-
Tweets130
-
Followers5
-
Following231
-
Likes142
‼️ Just in: FortiBleed attackers rented 36 enterprise GPUs from an AI cloud provider to crack stolen FortiGate configuration hashes at industrial scale. Cheap, on-demand GPU compute has quietly made mass password cracking easy, while tens of thousands of organisations still run VPN firewalls with no MFA. The threat is now less likely a nation-state and more like a financially motivated crew with a credit card and rented hardware in the cloud. A write-up by Kevin Beaumont shines a light on the campaign that cracked credentials for tens of thousands of Fortinet firewalls. He disputes Fortinet's public line that the data is just old breaches and bruteforcing, noting it contains freshly cracked passwords and that every organisation he helped had its config exported in the past month. In those cases the attacker went well beyond collecting credentials, adding admin accounts, opening SSH and RDP firewall rules, and logging into IPsec tunnels, with CloudSEK assessing around a thousand organisations breached internally and the attacker reaching internal Active Directory at a number of telcos and managed service providers.
verifica si tu equipo fue víctima del #fortinet #fortibleed #threatresearch intelhub.threatmon.io/fortigate-expo… x.com/Shadowserver/s…
We shared a one-off "FortiBleed" dataset of compromised Fortinet devices in our Compromised Website Report shadowserver.org/what-we-do/net… thanks to collaboration with @socradar! Stats: Dashboard World map view: dashboard.shadowserver.org/statistics/com… Dashboard Tree map view: dashboard.shadowserver.org/statistics/com…
We’ve updated our Active Shooter Response Poster for public areas! Learn to recognize warning signs, identify escape routes, and follow safety protocols. Displaying this can reduce panic, empower decisions, and save lives. 👉 go.dhs.gov/i86
🚨We released an ESXiArgs ransomware recovery script on GitHub to allow organizations to attempt recovery of virtual machines affected by the ESXiArgs ransomware attacks: github.com/cisagov/ESXiAr… #StopRansomware
With our partners @FBI, we published a cybersecurity advisory about the ESXiARgs ransomware campaign and guidance to use a script to help victims attempt to recover access to files. Reduce your risk to ransomware: go.dhs.gov/Zjm #StopRansomware
Tomorrow is Data Privacy Day. Protect your data when you're online. 📱 Keep your tech safe with strong passwords 💳 Shop only on secure and trusted sites. 🧑 Don’t click on links asking for personal info. More info at cisa.gov
Muchas felicidades a nuestro querido socio de negocios #FortiClient #EMS #Fortinet #ciberseguridad
#Upgrade to #FortiOs 7.2.2 #ciberseguridad
Here is our technical deep dive for the #Fortinet CVE-2022-40684 Auth Bypass. POC within. This year has been filled with interesting HTTP header abuse! horizon3.ai/fortios-fortip…
Técnica de #phishing nueva en la que utilizan personajes falsos (#sockpuppets) y cuentas de correo electrónico para atraer a los objetivos y hacerles pensar que es una conversación de correo electrónico realista. 👉bleepingcomputer.com/news/security/… vía @BleepinComputer
We’re celebrating 40 years of service for the President's National Security Telecommunications Advisory Committee: CISA.gov/NSTAC NSTAC has advised 7 presidents since its inception & provides invaluable expertise on national security & emergency preparedness.
Vía @MurciaPolicia
Check out the new 2023–2025 CISA Strategic Plan and see how we plan to reduce risk and build resilience by driving change in four key areas. Learn more at cisa.gov/strategy
Indudable
Cybersecurity in a nutshell.😞 #infosec #CyberSecurity @cyb3rops @MalwareJake
Ransomware Conti ataca a organismos gubernamentales de Costa Rica welivesecurity.com/la-es/2022/04/… a través de @welivesecurity
FortiOS 7.2 el cual trae nuevas funcionalidades. A continuación un vídeo de 3 minutos en donde hablamos de las key features más interesantes en este nuevo release de FortiOS: youtube.com/watch?v=5iG5KI…
Actualiza Chrome de inmediato: Google lanzó una actualización de seguridad de emergencia por un bug crítico genbeta.com/p/309681?utm_s… a través de @genbeta
We understand cyber threats can be a scary thing. That’s why we should be educating every American on cybersecurity. Click to learn more on how we can use the $1 billion infrastructure grant money to bolster our cyber defenses through education. upi.com/Top_News/US/20…
⚠️ No tienes internet? Usuarios reportan que el servicio de #Telmex esta teniendo problemas.
