Nick Mark, MD @nick

**Dissent Doe** @PogoWasRight@infosec.exchange · 31m

Dissent Doe @PogoWasRight@infosec.exchange

The St. Lawrence Lewis Board of Cooperative Educational Services ("BOCES") in New York has reported a breach that impacted 10,993 people. The types of information involved included: SSN, name, address, DOB, tax identification number, medical information, and financial account information.

The "cybersecurity incident" was discovered on August 12, 2024 and just reported this week to the Maine Attorney General's Office, although letters were sent out to those affected in June.

https://www.maine.gov/agviewer/content/ag/985235c7-cb95-4be2-8792-a1252b4f8318/64a4742c-859e-400b-8098-589299a4052c.html

#databreach #EduSec #cybersecurity

@douglevin @funnymonkey

www.maine.govOffice of the Maine AG: Consumer Protection: Privacy, Identity Theft and Data Security Breaches

Replied to Graylog

**Benoit Poulet** @poulet_benoit@fosstodon.org · 33m

33m

Benoit Poulet @poulet_benoit@fosstodon.org

@Graylog

New features are cool.

But what is better ?

- An up to date documentation
- A complete documentation
- A real documentation of how it works

Which is not the case on Graylog (for years)

#SIEM
#cybersecurity

**Dissent Doe** @PogoWasRight@infosec.exchange · 40m *

40m *

Dissent Doe @PogoWasRight@infosec.exchange

The Clearbrook-Gonvick School District in Minnesota has disclosed a breach that occurred in October 2024. The types of information involved included names, Social Security numbers, driver's license or state ID numbers, individual taxpayer identification numbers, financial account information, and student identification numbers.

https://markets.financialcontent.com/stocks/article/accwirecq-2025-7-21-notice-of-data-privacy-incident

#databreach #Edusec #cybersecurity

@douglevin @funnymonkey

markets.financialcontent.com · 13hNotice of Data Privacy IncidentNotice of Data Privacy Incident

Replied in thread

**mkj** @mkj@social.mkj.earth · 1h

mkj @mkj@social.mkj.earth

@nopatience You want to check out the selection at https://iplists.firehol.org/ but should probably get the actual list directly from the source where possible.

FireHOL IP ListsFireHOL IP Lists | IP Blacklists | IP Reputation Feeds350+ IP blacklists, IP blocklists and IP Reputation feeds, about Cybercrime, Fraud, Botnets, Μalware, Virus, Abuse, Attacks, Open Proxies, Anonymizers. See their changes and updates, size over time, retention policy, geographic coverage, comparisons and overlaps.

#ThreatIntel #cybersecurity

**teufelswerk** @teufelswerk@social.tchncs.de · 1h

teufelswerk @teufelswerk@social.tchncs.de

„Es gibt zwei Arten von Unternehmen: Die, die gehackt wurden – und die, die’s noch nicht gemerkt haben.“

#cybersecurity #teufelswerk

**Neil Brown** @neil@mastodon.neilzone.co.uk · 1h

Neil Brown @neil@mastodon.neilzone.co.uk

Finally!

> [UK] Public sector bodies and operators of critical national infrastructure, including the NHS, local councils and schools [are to] be banned from paying ransom demands to criminals

and

> businesses not covered by the ban would be required to notify the government of any intent to pay a ransom

https://www.gov.uk/government/news/uk-to-lead-crackdown-on-cyber-criminals-with-ransomware-measures

GOV.UK · 1hUK to lead crackdown on cyber criminals with ransomware measuresBy Home Office

#ransomware #cybersecurity #uk

**BeyondMachines** @beyondmachines1@infosec.exchange · 2h

BeyondMachines @beyondmachines1@infosec.exchange

Ukrainian cyber attack targets Russian drone manufacturer Gaskar Group

Ukrainian military intelligence coordinated with hacktivist groups Ukrainian Cyber Alliance and BO Team to execute a cyberattack against Gaskar Group, one of Russia's largest military drone suppliers, claiming the compromise of 250 systems including 46 virtual servers and claiming to have stolen 47 terabytes of technical drone documentation and source code. Gaskar Group denies major operational impact and claims to continue normal operations.

