Netzblockierer4h ago

From user to root in less than 16 minutes

Or: Why you shouldn't buy cheap garbage!

  • Personally, I consider such firmware to be criminally neglectful and worse than what Cisco did it's NIST-certified Govware Backdoor known.as DUAL_EC_DRBG
    • But hey, TP-Link doesn't do NOBUS-Backdoors, so that's why they need to be banned...

#commentary #sarcasm #ITsec #InfoSec #ComSec #OpSec #TEMU #TPLINK #Cisco #DUAL_EC_DRBG #Govware #Backdoor #NIST #NOBUS #Cyberfascism

I Hacked This Temu Router. What I Found Should Be Illegal.

🏫 MY COURSESSign-up for my FREE 3-Day C Course: https://lowlevel.academy🧙‍♂️ HACK YOUR CAREERWanna learn to hack? Check out my FREE course at: https://stac...

YouTube
TechNaduApr 20

The sentencing of Nicholas Moore (one-year probation) serves as a case study in credential-based breaches. By compromising one set of credentials, Moore gained access to the U.S. Supreme Court, AmeriCorps, and the VA."

This highlights the persistent danger of "low-effort" entry points into high-value targets.
How are your organizations hardening against credential stuffing and lateral movement in the public sector?

Source: https://techcrunch.com/2026/04/17/man-who-hacked-us-supreme-court-filing-system-sentenced-to-probation/

Engage with us in the thread. Follow for more technical breakdowns and vulnerability news.

#InfoSec #Pentesting #OpSec #GovWare #CyberLaw #Technadu

Emmanuelle GermondAug 12, 2025

https://decidim.org/fr/

est le #logicielLibre utilisé par la Ville de #Lausanne et #Genève entres autres.

Vous connaissez? Une conférence @swisslinux ou @rhl ?

#OpenSource #GovWare #FreeSoftware

Show threadChristian PeachJun 19, 2025

@heiseonline Obwohl diese Überwachungsmaßnahmen nur zielgerichtet eingesetzt werden sollen, schaden sie uns allen – auch in Deutschland und anderen Ländern. Denn damit der Bundestrojaner im Bedarfsfall funktioniert, müssen Sicherheitslücken offengehalten (#zeroday) oder eingeschmuggelt (#backdoor) werden.

Dadurch wird die gesamte globale IT-Infrastruktur unsicherer: Kriminelle und feindliche Geheimdienste können diese Hintertüren genauso nutzen wie die eigenen Geheimdienste.

Wäre schön, wenn Heise diese Zusammenhänge im Artikel erläutern würde.

#Bundestrojaner #Staatstrojaner #Govware #Malware #zerodays #Hintertür

RRBNov 29, 2024

@kkarhan Interesting, I don't really see Moxie as an idiot. How about #Tor (product of Naval research Lab) #Govware?, and #I2P. Who is behind that?

What do you think of them?

What tools do you suggest, use?

I kind of liked #LiberteLinux, but one person supporting a tool is not sustainable, really.

Marcel WaldvogelNov 21, 2024

There are reports about government acquiring software for "breaching encrypted-messaging applications such as #Telegram and #Signal."

They most likely talk not about breaking the encryption or the apps, but about connecting your phone via USB to a machine trying to hack into your phone's operating system (iOS, Android).

So, changing the app makes no difference. Stick with your encrypted messenger (and Telegram is not one of them, despite their claims)

#GovWare #Spyware
https://www.newyorker.com/news/news-desk/the-technology-the-trump-administration-could-use-to-hack-your-phone

The Technology the Trump Administration Could Use to Hack Your Phone

Western democracies have been roiled by the use of spyware to target politicians, journalists, and other vulnerable groups. Could it happen here? Ronan Farrow reports.

The New Yorker
Mx VerdaNov 11, 2024
@kkarhan Huh. #GovWare is a new one to me. Makes sense tho
@deilann @mos_8502
OS/1337Feb 5, 2024

@thomasfuchs I'd still keep #WindowsXP airgapped like any #Windows machine just because it's #Abandonware & #Govware...

https://github.com/kkarhan/windows-ca-backdoor-fix

GitHub - kkarhan/windows-ca-backdoor-fix: Fixes a critical backdoor in Windows' CryptoAPI, which allows to unconsenting Update of CA Certificates in the background. See https://www.heise.de/ct/ausgabe/2013-17-Zweifelhafte-Updates-gefaehrden-SSL-Verschluesselung-2317589.html

Fixes a critical backdoor in Windows' CryptoAPI, which allows to unconsenting Update of CA Certificates in the background. See https://www.heise.de/ct/ausgabe/2013-17-Zweifelhafte-Updates-gefae...

GitHub
Show threadOS/1337Feb 3, 2024

@stacksmashing and that is why #CensorBoot and #BitLocker are #Govware #garbage noone should use!

#SefureBoot #Windows #ITsec #EpicFail

Show threadOS/1337Feb 2, 2024

@protonvpn Both are garbage and should be outlawed as the #Govware they are!

I sincerely hope @bsi takes notes and issues a warning if not mandatory advisory to yeet both browsers!

#PRISM #GAFAM #Google #Microsoft #Malware #Espionage #Edge #Chrome