More than 220 Russian organizations have been hit with ransomware this year with the highest ransom demand reaching $3.8 million
Questa voce è stata modificata (2 ore fa)
reshared this
Apex ISO Creator Gui: creare una ISO Arch personalizzata con semplicità
linuxeasy.org/apex-iso-creator…
Apex ISO Creator Gui semplifica la creazione di ISO Arch personalizzate con Qt6, C++23 e un flusso più immediato.
L'articolo Apex ISO Creator Gui: creare una ISO Arch personalizzata con semplicità proviene da Linux Easy.
E' vietato
The Afghanistan Taliban leadership has banned government employees from using smartphones at work
Offenders would be prosecuted in a military court
Taliban Leader Bans Smartphones for Government Employees
A document obtained by Afghanistan International indicates that Taliban leader Hibatullah Akhundzada has issued a new verbal order banning the use of smartphones by the group members and government employees.Afghanistan International
reshared this
A Python source code formatter and linter blocked an attacker from pushing malicious code to a GitHub project twice after the malicious code did not match the target project's code formatting rules
stepsecurity.io/blog/pythagora…
Pythagora-io/gpt-pilot Compromised on GitHub - Shai-Hulud Credential Stealer Blocked by Python Linter - StepSecurity
An attacker hijacked a co-founder's GitHub account for gpt-pilot, a 33K-star AI coding tool, and force-pushed a credential-stealing Shai-Hulud payload to the main branch.www.stepsecurity.io
reshared this
Is there any Google Docs-like web editor where I can write some text without some dumb AI trying to reword my text every 30s?
I really need to get off Google Docs and that annoying Gemini
reshared this
Etherpad was supposedly the precursor Google initially purchased/used to build Google Docs: etherpad.org/
Maybe Proton's docs: proton.me/drive/docs
I haven't tried it yet.
Create and collaborate with secure online documents | Proton
Collaborate in real-time, share documents safely, work from any device, and keep your data yours with Proton Docs.Proton
Xournal++: appunti digitali e PDF annotati su Linux senza compromessi
linuxeasy.org/xournal-appunti-…
Xournal++ è un’app open source per appunti a mano e PDF su Linux, con penna digitale, LaTeX, audio e strumenti avanzati
L'articolo Xournal++: appunti digitali e PDF annotati su Linux senza compromessi proviene da Linux Easy.
E' vietato
The source code of the Miasma worm has been released
The code reveals that Miasma evolved from the Shai-Hulud worm, but has extra features baked in, making it a more complete credentials theft toolkit
safedep.io/inside-the-miasma-s…
Inside the Miasma Software Supply Chain Attack Toolkit
The Miasma worm source code appeared on GitHub through compromised developer accounts. The codebase is a full supply chain attack toolkit with credential exfiltration across AWS, Azure, GCP, and Kubernetes, registry infection for npm, PyPI, and RubyG…SafeDep - Real-time Open Source Software Supply Chain Security
reshared this
Security firm Sicuranext has built and released Karna, a new open-source WAF engine
blog.sicuranext.com/k-karna-we…
क Karna: we built our own WAF. Modern, Fast and Free.
We replaced ModSecurity with Karna, our open-source WAF engine in Lua and C running as a Kong plugin. CRS-compatible, MCP-aware, can sanitize instead of blocking, and 2 to 4 times faster than ModSecurity in our benchmarks.Andrea Menin (Sicuranext Blog)
reshared this
An Exchange bug named "Ghost-Sender" is being abused in the wild to send spoofed emails
labs.infoguard.ch/posts/ghost-…
Ghost-Sender - Universal Email Spoofing against Exchange Online - InfoGuard Labs
An analysis of a widely available Exchange Online misconfiguration allowing attackers to spoof internal and external senders.Lucas Dodgson, Tobias Oberdörfer, Robin Hilber (InfoGuard Labs)
reshared this
AutoSocial Studio: dashboard locale per automatizzare la pubblicazione di video sui social
linuxeasy.org/autosocial-studi…
Guida completa ad AutoSocial Studio, dashboard locale per automatizzare la pubblicazione di video su TikTok, Instagram e YouTube.
L'articolo AutoSocial
Proton Drive per Linux è finalmente in sviluppo
linuxeasy.org/proton-drive-lin…
Proton conferma lo sviluppo del client nativo Proton Drive per Linux, una delle funzionalità più richieste dagli utenti della piattaforma.