ICYMI – last week we published a Joint Cybersecurity Advisory on Log4j with our US, Canada, UK, New Zealand, and Australia partners. Take steps to protect your networks: go.usa.gov/xeuaf
Guía para la mitigación de Log4Shell y otras Log4j relacionadas us-cert.cisa.gov/ncas/alerts/aa… vía @CISAgov
OlgaWill @1L7vooNPGzhOIW
68 Followers 7K Following
JoanneBethune @e8YL3bdUTbk0O4p
69 Followers 7K Following
Terry Sinnett @TerrySinnett3
52 Followers 476 Following I'm just trying to find myself after 24-year marriage break up
Josh Bar-On @FedfundingBarOn
109 Followers 505 Following Helping companies from Energy/Defense/Materials/Cyber/Hi-tech access a $161.5 Billion dollar investment fund: The U.S. Federal Government.
The Shadowserver Foun... @Shadowserver
22K Followers 0 Following Our mission is to make the Internet more secure by bringing to light vulnerabilities, malicious activity and emerging threats. Join our Alliance!
Guardia Nacional Carr... @GN_Carreteras
379K Followers 658 Following La Guardia Nacional te brinda información sobre condiciones de vialidad en carreteras federales.
Guardia Nacional @GN_MEXICO_
649K Followers 38 Following La Guardia Nacional es una institución de seguridad pública, disciplinada y profesional.
Vicarius @vicariusltd
2K Followers 115 Following Leading the pack in vulnerability remediation, one meme at a time 😜
Marine Forces Cybersp... @MARFORCYBER
16K Followers 272 Following Official account for U.S. Marine Corps Forces Cyberspace Command. #PeopleIdeasThings Following, retweets & links do not constitute endorsement.
U.S. Fleet Cyber Comm... @USFLEETCYBERCOM
18K Followers 421 Following Official page for U.S. Fleet Cyber Command / Navy Space Command / U.S. TENTH Fleet. Follows, retweets and links ≠ endorsement. #NavyCyber #NavySpace #TENTHFleet
The Cyber Security Hu... @TheCyberSecHub
194K Followers 385 Following World's Premier Cyber Security Portal™ #cybersecurity #infosec #hacking #tech 📧 [email protected]
Army Cyber Command @ARCYBER
42K Followers 557 Following Official X page of U.S. Army Cyber Command (Following, retweets and links do not equal endorsement)
Follow CISA's account... @CISAInfraSec
10K Followers 108 Following This account is not active or monitored. Follow @CISAgov and @CISACyber for the latest updates.
Horizon3 Attack Team @Horizon3Attack
12K Followers 54 Following @Horizon3ai Attack Team | Security Research | Exploit Dev | TTPs
edskoudis @edskoudis
62K Followers 323 Following President SANS Technology Institute College. SANS Fellow. CEO @CounterHackSec. @RSAConference Keynoter. IANS Faculty. BoD @manasquanbank & https://t.co/WD7vkoH5lH.
Unit 42 @Unit42_Intel
69K Followers 81 Following The latest research and news from Unit 42, the Palo Alto Networks (@paloaltontwks) Threat Intelligence and Security Consulting Team covering incident response.
Help Net Security @helpnetsecurity
60K Followers 26 Following Independent cybersecurity news since 1998. Discover what matters in the world of information security today.
CyberWire Daily, by N... @thecyberwire
40K Followers 823 Following The CyberWire Daily podcast and briefing deliver concise news & analysis for the busy cyber professional Monday - Friday. Listen and subscribe today.
Checkmarx @Checkmarx
7K Followers 3K Following Checkmarx is how the world’s largest enterprises can finally get ahead of application risk without slowing down development.
Information Security ... @Info_Sec_Buzz
21K Followers 2K Following Delivering the latest in #cybersecurity news, trends, insights, and top #infosec blogs for the cybersecurity community. Stay informed, stay secure!
Infosec @InfosecEdu
23K Followers 537 Following Infosec Institute delivers cybersecurity boot camps, skills training, awareness and human risk management. Trusted by 70%+ of the Fortune 500.
ISC2 @ISC2
99K Followers 9K Following An international nonprofit membership association focused on inspiring a safe and secure cyber world. Become an ISC2 Candidate today!
Center for Internet S... @CISecurity
43K Followers 2K Following CIS makes the connected world a safer place for people, businesses, and governments through our core competencies of collaboration and innovation.
Homeland Security Inv... @HSI_HQ
35K Followers 106 Following @ICEgov HSI protects the U.S. by investigating global crimes that impact local communities. Privacy: https://t.co/aORjC5RLnf
Silent Breach @SilentBreach
5K Followers 4K Following Silent Breach specializes in network security and digital asset protection.
Huawei Latinoamérica @HuaweiLatam
131K Followers 3K Following Cuenta oficial de Huawei en Latinoamérica y el Caribe. Huawei es un proveedor mundial líder de infraestructura TIC y dispositivos inteligentes.
