Appalti truccati, blitz Gdf al Ministero Difesa, Terna e Rfi nell'inchiesta Sogei
Si ipotizzano i reati di corruzione, riciclaggio e autoriciclaggio. Le indagini rappresentano un ulteriore sviluppo del filone investigativo già avviato su Sogei
reshared this
reshared this
🇪🇺
Fine del ChatControl: il Parlamento UE ferma la sorveglianza di massa delle chat con una maggioranza risicatissima di un solo votoDopo che il Parlamento Europeo aveva già respinto il #chatcontrol indiscriminato e generalizzato da parte delle aziende tecnologiche statunitensi il 13 marzo, ieri le forze conservatrici hanno tentato una manovra per imporre comunque una nuova votazione e prorogare la legge.
marcosbox.com/2026/03/26/fine-…
Fine del Chat Control: il Parlamento UE ferma la sorveglianza di massa delle chat - Marco's Box
La controversa sorveglianza di massa dei messaggi privati in Europa sta per giungere al termine. Dopo che il Parlamento Europeo aveva già respinto il Chat Control indiscriminato e generalizzato da parte delle aziende tecnologiche statunitensi il 13 m…Marco Giannini (Marco's Box)
reshared this
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) adds a flaw in Langflow to its Known Exploited Vulnerabilities catalog.Pierluigi Paganini (Security Affairs)
Cybersecurity & cyberwarfare reshared this.
EU Chat Control vote fails again
Find out how the Members of the European Parliament voted.HowTheyVote.eu
reshared this
Dutch Police disclose breach from phishing incident
politie.nl/nieuws/2026/maart/2…
De politie is doelwit geweest van phishing. Het Security Operations Center van de politie heeft dit zeer snel ontdekt en heeft de toegang direct afgesloten. De impact wordt nog onderzocht maar lijkt beperkt.www.politie.nl
reshared this
Russian security firm F6 has spotted a new trend in Russia where online fraud and scam groups are targeting children, social-engineering them into taking photos of their parents' e-banking apps and verification codes in exchange for in-game currencies.
reshared this
So-called bug out cars are a rather silly venture that serve little purpose more than snagging your jumper. The odds of a car working well through a nuclear winter are rather minimal. But what about a bicycle? On paper it’s a better choice, with extreme efficiency, reliability, and runs off whatever sustenance you can find in the barren landscape of a collapsed society. But [Seth] over at Berm Peak proved an apocalypse bike is at least as silly as a bug out car.
While a utilitarian bike fit for a cross-country trek across a nuclear wasteland can certainly be a reasonable venture, this particular bicycle is not that. This three wheeled monstrosity of a bicycle (is it still a bicycle if it has three wheels?) was built by [TOMO] for the Bespoked bike show’s apocalypse buildoff. It placed second among a number of strange bikes with features ranging from pedal driven circular saws to beer keg grills. But this particular example of apocalypse bike is easily the strangest example of the lot.
The features on this custom build are rather extensive, but the star of the show is the trailing link two wheel drive rear end. The third wheel was thrown on last minute with a random shock providing some measure of compliance to the rather unwieldy system. But while adding unnecessary complexity, the third wheel does offer the benefit of bringing along a number of spare parts on the last bikepacking trip of a lifetime. Moreover, it can be easily removed to get something resembling bicycle.
The aforementioned front of the bike while being an actual bike, is likewise a rather strange build. It’s best described as a fat-tired long nosed tall cargo bike. The removable cargo rack is quite effective in storing heavy loads by keeping the center of gravity near or below the axles, it can remain rideable with quite heavy loads. But, if ground clearance is needed, then simply remove the cargo rack, and the bike becomes a bike capable of navigating the nuclear wasteland it was made for.
While this is a silly and questionable bike, it’s certainly not the first strange bike we have seen.
youtube.com/embed/BlP_RAKlTAk?…
Cybersecurity & cyberwarfare reshared this.