L'articolo Proton Drive per Linux è finalmente in sviluppo proviene da Linux Easy.
E' vietato riprodurre questo articolo senza
El Salvador reshared this.
Hackers have compromised a channel for Chap, France's in-house encrypted app used by government employees
reshared this
The media in this post is not displayed to visitors. To view it, please go to the original post.
@campuscodi
Rune editor di codice veloce e minimale con backend Rust
linuxeasy.org/rune-editor-codi…
Rune è un editor di codice leggero e velocissimo basato su Rust e Tauri, con plugin modulari e interfaccia minimal per sviluppatori.
L'articolo Rune editor di codice veloce e minimale con backend Rust proviene da Linux Easy.
E' vietato riprodurre
Pro-Ukrainian hacktivist group 4BID has expanded attacks from Russia and Belarus to new countries (Kazakhstan, UAE, Syria, Egypt)
-some attacks involved financially-motivated ransomware
-the group's servers hosted Warp RAT, a family typically used by the Goffee APT
securelist.ru/tr/hacktivists-b…
Хактивисты выходят за рамки политически мотивированных атак
Хактивисты, позиционирующие себя как проукраинские, — 4BID, Хакерский кiт и C.A.S. — атакуют организации в Казахстане, ОАЭ, Египте и Сирии.Kaspersky (Securelist)
reshared this
The media in this post is not displayed to visitors. To view it, please go to the original post.
After the raids on MIRHosting and WorkTitans, THE.Hosting (Stark Industries rebrand) has decided to shut down
Hosting Provider THE.Hosting - Hosting provider services - Hosting company THE.Hosting Lower price
⚡️ THE.Hosting is the best hosting provider. ❇️ Ultra-fast server response time. Web hosting! ✅ Low cost VPS and dedicated servers. ☝ Tariffs on the website. ✅ support@THE.HostingHosting Provider THE.Hosting - Hosting provider services - Hosting company THE.Hosting Lower price
reshared this
LibreOffice contro Euro-Office: scontro sulla sovranità digitale europea
linuxeasy.org/libreoffice-cont…
LibreOffice critica Euro-Office alla vigilia del rilascio 1.0, accusandolo di favorire indirettamente Microsoft attraverso il formato OOXML.
L'articolo LibreOffice contro Euro-Office: scontro
reshared this
Why signed packages and repositories are important, part 64:
The `baltocdn.com` domain, previously used as an apt mirror for helm.sh, apparently expired. Meaning, whoever picked it up could have been serving malware to anybody pulling unsigned packages from there:
helm.sh/blog/security-notice-b…
#k8s
Security Notice: Former Helm APT Mirror Domain `baltocdn.com` Statement | Helm
The Helm Security Team has received third-party reports that the ownership on the former community-maintained Debian/Ubuntu APT mirror domain, baltocdn.com, has changed after baltocdn.com's original registration lapsed.George Jenkins (helm.sh)
reshared this
Light Video il player GTK4 minimalista per Linux mobile e desktop
linuxeasy.org/light-video-play…
Light Video è un player video open GTK4 minimalista per Linux mobile e desktop, pensato per consumare meno batteria possibile
L'articolo Light Video il player GTK4 minimalista per Linux mobile e desktop proviene da Linux
COSMIC Desktop: l’effetto Frosted Glass si avvicina al rilascio ufficiale
linuxeasy.org/cosmic-desktop-e…
Il Frosted Glass di COSMIC Desktop si avvicina al rilascio: effetto vetro smerigliato personalizzabile direttamente dalle Impostazioni.
L'articolo COSMIC Desktop: l’effetto Frosted Glass si avvicina al rilascio ufficiale proviene da Linux Easy.
E'
Dank Linux: desktop moderno su Wayland con theming automatico e un solo comando di installazione
linuxeasy.org/dank-linux-deskt…
Dank Linux porta un desktop moderno e animato su Wayland con theming automatico Material Design 3 e un installer in un solo comando
L'articolo Dank Linux: desktop moderno su Wayland con theming
Firefox 153 e la decodifica video Vulkan su Linux
linuxeasy.org/firefox-153-e-la…
Firefox 153 introduce il supporto Vulkan Video su Linux: meno CPU, migliore riproduzione e un passo avanti per gli utenti NVIDIA.
