mastodon.world is one of the many independent Mastodon servers you can use to participate in the fediverse.
Generic Mastodon server for anyone to use.

Server stats:

12K
active users

#itsec

17 posts12 participants0 posts today
𝕂𝚞𝚋𝚒𝚔ℙ𝚒𝚡𝚎𝚕<p>»Gmail Gets End-To-End Encryption From Google As 21'st Birthday Present:<br>[…] Google Claims To Have Invented An Entirely New Type Of Encryption For Gmail Users […]«</p><p>This is not an April joke and yes Google offers OpenPGP for Gmail Accounts. This is not difficult to set up but too many people are too lazy in my opinion.</p><p>📧 <a href="https://www.forbes.com/sites/daveywinder/2025/04/01/gmail-gets-end-to-end-encryption-from-google-as-21st-birthday-present/" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://www.</span><span class="ellipsis">forbes.com/sites/daveywinder/2</span><span class="invisible">025/04/01/gmail-gets-end-to-end-encryption-from-google-as-21st-birthday-present/</span></a></p><p><a href="https://chaos.social/tags/e2ee" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>e2ee</span></a> <a href="https://chaos.social/tags/openpgp" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>openpgp</span></a> <a href="https://chaos.social/tags/email" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>email</span></a> <a href="https://chaos.social/tags/gmail" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>gmail</span></a> <a href="https://chaos.social/tags/mail" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>mail</span></a> <a href="https://chaos.social/tags/itsec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>itsec</span></a> <a href="https://chaos.social/tags/encryption" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>encryption</span></a> <a href="https://chaos.social/tags/google" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>google</span></a> <a href="https://chaos.social/tags/security" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>security</span></a> <a href="https://chaos.social/tags/april" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>april</span></a> <a href="https://chaos.social/tags/endtoendencryption" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>endtoendencryption</span></a> <a href="https://chaos.social/tags/pgp" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>pgp</span></a> <a href="https://chaos.social/tags/joke" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>joke</span></a> <a href="https://chaos.social/tags/birthday" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>birthday</span></a> <a href="https://chaos.social/tags/nojoke" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>nojoke</span></a> <a href="https://chaos.social/tags/april" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>april</span></a> <a href="https://chaos.social/tags/ransomware" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>ransomware</span></a></p>
Felix Eckhardt<p><span class="h-card" translate="no"><a href="https://social.heise.de/@heisec" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@<span>heisec</span></a></span> Wisst Ihr, was da bei NIST los ist? nvd.nist.gov ist seit min. heute Mittag immer wieder nicht erreichbar (503).</p><p><a href="https://det.social/tags/infosec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>infosec</span></a> <a href="https://det.social/tags/itsec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>itsec</span></a> <a href="https://det.social/tags/itsecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>itsecurity</span></a> <a href="https://det.social/tags/security" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>security</span></a></p>
Felix Eckhardt<p>nvd.nist.gov seems to be down? DOGE@work?</p><p><a href="https://det.social/tags/cybersecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>cybersecurity</span></a> <a href="https://det.social/tags/infosec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>infosec</span></a> <a href="https://det.social/tags/itsecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>itsecurity</span></a> <a href="https://det.social/tags/itsec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>itsec</span></a> <a href="https://det.social/tags/doge" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>doge</span></a> <a href="https://det.social/tags/musk" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>musk</span></a></p>
Griesgram in spe :linux:<p>Interessant: Wenn ich der Home Assistant App (iOS) die Berechtigung sich im LAN umzuschauen, entziehe, dann funktioniert die Verbindung zum Server nicht mehr. Eigentlich sollte der Server-URL ausreichen. Finde ich verdächtig. </p><p><a href="https://norden.social/tags/homeassistant" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>homeassistant</span></a> <a href="https://norden.social/tags/itsec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>itsec</span></a> <a href="https://norden.social/tags/opensourceistnichtimmersicher" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>opensourceistnichtimmersicher</span></a></p>
𝕂𝚞𝚋𝚒𝚔ℙ𝚒𝚡𝚎𝚕<p>»Unsicherheit – US-Kürzungsrausch gefährdet für das Internet wichtige Open-Source-Projekte:<br>Die neue US-Regierung entzieht dem Open Technology Fund (OTF) die Mittel. Von diesem sind unter anderem <span class="h-card" translate="no"><a href="https://infosec.exchange/@letsencrypt" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@<span>letsencrypt</span></a></span>, <span class="h-card" translate="no"><a href="https://mastodon.social/@torproject" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@<span>torproject</span></a></span> und <span class="h-card" translate="no"><a href="https://floss.social/@fdroidorg" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@<span>fdroidorg</span></a></span> finanziell abhängig. Der OTF hat Klage eingereicht«</p><p>Sehr heikel und es petrifft, wenn auch "nur" indirekt, alle Menschen auf der Erde. Der Egoismus eines Irren kann uns alle betreffen!</p><p>👉 <a href="https://www.derstandard.at/story/3000000263520/lets-encrypt-tor-trump-kuerzungen-gefaehrden-fuer-das-internet-wichtige-open-source-projekte" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://www.</span><span class="ellipsis">derstandard.at/story/300000026</span><span class="invisible">3520/lets-encrypt-tor-trump-kuerzungen-gefaehrden-fuer-das-internet-wichtige-open-source-projekte</span></a></p><p><a href="https://chaos.social/tags/trump" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>trump</span></a> <a href="https://chaos.social/tags/uspol" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>uspol</span></a> <a href="https://chaos.social/tags/tor" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>tor</span></a> <a href="https://chaos.social/tags/fdroid" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>fdroid</span></a> <a href="https://chaos.social/tags/letsencrypt" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>letsencrypt</span></a> <a href="https://chaos.social/tags/itsec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>itsec</span></a></p>
