shakedown.social is one of the many independent Mastodon servers you can use to participate in the fediverse.
A community for live music fans with roots in the jam scene. Shakedown Social is run by a team of volunteers (led by @clifff and @sethadam1) and funded by donations.

Administered by:

Server stats:

254
active users

#itsec

2 posts2 participants0 posts today
Kevin Karhan :verified:<p><span class="h-card" translate="no"><a href="https://nrw.social/@Boerps" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>Boerps</span></a></span> Ich bestreite das Problem nicht - im Gegenteil!</p><ul><li>Nur bin ich <em>weder beauftragt noch befugt</em> die <a href="https://infosec.space/tags/ITsec" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ITsec</span></a>, <a href="https://infosec.space/tags/InfoSec" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>InfoSec</span></a>, <a href="https://infosec.space/tags/OpSec" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>OpSec</span></a> &amp; <a href="https://infosec.space/tags/ComSec" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ComSec</span></a> der <a href="https://infosec.space/tags/Polizei" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Polizei</span></a> zu fixen...</li></ul><p><a href="https://infosec.space/@kkarhan/115027630665380411" translate="no" rel="nofollow noopener" target="_blank"><span class="invisible">https://</span><span class="ellipsis">infosec.space/@kkarhan/1150276</span><span class="invisible">30665380411</span></a></p>
Klaudia (aka jinxx)<p>Ihr Lieben, die <a href="https://literatur.social/tags/Neuauflage" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Neuauflage</span></a> von "Dann haben die halt meine Daten. Na und?!" <a href="https://literatur.social/tags/NaUndDasBuch" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>NaUndDasBuch</span></a> ist im Werden. Was sind eurer Meinung nach Themen, die jetzt beim <a href="https://literatur.social/tags/%C3%9Cberarbeiten" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Überarbeiten</span></a> keinesfalls fehlen sollten?</p><p><a href="https://literatur.social/tags/Datenschutz" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Datenschutz</span></a> <a href="https://literatur.social/tags/TeamDatenschutz" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>TeamDatenschutz</span></a> <a href="https://literatur.social/tags/ITSec" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ITSec</span></a> <a href="https://literatur.social/tags/Computerliteracy" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Computerliteracy</span></a> <a href="https://literatur.social/tags/Internetliteracy" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Internetliteracy</span></a> </p><p>RT welcome.</p>
Kevin Karhan :verified:<p><span class="h-card" translate="no"><a href="https://chaos.social/@HonkHase" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>HonkHase</span></a></span> leider war das abzusehen.</p><p><a href="https://infosec.space/tags/ITsec" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ITsec</span></a> ist bei <a href="https://infosec.space/tags/BOS" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>BOS</span></a>|en wie <a href="https://infosec.space/tags/Feuerwehr" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Feuerwehr</span></a> auch eher unbekannt.</p>
Paralhax 👾<p>‘David logged in using a facial scan, then, with a couple of lines of code, Osswald was able to insert a Hello facial scan he made on another machine into the database and unlock David's machine instantly.’ :blobcat_thisisfine: </p><p><a href="https://www.theregister.com/2025/08/07/windows_hello_hell_no/" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://www.</span><span class="ellipsis">theregister.com/2025/08/07/win</span><span class="invisible">dows_hello_hell_no/</span></a></p><p><a href="https://infosec.exchange/tags/BlackHat" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>BlackHat</span></a> <br><a href="https://infosec.exchange/tags/authentication" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>authentication</span></a> <br><a href="https://infosec.exchange/tags/biometrics" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>biometrics</span></a> <br><a href="https://infosec.exchange/tags/microsoft" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>microsoft</span></a> <br><a href="https://infosec.exchange/tags/ITSec" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ITSec</span></a> <br><a href="https://infosec.exchange/tags/CyberSecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>CyberSecurity</span></a> <br><a href="https://infosec.exchange/tags/BlackHat2025" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>BlackHat2025</span></a></p>
Kevin Karhan :verified:<p><span class="h-card" translate="no"><a href="https://infosec.exchange/@krypt3ia" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>krypt3ia</span></a></span> or rather what they realize now is that <a href="https://infosec.space/tags/ITsec" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ITsec</span></a> is not an optionality, but mandatory.</p>
