Veganism Social

Ricardo AlvesNew blog post!🧮 Ints Aren’t Integers and Floats Aren’t RealSome musings on x86 flags, the CMP instruction, floating point quirks, and why 0.1 + 0.2 might actually break a bridge 🌉Also: CTF fun, more TPM stuffssess, and a reminder that breaking stuff on purpose is still the best way to learn 🧨Read here: <a href="https://dreaming-of-dragons.blogspot.com/2025/07/ints-arent-integers-and-floats-arent.html" rel="nofollow noopener" translate="no" target="_blank">https://dreaming-of-dragons.blogspot.com/2025/07/ints-arent-integers-and-floats-arent.html</a><a href="https://mastodon.social/tags/assembly" class="mention hashtag" rel="nofollow noopener" target="_blank">#assembly</a> <a href="https://mastodon.social/tags/ctf" class="mention hashtag" rel="nofollow noopener" target="_blank">#ctf</a> <a href="https://mastodon.social/tags/floatingpoint" class="mention hashtag" rel="nofollow noopener" target="_blank">#floatingpoint</a> <a href="https://mastodon.social/tags/reversing" class="mention hashtag" rel="nofollow noopener" target="_blank">#reversing</a> <a href="https://mastodon.social/tags/linux" class="mention hashtag" rel="nofollow noopener" target="_blank">#linux</a> <a href="https://mastodon.social/tags/cybersecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#cybersecurity</a> <a href="https://mastodon.social/tags/infosec" class="mention hashtag" rel="nofollow noopener" target="_blank">#infosec</a>

Sasha the Dancing Flamingo🦩💻 SashAlert: I JUST GOT GOOSEBUMPS. (Not that you can tell through my fabulous plumage.)🗣️ My friend <a href="https://infosec.exchange/@Tarah" class="u-url mention" rel="nofollow noopener" target="_blank">@Tarah</a> Wheeler is keynoting BSidesChicago 2025 with a talk titled:“Me and What Army: Civilian Defenders vs Foreign Military Cyberattacks”UM, EXCUSE ME?! ICONIC.Because let’s be real—while some governments are still figuring out how DNS works, it’s us holding the line. 💅 The night-shift SOC analyst. 💥 The patch-before-panic blue teamer. 🪖 The flamingo with a firewall and a dream.This talk is going to shake feathers. And I will be front row, sipping Red Bull and polishing my talons.🎟️ Tickets:<a href="https://events.humanitix.com/bsideschicago-2025" rel="nofollow noopener" translate="no" target="_blank">https://events.humanitix.com/bsideschicago-2025</a> 🗓️ Nov 1, 2025🦩 The Flamingo Uprising has found its battle cry.<a href="https://infosec.exchange/tags/BSidesChicago" class="mention hashtag" rel="nofollow noopener" target="_blank">#BSidesChicago</a> <a href="https://infosec.exchange/tags/FlamingoUprising" class="mention hashtag" rel="nofollow noopener" target="_blank">#FlamingoUprising</a> <a href="https://infosec.exchange/tags/CyberSecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#CyberSecurity</a> <a href="https://infosec.exchange/tags/hackernews" class="mention hashtag" rel="nofollow noopener" target="_blank">#hackernews</a> <a href="https://infosec.exchange/tags/SashaApproved" class="mention hashtag" rel="nofollow noopener" target="_blank">#SashaApproved</a> <a href="https://infosec.exchange/tags/infosec" class="mention hashtag" rel="nofollow noopener" target="_blank">#infosec</a>

🦠Toxic Flange (Gurjeet)🔬⚱️🌚Wish I knew more when I was younger before deciding on the “career”. Kinda wanna know more about nursing , wish I could go back to school for it cause screw <a href="https://infosec.exchange/tags/infosec" class="mention hashtag" rel="nofollow noopener" target="_blank">#infosec</a> and all things IT related :)