****
#cybersecurity #infosec #incident #ransomware
https://beyondmachines.net/event_details/ukrainian-cyber-attack-targets-russian-drone-manufacturer-gaskar-group-m-4-o-h-r/gD2P6Ple2L

BeyondMachinesUkrainian cyber attack targets Russian drone manufacturer Gaskar GroupUkrainian military intelligence coordinated with hacktivist groups Ukrainian Cyber Alliance and BO Team to execute a cyberattack against Gaskar Group, one of Russia's largest military drone suppliers, claiming the compromise of 250 systems including 46 virtual servers and claiming to have stolen 47 terabytes of technical drone documentation and source code. Gaskar Group denies major operational impact and claims to continue normal operations.

**WICCA** @wicca@infosec.exchange · 3h

WICCA @wicca@infosec.exchange

This is not a drill. Ticket prices will rise in August.

Get them before the half moon hits: https://wiccon.nl/tickets-2025

#WICCON2025 #TicketAlert #Cybersecurity

**David Hollingworth** @David_Hollingworth@mastodon.social · 4h

David Hollingworth @David_Hollingworth@mastodon.social

This correspondence has been redacted to hell and back, but it certainly is enough to ouline a timeline Qantas' comms with their hackers.

#qantas #ransomware #cybersecurity #databreach

https://www.cyberdaily.au/security/12411-qantas-hack-court-documents-reveal-scope-of-communications-between-hackers-and-the-flying-kangaroo

Cyber Daily · 4hQantas hack: Court documents reveal scope of communications between hackers and the Flying KangarooBy David Hollingworth

**Luc Van Tilborgh** @lucvantilborgh@mastodon-belgium.be · 5h *

5h *

Luc Van Tilborgh @lucvantilborgh@mastodon-belgium.be

Kwetsbaarheden in Microsoft SharePoint Server actief misbruikt
https://www.ncsc.nl/actueel/nieuws/2025/07/20/kwetsbaarheden-in-microsoft-sharepoint-server-actief-misbruikt #cybersecurity

www.ncsc.nlKwetsbaarheden in Microsoft SharePoint Server actief misbruiktHet NCSC waarschuwt organisaties voor ernstige kwetsbaarheden in Microsoft SharePoint Server. Op dit moment ziet het NCSC actief misbruik en vraagt daarom aandacht voor deze kwetsbaarheden. Deze kwetsbaarheden in Microsoft SharePoint Server staan los van de kwetsbaarheden in de Citrix-producten waarvoor het NCSC al eerder waarschuwde.

**Pyrzout** @jos1264@social.skynetcloud.site · 5h

Pyrzout @jos1264@social.skynetcloud.site

As AI tools take hold in cybersecurity, entry-level jobs could shrink https://www.helpnetsecurity.com/2025/07/22/ai-in-cybersecurity-entry-level-jobs/ #Artificialintelligence #securityoperations #cybersecurity #automation #Don'tmiss #survey #News #ISC2

Help Net Security · 6hAs AI tools take hold in cybersecurity, entry-level jobs could shrink - Help Net SecurityAI in cybersecurity is transforming team roles, reducing entry-level jobs while creating new opportunities and reshaping hiring priorities.

Continued thread

**megabyteGhost** @megabyteghost@masto.hackers.town · 6h

megabyteGhost @megabyteghost@masto.hackers.town

Let me ask you this: how important is social engineering in #cybersecurity? How often is a failure in #infosec due to social engineering?

What I do is a type of social engineering.

Of course, ethics are VERY important to me.

If they weren’t I would be elsewhere…making a lot more money.

But sales, copywriting, marketing in general. It’s all social engineering.

You know the power of social engineering me.

Hire me (#GetFediHired ) to write your copy and socially engineer your success.

**Anonymous ️** @youranonriots@kolektiva.social · 8h

Anonymous ️ @youranonriots@kolektiva.social

ExpressVPN has fixed a flaw in its Windows client that caused Remote Desktop Protocol (RDP) traffic to bypass the virtual private network (VPN) tunnel, exposing the users' real IP addresses. #CyberSecurity https://www.bleepingcomputer.com/news/security/expressvpn-bug-leaked-user-ips-in-remote-desktop-sessions/

**Alec** @alecthegeek@mstdn.social · 9h

Alec @alecthegeek@mstdn.social

I've been using Addy.io as an anon email forwarder for some time. However it's a bit hard for my students (local seniors) to use,

Just discovered the Duck Duck "email protection" service, seems much simpler to use.

