Weekly Update 164

Presently sponsored by: IVPN. Mass surveillance is a reality. A VPN can’t solve this issue, but it’s a great first step. Use one that puts principle before profit.

Weekly Update 164

It’s a late, early in the day, hazy, bush-firey Aussie weekly update with a whole bunch of various bits and pieces of interest from throughout the week. The references below will give you a sense of how much I’ve jammed into this week so I won’t repeat it all here in the intro, but I reckon it’s a really interesting mix of different things across the industry. Enjoy ?

Weekly Update 164
Weekly Update 164
Weekly Update 164
Weekly Update 164

References

  1. Nord has had a heap of credential stuffing attacks (or at least a heap of Pastebin entries with creds from attacks)
  2. Whilst it sucks for Nord, they do also have some accountability here (the FTC says that “businesses will no longer be able to play the victim-card”)
  3. Veritas (DNA testing) had a breach (whilst DNA data wasn’t breached, it begs the question – what would the impact be if it was?)
  4. Finally – free SSL on the Azure app service for custom domains! (non-apex domains only at present, but it’s still preview for now so hopefully that’s only a temporary restriction)
  5. Sectigo – seriously guys, WTF is this garbage about?! (just read it and shake your head…)
  6. LinkedIn now has a security.txt file! (if your site doesn’t have one already, do it because it’s free and it’s awesome)
  7. Do HSTS from top to bottom or GTFO (this week’s blog post was a perfect illustration of why you need it everywhere)
  8. Varonis. Free Video Course: 7 Hidden Office 365 Security Settings You Can Only Unlock with PowerShell


Troy Hunt’s Blog


Are you looking for products for hacking, cybersecurity, and penetration testing? Do you need to cleanse your smartphone, PC, or website from viruses and malware? Do you need to track down a person or recover urgent information? Do you need to regain control of an account, email, or password that has been stolen from you? Interested in purchasing pre-configured devices to easily and quickly experiment with hacking techniques? Do you have specific requirements in software or hardware? We can assist you!

Contact us immediately for immediate assistance: provide us with details via email or WhatsApp about the type of support you need, and we will respond you promptly!

Fill out and submit the form below to send us an immediate support request

Write your email address here

Write here how we can help you - we provide immediate support for all your needs!

chevron_left
chevron_right