exceed 500 chars). Or you can sub to Scrolls via RSS: https://shellsharks.com/feeds/scroll-feed.xml

Jesus Christ, guess I’m adding this to the upcoming YouTube video about signal gate. Script is already 20 pages long on the cybersecurity issues and implications
#Cybersecurity #Infosec #News
https://www.spiegel.de/international/world/pete-hegseth-mike-waltz-tulsi-gabbard-private-data-and-passwords-of-senior-u-s-security-officials-found-online-a-14221f90-e5c2-48e5-bc63-10b705521fb7

Data breach: 'Malicious actor' downloaded private information about Health NZ staff
https://www.rnz.co.nz/news/national/556355/data-breach-malicious-actor-downloaded-private-information-about-health-nz-staff
#infosec #nzlaw #nzpol

This article @Forbes has now been updated with more information regarding the Counter-Strike skins market at the heart of these attacks. #kudos @TitoNasty1 for giving me the push to add the update.

#infosec #gamers

https://www.forbes.com/sites/daveywinder/2025/03/28/hacking-gamers-first-person-shooters-targeted-by-new-browser-attack/

Whoa, talk about déjà vu! Seems like Firefox is playing catch-up right after Chrome dropped a fix for a sandbox escape. Keep an eye out for CVE-2025-2857.

So, what's the deal? In short, this nasty bug could let an attacker break right out of the browser's protective sandbox. And *that* means they could potentially gain full access to your system. Yeah, pretty scary stuff.

If you're running Firefox on Windows, heads up! This affects versions 136.0.4, ESR 115.21.1, and ESR 128.8.1. This whole situation feels familiar because Chrome *just* patched CVE-2025-2783, a similar issue that attackers were already actively exploiting out in the wild!

Make no mistake, sandbox escapes are a huge deal. As a pentester, I can tell you: vulnerabilities like this get weaponized *fast*. Don't wait around.

Seriously, update your Firefox ASAP! Trust me, you don't want to deal with the fallout if someone exploits this. It could get costly, fast.

Ever seen a browser exploit do its thing live? Wild, right? Drop your stories below!

Last week, while reviewing detected lookalike domains, one in particular stood out: cdsi--simi[.]com. A quick search pointed him to a legitimate U.S. military contractor, CDSI, which specializes in electronic warfare and telemetry systems. It's legitimate domain cdsi-simi[.]com features a single hyphen, whereas the lookalike domain uses two hyphens.

Passive DNS revealed a goldmine: a cloud system in Las Vegas hosting Russian domains and other impersonations of major companies.

Here are a few samples of the domains:

- reag-br[.]com Lookalike for Reag Capital Holdings, Brazil.
- creo--ia[.]com Lookalike for an industrial fabrication firm in WA State.
- admiralsmetal[.]com Lookalike for US based metals provider.
- ustructuressinc[.]com Lookalike Colorado based Heavy Civil Contractor.
- elisontechnologies[.]com Typosquat for Ellison Technologies machine fabrication.

#dns #lookalikes #lookalikeDomain #threatintel #cybercrime #threatintelligence #cybersecurity #infoblox #infobloxthreatintel #infosec #pdns #phishing #malware #scam #dod

Half-baked Twitter DM encryption was made by devs who have since moved on.
https://mjg59.dreamwidth.org/71188.html

It's #FollowFriday !

Boosts appreciated

#photography #art
@dev
@noco3n_com
@arnodegroote
@entenza
@adam_y
@greentothebone
@bumper @didib
@artskorps
@anna_lillith
@ericafustero
@djwtwo

#drawing
@joyousjoyness
@KarenKasparArt
@papernoise
@maobul
@marthacrimson
@Parker51

#infosec #privacy
@brian_greenberg
@JulianOliver
@openrightsgroup
@profdiggity

If you have a blog and you take pictures, join maybe
#the100pics challenge - https://the100.pics

Hot take, If you develop for cloud environments you need to get used to a default deny on egress and only allow dependencies to be pulled during the build phase. You should know exactly what is talking to where and why. allow all on egress is the equivalent to I chmod 777'd it and it works so whatever...