ADLERWEB//BitBastelei

Seth G.<a href="https://chaos.social/tags/Google" class="mention hashtag" rel="nofollow noopener" target="_blank">#Google</a> <a href="https://chaos.social/tags/Pixel" class="mention hashtag" rel="nofollow noopener" target="_blank">#Pixel</a> Update Bulletin—October 2025<a href="https://source.android.com/docs/security/bulletin/pixel/2025-10-01" rel="nofollow noopener" translate="no" target="_blank">https://source.android.com/docs/security/bulletin/pixel/2025-10-01</a> <a href="https://chaos.social/tags/GooglePixel" class="mention hashtag" rel="nofollow noopener" target="_blank">#GooglePixel</a> <a href="https://chaos.social/tags/Android" class="mention hashtag" rel="nofollow noopener" target="_blank">#Android</a> <a href="https://chaos.social/tags/security" class="mention hashtag" rel="nofollow noopener" target="_blank">#security</a> <a href="https://chaos.social/tags/InfoSec" class="mention hashtag" rel="nofollow noopener" target="_blank">#InfoSec</a>

Jacky KapadiaSmart Tech, Sneaky Eyes: Protecting Your Home Privacy.<a href="https://medium.com/@jckapadia003/smart-tech-sneaky-eyes-protecting-your-home-privacy-3eabf7dd613f" rel="nofollow noopener" translate="no" target="_blank">https://medium.com/@jckapadia003/smart-tech-sneaky-eyes-protecting-your-home-privacy-3eabf7dd613f</a><a href="https://flipboard.social/tags/SmartHomae" class="mention hashtag" rel="nofollow noopener" target="_blank">#SmartHomae</a> <a href="https://flipboard.social/tags/SmartTech" class="mention hashtag" rel="nofollow noopener" target="_blank">#SmartTech</a> <a href="https://flipboard.social/tags/IoT" class="mention hashtag" rel="nofollow noopener" target="_blank">#IoT</a> <a href="https://flipboard.social/tags/InternetOfThings" class="mention hashtag" rel="nofollow noopener" target="_blank">#InternetOfThings</a> <a href="https://flipboard.social/tags/Privacy" class="mention hashtag" rel="nofollow noopener" target="_blank">#Privacy</a> <a href="https://flipboard.social/tags/DataPrivacy" class="mention hashtag" rel="nofollow noopener" target="_blank">#DataPrivacy</a> <a href="https://flipboard.social/tags/CyberSecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#CyberSecurity</a> <a href="https://flipboard.social/tags/Tech" class="mention hashtag" rel="nofollow noopener" target="_blank">#Tech</a> <a href="https://flipboard.social/tags/Technology" class="mention hashtag" rel="nofollow noopener" target="_blank">#Technology</a> <a href="https://flipboard.social/tags/DigitalPrivacy" class="mention hashtag" rel="nofollow noopener" target="_blank">#DigitalPrivacy</a> <a href="https://flipboard.social/tags/CyberAware" class="mention hashtag" rel="nofollow noopener" target="_blank">#CyberAware</a> <a href="https://flipboard.social/tags/InfoSec" class="mention hashtag" rel="nofollow noopener" target="_blank">#InfoSec</a> <a href="https://flipboard.social/tags/SmartDevice" class="mention hashtag" rel="nofollow noopener" target="_blank">#SmartDevice</a> <a href="https://flipboard.social/tags/ConnectedHome" class="mention hashtag" rel="nofollow noopener" target="_blank">#ConnectedHome</a> <a href="https://flipboard.social/tags/HomeTech" class="mention hashtag" rel="nofollow noopener" target="_blank">#HomeTech</a>

Ian Campbell 🏴ICE now owns roving vans with integrated cell site simulators<a href="https://techcrunch.com/2025/10/07/ice-bought-vehicles-equipped-with-fake-cell-towers-to-spy-on-phones/" rel="nofollow noopener" translate="no" target="_blank">https://techcrunch.com/2025/10/07/ice-bought-vehicles-equipped-with-fake-cell-towers-to-spy-on-phones/</a>for commentary on this breaking news, i turn to my recently-made friend Ray HunterLuckily everyone else can too!<a href="https://masto.deoan.org/tags/infosec" class="mention hashtag" rel="nofollow noopener" target="_blank">#infosec</a> <a href="https://masto.deoan.org/tags/privacy" class="mention hashtag" rel="nofollow noopener" target="_blank">#privacy</a> <a href="https://www.eff.org/deeplinks/2025/03/meet-rayhunter-new-open-source-tool-eff-detect-cellular-spying" rel="nofollow noopener" translate="no" target="_blank">https://www.eff.org/deeplinks/2025/03/meet-rayhunter-new-open-source-tool-eff-detect-cellular-spying</a>

