Jakub Wołynko1m ago

-> https://github.com/github/audit-actions-workflow-runs

This looks super useful for auditing when, and what was used.
Great for security hygiene and investigating potential incidents within your CI/CD pipelines.
#devsecops #github #security #automation #devsecops

GitHub - github/audit-actions-workflow-runs: Audit your GitHub Actions workflow runs to see exactly which Actions were downloaded

Audit your GitHub Actions workflow runs to see exactly which Actions were downloaded - github/audit-actions-workflow-runs

GitHub
SiMpS0N9m ago
AppSec Ezine - 583rd https://pathonproject.com/zb/?64c37d62b98727d6#r7baqBu+0IKr1p/bKV6yKlewF1/WiWBotHtQ8lbxFvI= #AppSec #Security
AppSec Ezine

iX Magazin34m ago

Rückschau secIT 2025 – alte Gefahren in neuem Gewand

Auf der IT-Security-Konferenzmesse zeigt sich KI weiter als Gefahrenmultiplikator. Die moderne Cloud- und Lieferkettenkomplexität potenziert Sicherheitsrisiken.

https://www.heise.de/hintergrund/Rueckschau-secIT-2025-alte-Gefahren-in-neuem-Gewand-10354246.html?wt_mc=sm.red.ho.mastodon.mastodon.md_beitraege.md_beitraege&utm_source=mastodon

#Cybersecurity #IT #Security #news

Rückschau secIT 2025 – alte Gefahren in neuem Gewand

Auf der IT-Security-Konferenzmesse zeigt sich KI weiter als Gefahrenmultiplikator. Die moderne Cloud- und Lieferkettenkomplexität potenziert Sicherheitsrisiken.

iX Magazin
xeophin59m ago

Companies that use different (sub-)domains for registering an account and logging in – a perfect way to break your password manager.

Today's example: registration.atupri.ch and login.atupri.ch.

Why?

Yeah, *I* can edit the entry in the password manager to allow the log-in domain.

But my mom? Unlikely. So even if she uses an automatically generated password (good) and saves it in her password manager (good), it won't be offered when she tries to log in (bad).

#accessibility #security

iX Magazin1h ago

heise+ | Raus aus der US-Cloud: Souveräne SaaS-Angebote im Überblick

Für europäische Firmen ist der Einsatz US-basierter SaaS-Angebote riskant. Wer auch künftig sicheren Zugriff will, sollte auf EU-Alternativen setzen.

https://www.heise.de/hintergrund/Raus-aus-der-US-Cloud-Souveraene-SaaS-Angebote-im-Ueberblick-10342483.html?wt_mc=sm.red.ho.mastodon.mastodon.md_beitraege.md_beitraege&utm_source=mastodon

#CloudDienste #IT #Microsoft #Recht #Security #SoftwareasaService #news

Raus aus der US-Cloud: Souveräne SaaS-Angebote im Überblick

Für europäische Firmen ist der Einsatz US-basierter SaaS-Angebote riskant. Wer auch künftig sicheren Zugriff will, sollte auf EU-Alternativen setzen.

iX Magazin
IT Insights1h ago
🔍 Ontdek de toekomst van beveiliging met EnGenius AI Cloud Surveillance! Verbeter efficiëntie en veiligheid met onze geavanceerde AI-oplossingen. #AI #Security https://youtu.be/4RL4qFmMGyU 
https://itinsights.nl/van-de-redactie/engenius-introduceert-ai-cloud-surveillance-de-toekomst-van-intelligente-beveiliging/
Engenius AI Camera

YouTube
McDonald_691h ago

🧵 THREAD by Matt Johansen: A federal whistleblower just dropped one of the most disturbing cybersecurity disclosures I’ve ever read.

He's saying DOGE came in, data went out, and Russians started attempting logins with new valid DOGE passwords

Media's coverage wasn't detailed enough so I dug into his testimony:
https://threadreaderapp.com/thread/1913023007263543565.html

#DOGE #USA #russia #cybersecurity #security

Thread by @mattjay on Thread Reader App

@mattjay: 🧵 THREAD: A federal whistleblower just dropped one of the most disturbing cybersecurity disclosures I’ve ever read. He's saying DOGE came in, data went out, and Russians started attempting logins with new v...…

Osman1h ago

“Five iPhone Security Features You Should Be Using”

1. Two-Factor Authentication on your #icloud account
2. Stolen Device Protection
3. Private Relay
4. Advanced Data Protection
5. Lockdown Mode

Source: https://www.macrumors.com/2025/04/16/iphone-security-features/

#security #privacy #ios

Five iPhone Security Features You Should Be Using

Apple has quite a few security features that it's added to iPhones, iPads, and Macs over the years. Now more than ever, it's important to...

MacRumors
Marlon Cyberwald2h ago
Cybersecurity Morgenreport - Ausgabe 20250418
Guten Morgen Mastodon, hier gibt es die aktuelle Ausgabe:
https://github.com/cyber-wald/Cybersecurity_Morgenreport/blob/main/morgenreport20250418.pdf

Das Archiv findet ihr unter:
https://github.com/cyber-wald/Cybersecurity_Morgenreport

Viel Spaß beim lesen und bleibt sicher!

Viele Grüße
Marlon von Cyberwald
#Security #Sicherheitslücken #news #cybersecurity
Cybersecurity_Morgenreport/morgenreport20250418.pdf at main · cyber-wald/Cybersecurity_Morgenreport

Der Cybersecurity Morgenreport von Cyberwald. Contribute to cyber-wald/Cybersecurity_Morgenreport development by creating an account on GitHub.

GitHub
PrivacyDigest2h ago

How Americans Are Surveilled During #Protests

Here's what you need to know about #surveillance technology and protests—and how you can best protect yourself.
#privacy #security

https://www.wired.com/story/uncanny-valley-podcast-how-americans-are-surveilled-during-protests/

How Americans Are Surveilled During Protests

Today on "Uncanny Valley," we tell you how you can best protect yourself from surveillance technology at protests.

WIRED
×
DarkartApr 10
PegasusDetectionTool by Darkart (PegasusDetectionTool PDT) This program is intended solely for ethical and educational purposes. #anon #anonymous #graphicdesign #programing #coding #engineers #technology #hacker #Encryption #python #linux #c #rust #security #Tool #Pegasus #unidentified