#Cybersecurity: Wer hat sich schon einmal vertieft Gedanken darüber gemacht, was in seinem #USB-#Ladekabel eigentlich so alles drin steckt?
"Die Firma #Lumafield bietet computertomographische (#CT) Scans für Tech-Unternehmen an"
"In den manipulierten Kabeln befinden sich mehrere Chips aufeinandergestapelt, sodass genug Rechenleistung zustande kommt, ohne die Größe oder die Form des Kabels zu verändern."
https://t3n.de/news/ct-scans-deckt-sicherheitsluecken-von-guenstigen-ladekabeln-auf-1662287/
#cybersecurity
See tagged statuses in the local BookWyrm community
Cyberangriffe sind ein wachsendes Risiko. Herkömmliche Sicherheitslösungen stoßen an Grenzen, da Angriffsarten und -methoden sich ständig ändern. AMIDES, ein Open-Source-System des Fraunhofer FKIE, nutzt #KI, um neue Angriffsmuster zu erkennen. Die adaptive Missbrauchserkennung passt sich an die Umgebung an und reduziert Fehlalarme.
Mehr dazu: https://s.fhg.de/69w
Important reminder, if you own a domain name and don't use it for sending email.
There is nothing to stop scammers from sending email claiming to be coming from your domain. And the older it gets, the more valuable it is for spoofing. It could eventually damage your domain's reputation and maybe get it blacklisted, unless you take the steps to notify email servers that any email received claiming to come from your domain should be trashed.
Just add these two TXT records to the DNS for your domain:
TXT v=spf1 -all
TXT v=DMARC1; p=reject;
The first says there is not a single SMTP server on earth authorized to send email on behalf of your domain. The second says that any email that says otherwise should be trashed.
If you do use your domain for sending email, be sure to add 3 records:
SPF record to indicate which SMTP server(s) …
Important reminder, if you own a domain name and don't use it for sending email.
There is nothing to stop scammers from sending email claiming to be coming from your domain. And the older it gets, the more valuable it is for spoofing. It could eventually damage your domain's reputation and maybe get it blacklisted, unless you take the steps to notify email servers that any email received claiming to come from your domain should be trashed.
Just add these two TXT records to the DNS for your domain:
TXT v=spf1 -all
TXT v=DMARC1; p=reject;
The first says there is not a single SMTP server on earth authorized to send email on behalf of your domain. The second says that any email that says otherwise should be trashed.
If you do use your domain for sending email, be sure to add 3 records:
SPF record to indicate which SMTP server(s) are allowed to send your email.
DKIM records to add a digital signature to emails, allowing the receiving server to verify the sender and ensure message integrity.
DMARC record that tells the receiving email server how to handle email that fails either check.
You cannot stop scammers from sending email claiming to be from your domain, any more than you can prevent people from using your home address as a return address on a mailed letter. But, you can protect both your domain and intended scam victims by adding appropriate DNS records.
#cybersecurity #email #DomainSpoofing #EmailSecurity #phishing
Ultimate Linux Network Security for Enterprises: Master Effective and Advanced Cybersecurity Techniques to Safeguard Linux Networks and Manage Enterprise-Level Network Services by Adarsh Kant, 2024
@bookstodon
#books
#nonfiction
#Linux
#NetworkSecurity
#cybersecurity
The Cybersecurity Trinity Artificial Intelligence, Automation, and Active Cyber Defense by Donnie W. Wen, 2024
This book explores three crucial topics for cybersecurity professionals: artificial intelligence (AI), automation, and active cyber defense (ACD). The Cybersecurity Trinity will provide cybersecurity professionals with the necessary background to improve their defenses by harnessing the combined power of these three concepts.
Salt Typhoon is not getting the attention it deserves, one of the greatest breaches/intrusions in US history. But people are not that interested.
#cybersecurity #salttyphoon
https://www.politico.com/newsletters/national-security-daily/2024/12/12/we-need-to-talk-about-salt-typhoon-00183727?s=09
The severity level of this bug is critical, 9.8 out of 10. Upgrade your devices.
#iOS #iPhone #security #infosec #Apple #cybersecurity
https://mastodon.social/@mysk/113636630798700926
Voor wie (nog) denkt dat data in de #cloud van Amerikaanse bedrijven veilig zijn “omdat de servers in de EU staan”, heeft @bert_hubert een teleurstellende boodschap. #BigTech #cybersecurity
https://ibestuur.nl/artikel/servers-in-de-eu-eigen-dubbele-sleutels-helpt-het/
Ich leake hier mal meine neueste Erkenntnis aus dem aktuellen Leak, an dem ich gerade arbeite: wenn ihr irgendwelche Unternehmen anruft, geht lieber davon aus, dass die Anrufe aufgezeichnet werden und eventuell eines Tages offen im Internet stehen.
#cybersecurity
🛡️️ Modernisierung des Computerstrafrechts: GI fordert präzisere Klarstellungen
Der neue Entwurf zur Modernisierung des Computerstrafrechts soll IT-Sicherheitsforschenden mehr Rechtssicherheit bieten. Die GI begrüßt dies, fordert aber Nachbesserungen bei Nachweisführung und dem #Hackerparagraph §202c StGB, um die Cybersicherheit in Deutschland nachhaltig zu stärken.
Jetzt lesen und mitdiskutieren 👇
https://gi.de/meldung/modernisierung-des-computerstrafrechts-gi-fordert-dringende-umsetzung
Das Brax3-Datenschutztelefon, eine Crowdfunding-Erfolgsgeschichte
https://blog.iode.tech/de/das-brax3-datenschutztelefon-eine-crowdfunding-erfolgsgeschichte/
#brax3 #iodéOS #android #privacy #cybersecurity #degoogle #nachhaltigkeit
Draft guidance from Ofcom on encryption ‘could undermine the security protections that millions of people rely on every day.’
Failing to consider how #e2ee secures everyone’s #privacy misses the point that security is online safety.
Read the legal opinion from Index on Censorship ⬇️
#encryption #cybersecurity #surveillance #onlinesafetyact #ukpolitics
Jeden Tag landen Phishing-Mails in unseren Postfächern. Bis vor einigen Jahren fielen diese besonders durch ihre kruden Texte und eine krumme Rechtschreibung auf.
Heutzutage gehen Cyberkriminelle schon deutlich professioneller vor.
Damit ihr solche betrügerischen Mails trotzdem erkennt, haben wir euch eine Checkliste zusammengefasst, mit der ihr in Sekundenschnelle sichere von unsicheren Mails unterscheiden könnt. 😜
#DeutschlandDigitalSicherBSI #CyberSecurity #ITSicherheit #PhishingMails
Why GPS spoofing is more complex than it seems and how it causes unexpected problems for pilots and systems✈️ ...
Learn how aviation is tackling a 500% surge in GPS spoofing incidents, affecting 1,500 flights daily, and discover key insights in the OPSGROUP's final report: https://ops.group/blog/gps-spoofing-final-report/
Watch the full episode of Ken Munro with @vpetersson here: https://vpetersson.com/podcast/S01E24.html
#GPSSpoofing #AviationSafety #CyberSecurity #PilotTraining #NavigationSystems #FlightOperations #FlightSafety #AviationTech