L'articolo Firefox 153 e la decodifica video Vulkan su Linux proviene da Linux Easy.
E' vietato riprodurre questo
RMS Mail: email self-hosted ad alte prestazioni con IA nativa e controllo totale
linuxeasy.org/rms-mail-email-s…
RMS Mail è il client email self-hosted ad alte prestazioni per chi gestisce mailbox enormi, più account e workflow con IA integrata.
L'articolo RMS Mail: email self-hosted ad alte prestazioni con IA nativa e
COSMIC Desktop: l’effetto Frosted Glass si avvicina al rilascio ufficiale
linuxeasy.org/cosmic-desktop-e…
Il Frosted Glass di COSMIC Desktop si avvicina al rilascio: effetto vetro smerigliato personalizzabile direttamente dalle Impostazioni.
L'articolo COSMIC Desktop: l’effetto Frosted Glass si avvicina al rilascio ufficiale proviene da Linux Easy.
E'
Firefox 153 e la decodifica video Vulkan su Linux
linuxeasy.org/firefox-153-e-la…
Firefox 153 introduce il supporto Vulkan Video su Linux: meno CPU, migliore riproduzione e un passo avanti per gli utenti NVIDIA.
L'articolo Firefox 153 e la decodifica video Vulkan su Linux proviene da Linux Easy.
E' vietato riprodurre questo
RMS Mail: email self-hosted ad alte prestazioni con IA nativa e controllo totale
linuxeasy.org/rms-mail-email-s…
RMS Mail è il client email self-hosted ad alte prestazioni per chi gestisce mailbox enormi, più account e workflow con IA integrata.
L'articolo RMS Mail: email self-hosted ad alte prestazioni con IA nativa e
UK PM Keir Starmer says tech companies must introduce safety measures on kids' phones to stop them from sharing nude images or face laws forcing them to do so (Reuters)
reuters.com/business/media-tel…
techmeme.com/260608/p7#a260608…
reshared this
"This on device AI model thinks you are trying to share a dick pic. Provide photo ID proving you are of legal age to share dick pics. Your dick pic will not be shared with 3rd parties, but will be uploaded to our secure government cloud operated by Palantir for uses subject to blaah, blaah, blaah."
because we are deemed incapable of having actual conversations with our children, and our children are deemed incapable of acting like informed people.
Have these people actually spoken to, or better yet: listened, to their kids recently?
The media in this post is not displayed to visitors. To view it, please go to the original post.
USA! USA! USA!!
reshared this
The media in this post is not displayed to visitors. To view it, please go to the original post.
Here’s an easter egg in the new Lego Batman that I think all of yourwill REALLY appreciate.
It’s so good, I had to make a video.
reshared this
Cap la registrazione dello schermo open source che rispetta i tuoi dati
linuxeasy.org/cap-registrazion…
Cap è l'alternativa open source a Loom per registrare lo schermo, condividere video e gestire i dati in totale autonomia.
L'articolo Cap la registrazione dello schermo open source che rispetta i tuoi dati proviene da Linux
The media in this post is not displayed to visitors. To view it, please go to the original post.
-RubyGems adds dependency cooldowns to counter supply chain attacks
-AT&T and IBM accused of hiding foreign hacks
-Cisco warns of a new SD-WAN zero-day
-Google layoffs hit security teams
-Senate votes down FISA extension
-Dashlane published hack post-mortem
-Elrond hackers plead guilty
-TesseraDAO hacked for $2.5m
-Apple removes MAX app
-Chrome 149 is out
-Brave's new Origin browser
-Bot traffic surpasses humans on AI's back
Newsletter: news.risky.biz/risky-bulletin-…
Podcast: risky.biz/RBNEWS574/
RubyGems adds dependency cooldown to counter supply chain attacks
In other news: AT&T and IBM accused of hiding foreign hacks; Cisco warns of a new SD-WAN zero-day; Google layoffs hit security teams.Catalin Cimpanu (Risky.Biz)
reshared this
The media in this post is not displayed to visitors. To view it, please go to the original post.
-DOGE whistleblower claims his brakes were cut
-New bill would fund MS-ISAC again
-Dutch hacker sentenced to community service
-New Pink (CL-CRI-1147) group
-Silent Ransom Group profile
-Quellostanco hacker found in Egypt
-Bright Data accused of turning TVs into AI web scrapers
-Microsoft takes down hacked repos
-Slovenia warns of extensive smishing campaign
-Operation Smishing Error524
-JSON formatters are leaking data
-Scans for swagger.json
-Protestware in jqwik
reshared this
The media in this post is not displayed to visitors. To view it, please go to the original post.
