Dissent Doe :cupofcoffee:<p>Reading comprehension assistance needed, please. I don't understand this paragraph below:</p><p>"On June 10, 2025, Precision Endodontics of Raleigh discovered that its email account had been accessed by an unknown entity and that phishing emails were sent out to a small part of its prior contact list. In addition, its contact list of names and email addresses were compromised by the unknown entity. No evidence exits (sic) to suggest that there has been any attempt to misuse any of the information."</p><p>Isn't the last sentence contradicted by the prior statement that phishing emails were sent out? Isn't that an attempt to misuse any of the information? </p><p><a href="https://infosec.exchange/tags/databreach" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>databreach</span></a> <a href="https://infosec.exchange/tags/phishing" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>phishing</span></a> <a href="https://infosec.exchange/tags/notification" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>notification</span></a></p>
toad.social is one of the many independent Mastodon servers you can use to participate in the fediverse.
Mastodon server operated by David Troy, a tech pioneer and investigative journalist addressing threats to democracy. Thoughtful participation and discussion welcome.
Administered by:
Server stats:
274active users
toad.social: About · Profiles directory · Privacy policy
Mastodon: About · Get the app · Keyboard shortcuts · View source code · v4.4.1
#notification
0 posts · 0 participants · 0 posts today
Nando161<p>The <a href="https://partyon.xyz/tags/BBC" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>BBC</span></a> are the <a href="https://partyon.xyz/tags/scum" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>scum</span></a> of the <a href="https://partyon.xyz/tags/earth" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>earth</span></a> for putting out a <a href="https://partyon.xyz/tags/notification" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>notification</span></a> like this. Incredibly <a href="https://partyon.xyz/tags/irresponsible" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>irresponsible</span></a>.</p>
Dissent Doe :cupofcoffee:<p>Oklahoma recently enacted Senate Bill 686 which amends its data breach notification law. Here's a write-up about the new provisions from Covington and Burling lawyers:</p><p><a href="https://www.insideprivacy.com/cybersecurity-2/oklahoma-substantially-amends-its-data-breach-notification-statute/" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://www.</span><span class="ellipsis">insideprivacy.com/cybersecurit</span><span class="invisible">y-2/oklahoma-substantially-amends-its-data-breach-notification-statute/</span></a></p><p><a href="https://infosec.exchange/tags/databreach" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>databreach</span></a> <a href="https://infosec.exchange/tags/notification" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>notification</span></a> <a href="https://infosec.exchange/tags/safeharbor" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>safeharbor</span></a> <a href="https://infosec.exchange/tags/law" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>law</span></a></p>
Dissent Doe :cupofcoffee:<p>This could be a good thing, depending.... </p><p>EU-wide Breach Notification Template on the Horizon: </p><p><a href="https://www.jdsupra.com/legalnews/eu-wide-breach-notification-template-on-2681737/" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://www.</span><span class="ellipsis">jdsupra.com/legalnews/eu-wide-</span><span class="invisible">breach-notification-template-on-2681737/</span></a></p><p><a href="https://infosec.exchange/tags/databreach" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>databreach</span></a> <a href="https://infosec.exchange/tags/GDPR" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>GDPR</span></a> <a href="https://infosec.exchange/tags/notification" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>notification</span></a> <a href="https://infosec.exchange/tags/template" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>template</span></a></p>
News Beep<p>Emergency alert sent out to residents across Tri-State by mistake amid SWAT standoff</p><p>Warren County officials: Emergency alert sent out to residents across Tri-State by mistake amid SWAT standoff WAY. GOOD…<br><a href="https://newsbeep.org/tags/NewsBeep" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>NewsBeep</span></a> <a href="https://newsbeep.org/tags/News" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>News</span></a> <a href="https://newsbeep.org/tags/Headlines" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Headlines</span></a> <a href="https://newsbeep.org/tags/deerfieldtownship" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>deerfieldtownship</span></a> <a href="https://newsbeep.org/tags/deerfieldtwp" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>deerfieldtwp</span></a> <a href="https://newsbeep.org/tags/emergencyalert" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>emergencyalert</span></a> <a href="https://newsbeep.org/tags/entirecounty" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>entirecounty</span></a> <a href="https://newsbeep.org/tags/mistake" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>mistake</span></a> <a href="https://newsbeep.org/tags/notification" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>notification</span></a> <a href="https://newsbeep.org/tags/p" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>p</span></a>.m. <a