𝕂𝚞𝚋𝚒𝚔ℙ𝚒𝚡𝚎𝚕<p>»Cyberkriminalität - Swisspass-Konto gehackt: freie Fahrt für die Betrüger:<br>Hacker ändern das Login und bestellen auf Kosten eines Studenten Zugtickets von fast 900 Franken. Das ist kein Einzelfall.«</p><p>Ich bin froh, dass ich öfters noch analoge Dinge nutze und dies bewusst. Was mich mehr aufregt, ist dass viele digitale so wie online Dienste sich nicht wirklich um die Sicherheit ihrer Kunden kümmern.</p><p>🔊 [CH-DE] <a href="https://www.srf.ch/sendungen/kassensturz-espresso/espresso/cyberkriminalitaet-swisspass-konto-gehackt-freie-fahrt-fuer-die-betrueger" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://www.</span><span class="ellipsis">srf.ch/sendungen/kassensturz-e</span><span class="invisible">spresso/espresso/cyberkriminalitaet-swisspass-konto-gehackt-freie-fahrt-fuer-die-betrueger</span></a></p><p><a href="https://chaos.social/tags/sbb" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>sbb</span></a> <a href="https://chaos.social/tags/bahn" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>bahn</span></a> <a href="https://chaos.social/tags/ticket" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>ticket</span></a> <a href="https://chaos.social/tags/mobile" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>mobile</span></a> <a href="https://chaos.social/tags/digital" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>digital</span></a> <a href="https://chaos.social/tags/hacking" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>hacking</span></a> <a href="https://chaos.social/tags/schweiz" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>schweiz</span></a> <a href="https://chaos.social/tags/itsec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>itsec</span></a></p>
𝕂𝚞𝚋𝚒𝚔ℙ𝚒𝚡𝚎𝚕<p>Apple ID Hack — New Warning For 2 Billion Users</p><p>Apple has long since had an air of invulnerability about it as far as users have been concerned; be they iPhone, iPad or Mac fans, the ecosystem has been thought of as pretty darn secure. Like most security assumptions, however, it is wrong. […]</p><p>🍎 <a href="https://www.forbes.com/sites/daveywinder/2025/03/30/apple-id-hack-new-warning-for-2-billion-users/" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://www.</span><span class="ellipsis">forbes.com/sites/daveywinder/2</span><span class="invisible">025/03/30/apple-id-hack-new-warning-for-2-billion-users/</span></a></p><p><a href="https://chaos.social/tags/apple" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>apple</span></a> <a href="https://chaos.social/tags/itsecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>itsecurity</span></a> <a href="https://chaos.social/tags/hacking" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>hacking</span></a> <a href="https://chaos.social/tags/users" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>users</span></a> <a href="https://chaos.social/tags/itsec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>itsec</span></a> <a href="https://chaos.social/tags/iphone" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>iphone</span></a> <a href="https://chaos.social/tags/ipad" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>ipad</span></a> <a href="https://chaos.social/tags/mac" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>mac</span></a> <a href="https://chaos.social/tags/itsecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>itsecurity</span></a> <a href="https://chaos.social/tags/idhack" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>idhack</span></a> <a href="https://chaos.social/tags/security" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>security</span></a> <a href="https://chaos.social/tags/appleidhack" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>appleidhack</span></a> <a href="https://chaos.social/tags/appleid" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>appleid</span></a> <a href="https://chaos.social/tags/infosec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>infosec</span></a></p>
𝕂𝚞𝚋𝚒𝚔ℙ𝚒𝚡𝚎𝚕<p>User vs IT security 😼💻</p><p><a href="https://chaos.social/tags/itsecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>itsecurity</span></a> <a href="https://chaos.social/tags/user" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>user</span></a> <a href="https://chaos.social/tags/online" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>online</span></a> <a href="https://chaos.social/tags/password" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>password</span></a> <a href="https://chaos.social/tags/it" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>it</span></a> <a href="https://chaos.social/tags/web" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>web</span></a> <a href="https://chaos.social/tags/itsec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>itsec</span></a> <a href="https://chaos.social/tags/passwords" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>passwords</span></a> <a href="https://chaos.social/tags/joke" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>joke</span></a> <a href="https://chaos.social/tags/ITJokes" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>ITJokes</span></a> <a href="https://chaos.social/tags/video" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>video</span></a> <a href="https://chaos.social/tags/humor" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>humor</span></a> <a href="https://chaos.social/tags/login" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>login</span></a> <a href="https://chaos.social/tags/jokes" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>jokes</span></a> <a href="https://chaos.social/tags/cats" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>cats</span></a> <a href="https://chaos.social/tags/cat" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>cat</span></a></p>
Replied in thread