Kevin Karhan :verified:<p><span class="h-card" translate="no"><a href="https://tweesecake.social/@adisonverlice" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>adisonverlice</span></a></span> good question.</p><p>Since you seem deep into the <a href="https://infosec.space/tags/ITsec" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ITsec</span></a> / <a href="https://infosec.space/tags/InfoSec" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>InfoSec</span></a> / <a href="https://infosec.space/tags/OpSec" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>OpSec</span></a> / <a href="https://infosec.space/tags/ComSec" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ComSec</span></a> weeds I can recommend <a href="https://infosec.exchange" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="">infosec.exchange</span><span class="invisible"></span></a> (if you want your public posts be seen &amp; indexable by <a href="https://infosec.space/tags/threads" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>threads</span></a> &amp; others) or also <a href="https://infosec.space" translate="no" rel="nofollow noopener" target="_blank"><span class="invisible">https://</span><span class="">infosec.space</span><span class="invisible"></span></a> if you don't want that.</p><p>I do want add way more instances into my <a href="https://github.com/greyhat-academy/lists.d/blob/main/activitypub.servers.list.tsv" rel="nofollow noopener" target="_blank">recommendation list</a> but I didn't have time to.</p>
Kevin Karhan :verified:<p><span class="h-card" translate="no"><a href="https://goingdark.social/@watchfulcitizen" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>watchfulcitizen</span></a></span> <span class="h-card" translate="no"><a href="https://tweesecake.social/@adisonverlice" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>adisonverlice</span></a></span> The problem is not <span class="h-card" translate="no"><a href="https://mastodon.online/@mullvadnet" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>mullvadnet</span></a></span> but <a href="https://infosec.space/tags/VPN" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>VPN</span></a>|s in general.</p><ul><li>Because <a href="https://infosec.space/tags/VPNs" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>VPNs</span></a> are dishonestly marketed at <a href="https://infosec.space/tags/TechIlliterates" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>TechIlliterates</span></a> when in fact they <a href="https://web.archive.org/web/20220112020000/https://twitter.com/thegrugq/status/1085614812581715968" rel="nofollow noopener" target="_blank">ain't gonna save their ass.</a></li></ul><p>People need to put realistic expectations into what <a href="https://infosec.space/tags/MullvadVPN" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>MullvadVPN</span></a> and others like <a href="https://infosec.space/tags/Mullvad" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Mullvad</span></a> can and can't do, both technically and legally.</p><ul><li>You'd have a better chance with a <span class="h-card" translate="no"><a href="https://social.freifunk.net/@freifunk" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>freifunk</span></a></span> / <a href="https://infosec.space/tags/freifunk" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>freifunk</span></a> <a href="https://infosec.space/tags/WiFi" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>WiFi</span></a> or even better <span class="h-card" translate="no"><a href="https://mastodon.social/@torproject" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>torproject</span></a></span> / <a href="https://infosec.space/tags/Tor" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Tor</span></a>, but that's because things ain't that easy as advertised:</li></ul><p><a href="https://infosec.space/tags/ComSec" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ComSec</span></a>, <a href="https://infosec.space/tags/ITsec" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ITsec</span></a>, <a href="https://infosec.space/tags/InfoSec" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>InfoSec</span></a> &amp; <a href="https://infosec.space/tags/OpSec" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>OpSec</span></a> need to be interweaved!</p><ul><li>Granted Mullvad, like <span class="h-card" translate="no"><a href="https://monocles.social/@monocles" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>monocles</span></a></span>, go out of their way to minimze the amounts of data they have, so there's not much they can hand over even when forced under duress to comply with a <em>duely issued warrant</em>!</li></ul><p>Any decent <span class="h-card" translate="no"><a href="https://chaos.social/@cryptoparty" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>cryptoparty@chaos.social</span></a></span> / <span class="h-card" translate="no"><a href="https://mastodon.earth/@cryptoparty" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>cryptoparty@mastodon.earth</span></a></span> will advise you further...</p>
