PancakesCon Infosec ConferenceCTF is almost done but still anyone's game! Well done, teams, and thanks again @qualcomm !
dist 
- 147 Followers
- 64 Following
- 19 Posts
Blue team, DFIR, Reverse engineering
Harry SintonenUK Electoral Commission has been #breached for extended period. It's unclear how many people are affected, but estimates suggest tens of millions. https://www.electoralcommission.org.uk/privacy-policy/public-notification-cyber-attack-electoral-commission-systems
In Finland #penandpaper voting has been preferred, and still is. The cyber and other threats originating from electronic voting have been considered too high of a risk vs the existing well defined voting process. more here: https://blog.f-secure.com/podcast-evoting/
Mastodon⚠️ We have just released important security fixes for the #Mastodon server software. Versions 4.1.3, 4.0.5, 3.5.9, as well as a new nightly are available now to make upgrading quick and painless. Please upgrade as soon as possible!
Mastodon is a free, open-source social network server based on ActivityPub. Starting in version 3.5.0 and prior to versions 3.5.9, 4.0.5, and 4.1.3, attackers using carefully crafted media files can cause Mastodon's media processing code to create arbitrary files at any location. This allows attackers to create and overwrite any file Mastodon has access to, allowing Denial of Service and arbitrary Remote Code Execution. Versions 3.5.9, 4.0.5, and 4.1.3 contain a patch for this issue.
https://nvd.nist.gov/vuln/detail/CVE-2023-36460 - Cure53 was here. 😅
How to ruin a sale: @NordVPN
-edition. See screenshot.
Well. It's not just Facebook.. There's also Twitter, Bing and Google ads/tracking on that page. So, uhh.. Maybe don't do that if you claim to be privacy focused?
Oh btw fun fact, iOS around version 6 or so would sometimes decide that the number is too long and would shorten it, for example like this: ”1…5”
Someone says ”if you can use email, you already know how to use Mastodon”.. can we just not, ok? 😂