Rapid7 links BPFDoor deployments on telco networks to Chinese APT Red Menshen
rapid7.com/blog/post/tr-bpfdoo…
A months-long investigation by Rapid7 Labs has uncovered evidence of an advanced China-nexus threat actor placing stealthy digital sleeper cells in telecommunications networks, in order to carry out high-level espionage – including against government…Rapid7
reshared this
Four former high-ranking NSA officials warned that the US is losing its advantage in cyberspace as the government is failing to keep up with foreign adversaries
The four cited "brain drain" across the public sector and disintegrating relations with the private sector
cyberscoop.com/former-nsa-chie…
A systemic numbness to cyberattacks has exposed the U.S. economy and its institutions to ever-widening threats. Retired four-star military officials worry the worst day in cyber is yet to come.Matt Kapko (CyberScoop)
reshared this
Data-wiping attacks were reported at 50 Israeli organizations
Attacks were linked to 20 different groups
israelnationalnews.com/news/42…
The head of the National Cyber Authority reveals the scope of Iran's cyberattacks against Israel and warns that the war in cyberspace will continue even after a ceasefire.Yoni Kempinski (Israel National News)
reshared this
Security firm Palo Alto Networks says a threat actor is impersonating its recruiters in a phishing campaign
unit42.paloaltonetworks.com/ph…
Unit 42 identifies a recruitment phishing campaign targeting senior professionals via impersonation and fraudulent resume fees.Justin Moore (Unit 42)
reshared this
Kaspersky found Coruna iOS exploits reuse updated code from the 2023 Operation Triangulation attacks, suggesting a possible link.Pierluigi Paganini (Security Affairs)
Cybersecurity & cyberwarfare reshared this.
Fatemi fare il meloniano: complimenti a @GiorgiaMecojoni per avere sfanculato i personaggi oghi più dannosi per l'interesse di partito, mentre il PD, inspiegabilmente, se li tiene stretti.
Meloni sarà pure opportunista e votata all'autoconservazione, ma il PD brilla per la sua incredibile determinazione a demolire la propria credibilità e, soprattutto, a umiliare costantemente la credulità dei propri elettori. Poi c'è chi si chiede perché i fasci resistano
poliversity.it/@mau/1162966144…
Hybris e dura realtà@politica - Il risultato del referendum ha semplicemente scoperchiato la pentola che bolliva già da parecchio.
reshared this
Politica interna, europea e internazionale reshared this.
Politica interna, europea e internazionale reshared this.
Pocket computers like Sharp’s 8-bit computing marvels were a big part of the 1980s, providing super-portable processing power to anyone who wanted a bit more than what something like a scientific calculator could provide at the time. These days they are mostly just a collector’s item for retrocomputing enthusiasts, which also means that a lot of the knowledge about how to program the CPUs in them is at risk of being lost.
This is why [gikonekos] decided to combine as much knowledge they can glean from official documentation into a reference project on GitHub for the SC62015 equipped Sharp pocket computers like the PC-E550.
Generally you’d program in Sharp’s dialect of BASIC on these computers, such as the ‘PLAY3’ program that [gikonekos] recently unearthed from a November 1993 copy of ‘Pocket Computer Journal’ using which you can create polyphonic tunes. This only unlocks a small part of what the hardware can do, of course, so having a full opcode reference like this is important.
While still a work in progress, it’ll eventually contain the full opcode and register tables, addressing modes, instruction summaries and of course a full accounting of how all of this was reconstructed. As the original Sharp documentation wasn’t released to the public, providing these scans is also not a goal, especially not under any kind of free license.
A cursory search reveals an instruction table for the PC-E500 from 1995 by [Andrew Woods], so documenting this is not a new thing, although at the time these Sharp pocket PCs didn’t count as ‘retro systems’ yet.