Doug Bostrom<p>Little remarked.</p><p>BTW, has anybody tracked/calculated the ratio of women vs. men fired by this administration? </p><p><a href="https://scicomm.xyz/tags/ITSec" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ITSec</span></a></p><p><a href="https://www.theregister.com/2025/07/31/jen_easterly_west_point_termination/" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://www.</span><span class="ellipsis">theregister.com/2025/07/31/jen</span><span class="invisible">_easterly_west_point_termination/</span></a></p>
Kevin Karhan :verified:<p><span class="h-card" translate="no"><a href="https://tiggi.es/@thygrrr" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>thygrrr</span></a></span> <span class="h-card" translate="no"><a href="https://social.treehouse.systems/@PallasRiot" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>PallasRiot</span></a></span> Personally, I'd not count on <span class="h-card" translate="no"><a href="https://mastodon.online/@mullvadnet" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>mullvadnet</span></a></span> being a <em>"<a href="https://infosec.space/tags/LoglessVPN" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>LoglessVPN</span></a>"</em> because if they were unable and/or unwilling to comply they would've been shut down due to the statistical inevitability of being swarmed by bad actors!</p><ul><li><a href="https://infosec.space/tags/TLDR" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>TLDR</span></a>: <a href="https://infosec.space/@kkarhan/114953865903981711" rel="nofollow noopener" target="_blank">Don't rely on anyone to cover your ass!</a> and exercise proper security <a href="https://infosec.space/tags/Nachash" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Nachash</span></a> <a href="https://pastebin.com/GrV3uYh5" rel="nofollow noopener" target="_blank">did</a>.</li></ul><p>This is far more complex than just <a href="https://infosec.space/tags/ComSec" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ComSec</span></a>, but <a href="https://infosec.space/tags/InfoSec" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>InfoSec</span></a>, <a href="https://infosec.space/tags/OpSec" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>OpSec</span></a> &amp; <a href="https://infosec.space/tags/ITsec" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ITsec</span></a> come together and need to be weaved into a continuous, multi-layered pattern...</p><ul><li>Your mileage may vary depending on your needs, demands, threats, budget, capabilities and options.</li></ul><p><em>"JuSt UsE a VpN!"</em> is dangerous <a href="https://infosec.space/tags/disinfo" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>disinfo</span></a> towards <a href="https://infosec.space/tags/TechIlliterates" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>TechIlliterates</span></a>!</p>
Kevin Karhan :verified:<p><span class="h-card" translate="no"><a href="https://tweesecake.social/@adisonverlice" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>adisonverlice</span></a></span> worse even is that they didn't just use <span class="h-card" translate="no"><a href="https://mastodon.world/@signalapp" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>signalapp</span></a></span> but a <em>shady <a href="https://infosec.space/tags/3rd" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>3rd</span></a> party client</em> so <em>in this case it's NOT <span class="h-card" translate="no"><a href="https://mastodon.world/@Mer__edith" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>Mer__edith</span></a></span> et. al. who are to blame</em>, but the folks that <em>REFUSED TO ENFORCE <a href="https://infosec.space/tags/ITsec" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ITsec</span></a> &amp; <a href="https://infosec.space/tags/ComSec" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ComSec</span></a></em>!</p><ul><li>Cuz there's a reason they got hired and paid to say <em>"no"</em> and why there's a full suite of dedicaded, applianced hardware for any sensituve comms!</li></ul><p>But then again <a href="https://infosec.space/tags/AgentKrasnov" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>AgentKrasnov</span></a> is an <a href="https://infosec.space/tags/InfoSec" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>InfoSec</span></a>, <a href="https://infosec.space/tags/OpSec" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>OpSec</span></a> &amp; <a href="https://infosec.space/tags/NatSec" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>NatSec</span></a> nightmare!</p>