href="https://newsbeep.org/tags/quartermileradius" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>quartermileradius</span></a> <a href="https://newsbeep.org/tags/resident" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>resident</span></a> <a href="https://newsbeep.org/tags/riley" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>riley</span></a> <a href="https://newsbeep.org/tags/saturdayafternoon" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>saturdayafternoon</span></a> <a href="https://newsbeep.org/tags/securedoor" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>securedoor</span></a> <a href="https://newsbeep.org/tags/swatstandoff" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>swatstandoff</span></a> <a href="https://newsbeep.org/tags/UnitedStates" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>UnitedStates</span></a> <a href="https://newsbeep.org/tags/Us" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Us</span></a> <a href="https://newsbeep.org/tags/USA" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>USA</span></a> <a href="https://newsbeep.org/tags/warrencountyofficial" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>warrencountyofficial</span></a> <a href="https://newsbeep.org/tags/window" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>window</span></a><br><a href="https://www.newsbeep.com/21412/" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://www.</span><span class="">newsbeep.com/21412/</span><span class="invisible"></span></a></p>
Dissent Doe :cupofcoffee:<p>NEW: Qilin claims attack on Accu Reference Medical Laboratory. It wasn't the lab's first data breach:</p><p><a href="https://databreaches.net/2025/07/11/qilin-claims-attack-on-accu-reference-medical-laboratory-it-wasnt-the-labs-first-data-breach/" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">databreaches.net/2025/07/11/qi</span><span class="invisible">lin-claims-attack-on-accu-reference-medical-laboratory-it-wasnt-the-labs-first-data-breach/</span></a></p><p><a href="https://infosec.exchange/tags/databreach" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>databreach</span></a> <a href="https://infosec.exchange/tags/ransomware" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ransomware</span></a> <a href="https://infosec.exchange/tags/notification" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>notification</span></a> <a href="https://infosec.exchange/tags/healthsec" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>healthsec</span></a> <a href="https://infosec.exchange/tags/cybersecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>cybersecurity</span></a> <a href="https://infosec.exchange/tags/transparency" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>transparency</span></a></p>
Dissent Doe :cupofcoffee:<p>Some attorneys believe that California may soon join the ranks of states that have 30-day deadlines to notify people of data breaches. They say Senate Bill-446 has no opposition and is likely to pass in the Assembly. </p><p>Read more:<br><a href="https://www.jdsupra.com/legalnews/don-t-delay-california-likely-to-soon-6651336/" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://www.</span><span class="ellipsis">jdsupra.com/legalnews/don-t-de</span><span class="invisible">lay-california-likely-to-soon-6651336/</span></a></p><p><a href="https://infosec.exchange/tags/databreach" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>databreach</span></a> <a href="https://infosec.exchange/tags/notification" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>notification</span></a> <a href="https://infosec.exchange/tags/law" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>law</span></a> <a href="https://infosec.exchange/tags/SB446" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>SB446</span></a></p>
Dissent Doe :cupofcoffee:<p>The Information and Privacy Commissioner of Ontario has completed a review into Daixin Team's massive cyberattack on five regional hospitals in 2023 and found hospital officials acted “adequately.”</p><p>Perhaps the most notable aspect of the report (from my perspective) was that the IPC said the hospitals were obligated to notify patients whose data had been encrypted (and not just those whose data had been exfiltrated). They saw no point in requiring that now, but wanted it noted that it should have happened.</p><p>So that seems to be making PHIPA's interpretation clearer for future victims of encryption incidents. </p><p>The full report makes an interesting read. </p><p>PHIPA Decision 284:<br><a href="https://decisions.ipc.on.ca/ipc-cipvp/phipa/en/item/521986/index.do" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">decisions.ipc.on.ca/ipc-cipvp/</span><span class="invisible">phipa/en/item/521986/index.do</span></a></p><p><a href="https://infosec.exchange/tags/PHIPA" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>PHIPA</span></a> <a href="https://infosec.exchange/tags/notification" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>notification</span></a> <a href="https://infosec.exchange/tags/incidentmanagement" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>incidentmanagement</span></a> <a href="https://infosec.exchange/tags/databreach" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>databreach</span></a> <a href="https://infosec.exchange/tags/ransomware" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ransomware</span></a></p>
