Lukasz

@LMalasinski

Infosec professional on Twitter to share things I've learned, and things that I think are noteworthy. Talk to me about anything related to my tweets.

Vrijeme pridruživanja: rujan 2013.

Tweetovi

Blokirali ste korisnika/cu @LMalasinski

Jeste li sigurni da želite vidjeti te tweetove? Time nećete deblokirati korisnika/cu @LMalasinski

  1. prije 14 sati

    The -by-default rollout is being deferred to Feb 17. See here for details:

    Prikaži ovu nit
    Poništi
  2. 1. velj
    Prikaži ovu nit
    Poništi
  3. 1. velj

    80 is rolling out on Feb 4. It brings changes to default cookie behavior with respect to which may impact your SSO. Have you tested yet?

    Prikaži ovu nit
    Poništi
  4. proslijedio/la je Tweet
    28. sij

    BREAKING: We’ve confirmed that the Ring doorbell app on Android covertly shares personally identifiable information on its users with third-party companies, including Facebook.

    Prikaži ovu nit
    Poništi
  5. proslijedio/la je Tweet
    28. sij

    W00t! We ( ) just published our Privacy Framework self-scoring tool. It's modeled after the CSF tool we released, but even better :) Grab it now, and spend a couple hours (that's all it takes) assessing your privacy posture

    Poništi
  6. 29. sij

    Somewhat related to starting fresh vs "cleaning up" after these types of vulnerabilities; an interesting court ruling with respect to cyber insurance and the potential need to replace systems that may be prone to reinfection: .

    Prikaži ovu nit
    Poništi
  7. 29. sij
    Prikaži ovu nit
    Poništi
  8. 29. sij

    Great day at the Microsoft Technology Center reviewing the including the , and (aka ) tools. The trend is catching on so a good idea to stay ahead with the right governance perspectives. BTW:

    Prikaži ovu nit
    Poništi
  9. 29. sij

    Have a Google Home that is participating in the Preview Programme for early firmware updates? You might want to read this: .

    Poništi
  10. 28. sij

    Have you updated the firmware on your Citrix ADC yet? PSA: if you've already seen indications of compromise, don't bother trying to "clean up". Start fresh.

    Prikaži ovu nit
    Poništi
  11. 28. sij

    If this catches on, the ransomware business model will definitely be changed....but will it make things better/worse for the targets?

    Poništi
  12. 23. sij

    I cannot imagine how this can be expected to go over well with users and admins and predict a lot of users getting very confused about the change and worried about having been *hacked*. - how about making this opt-in?

    Poništi
  13. 22. sij

    I always wonder how many things must be *misconfigured* for this to happen, unless you're relying on one layer of security. That said, kudos for the initial transparency-hoping that shares additional learnings and tools as a result of their investigation/remediation

    Poništi
  14. proslijedio/la je Tweet
    22. sij

    Microsoft data breach exposes 250 million customer service and support records

    Poništi
  15. proslijedio/la je Tweet
    19. sij

    Microsoft issues Internet Explorer zero-day warning, but there's no patch yet

    Poništi
  16. proslijedio/la je Tweet
    17. sij

    ICYMI: An analysis of 10 highly popular Android apps found what researchers are calling the “out of control” sharing of potentially sensitive information with third parties.

    Poništi
  17. 17. sij

    Citrix ADC update in tldr version: current recommendation is to shut down Citrix ADC devices until firmware update is available; mitigations are not work across a versions.

    Prikaži ovu nit
    Poništi
  18. proslijedio/la je Tweet
    15. sij

    Need to brief your boss about the Microsoft CryptoAPI flaw? We got some PPTs for you to use: .dll -2020-0601

    Poništi
  19. 14. sij

    Great on to call out the other stars of today's release: and - related to an unauthenticated vulnerability in RD Gateway

    Poništi
  20. 14. sij

    Great tweet chain explaining the significance/impact of the vulnerability. TLDR; anything that relies on certificate chains is vulnerable and cannot be trusted (TLS, Authenticode, Cert based Auth, etc.).

    Poništi

Čini se da učitavanje traje već neko vrijeme.

Twitter je možda preopterećen ili ima kratkotrajnih poteškoća u radu. Pokušajte ponovno ili potražite dodatne informacije u odjeljku Status Twittera.

    Možda bi vam se svidjelo i ovo:

    ·