𝕂𝚞𝚋𝚒𝚔ℙ𝚒𝚡𝚎𝚕<p>🧵 …und wieder ein weiteren Punkt um M$ Produkte zu "vermeiden". Wie viele Warnungen müssen noch von den "Nerds" raus gehen?!</p><p>»Weltweiter Hackerangriff auf Behörden und Firmen über Microsoft-Leck:<br>"Dutzende" Organisationen sind laut "Washington Post" betroffen, das FBI wurde eingeschaltet. Der Fehler dürfte auf lokalen Servern für das Programm Sharepoint liegen«</p><p>🫤 <a href="https://www.derstandard.at/story/3000000280226/hacker-angriff-252ber-microsoft-leck-auf-beh246rden-und-firmen" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://www.</span><span class="ellipsis">derstandard.at/story/300000028</span><span class="invisible">0226/hacker-angriff-252ber-microsoft-leck-auf-beh246rden-und-firmen</span></a></p><p><a href="https://chaos.social/tags/microsoft" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>microsoft</span></a> <a href="https://chaos.social/tags/leck" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>leck</span></a> <a href="https://chaos.social/tags/itsicherheit" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>itsicherheit</span></a> <a href="https://chaos.social/tags/behorden" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>behorden</span></a> <a href="https://chaos.social/tags/firmen" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>firmen</span></a> <a href="https://chaos.social/tags/ms" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ms</span></a> <a href="https://chaos.social/tags/hacking" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>hacking</span></a> <a href="https://chaos.social/tags/software" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>software</span></a> <a href="https://chaos.social/tags/itsec" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>itsec</span></a> <a href="https://chaos.social/tags/fbi" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>fbi</span></a> <a href="https://chaos.social/tags/sharepoint" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>sharepoint</span></a> <a href="https://chaos.social/tags/server" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>server</span></a></p>
Kevin Karhan :verified:<p><span class="h-card" translate="no"><a href="https://infosec.exchange/@reverseics" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>reverseics</span></a></span> Just do it like <a href="https://infosec.space/tags/Google" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Google</span></a> <a href="https://infosec.space/tags/ProjectZero" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ProjectZero</span></a> and tell them straight up in their face:</p><p><a href="https://www.youtube.com/watch?v=F_XCDu6GQt4" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://www.</span><span class="">youtube.com/watch?v=F_XCDu6GQt4</span><span class="invisible"></span></a></p><blockquote><p>I was nice once, now I won't! IDGAF what you need to do to fix it. Details will be public in 90 days. Go fuck yourselves! </p></blockquote><p>And basically prepare everything to be ready in precisely to the second 90 days from the moment mail was sent to them.</p><ul><li>Cuz only with <a href="https://infosec.space/tags/consequences" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>consequences</span></a> will we get <a href="https://infosec.space/tags/accountability" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>accountability</span></a>! </li></ul><p><a href="https://infosec.space/tags/ITsec" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ITsec</span></a> <a href="https://infosec.space/tags/InfoSec" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>InfoSec</span></a> <a href="https://infosec.space/tags/OpSec" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>OpSec</span></a> <a href="https://infosec.space/tags/ComSec" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ComSec</span></a></p>
Kevin Karhan :verified:<p>I like how <a href="https://infosec.space/tags/LouisRossman" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>LouisRossman</span></a> decided to <em>put up</em> and now offers a U$D 5.000,-- <a href="https://infosec.space/tags/bounty" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>bounty</span></a> on cracking <a href="https://infosec.space/tags/FutureHome" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>FutureHome</span></a>'s <a href="https://infosec.space/tags/SmartDevices" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>SmartDevices</span></a>! </p><p><a href="https://www.youtube.com/watch?v=eZLkZEGNBV0" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://www.</span><span class="">youtube.com/watch?v=eZLkZEGNBV0</span><span class="invisible"></span></a></p><ul><li>No word on whether he accepts <a href="https://infosec.space/tags/anonymous" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>anonymous</span></a> submissions or payout in <a href="https://infosec.space/tags/Monero" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Monero</span></a> tho... </li></ul><p><a href="https://infosec.space/tags/RightToRepair" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>RightToRepair</span></a> <a href="https://infosec.space/tags/Ownership" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Ownership</span></a> <a href="https://infosec.space/tags/Piracy" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Piracy</span></a> <a href="https://infosec.space/tags/Cracking" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Cracking</span></a> <a href="https://infosec.space/tags/SelfHosting" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>SelfHosting</span></a> <a href="https://infosec.space/tags/Tech" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Tech</span></a> <a href="https://infosec.space/tags/Enshittification" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Enshittification</span></a> <a href="https://infosec.space/tags/ITsec" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ITsec</span></a> <a href="https://infosec.space/tags/InfoSec" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>InfoSec</span></a> <a href="https://infosec.space/tags/Hacking" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Hacking</span></a></p>
