Create accountLogin

Recent searches

No recent searches

Search options

Only available when logged in.
mstdn.social is one of the many independent Mastodon servers you can use to participate in the fediverse.
A general-purpose Mastodon server with a 500 character limit. All languages are welcome.

Administered by:

Server stats:

17K
active users

mstdn.social: AboutStatusProfiles directoryPrivacy policy

Mastodon: AboutGet the appKeyboard shortcutsView source codev4.3.4

#lapsus

0 posts0 participants0 posts today
Replied in thread
Public *
Kevin Karhan :verified:

@GossiTheDog the sheer fact that #MSPs & #CSPs can access clients' setups without proper #authorization [including #KYC / #KYB, #AuthCode|s and proper authorization via contract] is already sickening.

Such fundamental #ITsec fuckups are reasons alone not to use #Azure or any #Microsoft products & services at all...

  • I mean, it doesn't require #Mitnick-level skills to pull this off, since it doesn't necessitate #Lapsus-Style #SIMswap or other means to gain access...
CyberplaceKevin Beaumont (@GossiTheDog@cyberplace.social)Attached: 3 images This is the partner.microsoft.com portal, it allows CSPs - Cloud Solution Providers - to gain access to their customer's environments. CVE-2024-49035 was around improper privilege management, i.e. being able to access things you shouldn't. It being in CISA KEV says it was being exploited in the wild. That portal allows a huge footprint of access by design.
#mitnick#lapsus#simswap
Replied in thread
Public *
aproitz

@LorenzMeyer

Übrigens: Standard wird mit "d" geschrieben. Dumm, wenn einem bei Kritik einer, durch die katastrophale #Rechtschreibreform ersetzten #Schreibweise eines Wortes, selber so ein #Lapsus passiert. Um nicht zu sagen, eher #peinlich. Ich ignoriere bis heute viele kranke #Änderungen dieser #Reform und schreibe weiter Stop, Tip, Alptraum und ähnliches. Natürlich auch weiterhin Sylvester, ist doch selbstverständlich.

:gnomeHey:

Replied in thread
Public
Kevin Karhan :verified:

@briankrebs guess why?

These kids see how the world gets #enshittified and how #HonestLabour pays diddly piss whilst #billionaires make more money breathibg than their parents working 40+ hrs/week.

  • OFC they gonna realize that #CrimePays when #Banksters robbed their parents off their homes in 2008.

It's hard to be angry at them when they are more relatable than the #CryptoBros they robbed.

  • Not gonna justify said crime, even if it's #WhiteCollar, but #Lapsus being sentenced for life is an injustice!

They observed how #capitalism and #banks work and then applied those lessions for maximum profit cuz apparently nothing but #money matters...

  • Whilst I'm legally obligated to condemn said action, that doesn't mean I can't relate to them even tho I have the luxury to object doing crime as a means to make ends meet...
YouTubeTeenage Credit Card Scammers Stealing From the Rich | CrimewaveBy VICE
Public
gtbarry

Okta warns of "unprecedented" credential stuffing attacks on customers

Okta warns of an "unprecedented" spike in credential stuffing attacks targeting its identity and access management solutions, with some customer accounts breached in the attacks

#Okta #credentialstuffing #lapsus #databreach #security #cybersecurity #infosec #hackers #hacking #Hacked

bleepingcomputer.com/news/secu

Public
SetSideB

Best of Next Fest Showcase 1/18/24
youtu.be/ILUjPxQFVjM

More games from Next fest 2023 worth checking out.

0:00 Intro

00:20 Phoenix Springs (Steam)

2:24 Axon TD: Uprising (Steam)

5:14 Froggy's Battle (Steam)

6:24 Spellrain (Steam)

7:
setsideb.com/best-of-next-fest
#indiedevshowcase #indies #axontd #bulwark #falconeerchronicles #froggysbattle #indie #IndieGames #lapsus #lordsofexile #NextFest #nextfest #phoenixsprings #spellrain

ExploreLive feeds
About