Big F5 stuff dropping, starting with disclosure of incident and 8K filing. If you've got F5 in your stack, you're going to want to brew more coffee. No, more than that.
Keep going.
#threatintel #cybersecurity #infosec
infosec.exchange/@cR0w/1153783ā¦
This is what I wake up to? https://my.f5.com/manage/s/article/K000154696 https://www.sec.gov/ix?doc=/Archives/edgar/data/1048695/000104869525000149/ffiv-20251015.htmsp00ky cR0w š“ (Infosec Exchange)
The #Signal App gets only a 9 out of 10 for #Privacy protection, and it's not just because it requires a phone number.
"While most of Googleās analytics are turned off in the Signal app, it still uses the Google Maps API to handle location data. Calls to Google Maps turn over a bunch of metadata, including the IP youāre connecting from. For a project thatās so invested in privacy, itās surprising that Signal doesnāt use an open source alternative such as Open Street Map."
They call a Google API with location data and hand over the IP? Seriously?
mozillafoundation.org/en/nothiā¦
Read our privacy expert's review of the messaging app Signal. Signal is widely regarded as the ābest in classā private messenger app. Unlike most messaging apps, Signal takes a completely hands-off approach to your data.Mozilla Foundation
Microsoft Office 2016 and Office 2019 are no longer receiving software updates, technical support, or bug and security fixes.
Consider migrating to LibreOffice.
Microsoft recommends migrating to a Microsoft 365 subscription.
LibreOffice supports the features that a majority of users need for free.
Website: libreoffice.org
Mastodon: @libreoffice
4/4
#Microsoft #Office2016 #Office2019 #Office #LibreOffice #Privacy #InfoSec #CyberSecurity #Encryption #FOSS #FreeSoftware #OpenSource
Free office suite ā the evolution of OpenOffice. Compatible with Microsoft .doc, .docx, .xls, .xlsx, .ppt, .pptx. Updated regularly, community powered.www.libreoffice.org
š£ Phishing Alert!
Malicious attackers use lookalike domains to trick you into clicking fake links. These sites steal logins, banking info & more.
š”ļø Stay safe:
š¹ Double-check URLs
š¹ Donāt log in via links
š¹ Bookmark official sites
š Check the full guide: tuta.com/blog/how-to-prevent-pā¦
Stay alert this #CyberSecurityMonth
Email phishing scams are one of the most severe cyber threats in our digital world. Here is how to keep your online accounts safe from hackers.Tuta
AI has found 50 bugs in cURL. "AI-native SASTs work well"
#HackerNews #AI #cURL #bugs #SAST #cybersecurity #technology
Nyheter fƶr dig som Ƥr verksam i den svenska elektronikbranschen som exempelvis tillverkare, konsult, distributƶr, finansiƤr, investerare, konstruktƶr eller tekniker.etn.se
Poll: How many screens do you work with? š„ļø
Vote + Boost š = ā¤ļø
(Feel free to reply with how this setup helps you š)
#Linux #Arch #LinuxMint #Fedora #Debian #Ubuntu #Desktop #FOSS #Privacy #Security #OpenSource #Microsoft #Windows #TechNews #CyberSecurity #Tech #Technology #Apple #OS #iOS #MacOS #OperatingSystem #Monitor #Monitors #Screen #Screens #TV #OLED #2k #4k #HD #Job #Work #Productivity #Multitasking #Dev #DevOps #Development #Developers #DevLife #SysAdmin #TechCommunity
š Tuta Mail introduces key verification to strengthen end-to-end encryption and defend against MITM attacks š„
Users can now verify contactsā public keys via QR code or manual comparison.
If skipped, Tuta defaults to TOFU (Trust On First Use) for seamless encryption š§©
@Tutanota
š tuta.com/blog/key-verification
#Encryption #CyberSecurity #Privacy #Tuta #Tutanota #TutaMail #EmailSecurity #OpenSource #FOSS #E2EE #PGP #Email #Mail #TechNews #DataProtection #Crypto #DigitalRights #OnlinePrivacy
Key verification makes your encrypted mailbox even more secure, enabling you to prevent monster-in-the-middle attacks.Tuta
I DID IT!
Dewey invented the Dewey Decimal System, Morse invented the Morse Code, Plato invented the plate. I, influenced by what I saw at a #CyberSecurity conference I have designed and dedicated to the Public Domain the penultimate way to get removed from #infosec sales offerings.
I present to you the "No Purchasing Authority" seal. Put it on a button, wear it as a sticker, respond to emails with it. Regardless, this helps you and the sales person understand that this relationship is going nowhere.