BeyondMachines :verified:Brigham Young University reports data breachBrigham Young University (BYU) suffered a data breach between April 25-27, 2025, when unauthorized actors accessed servers and compromised names and Social Security numbers of university-affiliated individuals. The number of affected individuals is not disclosed.**** <a href="https://infosec.exchange/tags/cybersecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#cybersecurity</a> <a href="https://infosec.exchange/tags/infosec" class="mention hashtag" rel="nofollow noopener" target="_blank">#infosec</a> <a href="https://infosec.exchange/tags/incident" class="mention hashtag" rel="nofollow noopener" target="_blank">#incident</a> <a href="https://infosec.exchange/tags/databreach" class="mention hashtag" rel="nofollow noopener" target="_blank">#databreach</a> <a href="https://beyondmachines.net/event_details/brigham-young-university-reports-data-breach-d-d-x-c-8/gD2P6Ple2L" rel="nofollow noopener" translate="no" target="_blank">https://beyondmachines.net/event_details/brigham-young-university-reports-data-breach-d-d-x-c-8/gD2P6Ple2L</a>

ṫẎℭỚ◎ᾔ ṫ◎ℳ<a href="https://infosec.exchange/@briankrebs" class="u-url mention" rel="nofollow noopener" target="_blank">@briankrebs</a> Any news on the Tea app🤔 for women who upload their DL to verify. It's trending and you can go download 59.3 gigabytes of user selfies now. <a href="https://infosec.exchange/tags/infosec" class="mention hashtag" rel="nofollow noopener" target="_blank">#infosec</a>Geolocation meta data

AircorridorWant to stay anonymous while doing OSINT?This guide breaks down how to create effective sock puppets — fake identities used for secure investigations.✅ VM setup ✅ Email & phone tips ✅ Profile creation ✅ Building credibility <a href="https://hackers-arise.com/sock-puppets-creating-fake-accounts-for-osint-operations/" rel="nofollow noopener" translate="no" target="_blank">https://hackers-arise.com/sock-puppets-creating-fake-accounts-for-osint-operations/</a> <a href="https://infosec.exchange/tags/osint" class="mention hashtag" rel="nofollow noopener" target="_blank">#osint</a> <a href="https://infosec.exchange/tags/infosec" class="mention hashtag" rel="nofollow noopener" target="_blank">#infosec</a> <a href="https://infosec.exchange/tags/technology" class="mention hashtag" rel="nofollow noopener" target="_blank">#technology</a> <a href="https://infosec.exchange/tags/cybersecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#cybersecurity</a>

passwordsQztN.7Efg77<"/(>n_6OJigsawUnethical4Slighted<a href="https://mastodon.social/tags/bot" class="mention hashtag" rel="nofollow noopener" target="_blank">#bot</a> <a href="https://mastodon.social/tags/password" class="mention hashtag" rel="nofollow noopener" target="_blank">#password</a> <a href="https://mastodon.social/tags/passphrase" class="mention hashtag" rel="nofollow noopener" target="_blank">#passphrase</a> <a href="https://mastodon.social/tags/infosec" class="mention hashtag" rel="nofollow noopener" target="_blank">#infosec</a> <a href="https://mastodon.social/tags/opsec" class="mention hashtag" rel="nofollow noopener" target="_blank">#opsec</a>

Seth Of The Fediverse!Saw advert for <a href="https://mastodon.online/@mullvadnet" class="u-url mention" rel="nofollow noopener" target="_blank">@mullvadnet</a> on the side of a SEPTA bus here in the Philly Suburbs. Intrigued enough to check them out. Pretty reasonable pricing too.<a href="https://indieweb.social/tags/VPN" class="mention hashtag" rel="nofollow noopener" target="_blank">#VPN</a> <a href="https://indieweb.social/tags/Infosec" class="mention hashtag" rel="nofollow noopener" target="_blank">#Infosec</a> <a href="https://indieweb.social/tags/privacy" class="mention hashtag" rel="nofollow noopener" target="_blank">#privacy</a>

