0 Persons are tagged with #network

#network

anonymiss@despora.de
anonymiss

#CVE-2024-20356: #Jailbreaking a #Cisco appliance to run #DOOM

In this adventure, the Cisco #C195 device family was jailbroken in order to run unintended code. This includes the discovery of a vulnerability in the #CIMC body management controller which affects a range of different devices, whereby an authenticated high privilege user can obtain underlying root access to the server’s #BMC (CVE-2024-20356) which in itself has high-level access to various other components in the system. The end goal was to run DOOM – if a smart fridge can do it, why not Cisco?

source: https://labs.nettitude.com/blog/cve-2024-20356-jailbreaking-a-cisco-appliance-to-run-doom/

#software #security #bug #network #game #news #vulnerability #exploit #hack #hacker

CVE-2024-20356: Jailbreaking a Cisco appliance to run DOOM

The Cisco C195 is a Cisco Email Security Appliance device. Its role is to act as an SMTP gateway on your network perimeter. This device (and the full range of appliance devices) is heavily locked down and prevents unauthorised code from...

One person like that
mkwadee@diasp.eu
Khurram Wadee

My #ISP has been cranking up the #network speed recently. Over the past few weeks, my decrepit old #router couldn't handle it any longer and kept dropping the connection and then resetting. It was very frustrating. Happily, they've sent a new one and things are back up and the connection is looking solid again, with the added bonus that the speed is nearly three times as much I had been getting previously.

9 Likes
1 Comments
anonymiss@despora.de
anonymiss

#TruthSocial faces harsh reality as a public #company

source: https://www.axios.com/2024/03/27/truth-social-stock-facebook-twitter-ipo

Truth Social — the #Trump - owned social #media platform that started trading yesterday — currently has far fewer users and less income than any social #network that has gone public before.

For now, Truth is trading like a #meme #stock, meaning its market value is completely divorced from its financial reality.

#politics #news #economy #internet #finance #usa

Truth Social faces harsh reality as a public company

While Truth Social does sell some adds, its business is practically non-existent.

5 Likes
2 Comments
1 Shares
anonymiss@despora.de
anonymiss

Behind a Secretive Global Network of Non-Consensual #Deepfake #Pornography

This #investigation also uncovered a fake #Clothoff CEO who was, in fact, an #AI -generated #image. The fake CEO notwithstanding, a trail of open source records reveals a loose #network of real companies with real people attached to them behind Clothoff, #Nudify, #Undress, and #DrawNudes.

Source: https://www.bellingcat.com/news/2024/02/23/behind-a-secretive-global-network-of-non-consensual-deepfake-pornography/

#news #fake #crime #porn #problem #nude #technology #software #internet

Behind a Secretive Global Network of Non-Consensual Deepfake Pornography - bellingcat

An online video game marketplace says it has referred user accounts to legal authorities after a Bellingcat investigation found nonconsensual pornographic deepfake tokens were being surreptitiously sold on the site.

6 Likes
1 Shares
anonymiss@despora.de
anonymiss

My experience with #ZeroTrust in the IT #industry.

Source: https://www.bleepingcomputer.com/news/security/how-to-apply-zero-trust-to-your-active-directory/

After my company switched to Zero Trust, I received an email with instructions and that I should print out the telephone list from the intranet in case of an #emergency. But I didn't had access to the list. So I opened a ticket. The #support sent me the list by email. When I asked, if this is how it should work now, that I can't access even the simplest documents. The answer was that I can request them via support. Zero Trust therefore means that you only have access to your own documents, and perhaps those of the project team. It's a mad world with a lot of security theatre and snake oil.

#security #access #network #trust #problem #CyberSecurity #snakeoil #problem

One person like that
3 Comments
2 Likes
One person like that
anonymiss@despora.de
anonymiss

#NSA and #CISA Red and Blue Teams Share Top Ten #Cybersecurity Misconfigurations

source: https://www.cisa.gov/news-events/cybersecurity-advisories/aa23-278a

1) Default configurations of software and applications
2) Improper separation of user/administrator privilege
3) Insufficient internal network monitoring
4) Lack of network segmentation
5) Poor patch management
6) Bypass of system access controls
7) Weak or misconfigured multifactor authentication (MFA) methods
8) Insufficient access control lists (ACLs) on network shares and services
9) Poor credential hygiene
10) Unrestricted code execution

#usa #internet #security #administrator #configuration #knowledge #knowhow #top10 #network #login

3 Likes
california@diaspora.permutationsofchaos.com
California Girls Hacker

Cult of the Dead Cow has released #Veilid: A secure peer-to-peer #network for apps that flips off the #surveillance economy

The idea being here that apps – #mobile, #desktop, #web, and headless – can find and talk to each other across the #internet privately and securely without having to go through centralized and often corporate-owned systems. Veilid provides code for app developers to drop into their #software so that their clients can join and communicate in a peer-to-peer #community.

github: https://gitlab.com/veilid/veilid
docs: https://veilid.com/docs

#p2p #security #privacy #framework #communication #freedom #opensource #decentralization #hacker

Veilid / veilid · GitLab

GitLab.com

6 Likes
3 Comments
10 Shares