Don't trust cloud services with your creative work.
#enshittification #privacy #infosec #security #cybersecurity #writing #art
Windows market share in Germany drops to 69.78%, down nearly 10 points in a year š
Meanwhile, macOS rises to 19.59%, driven by user demand for privacy & seamless integration š
Linux more than doubles to 5.49%, reflecting growing interest in open-source, secure, and flexible systems š§
#Linux #Desktop #FOSS #Privacy #Security #OpenSource #Microsoft #Windows #TechNews #CyberSecurity #UserFreedom #Freedom #Tech #Technology #AI #OS #MacOS
The best time to patch your connected devices is all the timeFreedom of the Press
Adobe is now processing all your PDFs in the cloud, by default. The setting to āEnable generative AI features in Acrobatā was on, and I didnāt know it until I opened a document and Adobe asked me if I wanted a document summary. Itās annoying to have to click āNo,ā so I opened settings to disable the prompt.
THE PROBLEM
I sign Non-Disclosure Agreements for many of my clients. Adobe is a potential leak of protected information. I donāt know what Adobe does with this information. I donāt know what they store, or for how long. I donāt know what country (or countries) the data is stored in. I donāt know what LLMs are trained with this data. And I donāt need to know. What I need to know is that they wonāt use default opt-in as a legal excuse to wiretap my information.
I recommend that you check your Adobe settings on all devices, for all Adobe accounts.
#CallMeIfYouNeedMe #FIFONetworks
Startpage is a search engine that has been promoted as a European alternative to Google Search.
This is a misleading statement.
CLARIFICATION
Headquartered in the Netherlands.
Owned by System1: mastodon.online/@blueghost/111ā¦
Revenue is consolidated with System1's financial statements.
System1 supports employee salaries, technology investments, and marketing initiatives.
Source: support.startpage.com/hc/articā¦
Website: startpage.com
#Startpage #StartpageSearch #Privacy #InfoSec #CyberSecurity
Attached: 1 image System1 owns the search engine Startpage. System1 is a publicly traded advertising/marketing company headquartered in the United States and traded on the NYSE as SST. CNBC System1 profile: https://www.cnbc.Mastodon
#kosmas #knihkupectvi #cybersecurity #hackers
Ajajaj, moje oblĆbenĆ© knihkupectvĆ bylo napadeno š±
kosmas.cz/info/kosmas-celi-utoā¦?
Nakupte knihy za dobrĆ© ceny v internetovĆ©m knihkupectvĆ Kosmas.cz.www.kosmas.cz
How can Europe better secure the open #digitalinfrastructure that underpins its public services, or #digitaleconomy?
We are delighted to announce the next #EOSA Webinar, #OpenSource for #Cybersecurity: Securing and Maintaining Europe's Open Source Dependencies.
This webinar looks at how Europe's cybersecurity and digital policy agendas are increasingly intertwined.
Learn more and register today: tinyurl.com/yf7xyadr
The second webinar in the OSAwards.eu webinar series, entitled "Open Source for Cybersecurity: Securing and Maintaining Europeās Open Source Depetinyurl.com
FBI Warning on Messaging Apps: Time to Rethink What "Secure" Really Means
The FBI recently urged Americans to switch from SMS to encrypted messaging apps like WhatsApp and Signal.
Read More at: puri.sm/posts/fbi-raises-alarmā¦
#Cybersecurity #Privacy #Surveillance #Signal #WhatsApp
Purism makes premium phones, laptops, mini PCs and servers running free software on PureOS. Purism products respect people's privacy and freedom while protecting their security.Purism SPC
š„ The EU Vulnerability Database (EUVD) is LIVE at euvd.enisa.europa.eu/homepage šŖšŗšŖ
Finally, we've got our OWN vulnerability tracking system that's not dependent on ā¦
Three awesome dashboards: critical vulns, actively exploited stuff, and EU-coordinated disclosures. ā¦ intel we need to patch our systems PROPERLY!
This is digital sovereignty and resilience in action, folks! No more single points of failure in global vuln tracking. š§āāļøš„ļø
Privacy is calling. Will you answer?
Ditch surveillance phones.
Try the Librem 5 + AweSIM ā privacy-first smartphone + service.
ā
Unlimited talk, text, & data
ā
Built on PureOS (open-source Linux)
ā
Your data ā their profit
ā
No contracts, no ads, no spyware
Big carriers track your every move.
AweSIM shields your identity from Big Tech & foreign surveillance.
