Taggart 
Hey Fedi friends! Given the uncertainty around the future of the US federal government's ability to provide accurate, timely, and impartial cyber threat intelligence, a bunch of us have started talking about strategies to build/expand some of these capabilities independent of the government. Very early days—shaping the problem, discussing options, etc. But if you'd be interested in the conversation and willing to help organizations build CTI capability, please DM me.
Bill@mttaggart We were discussing that kinda here: https://infosec.exchange/@cR0w/114110287045964864
cR0w :cascadia: (@[email protected])
We all love hardcoded creds in SCADA gear, right? https://certvde.com/en/advisories/VDE-2025-021/ `sev:CRIT 9.8 - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H` >Weidmüller product PROCON-WIN is affected by hard-coded credentials. >Weidmüller has released a new version of the affected product to fix the vulnerability. https://nvd.nist.gov/vuln/detail/CVE-2025-1393
Taggart :donor: (@[email protected])
@cR0w I mean okay, but I want hospitals to have a thing. Schools too. And energy.
@mttaggart Oh yeah, I remember that thread.