@Informatica (Italy e non Italy)
Google ha integrato Gemini in Google Threat Intelligence per monitorare automaticamente il Dark Web: fino a 10 milioni di post al giorno analizzati con una precisione dichiarata del 98%. Un salto tecnologico reale che pone domande scomode su cosa significhi
Auster likes this.
reshared this
Fine del ChatControl: il Parlamento UE ferma la sorveglianza di massa delle chat con una maggioranza risicatissima di un solo voto
Dopo che il Parlamento Europeo aveva già respinto il #chatcontrol indiscriminato e generalizzato da parte delle aziende tecnologiche statunitensi il 13 marzo, ieri le forze conservatrici hanno tentato una manovra per imporre comunque una nuova votazione e prorogare la legge.
marcosbox.com/2026/03/26/fine-…
La controversa sorveglianza di massa dei messaggi privati in Europa sta per giungere al termine. Dopo che il Parlamento Europeo aveva già respinto il Chat Control indiscriminato e generalizzato da parte delle aziende tecnologiche statunitensi il 13 m…Marco Giannini (Marco's Box)
reshared this
Privacy Pride reshared this.
e speriamo che sia davvero finita. Orgoglioso di aver lanciato con @ufficiozero e @BoostMediaAPS la campagna Mail Day che comunque proseguirà per scrupolo con un'ultima giornata, quella del 7 Aprile.
Mai abbassare la guardia 💪
reshared this
Elastic's security team has come across "a data dump containing source code, compiled binaries, and deployment scripts for the kernel rootkit components of VoidLink, a cloud-native Linux malware framework first documented by Check Point Research in January 2026."
elastic.co/security-labs/illum…
Elastic Security Labs analyzes VoidLink, a sophisticated Linux malware framework that combines traditional Loadable Kernel Modules with eBPF to maintain persistence.Ruben Groenewoud (Elastic Security Labs)
reshared this
Got a cool ActivityPub or ATProtocol project that can be demo'd? We are always looking to showcase what the Open Social Web can do when smart people create great software, in our speed demo track at FediForum. A few projects have been recommended for the end of April event by our community already.
If you think you have such a cool open social web demo, get in touch!
reshared this
Hybris e dura realtà
@politica - Il risultato del referendum ha semplicemente scoperchiato la pentola che bolliva già da parecchio.
reshared this
NEW: We spoke to a few iPhone security experts about what the discovery of DarkSword means to the long-held assumption that iPhones are very hard to hack.
The answer is nuanced, and not simple. Apple has made significant strides in making iPhones more secure, but DarkSword may change how we think.
techcrunch.com/2026/03/26/appl…
Leaked hacking tools threaten the security of millions of older iPhones. Cybersecurity experts weigh in.Lorenzo Franceschi-Bicchierai (TechCrunch)
Cybersecurity & cyberwarfare reshared this.
The WikiMedia Foundation has banned editors from using AI tools to write or rewrite Wikipedia articles
reshared this
Ciao @informapirata
Come promesso, eccomi qua! 😜
PS: dove trovo una guida?
reshared this
Una guida italiana in forma di tutorial che ti guiderà passo dopo passo ad inscriverti e a usare Mastodon, una delle piattaforme di microblogging del fediverso.Mastodon | Guida in italiano all'uso di Mastodon
Last year, my position was that we still had time to design PQ authentication mechanisms.
Now, based on the pace of progress and on statements like Google's, I believe:
1. we need to finish rolling out PQ key exchange yesterday
2. we need to start rolling out PQ auth now
3. it's too late to ship any new non-PQ design or system
blog.google/innovation-and-ai/…
An overview of how Google is accelerating its timeline for post-quantum cryptography migration.Heather Adkins (Google)
reshared this
Interesting, I just cam across infosec.exchange/@mttaggart/11… the other day, basically saying that it won't be feasible any time soon.
As of 2026-03-02, the state of the art in quantum decryption has cracked a:
- 22-bit RSA key
- 6-bit elliptic curve key
forklog.com/en/quantum-compute…
The IBM QC that cracked the 6-bit key uses 133 qubits.
Some new research suggests that RSA-2048 could be cracked with as "few" as 100,000 qubits.
newscientist.com/article/25164…
Such a machine...is not feasible to build any time soon.
So when your CISO or a vendor starts going off about "post-quantum" security, feel free to use this to remind them that we still have SMB1 in some places and Telnet in others. Plenty of work to do around the house.