Take back control: puri.sm/products/librem-awesimā¦
#PrivacyMatters #CyberSecurity #LinuxPhone #SurveillanceCapitalism #Librem5 #AweSIM
The Liberty Phone delivers uncompromising security for government communications- No Surveillance.
Link to Video: puri.sm/posts/the-liberty-phonā¦
#LibertyPhone #MadeInUSA #SupplyChainSecurity #OpenSource #PureOS #EndToEndEncryption #HardwareSecurity #GOTSSolution #CyberSecurity
Purism makes premium phones, laptops, mini PCs and servers running free software on PureOS. Purism products respect people's privacy and freedom while protecting their security.Purism SPC
ļ½¢ Finland, Sweden, Norway, Denmark and Estonia are rolling out offline card payment systems to provide a back-up if internet connections are lost, including due to sabotage, Bank of Finland board member Tuomas Valimaki said on Wednesday ļ½£
The Liberty Phone delivers uncompromising security for government communications- No Surveillance.
puri.sm/products/liberty-phoneā¦
#LibertyPhone #SecureGovMobile #MadeInUSA #SupplyChainSecurity #OpenSource #PureOS #EndToEndEncryption #HardwareSecurity #GOTSSolution #CyberSecurity
This dumb password rule is from Polytechnique Montreal.
Passwords must have a minimum length of 8 characters
Passwords must have a maximum length of 30 characters
Passwords must contain a minimum of 2 digits
Passwords must contain a minimum of 2 letters
Password must be different than the last one used
Passwords may contain these special characte...
dumbpasswordrules.com/sites/poā¦
#password #passwords #infosec #cybersecurity #dumbpasswordrules
Passwords must have a minimum length of 8 characters Passwords must have a maximum length of 30 characters Passwords must contain a minimum of 2 digits Passwords must contain a minimum of 2 letters Password must be different than the last one useā¦dumbpasswordrules.com
Long passwords are important.
Source: reddit.com/r/dataisbeautiful/cā¦
#tech #technology #encryption #password #passwords #Security #cybersecurity #computing #computers #computer
Python now ships with 15,000 lines of verified cryptographic code from HACL*, covering all default hash and HMAC algorithms. The integration was seamless and automated, aiming to eliminate bugs like the 2022 SHA3 CVE. A major milestone for verified crypto in mainstream software.
jonathan.protzenko.fr/2025/04/ā¦
#Python #CyberSecurity #Cryptography #AppSec
In November 2022, I opened issue 99108 on Pythonās GitHub repository, arguing that after a recent CVE in its implementation of SHA3, Python should embrace verified code for all of its hash-related infrastructure.Jonathan Protzenko
š§ Microsoft is reintroducing Recall in Windows 11 ā a feature that captures screenshots every 3 seconds of your activity to create an AI-powered memory. What could go wrong?
It now includes:
š Opt-in only
š Local device processing
š§āš» Windows Hello authentication
But many still ask: is it a productivity boost or a privacy liability? š³
Even with safeguards, the idea of your system quietly watching everything you do raises serious concerns about digital trust.
#Privacy #Windows11 #AI #Cybersecurity #TechNews
arstechnica.com/security/2025/ā¦
Snapshotting and AI processing a screen every 3 seconds. What could possibly go wrong?Dan Goodin (Ars Technica)
#Tuta birthday sale: 62% off Legend plan
tuta.com/special-offer/?t-src=ā¦
#email #privacy #cybersecurity
Tuta guarantees your data stays private for free & without ads. Quantum-resistant encryption makes Tuta the best secure technology solution to protect your privacy.Tuta
This dumb password rule is from Bank Millennium.
Passwords limited to 8 digits.
dumbpasswordrules.com/sites/baā¦
#password #passwords #infosec #cybersecurity #dumbpasswordrules
š”ļø#Curl has been around for 26 yearsāand itās still secure! How?
European Open Source Academy member, @bagder Stenberg, joined the latest episode of Security Weekly Productions, discussing how Curl and #libcurl have maintained security and reliability over decades.
A must-listen for #developers and #cybersecurity enthusiasts! šØāš»š
šŗ Explore the episode : youtube.com/watch?v=0UavY_kKKic
š Learn more about the Academy : europeanopensource.academy/newā¦
#CyberSecurity #CurlProject #AppSec
A significant milestone for the European open source community was reached on January 30, 2025, when the European Open Source Awards (OSAwards 2025) celebrated the launch of the European Open Source Academy with the Inaugural Ceremony.europeanopensource.academy
So, Cloudflare analyzed passwords people are using to log in to sites they protect and discovered lots of re-use.
Let me put the important words in uppercase.
