friendica (DFRN) - Collegamento all'originale

JSignPdf firma digitale dei PDF con Java su Linux

@GNU/Linux Italia

linuxeasy.org/jsignpdf-firma-d…

JSignPdf firma PDF in Java su Linux con supporto a PKCS#12, smartcard, timestamp TSA, OCSP, CRL e modalità batch.
L'articolo JSignPdf firma digitale dei PDF con Java su Linux proviene da Linux Easy.
E' vietato riprodurre questo articolo senza autorizzazione.
Questo feed

@GNU/Linux Italia
Lorenzo ha ricondiviso questo.

mastodon - Collegamento all'originale

🎙️ Between Two Nerds: Nerds at NATO

risky.biz/BTN169/

Between Two Nerds: Nerds at NATO - Risky Business Media

In this edition of Between Two Nerds Tom Uren and The Grugq speak at the NATO CyCon conference on Cyber Conflict in Tallinn, Estonia. The [Read More]
risky.biz

reshared this

Lorenzo ha ricondiviso questo.

mastodon - Collegamento all'originale
The media in this post is not displayed to visitors. To view it, please go to the original post.
👀Our latest models is so advanced and dangerous, we are gonna keep your data, just in case and also we promise we won’t use your data 😉 anthropic.com/news/claude-fabl… Trillion dollar corporations like Google and Microsoft break promises not to use your data on a daily basis, so I can’t imagine what cash strapped AI companies will do with it. History repeats itself, and now all businesses that use these models with customer data may have to evaluate their strategies again 🤔

Claude Fable 5 and Claude Mythos 5

Today we’re launching Claude Fable 5: a Mythos-class model that we’ve made safe for general use.
www.anthropic.com
Questa voce è stata modificata (9 ore fa)
in reply to nixCraft 🐧

mastodon - Collegamento all'originale

bent lion

I completely agree, data privacy is completely out of hand. Though AI is also getting there pretty quickly too, which makes me torn on this one. Imagining myself as an analyst working at Anthropic with the goal of keeping a leash on it's progress, I can totally see how retaining data for 30 days would be an immense help for troubleshooting.

I guess it's all down to trust. Too bad that's in short supply.

Lorenzo ha ricondiviso questo.

mastodon - Collegamento all'originale

When Jaguar Land Rover (JLR) was hit by a major cyber-attack in September 2025, one of the first things the company’s cybersecurity leader did was to call over 30,000 staff on site to reset their passwords.

Speaking during Infosecurity Europe on June 3, Ashish Shrestha CEO of Zyn Global, and group CISO of JLR at the time of the cyber incident, said that the decision was made because it was vital to ensure that the identities of the staff could be trusted post-breach and while the company responded to the incident.

"One of the first and foremost things was we did an enterprise-wide password reset for 30,000 people. And we asked every individual to come on site to do it,” Shrestha said.

(Hello, I have been very bad at using this website lately, sorry - work laptop is rather locked down so I tend not to have easy access during the day!)

infosecurity-magazine.com/news…

Infosecurity Europe: Why JLR’s CISO Enforced In-Person Password Resets

Speaking at Infosecurity Europe, Ashish Shrestha, former CISO at Jaguar Land Rover revealed why he wanted over 30,000 employees to change their passwords in the immediate aftermath of the incident
Danny Palmer (Infosecurity Magazine)

reshared this

friendica (DFRN) - Collegamento all'originale

Kooha il registratore dello schermo minimale per Linux

@GNU/Linux Italia

linuxeasy.org/kooha-registrato…

Kooha è un registratore dello schermo per Linux semplice e moderno, con supporto audio, registrazione selettiva e codifica hardware
L'articolo Kooha il registratore dello schermo minimale per Linux proviene da Linux Easy.
E' vietato riprodurre questo articolo

@GNU/Linux Italia
Lorenzo ha ricondiviso questo.

mastodon - Collegamento all'originale
The media in this post is not displayed to visitors. To view it, please go to the original post.

-New Nightmare Eclipse zero-day (RoguePlanet)
-NSO violated court order with new WhatsApp campaign
-Security incident at France's Tchap messenger
-Putin cuts some Kremlin security cameras
-Russia bans foreign login services
-ServiceNow gets hacked
-Handala hacks NûJINHA all-female news agency
-Oxford University has a breach
-Tempo sees DDoS attacks after corruption articles
-Major MAX bot got hacked

Podcast: risky.biz/RBNEWS575/
Newsletter: news.risky.biz/risky-bulletin-…

Meta says NSO violated court order with new campaign targeting WhatsApp

In other news: Security incident at France's Tchap messenger; Putin cuts some Kremlin security cameras; Russia bans foreign login services.
Catalin Cimpanu (Risky.Biz)

reshared this

in reply to Catalin Cimpanu

mastodon - Collegamento all'originale

Catalin Cimpanu

The media in this post is not displayed to visitors. To view it, please go to the original post.
-Helm warns of lapsed domain turned evil
-Anthropic has released new cyber models
-Let's Encrypt adds PQC support
-DOJ gags Apple
-Meta deletes facial recognition code that didn't exist
-Apple adds AI-based password changer
-macOS Golden Gate drops Intel support
-NATO barely survives disinfo war simulation
-Afghanistan bans smartphones for government workers
-EU prepares NIS2 lawsuits against France and Spain
-Massachusetts prepares data privacy law

