JRT

@[email protected]
791 Followers
1.5K Following
2.4K Posts

Average nmap enjoyer, destroyer of IoT worlds and embedded universes.
Chief #Passkey Advocate

"Experte für Nischenthemen" - unnamed
"Intel Gott" - @brahms
"ernährt sich von den Tränen der CISOs" - @g0rb

he/him

Working in #InfoSec by day. Doing some things at @AsteroidOS and @spline by night.

ALT: @jrt

#fuckAI #InfoSec #Security #linux #foss #CCC #spline #berlin #ArchLinux #fedora #AsteroidOS #VR #CyberpunkIsNow

Websitehttps://jrtberlin.de
LanguagesEnglish, German
Signaljrt.42
Threemahttps://threema.id/FMESVF5Y
Matrix@jrt:kde.org
JRT5h ago
Danie🏒🏒e is officially a PWHL fan6h ago

OMFG… I just heard Mission Control tell Artemis II literally, “Everything but email is go”

LOLSOBBING MY ASS OFF NOW

JRT16h ago
Felicitas Pojtinger 🌅1d ago

https://bmi.usercontent.opencode.de/eudi-wallet/wallet-development-documentation-public/latest/architecture-concept/06-mobile-devices/02-mdvm/

So, it turns out the German implementation of eIDAS (electronic ID wallet for e.g. age attestation) will require an Apple/Google account to function

Absolutely pathetic

Mobile Device Vulnerability Management Concept - German National EUDI Wallet: Architecture Documentation

JRT18h ago
Die größte Beleidigung als Teil des Souveräns finde ich ja den Habeck als "schlechtester Wirtschaftsminister aller Zeiten" zu diffamieten und dann die Katherina Reiche auf die Position zu setzen.
JRT1d ago
Enno Lenze1d ago
Deutsche Männer zwischen 17 und 45 brauchen nun eine staatliche Erlaubnis, wenn sie Deutschland 3 Monate verlassen wollen. https://www.gesetze-im-internet.de/wehrpflg/__3.html
JRT1d ago
Alexandre Dulaunoy1d ago

Another cut in CISA budget for 2027, 707 million less.

#cisa #us #cybersecurity

🔗 https://www.whitehouse.gov/wp-content/uploads/2026/04/budget_fy2027.pdf

JRT3d ago
abadidea3d ago

IT'S HAPPENING

GITHUB, THE FIRST ENTERPRISE CLOUD SOLUTION TO REACH ZERO NINES RELIABILITY

https://mrshu.github.io/github-statuses/

#github

JRT5d ago
greg5d ago
Our colleague @mal had another look at OpenOLAT and found a nice RCE (CVE-2026-28228 and CVE-2026-28228). If you're interested, details can be found on our blog https://secfault-security.com/blog/openolat-ssti.html
Secfault Security - OpenOlat - RCE via Server-side Template Injection (SSTI) and OIDC Auth Bypass

JRT5d ago

Neuerdings will Vattenfall von mir eine Mobilnummer für SMS als MFA Verfahren, weil ihnen Security so am Herzen liegt.

WTF. Welches Jahr haben wir?

JRT5d ago
Apparently GitLab Passkey auths are not recorded within the authentication log.
Great Success!
#InfoSecShitpost
JRT5d ago
Uhhh GitLab supports #Passkeys as a login option now.