Dissent Doe :cupofcoffee:<p>Almost one year later, U.S. Dermatology Partners is still not being very transparent about their 2024 breach:</p><p><a href="https://databreaches.net/2025/06/04/almost-one-year-later-u-s-dermatology-partners-is-still-not-being-very-transparent-about-their-2024-breach/" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">databreaches.net/2025/06/04/al</span><span class="invisible">most-one-year-later-u-s-dermatology-partners-is-still-not-being-very-transparent-about-their-2024-breach/</span></a></p><p><a href="https://infosec.exchange/tags/HealthSec" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>HealthSec</span></a> <a href="https://infosec.exchange/tags/databreach" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>databreach</span></a> <a href="https://infosec.exchange/tags/ransomware" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ransomware</span></a> <a href="https://infosec.exchange/tags/transparency" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>transparency</span></a> <a href="https://infosec.exchange/tags/notification" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>notification</span></a> <a href="https://infosec.exchange/tags/HIPAA" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>HIPAA</span></a> <a href="https://infosec.exchange/tags/disclosure" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>disclosure</span></a></p>
Dissent Doe :cupofcoffee:<p>American banking groups want the Securities and Exchange Commission (SEC) to revoke its cybersecurity incident disclosure requirements:<br><a href="https://www.pymnts.com/cybersecurity/2025/banks-want-sec-to-rescind-cyberattack-disclosure-requirements/" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://www.</span><span class="ellipsis">pymnts.com/cybersecurity/2025/</span><span class="invisible">banks-want-sec-to-rescind-cyberattack-disclosure-requirements/</span></a></p><p>One of the problems they cite with the rule is "weaponization by hackers" where they link to my reporting as an example when AlphV tried to pressure a victim by complaining to the SEC that the victim hadn't timely disclosed to the SEC. </p><p>Direct link to letter to the SEC: <a href="https://www.sifma.org/wp-content/uploads/2025/05/Joint-Financial-Trades-Final-Petition-for-Rulemaking-on-Cybersecurity-Risk-Management-Strategy-Governance-and-Incident-Disclosure-Rule.pdf" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://www.</span><span class="ellipsis">sifma.org/wp-content/uploads/2</span><span class="invisible">025/05/Joint-Financial-Trades-Final-Petition-for-Rulemaking-on-Cybersecurity-Risk-Management-Strategy-Governance-and-Incident-Disclosure-Rule.pdf</span></a></p><p><a href="https://infosec.exchange/tags/cybersecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>cybersecurity</span></a> <a href="https://infosec.exchange/tags/SEC" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>SEC</span></a> <a href="https://infosec.exchange/tags/material" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>material</span></a> <a href="https://infosec.exchange/tags/notification" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>notification</span></a> <a href="https://infosec.exchange/tags/disclosure" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>disclosure</span></a> <a href="https://infosec.exchange/tags/databreach" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>databreach</span></a> <a href="https://infosec.exchange/tags/cybercrime" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>cybercrime</span></a></p>
Ethan Sholly<p>Self-Host Weekly (2025-05-16)</p><p>Controversies left and right, software updates and launches, a spotlight on <a href="https://fosstodon.org/tags/LoggiFly" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>LoggiFly</span></a> -- a log monitoring and <a href="https://fosstodon.org/tags/notification" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>notification</span></a> platform, and more in this week's recap!</p><p><a href="https://selfh.st/weekly/2025-05-16/" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="">selfh.st/weekly/2025-05-16/</span><span class="invisible"></span></a></p><p><a href="https://fosstodon.org/tags/selfhost" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>selfhost</span></a> <a href="https://fosstodon.org/tags/selfhosted" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>selfhosted</span></a> <a href="https://fosstodon.org/tags/selfhosting" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>selfhosting</span></a> <a href="https://fosstodon.org/tags/newsletter" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>newsletter</span></a> <a href="https://fosstodon.org/tags/opensource" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>opensource</span></a> <a href="https://fosstodon.org/tags/foss" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>foss</span></a> <a href="https://fosstodon.org/tags/app" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>app</span></a> <a href="https://fosstodon.org/tags/apps" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>apps</span></a> <a href="https://fosstodon.org/tags/software" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>software</span></a> <a href="https://fosstodon.org/tags/privacy" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>privacy</span></a> <a href="https://fosstodon.org/tags/weekly" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>weekly</span></a> <a href="https://fosstodon.org/tags/nextcloud" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>nextcloud</span></a> <a href="https://fosstodon.org/tags/google" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>google</span></a> <a href="https://fosstodon.org/tags/plex" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>plex</span></a> <a href="https://fosstodon.org/tags/trakt" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>trakt</span></a></p>