Kevin Karhan :verified:<p><a href="https://www.youtube.com/watch?v=3wlNemFwbwE" rel="nofollow noopener" target="_blank">This</a> is nothing new what <span class="h-card" translate="no"><a href="https://mastodon.social/@doingfedtime" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>doingfedtime</span></a></span> shows here.</p><ul><li>Certainly, I am displeased about the way <span class="h-card" translate="no"><a href="https://mastodon.social/@torproject" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>torproject</span></a></span> does downgrade things, but then again the default config of <a href="https://infosec.space/tags/TorBrowser" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>TorBrowser</span></a> &amp; <span class="h-card" translate="no"><a href="https://venera.social/profile/tails_live" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>tails_live</span></a></span> / <span class="h-card" translate="no"><a href="https://fosstodon.org/@tails" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>tails</span></a></span> / <a href="https://infosec.space/tags/Tails" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Tails</span></a> was meant to let people circumvent censorship, not <a href="https://pastebin.com/GrV3uYh5" rel="nofollow noopener" target="_blank">run</a> DNMs!</li></ul><p>Obviously they need to fix that and work towards <em>better security</em>, including to enshure <a href="https://infosec.space/tags/Tor" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Tor</span></a> <a href="https://infosec.space/tags/Browser" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Browser</span></a> doesn't reset it's <a href="https://infosec.space/tags/SecuritySettings" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>SecuritySettings</span></a> on reboot, because if people <em>made the concious decision</em> to <em>block all <a href="https://infosec.space/tags/JavaScript" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>JavaScript</span></a></em> then they that should be at least respected! </p><p><a href="https://infosec.space/tags/ITsec" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ITsec</span></a> <a href="https://infosec.space/tags/InfoSec" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>InfoSec</span></a> <a href="https://infosec.space/tags/OpSec" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>OpSec</span></a> <a href="https://infosec.space/tags/ComSec" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ComSec</span></a></p>
Kevin Karhan :verified:<p><span class="h-card" translate="no"><a href="https://cyberplace.social/@GossiTheDog" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>GossiTheDog</span></a></span> okay, so the <a href="https://infosec.space/tags/ITsec" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ITsec</span></a> is run by <em>criminally incompetent <a href="https://infosec.space/tags/MAGA" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>MAGA</span></a>|ts</em> that have no clue that they're ruining <a href="https://infosec.space/tags/NatSec" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>NatSec</span></a> by refusing to patch shit as long as they can shitpost stale memes and speculate with shitcoins on taxpayers' time.</p><ul><li>In that case, I'd not see that as a hack, but more like <a href="https://www.youtube.com/watch?v=F6ySNAA_2Iw&amp;t=18s" rel="nofollow noopener" target="_blank">natural selection.</a></li></ul><p>Even if I wanted to fix it (and I have no reason to do so given the <a href="https://infosec.space/tags/Trump" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Trump</span></a>-Regime basically displaced everyone I hold dear), I could be glad if they just decided to sue the shit out of me for <em>"hacking"</em>, not try to put a bullet in my head or not forcibly disappear me into a black site like Diego Garcia.</p><ul><li>I mean, if there was like a proper <a href="https://infosec.space/tags/ResponsibleDisclosure" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ResponsibleDisclosure</span></a> channel anywhere <a href="https://cyberplace.social/@GossiTheDog/114841925781577005" rel="nofollow noopener" target="_blank">you'd propably already used that one.</a> I'm just not gonna do that because the US is hatecriming mutuals of mine and with <a href="https://infosec.space/tags/TechIlliterate" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>TechIlliterate</span></a> judges that could be convinced that using <a href="https://infosec.space/tags/nmap" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>nmap</span></a> to confirm this is <em>"<a href="https://infosec.space/tags/hacking" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>hacking</span></a>"</em> I'm too busy getting folks to safety than getting an unwanted home invasion by armed cops traumatizing neighbours.</li></ul>