So, CLOUDFLARE ANALYZED PASSWORDS PEOPLE ARE USING to LOG IN to sites THEY PROTECT and DISCOVERED lots of re-use.
[Edit with H/T: benjojo.co.uk/u/benjojo/h/cR4dā¦]
blog.cloudflare.com/password-rā¦
#cloudflare #password #cybersecurity
Nearly half of observed login attempts across websites protected by Cloudflare involved leaked credentials. The pervasive issue of password reuse is enabling automated bot attacks and account takeovers on a massive scale.The Cloudflare Blog
"Google refuses to deny it received encryption order from UK government"
The UKās encryption-breaking order for a backdoor into iCloud isnāt a one-off.
The secret hearing happening RIGHT NOW is bigger than just Apple. If the government wins, our right to privacy and security falls.
Other services will be hit.
therecord.media/google-refusesā¦
Sign our petition ā”ļø you.38degrees.org.uk/petitionsā¦
#e2ee #encryption #apple #google #privacy #security #cybersecurity #ukpol #ukpolitics #tech
U.S. lawmakers say Google has refused to deny that it received a Technical Capability Notice from the U.K. ā a mechanism to access encrypted messages that Apple reportedly received.therecord.media
This dumb password rule is from TreasuryDirect.
Will allow most passwords longer than 8 characters. Doesn't tell you there is a
maximum length of 16 characters. Then forces you to type it with an on-screen keyboard
with no capital letters.
dumbpasswordrules.com/sites/trā¦
#password #passwords #infosec #cybersecurity #dumbpasswordrules
Will allow most passwords longer than 8 characters. Doesn't tell you there is a maximum length of 16 characters. Then forces you to type it with an on-screen keyboard with no capital letters.dumbpasswordrules.com
š£ Break the silence: Save encryption!
The UK government wants to be able to access anything, anywhere, any time ā from your pics to your docs.
It begins with Apple. Other services will be next. That's why we must take a stand NOW!
Sign and share our petition ā¬ļø
you.38degrees.org.uk/petitionsā¦
#encryption #e2ee #Apple #privacy #security #cybersecurity #ukpolitics #ukpol #icloud #tech
It is reported that the Home Office has ordered Apple to build a backdoor into its encrypted services so that they can get hold of content that any Apple user has upload to the cloud. Encryption keeps our private information safe and secure.38 Degrees
The message is clear across the political divide: let's hear it!
The UK government should argue in open court why they want to make us less secure by ordering a backdoor into Apple encryption.
A secret Tribunal would be an affront to the privacy and security issues at stake. It must be held in public.
Read the joint letter from ORG, Big Brother Watch and Index on Censorship ā¬ļø
openrightsgroup.org/press-releā¦
#Apple #encryption #e2ee #privacy #security #cybersecurity #ukpol #ukpolitics #tech
Rights groups call for Appleās closed appeal against the Home Officeās encryption-breaching order to be opened to the public.Open Rights Group
Bipartisan US Congress Members want the secrecy around the UK's encryption-breaking order to be lifted.
"It is imperative that the UK's technical demands of Apple - and of any other US companies - be subjected to robust, public analysis and debate."
āSecret court hearings featuring intelligence agencies and a handful of individuals approved by them do not enable robust challenges on highly technical matters.ā
wyden.senate.gov/news/press-reā¦
#encryption #e2ee #Apple #privacy #security #cybersecurity
The Official U.S. Senate website of Senator Ron Wyden of Oregonwww.wyden.senate.gov
UK MPs have joined the chorus of voices wanting the Apple case to be held in public.
"If the Home Office wants to have effectively unfettered access to the private data of the (innocent) general public, they should explain their case in front of the public."
š£ļø David Davis MP.
"People deserve to know what's happening to their private personal information."
š£ļø Victoria Collins MP.
news.sky.com/story/apple-vs-hoā¦
#encryption #e2ee #Apple #privacy #security #cybersecurity #ukpolitics #ukpol
A row between the tech giant and the government over customer data will reportedly move to London's High Court this week ā but the hearing will be held behind closed doors.Tim Baker (Sky News)
š£ Make it public!
The call is getting louder for a public hearing of the appeal over the UK's order to break Apple encryption.
Alongside the joint letter from ORG, Big Brother Watch and Index on Censorship, UK MPs, US Congress Members and the BBC want the secrecy to end.
bbc.co.uk/news/articles/c4g0rrā¦
#encryption #e2ee #privacy #security #cybersecurity #ukpol #ukpolitics #Apple #tech
Civil liberties campaigners have joined US politicians and the BBC in saying Friday's hearing should not be secret.Tom Singleton (BBC News)
