Dave Troy @davetroy

4 posts4 participants1 post today

**LMG Security** @LMGsecurity@infosec.exchange · 7h

LMG Security @LMGsecurity@infosec.exchange

Think your network is locked down? Think again.

Register for our May 28th Cyberside Chats Live episode featuring special guest @tompohl, LMG Security’s Head of Penetration Testing, and discover the most common security gaps attackers exploit.

Tom will share how his team routinely gains domain admin access in over 90% of their engagements—and how you can stop real attackers from doing the same. He’ll break down the weak points they target, from insecure default Active Directory settings to overlooked misconfigurations—even in mature environments.

LMG SecurityCyberside Chats: Live! How Hackers Get In: Penetration Testing Secrets from the Front Lines | LMG SecurityIn this quick, high-impact session, we’ll dive into the top three cybersecurity priorities every leader should focus on. From integrating AI into your defenses to tackling deepfake threats and tightening third-party risk management, this discussion will arm you with the insights you need to stay secure in the year ahead.

#Cybersecurity #PenetrationTesting #InfoSec

**Walker** @Walker@infosec.exchange · 3d

Walker @Walker@infosec.exchange

When can we declare IP Geo location / country code blocking practically dead as a mitigation strategy?

Sure it is still useful blocking script kiddies from Iran and other low hanging fruit, but do any serious APT crews actually launch attacks from their home country anymore?

With the use of zero trust, distributed attack and delivery networks (looking at you Cloudflare), and VPN usage country blocking feels less useful than in the past.

#zerotrust #geoblocking #apt

**LMG Security** @LMGsecurity@infosec.exchange · 4d

LMG Security @LMGsecurity@infosec.exchange

Dive into our new technical blog, No Exploits Needed: Using Cisco’s Own Features to Extract Credentials, for a behind-the-scenes look at how default settings can lead to a data breach.

In this post, Penetration Testing Team Manager @tompohl shares how he extracted a Cisco router’s entire running configuration—no credentials required—during a recent penetration test and offers tips for hardening your security. https://www.lmgsecurity.com/no-exploits-needed-using-ciscos-own-features-to-extract-credentials/

press,enter,button,on,the,computer.,key,lock,security,system

LMG SecurityCisco SNMP Exploit Case Study: Internal Penetration Test Using Default Router Settings | LMG SecurityLearn how LMG Security penetration testers extracted a Cisco router’s running configuration using default SNMP settings and built-in features — no exploits required. See how internal tests uncover credential exposure and full network takeover risks.

#Cybersecurity #PenetrationTesting #Pentest

**ITSEC News** @itsecbot@schleuss.online · 4d

ITSEC News @itsecbot@schleuss.online

How To Secure Digital Wallets from Phishing Attacks - Digital wallets have become increasingly popular, offering users an easy way to make paym... https://www.itsecurityguru.org/2025/05/08/how-to-secure-digital-wallets-from-phishing-attacks/?utm_source=rss&utm_medium=rss&utm_campaign=how-to-secure-digital-wallets-from-phishing-attacks #networksecurity

**Tailscale** @tailscale@hachyderm.io · May 5

May 5

Tailscale @tailscale@hachyderm.io

At #RSAC2025, the message was clear: it's time to move beyond legacy VPNs.

Discover how Tailscale is leading the charge towards modern, secure networking solutions.

Read our RSAC 2025 recap:
https://tailscale.com/blog/rsac-2025-recap

#ZeroTrust #NetworkSecurity #Tailscale

**Bytes Europe** @byteseu@pubeurope.com · May 1

May 1

Bytes Europe @byteseu@pubeurope.com

Nebulous Mantis Targets NATO-Linked Entities with Multi-Stage Malware Attacks https://www.byteseu.com/970515/ #ComputerSecurity #CyberNews #CyberSecurityNews #CyberSecurityNewsToday #CyberSecurityUpdates #CyberUpdates #CyberAttacks #DataBreach #Europe #HackerNews #HackingNews #HowToHack #InformationSecurity #NATO #NetworkSecurity #RansomwareMalware #SoftwareVulnerability #TheHackerNews

**Politico.eu (Unofficial RSS)** @politico_eu_bot@social.espeweb.net · Apr 29

Apr 29

Politico.eu (Unofficial RSS) @politico_eu_bot@social.espeweb.net

Spanish grid operator rules out cyberattack in its facilities after power cut https://www.politico.eu/article/spanish-grid-operator-rules-out-cyberattack-in-its-facilities-following-iberian-blackout/?utm_source=RSS_Feed&utm_medium=RSS&utm_campaign=RSS_Syndication #CybersecurityandDataProtection #Criticalinfrastructure #Energyinfrastructure #EnergyandClimate #Electricitygrid #Networksecurity #Cybersecurity #Electricity #Resilience #Hackers

POLITICO · Apr 29Spanish grid operator rules out cyberattack in its facilities after power cutBy Sam Clark

#hackers

**Politico.eu (Unofficial RSS)** @politico_eu_bot@social.espeweb.net · Apr 24

Apr 24

Politico.eu (Unofficial RSS) @politico_eu_bot@social.espeweb.net

European Commission blacklists lobby groups tied to Huawei https://www.politico.eu/article/european-commission-blacklists-lobby-groups-tied-to-huawei/?utm_source=RSS_Feed&utm_medium=RSS&utm_campaign=RSS_Syndication #CybersecurityandDataProtection #Certificationandstandards #Huaweicorruptionscandal #EnergyandClimate #Moneylaundering #Networksecurity #Brusselsbubble #Transparency #Solarenergy #Corruption #Technology #Lobbying #Telecoms #5G

POLITICO · Apr 24European Commission blacklists lobby groups tied to HuaweiBy Mathieu Pollet

#5g

**k3ym𖺀** @k3ym0@infosec.exchange · Apr 22 *

Apr 22 *

k3ym𖺀 @k3ym0@infosec.exchange

New Threat Alert: Rustobot Botnet
A new Rust-based botnet is making waves — and it's hijacking routers to do it. @FortiGuardLabs latest research dives into Rustobot, a stealthy, modular botnet that’s fast, evasive, and ready to wreak havoc.