Breaking encryption with a quantum computer just got 10 times easier
The commonly used RSA encryption algorithm can now be cracked by a quantum computer with only 100,000 qubits, but the technical challenges to building such a machine remain numerousKarmela Padavic-Callaghan (New Scientist)
You got me interested to know what it would look like in authorized_keys, and can it be this short! Looks neat.
ssh-mldsa44-ed25519 434f4d505349472d4d4c44534134342d456432353531392d534841353132
datatracker.ietf.org/doc/draft…
This document describes the use of PQ/T composite signatures for the Secure Shell (SSH) protocol. The composite signatures described combine ML-DSA as the post-quantum part and the elliptic curve signature schemes ECDSA, Ed25519 and Ed448 as the trad…IETF Datatracker
That hack of the National Super Computer Center of China (NSCC) is becoming more real by the day
"the overall details we received so far seem like that this operation is more in the realm of "real” than “fake"."
netaskari.substack.com/p/nscc-…
We were able to talk to an account that claims to be "Flaming China" and responsible for the hack of the Chinese National Super Computer Center a few months ago.NetAskari
reshared this
reshared this
Cisco now has semiannual security updates for IOS and IOS XE
"In direct response to customer feedback, Cisco releases bundles of Cisco IOS and IOS XE Software Security Advisories on the fourth Wednesday of the month in March and September of each calendar year."
reshared this
Redline infostealer developer was extradited to the US this week
reshared this
Kaspersky has linked Coruna with Operation Triangulation. This somes a few weeks after we reported that L3Harris Trenchant was the company behind some components of Coruna.
And we also reported that it was possible Coruna was used in Operation Triangulation.
securelist.com/coruna-framewor…
Kaspersky GReAT experts look into the Coruna exploit kit targeting iPhones. We discovered that the kernel exploit for CVE-2023-32434 and CVE-2023-38606 is an updated version of the Operation Triangulation exploit.Boris Larin (Securelist)
Cybersecurity & cyberwarfare reshared this.
A former Trenchant employee told us that when Triangulation was first revealed, other employees at the company believed that at least one of the zero-days caught by Kaspersky “were from us."
Also both Kaspersky and Trenchant seemed to wink at the fact that they both knew.
techcrunch.com/2026/03/10/us-m…
Tools used in a series of hacking campaigns by hackers in Russia, Ukraine, and China may have originated inside U.S. government contractor L3Harris, TechCrunch has learned.Lorenzo Franceschi-Bicchierai (TechCrunch)
Russian intelligence managed to install a wire-taping device as part of a thermostat at a Ukrainian drone factory
en.interfax.com.ua/news/genera…
Agents of Russian special services placed wiretapping system and other special equipment in office of chief engineer of Ukrainian drone manufacturer TechEx.Interfax-Ukraine
reshared this
Consumer-grade 3D printing is good for prototyping and making relatively soft plastic stuff. If you wanna make tough things, though, it’s really hard to beat the strength of metal. [Shake the Future] has produced a guide on using 3D printing in a process to produce solid parts out of actual cast iron.
The concept is simple. [Shake the Future] uses silicon carbide crucibles, which can heat up by absorbing microwave energy. Put one in an insulated container, dump some metal in, and throw it in a microwave, and soon enough you have a pot of molten metal you can use to cast stuff.
It’s a messy technique that requires a lot of manual labor, but it does work quite well. There are some tricks to learn, though, particularly when it comes to successfully casting parts with holes or fine geometric features.
And before you think that you’re going to put the hardware store out of business, it should also be noted that it failed on first encounter with a real-world nut. The thinnest part by the screw just wasn’t strong enough.
Still, it’s a great demo, and if you’ve ever wanted to make a bespoke cast iron part of your own, this work may be very relevant to you. Alternatively, consider learning about DIY aluminium casting—just consider the pitfalls involved.
youtube.com/embed/FyhaeVi05io?…
NEW: Here's everything you need to know about the new iPhone hacking tool DarkSword.
What is DarkSword? How does it work? Where did it come from? How did it leak online? What can you do about it?
We break it all down in this explainer.
techcrunch.com/2026/03/26/a-ma…
Here’s what we know, and what you need to know, about Coruna and DarkSword, two advanced iPhone hacking tools discovered by security researchers. DarkSword has now leaked online.Lorenzo Franceschi-Bicchierai (TechCrunch)
Cybersecurity & cyberwarfare reshared this.
