cs

If you use 23andme and opted in to the *DNA relative* feature, beware. Gentle reminder to never reuse passwords and avoid data sharing. #infosec #privacy #CyberSecurity #CybersecurityAwarenessMonth #cybersecuritytips bleepingcomputer.com/news/security/…

@hackinarticles Who picked up the phone!?

Pic of the Day #infosec #cybersecurity #cybersecuritytips #pentesting #cybersecurityawareness #informationsecurity

Love or hate Apple, this is a great step forward in sharing access to trusted contacts via end to end encryption, utilizing passkeys instead of passwords. #privacy #infosec #cybersecurity techcrunch.com/2023/06/05/saf…

@RachelTobac sure, they can process audio from a shared video, live photo, voice recording if you grant permissions; selectively or "all." But stating it's a big deal because the mic indicator isn't lit is a bit of a click bait and bit over exaggerated as an issue.

Interesting — anyone have examples of exploiting this in the wild? Curious to learn more.

@moral_haphazard @ZoeSchiffer @lorakolodny @e His EA.

NEW: Elon Musk has another alt account, @e, that he had Twitter transfer to him shortly after the takeover. I'm told the person who owned the account did not want to hand it over (the account had been hacked and suspended before due to the high value handle, and the previous owner wanted to keep it).

@DuckDuckGo They meant creating a new email. Let’s say you want to mail someuser@gmail.com from your duck email (yourduckemail@duck.com) You can do this by entering the recipiebt as: someuser_at_gmail.com_yourduckemail@duck.com

Yup! Reply to any email sent to one of your Duck Addresses as you normally would. We route your replies through duck.com so they're delivered from the Duck Address they were sent to.

#JuiceJacking is a thing. Besides the advice given, use wireless charging, use a cable that only allows power or ensure you press `don't trust` if you see a `trust this computer` prompt. #privacy #infosec #CyberSecurityAwareness malwarebytes.com/blog/news/2023…

@lorakolodny hope it gets better!

@NathanMcNulty PWAs open up their own attack surface and carry their own risk, regardless of the user. Please have a read about service works and manifests.

Third, I know some people absolutely love Outlook, but you really should consider running the Outlook PWA for high risk users, even consider MDAG containers It's surprisingly good and reduces attack surface We can pre-deploy these now via policy as well! #webappinstallforcelist" target="_blank" rel="nofollow noopener">learn.microsoft.com/en-us/deployed…

Super busy week and missed all the fun... I'm seeing a lot of great discussions around discovery, detection, etc., but the only remediation I'm seeing mentioned is "just patch" Except patching doesn't fix the root issue, as is often the case with this type of vuln What do? 🧵

Reaching out to my #infosec and #privacy advocates, i'm in search of getting some feedback and perspective on CeartasDMCA - DM or reply.

Signal will exit the UK rather than comply with a new law. The bill is citing public safety and CSAM concerns as the motive. #privacy #infosec arstechnica.com/information-te…

@JohnnyAkzam Oh, cause we know rules shouldn’t apply to him.

@Valkyrae How? No 2FA? Reusing passwords?

currently being hacked on YouTube and they changed my username to Tesla and proceeded to play a Tesla video on livestream lol.. @elonmusk if you're the one hacking me plz stop

Free services hardly are ever "free." Ensure you're using privacy first devices, services and applications. #privacy #infosec npr.org/2022/11/14/113…

@mattburgess1 @RachelTobac Let’s see how this plays out. Thanks for sharing.

The security and privacy community said this would happen and big surprise, it happened. #infosec #privacy

@cybersecmeg Wow! Beautiful pictures!

here are some of my favorite photos from my hike within the saxon switzerland national park (which ironically isn’t within switzerland, rather within germany and the czech republic) this weekend!

Tiktok's parent company ByteDance plans to "monitor the personal location of some American's." Restricting what data is shared with these apps is becoming more and more important for your #privacy! #infosec gizmodo.com/tiktok-bytedan…

@RachelTobac @donie @defcon Always great stuff!

*New live hack demo video* CNN’s @donie asked me to hack him again at @defcon — hacked him last time thru service provider call center attacks, but this time I intruded using the easiest method: reused passwords found in data breaches. Here’s the breakdown.