Kevin Karhan :verified:<a href="https://chaos.social/@quincy" class="u-url mention" rel="nofollow noopener" target="_blank">@quincy</a> may the cyberfascists realize that they'd be the ones firing the first shots if they chose that shite and that they shall not cross that line!<a href="https://infosec.space/tags/sarcasm" class="mention hashtag" rel="nofollow noopener" target="_blank">#sarcasm</a> <a href="https://infosec.space/tags/comment" class="mention hashtag" rel="nofollow noopener" target="_blank">#comment</a> <a href="https://infosec.space/tags/EUpol" class="mention hashtag" rel="nofollow noopener" target="_blank">#EUpol</a> <a href="https://infosec.space/tags/ChatControl" class="mention hashtag" rel="nofollow noopener" target="_blank">#ChatControl</a> <a href="https://infosec.space/tags/Cyberfascism" class="mention hashtag" rel="nofollow noopener" target="_blank">#Cyberfascism</a> <a href="https://infosec.space/tags/SurveillanceState" class="mention hashtag" rel="nofollow noopener" target="_blank">#SurveillanceState</a> <a href="https://infosec.space/tags/PoliceState" class="mention hashtag" rel="nofollow noopener" target="_blank">#PoliceState</a> <a href="https://infosec.space/tags/Fascism" class="mention hashtag" rel="nofollow noopener" target="_blank">#Fascism</a> <a href="https://infosec.space/tags/InfoSec" class="mention hashtag" rel="nofollow noopener" target="_blank">#InfoSec</a> <a href="https://infosec.space/tags/ComSec" class="mention hashtag" rel="nofollow noopener" target="_blank">#ComSec</a> <a href="https://infosec.space/tags/Privacy" class="mention hashtag" rel="nofollow noopener" target="_blank">#Privacy</a> <a href="https://infosec.space/tags/HumanRights" class="mention hashtag" rel="nofollow noopener" target="_blank">#HumanRights</a> <a href="https://infosec.space/tags/CivilRights" class="mention hashtag" rel="nofollow noopener" target="_blank">#CivilRights</a>

lichtlosWaiting for the first “xy sent you an encrypted message with Gmail additional encryption” phishing wave <a href="https://chaos.social/tags/infosec" class="mention hashtag" rel="nofollow noopener" target="_blank">#infosec</a>

DanYay! <a href="https://infosec.exchange/@PagedOut" class="u-url mention" rel="nofollow noopener" target="_blank">@PagedOut</a> Issue #7 has been released! <a href="https://pagedout.institute/" rel="nofollow noopener" translate="no" target="_blank">https://pagedout.institute/</a>PDF: <a href="https://pagedout.institute/download/PagedOut_007.pdf" rel="nofollow noopener" translate="no" target="_blank">https://pagedout.institute/download/PagedOut_007.pdf</a> <a href="https://chaos.social/tags/pagedout" class="mention hashtag" rel="nofollow noopener" target="_blank">#pagedout</a> <a href="https://chaos.social/tags/ezine" class="mention hashtag" rel="nofollow noopener" target="_blank">#ezine</a> <a href="https://chaos.social/tags/hacking" class="mention hashtag" rel="nofollow noopener" target="_blank">#hacking</a> <a href="https://chaos.social/tags/infosec" class="mention hashtag" rel="nofollow noopener" target="_blank">#infosec</a>

Aljoscha Rittner (beandev)«archive.today» liefert Daten von Website-Besuchern nach Russland – Steiger Legal<a href="https://steigerlegal.ch/2024/05/05/archive-today-russland/" rel="nofollow noopener" translate="no" target="_blank">https://steigerlegal.ch/2024/05/05/archive-today-russland/</a>> «archive. today» ist eine beliebte Website für den Zugriff auf kostenpflichtige Medieninhalte. Bekannte Domainnamen für die Website sind archive. is und archive. ph. Was viele Nutzer nicht wissen: Die Website liefert Daten der Nutzer nach Russland.Alternative ist archive.org<a href="https://social.tchncs.de/tags/InternetArchive" class="mention hashtag" rel="nofollow noopener" target="_blank">#InternetArchive</a> <a href="https://social.tchncs.de/tags/RUSpol" class="mention hashtag" rel="nofollow noopener" target="_blank">#RUSpol</a> <a href="https://social.tchncs.de/tags/InfoSec" class="mention hashtag" rel="nofollow noopener" target="_blank">#InfoSec</a>