Catalin Cimpanu reshared this.

in reply to Catalin Cimpanu

mastodon - Collegamento all'originale

Catalin Cimpanu

The media in this post is not displayed to visitors. To view it, please go to the original post.
-UK wants companies to take down illegal content that goes viral
-UK wants tech firms to block child nude photos
-Cyber scam compounds expand to Sri Lanka
-THE.Hosting group shuts down
-Iranian ransomware group targets Russia
-New UNK_DeadDrop campaign
-Check Point patches VPN 0-day
-Chrome patches 0-day
-Ghost-Sender bug abused in the wild
-Arista 0-day exploited in the wild
-New Langflow bug exploited
-Mythos can write exploits in under 1h
-Patch Tuesday is out
-Predatorgate game wins award
Lorenzo ha ricondiviso questo.

mastodon - Collegamento all'originale

🎙️ Risky Business #841 -- Microsoft gets owned and 0day'd

risky.biz/RB841/

Risky Business #841 -- Microsoft gets owned and 0day'd - Risky Business Media

On this week’s show special guest co-host Chris Wade, the founder of Corellium turned Cellebrite CTO, joins Patrick Gray and James Wilson [Read More]
risky.biz
#841

reshared this

friendica (DFRN) - Collegamento all'originale

Apex ISO Creator Gui: creare una ISO Arch personalizzata con semplicità

@GNU/Linux Italia

linuxeasy.org/apex-iso-creator…

Apex ISO Creator Gui semplifica la creazione di ISO Arch personalizzate con Qt6, C++23 e un flusso più immediato.
L'articolo Apex ISO Creator Gui: creare una ISO Arch personalizzata con semplicità proviene da Linux Easy.
E' vietato

@GNU/Linux Italia
Lorenzo ha ricondiviso questo.

mastodon - Collegamento all'originale

The Afghanistan Taliban leadership has banned government employees from using smartphones at work

Offenders would be prosecuted in a military court

afintl.com/en/202606088193

Taliban Leader Bans Smartphones for Government Employees

A document obtained by Afghanistan International indicates that Taliban leader Hibatullah Akhundzada has issued a new verbal order banning the use of smartphones by the group members and government employees.
Afghanistan International

reshared this

Lorenzo ha ricondiviso questo.

mastodon - Collegamento all'originale

A Python source code formatter and linter blocked an attacker from pushing malicious code to a GitHub project twice after the malicious code did not match the target project's code formatting rules

stepsecurity.io/blog/pythagora…

Pythagora-io/gpt-pilot Compromised on GitHub - Shai-Hulud Credential Stealer Blocked by Python Linter - StepSecurity

An attacker hijacked a co-founder's GitHub account for gpt-pilot, a 33K-star AI coding tool, and force-pushed a credential-stealing Shai-Hulud payload to the main branch.
www.stepsecurity.io

reshared this

friendica (DFRN) - Collegamento all'originale

Xournal++: appunti digitali e PDF annotati su Linux senza compromessi

@GNU/Linux Italia

linuxeasy.org/xournal-appunti-…

Xournal++ è un’app open source per appunti a mano e PDF su Linux, con penna digitale, LaTeX, audio e strumenti avanzati
L'articolo Xournal++: appunti digitali e PDF annotati su Linux senza compromessi proviene da Linux Easy.
E' vietato

@GNU/Linux Italia
Lorenzo ha ricondiviso questo.

mastodon - Collegamento all'originale

The source code of the Miasma worm has been released

The code reveals that Miasma evolved from the Shai-Hulud worm, but has extra features baked in, making it a more complete credentials theft toolkit

safedep.io/inside-the-miasma-s…

Inside the Miasma Software Supply Chain Attack Toolkit

The Miasma worm source code appeared on GitHub through compromised developer accounts. The codebase is a full supply chain attack toolkit with credential exfiltration across AWS, Azure, GCP, and Kubernetes, registry infection for npm, PyPI, and RubyG…
SafeDep - Real-time Open Source Software Supply Chain Security

reshared this

Lorenzo ha ricondiviso questo.

mastodon - Collegamento all'originale

Security firm Sicuranext has built and released Karna, a new open-source WAF engine

blog.sicuranext.com/k-karna-we…

क Karna: we built our own WAF. Modern, Fast and Free.