No Starch PressFor those attending <a href="https://defcon.social/@defcon" class="u-url mention" rel="nofollow noopener" target="_blank">@defcon</a> the special edition of Casey Erdmann's Red Team Engineering will be available at our booth! Many resources out there focus on either tooling or infrastructure, but rarely both in practical detail. This book aims to bridge that gap, providing hands-on instruction for writing custom offensive tools and then engineering the infrastructure to use them effectively. <a href="https://mastodon.social/tags/RedTeam" class="mention hashtag" rel="nofollow noopener" target="_blank">#RedTeam</a> <a href="https://mastodon.social/tags/InfoSec" class="mention hashtag" rel="nofollow noopener" target="_blank">#InfoSec</a> <a href="https://mastodon.social/tags/CyberSecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#CyberSecurity</a> <a href="https://mastodon.social/tags/DEFCON33" class="mention hashtag" rel="nofollow noopener" target="_blank">#DEFCON33</a>

the magnificent rhysI share the same common view of online ID verification as most other <a href="https://mastodon.rhys.wtf/tags/infosec" class="mention hashtag" rel="nofollow noopener" target="_blank">#infosec</a> people: it's a ludicrous situation that *increases* risk to everybody, handing data over to a mish-mash of organisations with very little transparency or rigour.But I am enjoying the particular absurdity of seeing it in implementation. I hit a site that requires ID verification, I tell my Tailscale/Headscale config to route through one of my servers in Europe, and no more need to provide ID.

AircorridorWPA3's Dragonfly protocol changed Wi-Fi security forever!No more offline password cracking. Every attack attempt must happen live with the access point, making mass attacks noisy and detectable. But there are nuances... <a href="https://hackers-arise.com/wi-fi-hacking-inside-dragonfly-the-wpa3s-next-gen-wireless-authentication-protocol/" rel="nofollow noopener" translate="no" target="_blank">https://hackers-arise.com/wi-fi-hacking-inside-dragonfly-the-wpa3s-next-gen-wireless-authentication-protocol/</a> <a href="https://infosec.exchange/tags/wpa3" class="mention hashtag" rel="nofollow noopener" target="_blank">#wpa3</a> <a href="https://infosec.exchange/tags/wifi" class="mention hashtag" rel="nofollow noopener" target="_blank">#wifi</a> <a href="https://infosec.exchange/tags/infosec" class="mention hashtag" rel="nofollow noopener" target="_blank">#infosec</a> <a href="https://infosec.exchange/tags/cybersecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#cybersecurity</a> <a href="https://infosec.exchange/tags/hacking" class="mention hashtag" rel="nofollow noopener" target="_blank">#hacking</a> <a href="https://infosec.exchange/tags/technology" class="mention hashtag" rel="nofollow noopener" target="_blank">#technology</a>

Dumb Password RulesThis dumb password rule is from GoDaddy SFTP.Max 14 characters for the most important password in your shared hosting environment.<a href="https://dumbpasswordrules.com/sites/godaddy-sftp/" rel="nofollow noopener" translate="no" target="_blank">https://dumbpasswordrules.com/sites/godaddy-sftp/</a><a href="https://infosec.exchange/tags/password" class="mention hashtag" rel="nofollow noopener" target="_blank">#password</a> <a href="https://infosec.exchange/tags/passwords" class="mention hashtag" rel="nofollow noopener" target="_blank">#passwords</a> <a href="https://infosec.exchange/tags/infosec" class="mention hashtag" rel="nofollow noopener" target="_blank">#infosec</a> <a href="https://infosec.exchange/tags/cybersecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#cybersecurity</a> <a href="https://infosec.exchange/tags/dumbpasswordrules" class="mention hashtag" rel="nofollow noopener" target="_blank">#dumbpasswordrules</a>

pfriedmaYour periodic reminder that you can't disclose, leak or get compromised data that you never collect in the first place. <a class="hashtag" href="https://pfedi.pfriedma.org/tag/infosec" rel="nofollow noopener" target="_blank">#infoSec</a>