Kevin Karhan :verified:<p><span class="h-card" translate="no"><a href="https://social.tchncs.de/@simsus" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>simsus</span></a></span> * DUN DUN DUUUN!*</p><p>Wofür wurde nochmal <a href="https://infosec.space/tags/TETRA" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>TETRA</span></a> eingeführt?</p><p>Wenn Leute <a href="https://infosec.space/tags/InfoSec" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>InfoSec</span></a>, <a href="https://infosec.space/tags/OpSec" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>OpSec</span></a> &amp; <a href="https://infosec.space/tags/ITsec" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ITsec</span></a> vergeigen ist <a href="https://infosec.space/tags/ComSec" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ComSec</span></a> für'n Arsch!</p><p><a href="https://infosec.space/tags/DEpol" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>DEpol</span></a> <a href="https://infosec.space/tags/NatSec" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>NatSec</span></a></p>
doctorambient<p>TIL all your <a href="https://mastodon.social/tags/2FA" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>2FA</span></a>'s can hit at once.</p><p>"Hello, Browser, I'd like to log in."</p><p>🤖 "Great! Check your email. Also, you have 35 seconds to respond to this before I lock you out."</p><p>"Hi Email! Can I see my last message?"</p><p>🤖 "Um, you've been ignoring me lately so go get your tablet. Also, I have a decade of your email inside me so you better respond within 10 seconds before I nuke it all."</p><p>"Hey Tablet, I need to open you up now."</p><p>🤖 "Who dat? I'm going to need you to grab your phone..."</p><p><a href="https://mastodon.social/tags/itsec" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>itsec</span></a> <a href="https://mastodon.social/tags/humor" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>humor</span></a>?</p>
Kevin Karhan :verified:<p><span class="h-card" translate="no"><a href="https://universeodon.com/@cryptadamist" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>cryptadamist</span></a></span> <span class="h-card" translate="no"><a href="https://mastodon.social/@panigrc" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>panigrc</span></a></span> <span class="h-card" translate="no"><a href="https://pounced-on.me/@finalstaticfox" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>finalstaticfox</span></a></span> <span class="h-card" translate="no"><a href="https://mastodon.social/@dansup" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>dansup</span></a></span> </p><p>Obviously that's another evidence of why <em><a href="https://infosec.space/tags/KYC" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>KYC</span></a> IS THE ILLICIT ACTIVITY!</em>... </p><ul><li><p><a href="https://universeodon.com/@cryptadamist/114825088355068446" rel="nofollow noopener" target="_blank">That problem</a> doesn't exist with <a href="https://infosec.space/tags/Monero" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Monero</span></a> as one cannot determine <a href="https://infosec.space/tags/transactions" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>transactions</span></a>, <a href="https://infosec.space/tags/balances" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>balances</span></a> or link wallets by observing the <a href="https://infosec.space/tags/blockchain" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>blockchain</span></a>. Unlike with all those Shitcoins like <a href="https://infosec.space/tags/Bitcoin" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Bitcoin</span></a> or <a href="https://infosec.space/tags/Ethereum" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Ethereum</span></a>! </p></li><li><p>So even if I had a Monero Wallet and even if you knew the wallet address, you cannot see what's on it or what transactions go in and out. </p></li><li><p>It's even more secure than <a href="https://infosec.space/tags/SEPA" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>SEPA</span></a> because thanks to <a href="https://infosec.space/tags/SWIFT" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>SWIFT</span></a> &amp; <a href="https://infosec.space/tags/FATCA" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>FATCA</span></a> the <a href="https://infosec.space/tags/IRS" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>IRS</span></a> and <a href="https://infosec.space/tags/TreasuryDept" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>TreasuryDept</span></a>. have bulk access to these systems and can basically see account balances in real time (when it comes to <a href="https://infosec.space/tags/US" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>US</span></a> citizens! The rest they can approximate with bulk access to payment providers and intelligence).