Dissent Doe :cupofcoffee:<p><span class="h-card" translate="no"><a href="https://infosec.exchange/@amvinfe" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>amvinfe</span></a></span> <span class="h-card" translate="no"><a href="https://infosec.exchange/@douglevin" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>douglevin</span></a></span> <span class="h-card" translate="no"><a href="https://freeradical.zone/@funnymonkey" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>funnymonkey</span></a></span> </p><p>A few weeks ago, <a href="https://infosec.exchange/tags/InterLock" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>InterLock</span></a> leaked a lot of data allegedly from Madison School District, which is also in Phoenix, AZ. <br> I wonder if there was some common vendor between Madison and Fowler or some common denominator. </p><p>I didn't spot any statement or <a href="https://infosec.exchange/tags/databreach" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>databreach</span></a> disclosure on Madison's site or Twitter account. </p><p><a href="https://infosec.exchange/tags/ransomware" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ransomware</span></a> <a href="https://infosec.exchange/tags/notification" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>notification</span></a> <a href="https://infosec.exchange/tags/transparency" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>transparency</span></a></p>
Dissent Doe :cupofcoffee:<p>I very seldom see data breach notifications from North Dakota, but it's interesting to note that the state has now enacted HB 1127, overhauling its regulatory framework for financial institutions and nonbank financial service providers. </p><p>Read about the law's data protection and breach notification requirements: <a href="https://natlawreview.com/article/north-dakota-expands-data-security-requirements-and-issues-new-licensing" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">natlawreview.com/article/north</span><span class="invisible">-dakota-expands-data-security-requirements-and-issues-new-licensing</span></a></p><p><a href="https://infosec.exchange/tags/databreach" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>databreach</span></a> <a href="https://infosec.exchange/tags/legislation" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>legislation</span></a> <a href="https://infosec.exchange/tags/infosecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>infosecurity</span></a> <a href="https://infosec.exchange/tags/notification" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>notification</span></a> <a href="https://infosec.exchange/tags/FinSec" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>FinSec</span></a> <a href="https://infosec.exchange/tags/NorthDakota" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>NorthDakota</span></a></p>
WuMing2<p>Very specific requirement: <a href="https://mas.to/tags/Whatsapp" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Whatsapp</span></a> missed calls list <a href="https://mas.to/tags/notification" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>notification</span></a> to <a href="https://mas.to/tags/iPad" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>iPad</span></a>. Via any channel. Anyone?</p>
Dissent Doe :cupofcoffee:<p>Watsonville Community Hospital still hasn’t notified all those affected by a November data breach; employees are reporting tax refund fraud: </p><p><a href="https://databreaches.net/2025/03/21/watsonville-community-hospital-still-hasnt-notified-all-those-affected-by-a-november-data-breach-employees-are-reporting-tax-refund-fraud/" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">databreaches.net/2025/03/21/wa</span><span class="invisible">tsonville-community-hospital-still-hasnt-notified-all-those-affected-by-a-november-data-breach-employees-are-reporting-tax-refund-fraud/</span></a></p><p><a href="https://infosec.exchange/tags/databreach" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>databreach</span></a> <a href="https://infosec.exchange/tags/ransomware" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ransomware</span></a> <a href="https://infosec.exchange/tags/Termite" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Termite</span></a> <a href="https://infosec.exchange/tags/incidentresponse" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>incidentresponse</span></a> <a href="https://infosec.exchange/tags/notification" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>notification</span></a> <a href="https://infosec.exchange/tags/HIPAA" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>HIPAA</span></a> <a href="https://infosec.exchange/tags/IDtheft" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>IDtheft</span></a> <a href="https://infosec.exchange/tags/taxrefundfraud" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>taxrefundfraud</span></a></p>