Harry SintonenBroadcom has stopped delivering automated updates to <a href="https://infosec.exchange/tags/VMware" class="mention hashtag" rel="nofollow noopener" target="_blank">#VMware</a> Fusion and Workstation. All updates have to be downloaded and installed manually from the Broadcom Support Portal (as a side note: This portal is one of the worst corporate "support" websites I've seen in the last decade).This is terrible. It will lead to tens of thousands of VMware installations remaining vulnerable to trivially exploitable flaws, for example, local privilege escalation via CVE-2025-41244 <a href="https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/36149" rel="nofollow noopener" translate="no" target="_blank">https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/36149</a>BTW, Please note that to fix CVE-2025-41244 you must now manually download the correct VMware Tools package from the support portal, unpack the zip, mount the ISO image, and then execute the setup.exe from the mounted ISO image. There is currently no VMware releases that include the fixed VMware Tools, so if you create any new VMs you MUST install the update manually to each new VM. Did I already mention this is terrible?<a href="https://infosec.exchange/tags/enshittification" class="mention hashtag" rel="nofollow noopener" target="_blank">#enshittification</a> <a href="https://infosec.exchange/tags/infosec" class="mention hashtag" rel="nofollow noopener" target="_blank">#infosec</a> <a href="https://infosec.exchange/tags/cybersecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#cybersecurity</a>

Renée BurtonI recently discovered that rich assholes may have intimidated a security company into taking down excellent research they wrote three years ago.There are far too many rich assholes attempting to intimidate people these days. Fuck all these guys.And don't forget to archive shit in many locations.. locally. Archive.org. archive.today.. email it to others.. rewriting history is bad.You should read this excellent paper. I don't know the researchers but it is good work..Please boost for awareness of this great work and scare tactics <a href="https://infosec.exchange/tags/threatintel" class="mention hashtag" rel="nofollow noopener" target="_blank">#threatintel</a> <a href="https://infosec.exchange/tags/cybercrime" class="mention hashtag" rel="nofollow noopener" target="_blank">#cybercrime</a> <a href="https://infosec.exchange/tags/scam" class="mention hashtag" rel="nofollow noopener" target="_blank">#scam</a> <a href="https://infosec.exchange/tags/malware" class="mention hashtag" rel="nofollow noopener" target="_blank">#malware</a> <a href="https://infosec.exchange/tags/infosec" class="mention hashtag" rel="nofollow noopener" target="_blank">#infosec</a> <a href="https://infosec.exchange/tags/dns" class="mention hashtag" rel="nofollow noopener" target="_blank">#dns</a> <a href="https://infosec.exchange/tags/phishing" class="mention hashtag" rel="nofollow noopener" target="_blank">#phishing</a> <a href="https://web.archive.org/web/20250731051150/https://www.cyjax.com/wp-content/uploads/2022/11/Fangxiao-a-Chinese-threat-actor.pdf" rel="nofollow noopener" translate="no" target="_blank">https://web.archive.org/web/20250731051150/https://www.cyjax.com/wp-content/uploads/2022/11/Fangxiao-a-Chinese-threat-actor.pdf</a>