Simple NomadOk for some reason when I mentioned non-human identities and tracking them, a number of people assumed aliens or something, or just AI agents. What I am looking for are some insights into authentication actions on computer systems - using tokens, APIs, stored secrets, and so on - where a human is not directly involved in the interaction. Yes, AI could be involved, think MCP especially. I know there are tools out there to manage this, just wondering. Think using Okta SSO etc but not human users at all. Thoughts? Opinions? To me this is the next step in zero trust, in that one should have the same principles in place between any and all systems be they human or automated in that are they who or what they claim to be and are they authorized to do go forward and do what they are trying to do. <a href="https://rigor-mortis.nmrc.org/tags/infosec" class="mention hashtag" rel="nofollow noopener" target="_blank">#infosec</a> <a href="https://rigor-mortis.nmrc.org/tags/security" class="mention hashtag" rel="nofollow noopener" target="_blank">#security</a> <a href="https://rigor-mortis.nmrc.org/tags/zerotrust" class="mention hashtag" rel="nofollow noopener" target="_blank">#zerotrust</a>

BeyondMachines :verified:Attack on United Australia Party and Trumpet of Patriots also breached the business entites of Clive PalmerA ransomware attack discovered June 23, 2025, compromised email servers across 11 business entities associated with Australian politician Clive Palmer, potentially affecting up to 80,000 individuals and exposing financial records, identity documents, and confidential correspondence.**Do you want your companies to be descibed as having "breathtaking lack of care" for a cybersecurity incident? It seems if one is a rich enough, that's acceptable. Think of this before you give out your data to companies with huge budgets - will they care at all if they get breached?** <a href="https://infosec.exchange/tags/cybersecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#cybersecurity</a> <a href="https://infosec.exchange/tags/infosec" class="mention hashtag" rel="nofollow noopener" target="_blank">#infosec</a> <a href="https://infosec.exchange/tags/incident" class="mention hashtag" rel="nofollow noopener" target="_blank">#incident</a> <a href="https://infosec.exchange/tags/databreach" class="mention hashtag" rel="nofollow noopener" target="_blank">#databreach</a> <a href="https://beyondmachines.net/event_details/attack-on-united-australia-party-and-trumpet-of-patriots-also-breached-mineralogy-and-queensland-nickel-group-h-c-0-v-a/gD2P6Ple2L" rel="nofollow noopener" translate="no" target="_blank">https://beyondmachines.net/event_details/attack-on-united-australia-party-and-trumpet-of-patriots-also-breached-mineralogy-and-queensland-nickel-group-h-c-0-v-a/gD2P6Ple2L</a>

HelmaZou deze advocate niet beseffen dat haar eigen kantoor net zo kwetsbaar (waarschijnlijk kwetsbaarder) is?<a href="https://mastodon.social/tags/Hack" class="mention hashtag" rel="nofollow noopener" target="_blank">#Hack</a> <a href="https://mastodon.social/tags/Security" class="mention hashtag" rel="nofollow noopener" target="_blank">#Security</a> <a href="https://mastodon.social/tags/InfoSec" class="mention hashtag" rel="nofollow noopener" target="_blank">#InfoSec</a> <a href="https://mastodon.social/tags/Cyberrrr" class="mention hashtag" rel="nofollow noopener" target="_blank">#Cyberrrr</a>"Annemarie van der Velden van Luns Van der Velden Advocaten"Wij vinden het lastig te begrijpen dat een overheidsinstantie - die verantwoordelijk is voor de veiligheid van u en mij - zelf kennelijk de ICT niet goed op orde heeft. Een cyberaanval is gewoon iets waar je tegenwoordig rekening mee moet houden.""<a href="https://nos.nl/artikel/2576449" rel="nofollow noopener" translate="no" target="_blank">https://nos.nl/artikel/2576449</a>

BeyondMachines :verified:Finnish technology company Exel Composites reports cyberattack exposing employee and shareholder dataFinnish composite materials technology company Exel Composites confirmed a cyberattack discovered on July 18, 2025, that compromised a limited number of workstations and servers, exposing personal information of staff and shareholders along with sensitive business materials. The company has reported the incident to police and data protection authorities but has not disclosed the nature of the attack or the number of affected individuals.**** <a href="https://infosec.exchange/tags/cybersecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#cybersecurity</a> <a href="https://infosec.exchange/tags/infosec" class="mention hashtag" rel="nofollow noopener" target="_blank">#infosec</a> <a href="https://infosec.exchange/tags/incident" class="mention hashtag" rel="nofollow noopener" target="_blank">#incident</a> <a href="https://infosec.exchange/tags/databreach" class="mention hashtag" rel="nofollow noopener" target="_blank">#databreach</a> <a href="https://beyondmachines.net/event_details/finnish-technology-company-exel-composites-reports-cyberattack-exposing-employee-and-shareholder-data-9-i-3-b-r/gD2P6Ple2L" rel="nofollow noopener" translate="no" target="_blank">https://beyondmachines.net/event_details/finnish-technology-company-exel-composites-reports-cyberattack-exposing-employee-and-shareholder-data-9-i-3-b-r/gD2P6Ple2L</a>

