Toots for lhn@mastodon.online account

Written by Lily Hay Newman on 2025-01-23 at 12:08

Days before she resigned from CISA, I did an exit interview with Jen Easterly. She was steadfastly manifesting the future she wanted for her agency, but buried in there she got real: "Any stepping back of what we've put in place will be to the detriment of the safety and security of the American people" https://www.wired.com/story/big-interview-jen-easterly-cisa-cybersecurity/

=> More informations about this toot | View the thread

Written by Lily Hay Newman on 2024-10-22 at 18:12

Unsecured databases are still a major issue as illustrated by this UN Women exposure that involved granular financial data from grant applicants/awardees as well as some personal details and testimonials of vulnerable individuals from all over the world https://www.wired.com/story/un-women-database-exposure/

=> More informations about this toot | View the thread

Written by Lily Hay Newman on 2024-10-14 at 14:25

New secure secret import/export specifications are going to finally make passkeys portable between ecosystems https://www.wired.com/story/passkey-portability-fido-alliance/

=> More informations about this toot | View the thread

Written by Lily Hay Newman on 2024-09-30 at 14:56

Pig butchering scam operations, which often rely on human trafficking and forced labor, have broken out of Southeast Asia (Cambodia, Myanmar, Laos etc) and emerged in numerous other regions including the Middle East, Eastern Europe, Latin America and West Africa https://www.wired.com/story/pig-butchering-scam-invasion/

=> More informations about this toot | View the thread

Written by Lily Hay Newman on 2024-08-15 at 13:34

An old Verizon demo app lurking deep in stock Android creates exposure for almost all Pixel phones. A fix from Google is coming but hasn't been pushed yet. And Palantir says it is concerned enough about the situation to ban all corporate Android devices https://www.wired.com/story/google-android-pixel-showcase-vulnerability/

=> More informations about this toot | View the thread

Written by Lily Hay Newman on 2024-08-12 at 13:05

On the hunt for corporate devices being sold secondhand, @mandatory had some wild finds including a trove of Apple Store data, a Mac Mini from the Foxconn assembly line and an iPhone 14 developer use prototype https://www.wired.com/story/apple-prototypes-corporate-data/

=> More informations about this toot | View the thread

Written by Lily Hay Newman on 2024-08-09 at 18:56

gotta have some ATM hacking @defcon https://www.wired.com/story/vss-atm-vulnerabilities-defcon-2024/

=> More informations about this toot | View the thread

Written by Lily Hay Newman on 2024-08-09 at 15:20

"I said, ‘Rude, I wouldn’t hack you. And also, rude, if I did hack you, I wouldn’t crash your phone.’ So I pulled the crash reports to see what was going on.” Patrick Wardle defending his professional cred (and making the case for crash reports at Black Hat) https://www.wired.com/story/crash-reports-vulnerability-data/

=> More informations about this toot | View the thread

Written by Lily Hay Newman on 2024-08-06 at 20:23

"We’ve tried a lot of things, but we have not tried just leveling with people" @joshcorman https://www.wired.com/story/undisruptable27-us-critical-infrastructure-cybersecurity/

=> More informations about this toot | View the thread

=> This profile with reblog | Go to lhn@mastodon.online account