Kevin Karhan :verified:<p><span class="h-card" translate="no"><a href="https://m.ai6yr.org/@ai6yr" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>ai6yr</span></a></span> <span class="h-card" translate="no"><a href="https://infosec.exchange/@briankrebs" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>briankrebs</span></a></span> OFC this targets <a href="https://infosec.space/tags/TechIlliterates" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>TechIlliterates</span></a> and the only effective means here are:</p><ol><li>Teach <a href="https://infosec.space/tags/TechLiteracy" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>TechLiteracy</span></a> instead of consumerism.</li><li>Mandate <a href="https://infosec.space/tags/confirmation" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>confirmation</span></a> & <a href="https://infosec.space/tags/notification" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>notification</span></a> - <a href="https://infosec.space/tags/PopUp" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>PopUp</span></a>|s for every use of <a href="https://infosec.space/tags/Clipboard" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Clipboard</span></a> (similar to <a href="https://infosec.space/tags/webcam" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>webcam</span></a> use by websites)...</li><li>Ban <a href="https://infosec.space/tags/JavaScript" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>JavaScript</span></a> - <em>seriously</em>!</li><li>Ban <a href="https://infosec.space/tags/Windows" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Windows</span></a>, because it's a <a href="https://infosec.space/tags/Govware" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Govware</span></a>, espechally since <a href="https://infosec.space/tags/Windows10" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Windows10</span></a> and even more so on <a href="https://infosec.space/tags/Windows11" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Windows11</span></a> that is *insecure in every configuration!</li><li>Put <a href="https://infosec.space/tags/TechIlliterates" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>TechIlliterates</span></a> before a system they can't feck up. I.e. <span class="h-card" translate="no"><a href="https://venera.social/profile/tails_live" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>tails_live</span></a></span> <span class="h-card" translate="no"><a href="https://fosstodon.org/@tails" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>tails</span></a></span> / <a href="https://infosec.space/tags/Tails" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Tails</span></a> for that reason alone (can't run such commands if they neither got <a href="https://infosec.space/tags/root" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>root</span></a> nor any <a href="https://infosec.space/tags/persistent" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>persistent</span></a> <a href="https://infosec.space/tags/storage" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>storage</span></a> to target).</li><li>Normalize the use of <span class="h-card" translate="no"><a href="https://mastodon.social/@torproject" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>torproject</span></a></span> <a href="https://infosec.space/tags/TorBrowser" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>TorBrowser</span></a>!</li><li><a href="https://infosec.space/tags/Teach" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Teach</span></a> <a href="https://infosec.space/tags/tech" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>tech</span></a> <a href="https://infosec.space/tags/literacy" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>literacy</span></a> instead of <a href="https://infosec.space/tags/consumerism" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>consumerism</span></a>! </li><li>Ban <a href="https://infosec.space/tags/GAFAMs" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>GAFAMs</span></a> and their shitty products!</li><li>Migrate every <a href="https://infosec.space/tags/TechIlliterate" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>TechIlliterate</span></a> to <a href="https://infosec.space/tags/Linux" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Linux</span></a> and don't give them administrative privilegues.</li><li>Teach <em>tech literacy</em> instead of consumerism!</li></ol>
WuMing2<p>Catapush has a two way push <a href="https://mas.to/tags/notification" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>notification</span></a> mechanism for <a href="https://mas.to/tags/iOS" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>iOS</span></a> : a back channel with the <a href="https://mas.to/tags/app" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>app</span></a> to deliver local notifications and the <a href="https://mas.to/tags/APN" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>APN</span></a> service as fallback to wake up the app with high priority <a href="https://mas.to/tags/silent" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>silent</span></a> remote notifications: <a href="https://www.catapush.com/docs-quickstart#how-catapush-proprietary-real-time-direct-channel-works" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://www.</span><span class="ellipsis">catapush.com/docs-quickstart#h</span><span class="invisible">ow-catapush-proprietary-real-time-direct-channel-works</span></a></p><p>The solution is used by <a href="https://mas.to/tags/banks" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>banks</span></a> to guarantee delivery. </p><p>But was not <a href="https://mas.to/tags/CallKit" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>CallKit</span></a> made mandatory in iOS 13 exactly to prevent this kind of scenario? <a href="https://mas.to/tags/Whatsapp" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Whatsapp</span></a> and the likes keeping a back channel alive via silent notifications to feed on users data.</p>