jkfür <a href="https://chaos.social/tags/grundschutz" class="mention hashtag" rel="nofollow noopener" target="_blank">#grundschutz</a>-fans gibt es den grundschutz++ (beta) auf github [1]. das json-file [2] lässt sich dann bequem im <a href="https://chaos.social/tags/oscal" class="mention hashtag" rel="nofollow noopener" target="_blank">#oscal</a>-viewer [3] lesen.1- <a href="https://github.com/BSI-Bund/Stand-der-Technik-Bibliothek/tree/main/Kompendien/Grundschutz%2B%2B-Kompendium" rel="nofollow noopener" translate="no" target="_blank">https://github.com/BSI-Bund/Stand-der-Technik-Bibliothek/tree/main/Kompendien/Grundschutz%2B%2B-Kompendium</a>2- <a href="https://raw.githubusercontent.com/BSI-Bund/Stand-der-Technik-Bibliothek/refs/heads/main/Kompendien/Grundschutz%2B%2B-Kompendium/Grundschutz%2B%2B-Kompendium.json" rel="nofollow noopener" translate="no" target="_blank">https://raw.githubusercontent.com/BSI-Bund/Stand-der-Technik-Bibliothek/refs/heads/main/Kompendien/Grundschutz%2B%2B-Kompendium/Grundschutz%2B%2B-Kompendium.json</a>3- <a href="https://viewer.oscal.io" rel="nofollow noopener" translate="no" target="_blank">https://viewer.oscal.io</a> <a href="https://chaos.social/tags/servicetoot" class="mention hashtag" rel="nofollow noopener" target="_blank">#servicetoot</a> <a href="https://chaos.social/tags/infosec" class="mention hashtag" rel="nofollow noopener" target="_blank">#infosec</a>

Klaus Frank<a href="https://gruene.social/@maddin" class="u-url mention" rel="nofollow noopener" target="_blank">@maddin</a> I mainly asked here because I'd be surprised if nobody within the <a href="https://chaos.social/tags/infosec" class="mention hashtag" rel="nofollow noopener" target="_blank">#infosec</a> community so far looked into all of the possible ways to persist data on it across a factory reset so far.I really do not just want to wipe the entire disk with "dd if=/dev/zero" without knowing if the recovery environment it boots into is also on said disk (or how to boot into one with its disk zeroed out).Otherwise I'll stick with <a href="https://support.apple.com/de-de/guide/mac-help/mchl7676b710/26/mac/26" rel="nofollow noopener" translate="no" target="_blank">https://support.apple.com/de-de/guide/mac-help/mchl7676b710/26/mac/26</a> but I don't know if anything could survive that...

Martin Schlüter 🌻<a href="https://chaos.social/@agowa338" class="u-url mention" rel="nofollow noopener" target="_blank">@agowa338</a> I'm not an <a href="https://gruene.social/tags/infosec" class="mention hashtag" rel="nofollow noopener" target="_blank">#infosec</a> expert, however my understanding is that with FileVault enabled (which is the default) all user data partitions are encrypted anyways. With resetting the whole system the old keys should be deleted and a new encrypted partition is created. Given that I see no need to wipe/clean partitions with zeros.<a href="https://gruene.social/tags/macos" class="mention hashtag" rel="nofollow noopener" target="_blank">#macos</a>

Klaus FrankIf you're reinstalling a macbook and want to avoid any and all persistence.Is there one partition that you absolutely do NOT want to wipe?Or can you (still) just wipe the entire internal disk clean and use the net-install/recovery for reinstalling a clean system regardless of what one may have done previously on it (in software, not talking hardware tampering or anything like that)?It's a M1 mac, people are saying something is different there than on intel macs.<a href="https://chaos.social/tags/infosec" class="mention hashtag" rel="nofollow noopener" target="_blank">#infosec</a> <a href="https://chaos.social/tags/macOS" class="mention hashtag" rel="nofollow noopener" target="_blank">#macOS</a>

Nightfighter 🛡️Shodan.io ASN: AS3320 Country: DE<a href="https://social.tchncs.de/tags/infosec" class="mention hashtag" rel="nofollow noopener" target="_blank">#infosec</a> <a href="https://social.tchncs.de/tags/datenschutz" class="mention hashtag" rel="nofollow noopener" target="_blank">#datenschutz</a>

Neil CraigWe're seeing requests to www.bbc.com return to normal-looking levels from Afghanistan - since about midday UTC today (1st Oct 2025).<a href="https://mastodon.social/tags/Afghanistan" class="mention hashtag" rel="nofollow noopener" target="_blank">#Afghanistan</a> <a href="https://mastodon.social/tags/Censorship" class="mention hashtag" rel="nofollow noopener" target="_blank">#Censorship</a> <a href="https://mastodon.social/tags/WebDev" class="mention hashtag" rel="nofollow noopener" target="_blank">#WebDev</a> <a href="https://mastodon.social/tags/InfoSec" class="mention hashtag" rel="nofollow noopener" target="_blank">#InfoSec</a> <a href="https://mastodon.social/tags/Taliban" class="mention hashtag" rel="nofollow noopener" target="_blank">#Taliban</a>

