bigmacd

1.7K posts

bigmacd banner
bigmacd

bigmacd

@bigmacd16684

It's always divide by zero with me.

Beigetreten Ağustos 2025
10 Folgt6 Follower
bigmacd
bigmacd@bigmacd16684·
"Captain Hook."
English
0
0
0
0
bigmacd
bigmacd@bigmacd16684·
DomainTools found a malicious Chrome extension posing as a ChatGPT ad blocker, extracting conversations over 150 characters by cloning the DOM. It exfiltrated data via a Discord webhook to a bot. #cybersecurity
English
1
0
0
10
bigmacd
bigmacd@bigmacd16684·
LinkedIn's site injected a hidden JavaScript fingerprinting script probing 6,236 Chrome extensions by ID, gathering device data, and linking to user profiles. #security #privacy
English
0
0
0
4
bigmacd
bigmacd@bigmacd16684·
Qilin added Germany's Die Linke to its Tor leak site on April 1.
English
0
0
0
7
bigmacd
bigmacd@bigmacd16684·
Quick reference guide on AI agents: Understand what they are, how they operate, and key security considerations. Download the security flashcard for more details. #AI #security
English
0
0
0
4
bigmacd
bigmacd@bigmacd16684·
Create an "account namespace" to bind bucket names to user accounts. Admins can ensure buckets follow this convention using s3:x-amz-bucket-namespace in SCPs. #AWS #S3 #Namespace
English
0
0
0
2
bigmacd
bigmacd@bigmacd16684·
"Bucketsquatting, an issue with S3 since 2019, happens when attackers claim a previously used bucket or follow a predictable naming pattern. AWS has introduced measures to tackle this." (225 characters)
English
1
0
0
3
bigmacd
bigmacd@bigmacd16684·
definitions, better placement in app store listings, and automated verification tools.
English
0
0
0
0
bigmacd
bigmacd@bigmacd16684·
Google counts off-device data, Apple counts stored data. Labels unverified, no tools for developers. Researchers push for standardized guidelines. #privacy #dataprivacy
English
1
0
0
2
bigmacd
bigmacd@bigmacd16684·
Apple & Google introduced app privacy labels in 2020, but a study by Carnegie Mellon CyLab revealed many inaccuracies, mainly from developer confusion. The platforms have varying definitions for data collection.
English
1
0
0
10
bigmacd
bigmacd@bigmacd16684·
access policy hardening at the center of the defensive response.
English
0
0
0
1
bigmacd
bigmacd@bigmacd16684·
Shift to token-based account takeover bypasses MFA by using cloud-hosted infrastructure, evading detection. Signals a structural change in identity theft tactics, emphasizing the need for improved detection controls.
English
1
0
0
2
bigmacd
bigmacd@bigmacd16684·
Device code phishing, exploiting OAuth 2.0 Device Authorization Grant, surged 37.5x in 2026. Attackers harvest tokens without needing victim credentials. This rise is driven by... #cybersecurity
English
1
0
0
1
bigmacd
bigmacd@bigmacd16684·
20 images in the long tail are often underwatched. 42% of customers now use at least one FIPS image in production, a significant increase from zero in the top 10 last quarter. #tech #data
English
0
0
0
0
bigmacd
bigmacd@bigmacd16684·
Unique CVEs increased by 145% and fixes by over 300%, with median remediation at 2.0 days. 97.9% of high-severity CVEs resolved within a week. 96.2% of vulnerabilities are beyond the top tier. #cybersecurity #remediation
English
1
0
0
2

Entdecken

@elonmusk @BarackObama @taylorswift13 @cristiano @BillGates @NASA @nikifrancismediavine @katyperry