@dzwiedziu @fj @signalapp not really, as the #Metadata #FUD cited by #Signal is mitigateable with proper measures.

  • You can't even run Signal over @torproject and even if that point is moot when you're forced to quasi-#KYC by virtue of a #PhoneNumber aka. #PII they have neither legitimate interest nor technical reason to demand in the first place!

Every claim that things like #ITsec, #InfoSec, #OpSec & #ComSec can be solved with "Just use Signal!" is "#TechPopulism" at best if not being a "#UsefulIdiot"!

What is BLAKE3?

Even if I use a big fan from the use of BLAKE3 to hash, it is not possible to use it in a very advantageous way everywhere. What kind of thing is always what you have to question as a programmer. In the case of a product, the following conditions are met.

🔏 academy.bit2me.com/en/que-es-b

Qué es Blake3
Bit2Me Academy · What is BLAKE3?Meet BLAKE3, one of the fastest, most secure and efficient hashing algorithms in the computing and blockchain world.

Oh Oracle hat einen Sicherheitsvorfall.

Ob das @bsi uns irgendwann unterrichtet ob auch deutsche Behörden betroffen waren?

>>
Den Angaben nach umfassen die von rose87168 veröffentlichten Daten auch eine Liste von über 140.000 Domains von Unternehmen und Behörden, die allesamt von dem Datenleck betroffen sein sollen.
<<
also könnte ja sein

golem.de/news/it-konzern-unter

Golem.de · IT-Konzern unter Druck: Echtheit von Oracle-Kundendaten nach Cyberangriff bestätigt - Golem.deBy Marc Stöckel
Replied in thread

@Andromxda @mollyim no it's not bs and fanboying @signalapp isn't going to change that.

If #Signal was secure it would be the #1 comms tool of organized crime...

Real professionals use #SelfHosting capable, fully #FLOSS'd solutions like #PGP/MIME & #XMPP+#OMEMO.

It's just me reading the room: Cuz #ComSec isn't done woth "JuSt UsE sIgNaL!" and everyone who claims so without pointing out #OpSec, #InfoSec & #ITsec is BSing hard.

  • The cold hard truth is that #TechLiteracy is irreplaceable and the only solution to it is to actually teach normies how to "get gud" with stuff like PGP.

Fortunatelty, @thunderbird and @tails_live / @tails / #Tails and many other tools make that easier than ever before.

Continued thread

how phishing etc. often plays on urgency to lower your defenses, remember to then also remind people that almost nothing is ever that urgent.

Above all, always remember that almost everybody is on a sliding scale of "out of their element" when using a computer. The most important ITSEC measure is helping people move that slider in the comfortable direction & the best way of doing that is helping people realize they're the masters of their machines & not the other way around.

sqlmap: Automatic SQL injection and database takeover tool

sqlmap is an open source penetration testing tool that automates the process of detecting and exploiting SQL injection flaws and taking over of database servers. […]

🔎 darkwebinformer.com/sqlmap-aut

Dark Web Informer - Cyber Threat Intelligence · sqlmap: Automatic SQL injection and database takeover toolsqlmap: Automatic SQL injection and database takeover tool
#sql#check#database