Paul Giulan<p><a href="https://federate.social/tags/FYI" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>FYI</span></a> <a href="https://federate.social/tags/macOS" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>macOS</span></a> <a href="https://federate.social/tags/tips" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>tips</span></a> and tricks</p><p><a href="https://saurabhs.org/macos-tips" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="">saurabhs.org/macos-tips</span><span class="invisible"></span></a></p><p><a href="https://federate.social/tags/shortcut" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>shortcut</span></a> <a href="https://federate.social/tags/UI" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>UI</span></a> <a href="https://federate.social/tags/Spotlight" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Spotlight</span></a> <a href="https://federate.social/tags/Safari" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Safari</span></a> <a href="https://federate.social/tags/Mail" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Mail</span></a> <a href="https://federate.social/tags/Calendar" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Calendar</span></a> <a href="https://federate.social/tags/Messages" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Messages</span></a> <a href="https://federate.social/tags/Photos" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Photos</span></a> <a href="https://federate.social/tags/Terminal" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Terminal</span></a> <a href="https://federate.social/tags/Calculator" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Calculator</span></a> <a href="https://federate.social/tags/QuickTime" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>QuickTime</span></a> <a href="https://federate.social/tags/screenshot" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>screenshot</span></a> <a href="https://federate.social/tags/notification" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>notification</span></a></p>
Dissent Doe :cupofcoffee:<p>Health-care billing company Medical Billing Specialists Inc. (MBS Select) has been hit with a potential class action lawsuit over their 2024 breach.</p><p>Notifications first went out a year after the attack by Akira ransomware group. </p><p><a href="https://databreaches.net/2025/02/26/medical-billing-vendor-sued-over-health-data-leak-gold-mine/" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">databreaches.net/2025/02/26/me</span><span class="invisible">dical-billing-vendor-sued-over-health-data-leak-gold-mine/</span></a></p><p>h/t, Bloomberg Law.</p><p>Direct link to complaint: <a href="https://www.bloomberglaw.com/public/desktop/document/MarianoGuerravMedicalBillingSpecialistsIncDocketNo125cv10453DMass?doc_id=X7V6GF8O0QV9EOAVLKEKKSJCO87" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://www.</span><span class="ellipsis">bloomberglaw.com/public/deskto</span><span class="invisible">p/document/MarianoGuerravMedicalBillingSpecialistsIncDocketNo125cv10453DMass?doc_id=X7V6GF8O0QV9EOAVLKEKKSJCO87</span></a></p><p><a href="https://infosec.exchange/tags/BAA" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>BAA</span></a> <a href="https://infosec.exchange/tags/databreach" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>databreach</span></a> <a href="https://infosec.exchange/tags/healthsec" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>healthsec</span></a> <a href="https://infosec.exchange/tags/ransomware" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ransomware</span></a> <a href="https://infosec.exchange/tags/notification" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>notification</span></a></p>
Dissent Doe :cupofcoffee:<p>DISA Global Solutions reports more than 3.3 million people were affected by the 2024 data breach they experienced, but questions remain.</p><p>In an interim update that had been quoted by a law firm,, DISA had made an intriguing statement about steps they had taken to dissuade the unnamed threat actor from leaking the data and providing confirmation of deletion. </p><p>That's all missing from their final notification. </p><p>Why?</p><p><a href="https://databreaches.net/2025/02/25/disa-global-solutions-reports-more-than-3-3-million-people-affected-by-2024-data-breach-but-questions-remain/" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">databreaches.net/2025/02/25/di</span><span class="invisible">sa-global-solutions-reports-more-than-3-3-million-people-affected-by-2024-data-breach-but-questions-remain/</span></a></p><p><a href="https://infosec.exchange/tags/databreach" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>databreach</span></a> <a href="https://infosec.exchange/tags/ransom" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ransom</span></a> <a href="https://infosec.exchange/tags/extortion" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>extortion</span></a> <a href="https://infosec.exchange/tags/transparency" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>transparency</span></a> <a href="https://infosec.exchange/tags/notification" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>notification</span></a> </p><p><span class="h-card" translate="no"><a href="https://mastodon.social/@campuscodi" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>campuscodi</span></a></span></p>
TrendingLive feeds
Mastodon is the best way to keep up with what's happening.
Follow anyone across the fediverse and see it all in chronological order. No algorithms, ads, or clickbait in sight.
Create accountLoginDrag & drop to upload