Learn how it works, what makes it different, and how to protect your network:
https://www.fortinet.com/blog/threat-research/new-rust-botnet-rustobot-is-routed-via-routers

IOCs

URLs

hxxp://66[.]63[.]187[.]69/w.sh
hxxp://66[.]63[.]187[.]69/wget.sh
hxxp://66[.]63[.]187[.]69/t
hxxp://66[.]63[.]187[.]69/tftp.sh
hxxp://66[.]63[.]187[.]69/arm5
hxxp://66[.]63[.]187[.]69/arm6
hxxp://66[.]63[.]187[.]69/arm7
hxxp://66[.]63[.]187[.]69/mips
hxxp://66[.]63[.]187[.]69/mpsl
hxxp://66[.]63[.]187[.]69/x86

Hosts

dvrhelper[.]anondns[.]net
techsupport[.]anondns[.]net
rustbot[.]anondns[.]net
miraisucks[.]anondns[.]net
5[.]255[.]125[.]150

Edit: Shout-out to the author behind this research, @7olzu

#CyberSecurity #Botnet #RustLang

**Bytes Europe** @byteseu@pubeurope.com · Apr 21

Apr 21

Bytes Europe @byteseu@pubeurope.com

Kimsuky Exploits BlueKeep RDP Vulnerability to Breach Systems in South Korea and Japan https://www.byteseu.com/943166/ #ComputerSecurity #CyberNews #CyberSecurityNews #CyberSecurityNewsToday #CyberSecurityUpdates #CyberUpdates #CyberAttacks #DataBreach #HackerNews #HackingNews #HowToHack #InformationSecurity #NetworkSecurity #RansomwareMalware #SoftwareVulnerability #SouthKorea #TheHackerNews

**Bytes Europe** @byteseu@pubeurope.com · Apr 20

Apr 20

Bytes Europe @byteseu@pubeurope.com

APT29 Deploys GRAPELOADER Malware Targeting European Diplomats Through Wine-Tasting Lures https://www.byteseu.com/938717/ #ComputerSecurity #CyberNews #CyberSecurityNews #CyberSecurityNewsToday #CyberSecurityUpdates #CyberUpdates #CyberAttacks #DataBreach #Europe #HackerNews #HackingNews #HowToHack #InformationSecurity #NetworkSecurity #RansomwareMalware #SoftwareVulnerability #TheHackerNews

UK @uk@pubeurope.com · Apr 15

Apr 15

UK @uk@pubeurope.com

https://www.europesays.com/uk/20835/ France has ‘trouble understanding’ US halt on cyber operations against Russia – POLITICO #CyberDiplomacy #CyberWarfare #Cybercrime #Defense #EmmanuelMacron #EU #Europe #EuropeanDefense #France #Hackers #JeanNoelBarrot #Macron #Malware #Media #NetworkSecurity #PeteHegseth #Russia #TransatlanticRelations #UnitedStates

**Bytes Europe** @byteseu@pubeurope.com · Apr 14

UK @uk@pubeurope.com · Apr 13

Apr 13

UK @uk@pubeurope.com

https://www.europesays.com/uk/17261/ Huawei top executive in Europe charged in Belgian corruption probe – POLITICO #5G #Belgium #BrusselsBubble #CertificationAndStandards #China #corruption #CriticalInfrastructure #CyberEspionage #Cybersecurity #DataProtection #DigitalSingleMarket #Espionage #EU #Europe #European #Exclusive #Hackers #HuaweiCorruptionScandal #Intelligence #InternetOfThings #Lobbying #MoneyLaundering #NetworkSecurity #Portugal #PublicAffairs #Technology #Telecoms #Transparency

**Bytes Europe** @byteseu@pubeurope.com · Apr 9

Apr 9

Bytes Europe @byteseu@pubeurope.com

Huawei top executive in Europe charged in Belgian corruption probe – POLITICO https://www.byteseu.com/904367/ #5G #Belgium #BrusselsBubble #CertificationAndStandards #China #Corruption #CriticalInfrastructure #CyberEspionage #cybersecurity #DataProtection #DigitalSingleMarket #Espionage #Europe #Exclusive #hackers #HuaweiCorruptionScandal #Intelligence #InternetOfThings #Lobbying #MoneyLaundering #NetworkSecurity #Portugal #PublicAffairs #Technology #Telecoms #Transparency

**Sven Ruppert** @svenruppert@mastodon.social · Apr 7

Apr 7

Sven Ruppert @svenruppert@mastodon.social

DNS attacks are not just legacy threats – they’re evolving.

In my new article series, I explore modern DNS attack vectors like cache poisoning, tunneling, hijacking & spoofing – and how we as developers can defend at the protocol edge.

A must-read if you're building Java-based backend systems or securing internal services.

https://svenruppert.com/2025/04/07/dns-attacks-explained/

Sven Ruppert · Apr 7DNS Attacks – Explained

Recent searches

Search options

Administered by:

Server stats:

#networksecurity