rx13  

@rx13@infosec.exchange
119 Followers
128 Following
786 Posts
Security Engineer || Possibly a robot.
Cybersecurity. Code. Sarcasm. Not in that order.
GitHubhttps://github.com/rx13
Signal@intrct.01
Blueskyhttps://bsky.app/profile/rx13.bsky.social
rx13  21h ago
Kevin Beaumont21h ago

Cisco have found an in the wild zero day in Cisco Secure Email Gateway And Cisco Secure Email and Web Manager being used to backdoor appliances for later access.

Now CVE-2025-20393.

No patch available.

They recommend nuking boxes and reinstalling from scratch if you opened spam quarantine port (6025 and 7025) to internet, and closing port.

It is unclear how long boxes have been backdoored for.

Ports aren't scanned by @shodan yet so scope isn't known.

https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-sma-attack-N9bf4

Cisco Security Advisory: Reports About Cyberattacks Against Cisco Secure Email Gateway And Cisco Secure Email and Web Manager

On December 10, Cisco became aware of a new cyberattack campaign targeting a limited subset of appliances with certain ports open to the internet that are running Cisco AsyncOS Software for Cisco Secure Email Gateway and Cisco Secure Email and Web Manager. This attack allows the threat actors to execute arbitrary commands with root privileges on the underlying operating system of an affected appliance. The ongoing investigation has revealed evidence of a persistence mechanism planted by the threat actors to maintain a degree of control over compromised appliances. Cisco strongly recommends that customers follow the guidance provided in the Recommendations section of this advisory to assess exposure and mitigate risks.  Cisco Talos discussed these attacks in the blog post UAT-9686 actively targets Cisco Secure Email Gateway and Secure Email and Web Manager. This advisory is available at the following link: https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-sma-attack-N9bf4

Cisco
rx13  4d ago
🎄🌟🎅 Christmas Crashout! 🎅🌟🎄5d ago
rx13  Dec 7
Zack WhittakerDec 7

If there's one thing from my ~two decades in journalism I still think about with the hatred that burns with the heat of a thousand suns, it's "stalkerware," a kind of phone surveillance used against millions of people around the world

When a documentary crew from my native U.K. reached out to me after reading some of my work investigating these illegal operations, I jumped at the chance to chat with them.

Here's what I've learned in five years reporting on stalkerware.

https://this.weekinsecurity.com/i-have-investigated-stalkerware-for-five-years-here-is-what-i-have-learned/

I've investigated 'stalkerware' for five years. Here's what I've learned

Stalkerware is a pervasive surveillance used by millions around the world, but these operations keep getting hacked and leaking victims' private phone data.

~this week in security~
rx13  Dec 7
Chris PetrilliDec 7

Weird Al is such a gift.

https://youtu.be/fSiCl4GX3-A

Merry Christmas And Happy Chanukah From "Weird Al" Yankovic

YouTube
rx13  Dec 5
Show threadrx13  Dec 5

@CyberB
@Viss @da_667

I find bootstrap to be a pretty good middle ground.

You just add classes to HTML and it JustWorks™, but it does use JavaScript, etc, for that functionality.

If you don't want to have to do page design and just want to do static generation, then

Pelican
GoHugo (a little more work on setup)
Theres also Kiki (tomotama.com/kiki)

Want Draw.io, but in ascii format?
Try asciiflow.com

rx13  Dec 4
Mike MasnickDec 3
Hey folks: this morning we're launching a monthlong fundraiser for @techdirt.com@bsky.brid.gy. Over the last year, we've been steadfast in not self-censoring, not capitulating, not sanewashing bullshit. But that's come at a cost. And we need help: rtb.techdirt.com/products/fri...

Friend Of Techdirt
Friend Of Techdirt

Get an Insider Badge on your profile

Techdirt Insider Shop
rx13  Nov 29
DilDog 🅅Nov 29

I'm going to start live-coding Veilid on a more regular basis as we march toward a 1.0.0 release.

If anyone wants to join our Discord and follow along, feel free, the invite is here:
https://veilid.com/discord

And the live coding channel is specifically here:
https://discord.com/channels/1077244355439509565/1226579058943463434

Yes, yes we're using this dumbshit centralized social chat thing until what we've built can replace it. I don't like it any more than you do.

Join the Veilid Community Discord Server!

Veilid Community - www.veilid.com | 3641 members

Discord
rx13  Nov 26
❄️☃️Merry Jerry🎄🌲Nov 26

This thanksgiving, don’t be a 🐓 and instead show your gratitude by pushing that vide coded mess to production right before closing your computer for the long 4 day weekend.

Im super thankful for all of you, which is why I’ll be upgrading mastodon this afternoon right before I head out.

Be well, friends. 🦃

rx13  Nov 26
angiebabyNov 20

Michael Reeves gives ChatGPT a stroke, and it's really funny.

#AI #FuckAI #AISlop

rx13  Nov 25
❄️☃️Merry Jerry🎄🌲Nov 24
This is such a dumpster fire. Be safe out there. #npm https://www.koi.ai/incident/live-updates-sha1-hulud-the-second-coming-hundred-npm-packages-compromised
Live Updates: Shai1-Hulud, The Second Coming - Hundreds of NPM Packages Compromised