-New e-skimmer abuses Stripe as backend infra
-New Miasma worm
-New Russian disinfo outfit uncovered
-SolarWinds Serv-U bug exploited in the wild
-Zcash crashes after vuln disclosure
-Microsoft patches VS Code zero-day
-21 bugs found in FFmpeg
-New OP-512 APT group
GNOME Sushi passa a GTK4 e aggiunge il supporto iniziale al dark mode
linuxeasy.org/gnome-sushi-pass…
GNOME Sushi aggiorna l’anteprima file con GTK4, dark mode iniziale, toolbar flottanti e layout migliorati e altre migliorie
L'articolo GNOME Sushi passa a GTK4 e aggiunge il supporto iniziale al dark mode proviene da Linux Easy.
E' vietato
The $1.65m hack of the Elrond Romanian crypto-platform in 2022 was the work of three employees
Two have now pleaded guilty
reshared this
Google is laying off employees at its Cloud vision, including members of its Mandiant and GTIG threat intelligence teams.
businessinsider.com/google-clo…
Google has quietly cut staff across its Cloud business
Google has laid off employees across parts of its Cloud business, including at an elite cybersecurity intelligence unit.Charles Rollet (Business Insider)
reshared this
Ladybird chiude le pull request pubbliche: in arrivo la prima alpha
linuxeasy.org/ladybird-chiude-…
Ladybird chiude le pull request pubbliche prima della prima alpha: solo i maintainer potranno modificare il codice. Ecco perché e cosa cambia.
L'articolo Ladybird chiude le pull request pubbliche: in arrivo la prima alpha proviene
A team inside at Microsoft has built a custom version of Android for running AI agents instead of apps.
The new "Project Solara" appears to be meant to run on the upcoming wave of AI-enabled smart devices
reshared this
Microsoft has taken down 73 of its own GitHub source code repositories after they were infected with a worm.
The repos appear to have been infected with Miasma, a variant of the Shai-Hulud worm.
opensourcemalware.com/blog/mia…
The Blight Reaches Microsoft: 73 Repos Disabled in 105 Seconds
GitHub disabled 73 Microsoft repositories across four of its GitHub organizations — the entire Azure Functions org, the whole Durable Task family, and a row of AI sample apps — in a 105-second sweep on June 5.opensourcemalware.com
reshared this
Black Hill's Phill Miller has released GoGatoZ, a tool to scan and attack GitLab repositories
blackhillsinfosec.com/auditing…
Auditing GitLab: The CI/CD Kill Chain - Black Hills Information Security, Inc.
Welcome to GoGatoZ — a purpose-built Go tool for GitLab CI/CD security auditing that can perform and automate the entire CI/CD kill chain along with everything those one-off scripts did and then some.BHIS (Black Hills Information Security, Inc.)
reshared this
The media in this post is not displayed to visitors. To view it, please go to the original post.
Two security firms have tracked down a hacker and leaker named Quellostanco to a suspected Egyptian national.
Things are about to get really bad for him, if true, because he leaked data of Egyptian companies and is in the reach of local law enforcement.
dexpose.io/unmasking-quellosta…
Unmasking Quellostanco: How a Git Commit Exposed a Threat Actor Targeting Egyptian Infrastructure - DeXpose
In early 2026, a threat actor using the alias Quellostanco ran a campaign against Egyptian targets: airlines, an aluminium company, a government roadsm.farghaly (DeXpose)
reshared this
The media in this post is not displayed to visitors. To view it, please go to the original post.
Samsung is making it easier for users to put their phone in a locked-down mode by moving the Lockdown Mode button to the power-off menu.
Pressing the button immediately locks down the phone and disables biometric authentication
androidauthority.com/samsung-o…
Samsung is adding a clever security upgrade to the power menu
One UI 9 beta changes the power menu to automatically trigger Lockdown mode, boosting Galaxy phone security against unauthorized access.Aamir Siddiqui (Android Authority)
reshared this
I have never seen the point of Android's "lockdown" since you're still in AFU state. Power off is always the safer option if you actually need to lock down and have the opportunity to do it.
VessOnSecurity
in reply to Catalin Cimpanu • • •