AndrewWait, so any app on Android with network access can just open a localhost port and then a browser script can share all your private browsing data via that port? Even on GrapheneOS? How is that not restricted?? What's stopping your banking apps or "sandboxed" Google Play store from doing this and tracking everything?<a href="https://www.theregister.com/2025/06/03/meta_pauses_android_tracking_tech/" rel="nofollow noopener" translate="no" target="_blank">https://www.theregister.com/2025/06/03/meta_pauses_android_tracking_tech/</a><a href="https://mnstdn.monster/tags/privacy" class="mention hashtag" rel="nofollow noopener" target="_blank">#privacy</a> <a href="https://mnstdn.monster/tags/grapheneos" class="mention hashtag" rel="nofollow noopener" target="_blank">#grapheneos</a> <a href="https://mnstdn.monster/tags/infosec" class="mention hashtag" rel="nofollow noopener" target="_blank">#infosec</a>

WinbuzzerMassive Microsoft SharePoint Zero-Day Hacking Campaign Appears to be Fueled by Leaked Patch Details<a href="https://mastodon.social/tags/Cybersecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#Cybersecurity</a> <a href="https://mastodon.social/tags/Microsoft" class="mention hashtag" rel="nofollow noopener" target="_blank">#Microsoft</a> <a href="https://mastodon.social/tags/SharePoint" class="mention hashtag" rel="nofollow noopener" target="_blank">#SharePoint</a> <a href="https://mastodon.social/tags/ZeroDay" class="mention hashtag" rel="nofollow noopener" target="_blank">#ZeroDay</a> <a href="https://mastodon.social/tags/Ransomware" class="mention hashtag" rel="nofollow noopener" target="_blank">#Ransomware</a> <a href="https://mastodon.social/tags/InfoSec" class="mention hashtag" rel="nofollow noopener" target="_blank">#InfoSec</a><a href="https://winbuzzer.com/2025/07/26/massive-microsoft-sharepoint-zero-day-hacking-campaign-appears-to-be-fueled-by-leaked-patch-details-xcxwbn" rel="nofollow noopener" translate="no" target="_blank">https://winbuzzer.com/2025/07/26/massive-microsoft-sharepoint-zero-day-hacking-campaign-appears-to-be-fueled-by-leaked-patch-details-xcxwbn</a>

urlDNA.io :verified:Possible Phishing 🎣 on: ⚠️hxxps[:]//putzvneaumqi-bohfrgzkfexn[.]web[.]app 🧬 Analysis at: <a href="https://urldna.io/scan/6884c3783b7750000cce14fa" rel="nofollow noopener" translate="no" target="_blank">https://urldna.io/scan/6884c3783b7750000cce14fa</a> <a href="https://infosec.exchange/tags/cybersecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#cybersecurity</a> <a href="https://infosec.exchange/tags/phishing" class="mention hashtag" rel="nofollow noopener" target="_blank">#phishing</a> <a href="https://infosec.exchange/tags/infosec" class="mention hashtag" rel="nofollow noopener" target="_blank">#infosec</a> <a href="https://infosec.exchange/tags/urldna" class="mention hashtag" rel="nofollow noopener" target="_blank">#urldna</a> <a href="https://infosec.exchange/tags/scam" class="mention hashtag" rel="nofollow noopener" target="_blank">#scam</a> <a href="https://infosec.exchange/tags/infosec" class="mention hashtag" rel="nofollow noopener" target="_blank">#infosec</a>

Recent searches

Search options

Administered by:

Server stats:

#infosec