</p></li></ul><p>So yeah, blame lack of <a href="https://infosec.space/tags/privacy" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>privacy</span></a>, <a href="https://infosec.space/tags/secrecy" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>secrecy</span></a>, and <a href="https://infosec.space/tags/custody" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>custody</span></a> as well as <a href="https://infosec.space/tags/doxxing" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>doxxing</span></a> in the form of KYC under the <em>false pretense of <a href="https://infosec.space/tags/AML" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>AML</span></a></em> for the rampant rise of <a href="https://infosec.space/tags/kidnappings" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>kidnappings</span></a> and armed robberies of <a href="https://infosec.space/tags/shitcoin" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>shitcoin</span></a> HODL'ers.</p><ul><li>Obviously I do condemn such acts of violence as a matter of principle.</li></ul><p>The fact that there are automated, idiot-proof tools like <a href="https://infosec.space/tags/chainalysis" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>chainalysis</span></a> that enable statistical tracking and linking of transactions for everything <em>except Monero</em> is the problem. </p><ul><li>Don't believe that such <em>"AML compliance"</em> tools are unique to the clients of said providers, because it's just connecting dots from public records. No warrant nor insiders nor MLAT needed.</li></ul><p>IOW: OFC I'd have to expect getting robbed by organized crime if I were to post evidence of me sleeping on genuine gold bars. </p><ul><li>That's what [bank] vaults are for! </li><li>Sadly shitcoin-fans seem to disregard basic <a href="https://infosec.space/tags/OpSec" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>OpSec</span></a>, <a href="https://infosec.space/tags/InfoSec" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>InfoSec</span></a>, <a href="https://infosec.space/tags/ComSec" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ComSec</span></a> &amp; <a href="https://infosec.space/tags/ITsec" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ITsec</span></a> that even <a href="https://infosec.space/tags/TradFinance" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>TradFinance</span></a> do execute.</li></ul>
𝕂𝚞𝚋𝚒𝚔ℙ𝚒𝚡𝚎𝚕<p>Critical Sudo Vulnerabilities Let Local Users Gain Root Access on Linux, Impacting Major Distros</p><p>Cybersecurity researchers have disclosed two security flaws in the Sudo command-line utility for Linux and Unix-like operating systems that could enable local attackers to escalate their privileges to root on susceptible machines.</p><p>🐧 <a href="https://thehackernews.com/2025/07/critical-sudo-vulnerabilities-let-local.html" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">thehackernews.com/2025/07/crit</span><span class="invisible">ical-sudo-vulnerabilities-let-local.html</span></a></p><p><a href="https://chaos.social/tags/linux" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>linux</span></a> <a href="https://chaos.social/tags/itsecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>itsecurity</span></a> <a href="https://chaos.social/tags/sudo" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>sudo</span></a> <a href="https://chaos.social/tags/users" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>users</span></a> <a href="https://chaos.social/tags/root" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>root</span></a> <a href="https://chaos.social/tags/it" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>it</span></a> <a href="https://chaos.social/tags/disclosure" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>disclosure</span></a> <a href="https://chaos.social/tags/unix" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>unix</span></a> <a href="https://chaos.social/tags/itsec" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>itsec</span></a> <a href="https://chaos.social/tags/distros" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>distros</span></a> <a href="https://chaos.social/tags/oss" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>oss</span></a></p>
Kevin Karhan :verified:<p><span class="h-card" translate="no"><a href="https://furry.engineer/@patcharcana" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>patcharcana</span></a></span> how we all love outdated regulations...</p><p><a href="https://infosec.space/tags/sarcasm" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>sarcasm</span></a> <a href="https://infosec.space/tags/ITsec" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ITsec</span></a></p>