Ge0rGSecurity is like fashion. Old trends come back periodically.Exhibit A: "security" appliance vendors suffering from ../../ exploits in 2025Exhibit B: <a href="https://wiretap.fail/" rel="nofollow noopener" translate="no" target="_blank">https://wiretap.fail/</a> is just <a href="https://social.treehouse.systems/@bunnie" class="u-url mention" rel="nofollow noopener" target="_blank">@bunnie</a> 's 2002 sniffing of HyperTransport on the first Xbox - <a href="https://www.bunniestudios.com/bunnie/proj/anatak/AIM-2002-008.pdf" rel="nofollow noopener" translate="no" target="_blank">https://www.bunniestudios.com/bunnie/proj/anatak/AIM-2002-008.pdf</a><a href="https://chaos.social/tags/InfoSec" class="mention hashtag" rel="nofollow noopener" target="_blank">#InfoSec</a> <a href="https://chaos.social/tags/ReverseEngineering" class="mention hashtag" rel="nofollow noopener" target="_blank">#ReverseEngineering</a> <a href="https://chaos.social/tags/WiretapFail" class="mention hashtag" rel="nofollow noopener" target="_blank">#WiretapFail</a>

ManiabelChrisDie CISA hat eine dringende Warnung zu einer kritischen Sicherheitslücke im Linux- und Unix-Dienstprogramm sudo (CVE-2025-32463) herausgegeben, die derzeit in großem Umfang ausgenutzt wird.Diese Schwachstelle ermöglicht es lokalen Angreifern, Zugriffskontrollen zu umgehen und beliebige Befehle als Root-Benutzer auszuführen, auch ohne über explizite sudoers-Rechte zu verfügen.Prüfen, welche sudo-Variante installiert ist:dpkg -l sudoBetroffen sind Sudo-Versionen vor 1.9.14p2.Update anschieben, wenn vor 1.9.14p2!Bis dahin: PC nicht in fremde Hände geben!<a href="https://cybersecuritynews.com/cisa-linux-sudo-vulnerability/" rel="nofollow noopener" translate="no" target="_blank">https://cybersecuritynews.com/cisa-linux-sudo-vulnerability/</a><a href="https://mastodon.de/tags/infosec" class="mention hashtag" rel="nofollow noopener" target="_blank">#infosec</a> <a href="https://mastodon.de/tags/linux" class="mention hashtag" rel="nofollow noopener" target="_blank">#linux</a> <a href="https://mastodon.de/tags/SudoPrivileges" class="mention hashtag" rel="nofollow noopener" target="_blank">#SudoPrivileges</a> <a href="https://mastodon.de/tags/BeDiS" class="mention hashtag" rel="nofollow noopener" target="_blank">#BeDiS</a>

ManiabelChrisEs steht eine wichtige Entscheidung auf EU-Ebene zur Chatkontrolle an und die Haltung des <a href="https://social.bund.de/@BMDS" class="u-url mention" rel="nofollow noopener" target="_blank">@BMDS</a> bleibt im Dunkeln? Transparenz wäre wünschenswert. Bitterschade.<a href="https://chaos.social/@netzpolitik_feed" class="u-url mention" rel="nofollow noopener" target="_blank">@netzpolitik_feed</a> <a href="https://netzpolitik.org/2025/chatkontrolle-der-digitalminister-duckt-sich-weg/" rel="nofollow noopener" translate="no" target="_blank">https://netzpolitik.org/2025/chatkontrolle-der-digitalminister-duckt-sich-weg/</a><a href="https://mastodon.de/tags/chatkontrolle" class="mention hashtag" rel="nofollow noopener" target="_blank">#chatkontrolle</a> <a href="https://mastodon.de/tags/NoEuChatControl" class="mention hashtag" rel="nofollow noopener" target="_blank">#NoEuChatControl</a> <a href="https://mastodon.de/tags/ChatKontrol" class="mention hashtag" rel="nofollow noopener" target="_blank">#ChatKontrol</a> <a href="https://mastodon.de/tags/eu" class="mention hashtag" rel="nofollow noopener" target="_blank">#eu</a> <a href="https://mastodon.de/tags/infosec" class="mention hashtag" rel="nofollow noopener" target="_blank">#infosec</a>Edit: @BMDS-Handle korrigiert.

Frühere Suchanfragen

Suchoptionen

Verwaltet von:

Serverstatistik:

#infosec