We replaced ModSecurity with Karna, our open-source WAF engine in Lua and C running as a Kong plugin. CRS-compatible, MCP-aware, can sanitize instead of blocking, and 2 to 4 times faster than ModSecurity in our benchmarks.
Andrea Menin (Sicuranext Blog)

reshared this

Lorenzo ha ricondiviso questo.

mastodon - Collegamento all'originale

An Exchange bug named "Ghost-Sender" is being abused in the wild to send spoofed emails

labs.infoguard.ch/posts/ghost-…

ghost-sender.com/

Ghost-Sender - Universal Email Spoofing against Exchange Online - InfoGuard Labs

An analysis of a widely available Exchange Online misconfiguration allowing attackers to spoof internal and external senders.
Lucas Dodgson, Tobias Oberdörfer, Robin Hilber (InfoGuard Labs)

reshared this

friendica (DFRN) - Collegamento all'originale

Proton Drive per Linux è finalmente in sviluppo

@GNU/Linux Italia

linuxeasy.org/proton-drive-lin…

Proton conferma lo sviluppo del client nativo Proton Drive per Linux, una delle funzionalità più richieste dagli utenti della piattaforma.
L'articolo Proton Drive per Linux è finalmente in sviluppo proviene da Linux Easy.
E' vietato riprodurre questo articolo senza

@GNU/Linux Italia

El Salvador reshared this.

Lorenzo ha ricondiviso questo.

mastodon - Collegamento all'originale

Pro-Ukrainian hacktivist group 4BID has expanded attacks from Russia and Belarus to new countries (Kazakhstan, UAE, Syria, Egypt)

-some attacks involved financially-motivated ransomware
-the group's servers hosted Warp RAT, a family typically used by the Goffee APT

securelist.ru/tr/hacktivists-b…

Хактивисты выходят за рамки политически мотивированных атак

Хактивисты, позиционирующие себя как проукраинские, — 4BID, Хакерский кiт и C.A.S. — атакуют организации в Казахстане, ОАЭ, Египте и Сирии.
Kaspersky (Securelist)

reshared this

Lorenzo ha ricondiviso questo.

mastodon - Collegamento all'originale
The media in this post is not displayed to visitors. To view it, please go to the original post.

After the raids on MIRHosting and WorkTitans, THE.Hosting (Stark Industries rebrand) has decided to shut down

the.hosting/en/

Hosting Provider THE.Hosting - Hosting provider services - Hosting company THE.Hosting Lower price

⚡️ THE.Hosting is the best hosting provider. ❇️ Ultra-fast server response time. Web hosting! ✅ Low cost VPS and dedicated servers. ☝ Tariffs on the website. ✅ support@THE.Hosting
Hosting Provider THE.Hosting - Hosting provider services - Hosting company THE.Hosting Lower price

reshared this

friendica (DFRN) - Collegamento all'originale

LibreOffice contro Euro-Office: scontro sulla sovranità digitale europea

@GNU/Linux Italia

linuxeasy.org/libreoffice-cont…

LibreOffice critica Euro-Office alla vigilia del rilascio 1.0, accusandolo di favorire indirettamente Microsoft attraverso il formato OOXML.
L'articolo LibreOffice contro Euro-Office: scontro

@GNU/Linux Italia

reshared this

Lorenzo ha ricondiviso questo.

mastodon - Collegamento all'originale

Why signed packages and repositories are important, part 64:

The `baltocdn.com` domain, previously used as an apt mirror for helm.sh, apparently expired. Meaning, whoever picked it up could have been serving malware to anybody pulling unsigned packages from there:

helm.sh/blog/security-notice-b…

#k8s

Security Notice: Former Helm APT Mirror Domain `baltocdn.com` Statement | Helm

The Helm Security Team has received third-party reports that the ownership on the former community-maintained Debian/Ubuntu APT mirror domain, baltocdn.com, has changed after baltocdn.com's original registration lapsed.
George Jenkins (helm.sh)
#k8s

reshared this

friendica (DFRN) - Collegamento all'originale

COSMIC Desktop: l’effetto Frosted Glass si avvicina al rilascio ufficiale

@GNU/Linux Italia

linuxeasy.org/cosmic-desktop-e…

Il Frosted Glass di COSMIC Desktop si avvicina al rilascio: effetto vetro smerigliato personalizzabile direttamente dalle Impostazioni.
L'articolo COSMIC Desktop: l’effetto Frosted Glass si avvicina al rilascio ufficiale proviene da Linux Easy.
E'

@GNU/Linux Italia

friendica (DFRN) - Collegamento all'originale

COSMIC Desktop: l’effetto Frosted Glass si avvicina al rilascio ufficiale

@GNU/Linux Italia

linuxeasy.org/cosmic-desktop-e…

Il Frosted Glass di COSMIC Desktop si avvicina al rilascio: effetto vetro smerigliato personalizzabile direttamente dalle Impostazioni.
L'articolo COSMIC Desktop: l’effetto Frosted Glass si avvicina al rilascio ufficiale proviene da Linux Easy.
E'

@GNU/Linux Italia
Lorenzo ha ricondiviso questo.

mastodon - Collegamento all'originale
The media in this post is not displayed to visitors. To view it, please go to the original post.

Here’s an easter egg in the new Lego Batman that I think all of yourwill REALLY appreciate.

It’s so good, I had to make a video.