Any feedback?

#CyberSecurity #EmailSecurity #DuckDuckGo

**The Japan Times** @thejapantimes@mastodon.social · 9h

The Japan Times @thejapantimes@mastodon.social

Microsoft is rushing to stop hackers from wreaking havoc across the globe by exploiting a flaw in its SharePoint document management software. https://www.japantimes.co.jp/business/2025/07/22/tech/microsoft-hackers-global-havoc/?utm_medium=Social&utm_source=mastodon #business #tech #microsoft #hacking #internet #cybersecurity #privacy #sharepoint

The Japan Times · 10hMicrosoft rushes to stop hackers from wreaking global havocBy Jake Bleiberg

**Graylog** @Graylog@infosec.exchange · 9h

Graylog @Graylog@infosec.exchange

Did you know that starting with Graylog 6.2.3, you can pull logs directly from Mimecast using API v2.0 — and view them immediately with built-in Illuminate Dashboards? Why yes... you can!

Doing this streamlines investigations, enhances visibility, enables cross-log correlation, and reduces time spent capturing critical information. So, are you wondering now if you should go ahead an integrate #Graylog with #Mimecast?

Well, there are definite benefits to doing so, like:
Centralizing email security insights alongside endpoint, firewall, and identity logs
A reduction of pivoting between tools and improvement in incident response speed
The ability to leverage ready-made dashboards and content to cut through the noise

Read on to learn more about the prerequisites for a Mimecast setup, as well as the Illuminate Technology Pack, Illuminate Dashboards, how all of this helps analysts, and more.

https://graylog.org/post/unlock-email-threat-visibility-with-mimecast-and-graylog/ #SIEM #security #cybersecurity

**BiyteLüm** @biytelum@mastodon.social · 9h

BiyteLüm @biytelum@mastodon.social

Threat Alert: QR Code Phishing (Quishing)
Scammers are embedding phishing links in QR codes on flyers, fake parking tickets, or emails. After scanning, victims are tricked into logging in or entering credentials.
Don’t scan random codes. Use apps that preview links. Never log in after scanning unless you trust the source.
#infosec #quishing #cybersecurity #phishing

**Tanya Janca | SheHacksPurple** @SheHacksPurple@infosec.exchange · 10h

10h

Tanya Janca | SheHacksPurple @SheHacksPurple@infosec.exchange

Missed one of my past conference talks? Let’s fix that.

I’m sharing my favorites—packed with real-world advice, lessons, and a few laughs.

“Security is Everybody’s Job”
https://twp.ai/4ion6e

twp.ai- YouTubeEnjoy the videos and music you love, upload original content, and share it all with friends, family, and the world on YouTube.

#CyberSecurity #SecurityAwareness #appsec

**hush404** @hush404@mstdn.ca · 11h

11h

hush404 @hush404@mstdn.ca

What's everyone's general Multi-factor Auth methodology? Does everyone else fear the device controlling their MFA app is going to up and blink out of existence someday? How does one deal with that happening?

#techquestion #security #cybersecurity

**ChiefGyk3D** @chiefgyk3d@social.chiefgyk3d.com · 11h

11h

ChiefGyk3D @chiefgyk3d@social.chiefgyk3d.com

Let's discuss Blue Team Beats and Terminal Screens | Cybersecurity, Tech, & Chill: Open Source, Gaming on Linux, Radio. Live on Twitch: https://twitch.tv/chiefgyk3d #Cybersecurity #Linux #Tech #Twitch #Streamer

TwitchChiefGyk3D - TwitchThe Chief Geek 3D. I honestly gave up gaming for about 6 years to focus on my life and career, now let's have some fun gaming on Linux, and talking tech and cybersecurity. I have a TikTok, YouTube, Mastodon, and BlueSky as well you can follow me on just see the link tree

Recent searches

Search options

Administered by:

Server stats:

#cybersecurity