Erin Brereton @Erbrer09
177 Followers 77 Following Chicago writer/editor who covers business, finance, food and more
Zally @zallyhg
10K Followers 1K Following Firewall consultant at @cisco . Cyber-Security Enthusiast.👩🏻💻 m3x4s @ DEFCON
AMDI, A.C. @AMDImx
2K Followers 814 Following Somos la primera asociación mexicana dedicada al Derecho de las Tecnologías de Información, y la segunda más antigua en Iberoamérica.
IFT @IFT_MX
86K Followers 186 Following Cuenta oficial del Instituto Federal de Telecomunicaciones, órgano encargado de regular, promover y supervisar la radiodifusión y las telecomunicaciones.
Lionfishcybersecurity @LionfishCyber
2K Followers 2K Following Lionfish Cyber Security is the next evolution of cyber security for small to mid-sized businesses.
ICS-CERT @ICSCERT
14K Followers 66 Following @CISAgov’s Industrial Control Systems Cyber Emergency Response Team provides operational capabilities to defend control systems against cyber threats.
GCHQ @GCHQ
186K Followers 326 Following The UK's intelligence, security and cyber agency, helping to keep the UK safe online and in the real world. Follow the cyber security arm of our mission @NCSC.
Alberto Daniel Hill �... @ADanielHill
47K Followers 18K Following First #HACKER wrongfully sent to #PRISON in #URUGUAY, @darknetdiaries episode 25 - I changed the justice system in Latin America. Post-Traumatic Growth.
Chris Krebs #Protect2... @CISAKrebs
49K Followers 823 Following *Archived* Director @CISAgov. https://t.co/grTHNhI7Bf. American voters decide American elections. This account is not active.
Malware Unicorn @malwareunicorn
166K Followers 6 Following Mostly on @malwareunicorn.bsky.social @Straikerai. Ex-Microsoft. Ex-Meta.
NCSC UK @NCSC
145K Followers 451 Following We are the National Cyber Security Centre – part of the UK’s intelligence & cyber agency @GCHQ. We help to make the UK the safest place to live and work online.
MalwareTech @MalwareTechBlog
272K Followers 1 Following Not here anymore. Profiles: https://t.co/sFoOuGmYK2
DIA @DefenseIntel
291K Followers 145 Following The Defense Intelligence Agency is first in all-source military intelligence in support of warfighters, defense planners, & policymakers.
Microsoft Threat Inte... @MsftSecIntel
196K Followers 996 Following We are Microsoft's global network of security experts. Follow for security research and threat intelligence.
SecuriTIC Latinoamér... @SecuriTICmx
2K Followers 215 Following Información de Valor para Integradores de Seguridad Electrónica y Ciberseguridad
elhacker.NET @elhackernet
141K Followers 614 Following Recibiendo ataques DDoS desde 2001. RIP wolfbcn. Telgram https://t.co/QSdxPId0ZH - Tecnología, seguridad, informática
Space Rogue @spacerog
24K Followers 327 Following I fight for the user. | L0pht Heavy Industries - ATStake - Whacked Mac Archives - Hacker News Network - Cyber Squirrel 1 | IBM X-Force
National Cybersecurit... @StaySafeOnline
186K Followers 1K Following The National Cybersecurity Alliance is a nonprofit that empowers people to use technology safely & securely. Co-leads Cybersecurity Awareness Month
Cybersecurity @ NIST @NISTcyber
98K Followers 522 Following Official handle covering all things cybersecurity at NIST
U.S. Cyber Command @US_CYBERCOM
143K Followers 259 Following Official Twitter page of U.S. Cyber Command (Following, retweets and links do not equal endorsement)
A @Mitre
250 Followers 430 Following
Garin Pace @Garin_Pace
361 Followers 851 Following I like figuring out how things work. I work in the infosec & privacy (cyber) insurance space as an underwriter. Views are my own and not my employer’s.
Andrea Matwyshyn @amatwyshyn
3K Followers 953 Following Prof @pennstatelaw @PSUEngineering; Founder PILOT lab & Manglona Lab | @[email protected] | [email protected]
Beyond Identity @beyondidentity
18K Followers 531 Following Scale AI without scaling risk. Govern developer, device, and agent access in one enforcement layer.
ATT&CK @MITREattack
117K Followers 514 Following MITRE ATT&CK® - A knowledge base for describing the behavior of adversaries. Replying/Following/Re-tweeting ≠ endorsement. @ https://t.co/wt46ArkZVt
Burp Suite @Burp_Suite
138K Followers 14 Following Burp Suite is the leading software for web security testing.
Nmap Project @nmap
136K Followers 457 Following Free and open source tool for network discovery, admin, and security auditing. Our tweetmaster is Gordon "Fyodor" Lyon. We're also on FB: https://t.co/RVkxWNikvWTrends for United States
You might like