OpenAI chiude Sora: il futuro dell’AI non è più Video! Scopriamo cosa sta accadendo
📌 Link all'articolo : redhotcyber.com/post/openai-ch…
#redhotcyber #news #openai #intelligenzaartificiale #soraplatform #generazionevideoai #monetizzazione #riskichilegali #copyright #robotica #agentiautonomi #probleminormativi #reputazioneonline #tecnologia
OpenAI chiude Sora, la piattaforma di generazione video AI, a causa di scarsa monetizzazione e rischi legali. Scopri cosa è successo.Carolina Vivianti (Red Hot Cyber)
reshared this
Hungarian opposition leader Peter Magyar has accused the ruling government of using the Candiru spyware against his TISZA party
x.com/magyarpeterMP/status/203…
The Orbán mafia has tried to undermine TISZA, Hungary's strongest party, using a range of methods. In addition to infiltration, blackmail, and threats, this has included the use of illegal intelligence tools by @PM_ViktorOrban's inner circle, includi…Magyar Péter (Ne féljetek) (X (formerly Twitter))
reshared this
Il Ransomware è ora Democratico! TeamPCP e BreachForums assieme per elevare il RaaS
📌 Link all'articolo : redhotcyber.com/post/il-ransom…
#redhotcyber #news #cybercrime #ransomware #sicurezzainformatica #hacking #malware #attacchinformatici #vulnerabilita #supplychain
Il Ransomware-as-a-Service (RaaS) si evolve con BreachForums, Vect e TeamPCP. Scopri come il cybercrime sta cambiando.Bajram Zeqiri (Red Hot Cyber)
Cybersecurity & cyberwarfare reshared this.
Attacco informatico all’ospedale Papardo di Messina. Urzì: La Sicilia sempre più esposta
📌 Link all'articolo : redhotcyber.com/post/attacco-i…
Succede tutto in fretta. I #sistemi si fermano e, nel giro di poco, l’intera macchina sanitaria inizia a rallentare fino a bloccarsi.
All’ospedale Papardo di Messina è andata così, come riportato da Messina Today. Un #attacco #informatico ha mandato fuori uso terminali, #database e #piattaforme interne, creando problemi immediati: prenotazioni più lente, difficoltà operative e una #gestione dei pazienti decisamente più complicata.
A cura di Chiara Nardini
#redhotcyber #news #attacchinformatico #cybersecurity #hacking #malware #ransomware #ospedalipapardo #messina #problemidisicurezza #gestionepazienti #prenotazionionline #sicurezzainformatica #attacchihacker
Un attacco informatico ha colpito l'ospedale Papardo di Messina, mandando fuori uso terminali e database. Il ripristino procede gradualmente.Chiara Nardini (Red Hot Cyber)
Cybersecurity & cyberwarfare reshared this.
LibreOffice e l'arte di reagire in modo eccessivo. Un banner di donazione non è un attacco agli utenti. Il post di Italo Vignoli
Troppo misurato il buon @italovignoli
Per noi, invece gli utenti che si lamentano delle richieste di donazione da parte di chi produce applicazioni in software libero sono un significativo distillato di stupidità, sapientemente barriccato in anni e anni di stronzaggine. Un elisir per le BigTech!
blog.documentfoundation.org/bl…
A donation banner is not an attack to users The announcement that LibreOffice 26.8 will feature a donation banner in the Start Centre has prompted a flood of responses, ranging from positive from many FOSS supporters, who understand the need for fund…Italo Vignoli (TDF Community Blog)
like this
reshared this
@max resta il fatto che una valanga di idioti come clienti è l'asset più prezioso per un'azienda.
I software FOSS invece si rivolgono a un utente attento e riflessivo e perciò partono già sconfitti 🤣
Max - Poliverso 🇪🇺🇮🇹 likes this.
informapirata ⁂ reshared this.
reshared this
Julian Del Vecchio
in reply to informapirata ⁂ • • •reshared this
Informatica (Italy e non Italy) e informapirata ⁂ reshared this.