Karl Voit :emacs: :orgmode:<p><a href="https://graz.social/tags/TroyHunt" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>TroyHunt</span></a> fell for a <a href="https://graz.social/tags/phishing" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>phishing</span></a> attack on his mailinglist members: <a href="https://www.troyhunt.com/a-sneaky-phish-just-grabbed-my-mailchimp-mailing-list/" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://www.</span><span class="ellipsis">troyhunt.com/a-sneaky-phish-ju</span><span class="invisible">st-grabbed-my-mailchimp-mailing-list/</span></a></p><p>Some of the ingredients: <a href="https://graz.social/tags/Outlook" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Outlook</span></a> and its habit of hiding important information from the user and missing <a href="https://graz.social/tags/2FA" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>2FA</span></a> which is phishing-resistant.</p><p>Use <a href="https://graz.social/tags/FIDO2" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>FIDO2</span></a> with hardware tokens if possible (<a href="https://graz.social/tags/Passkeys" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Passkeys</span></a> without FIDO2 HW tokens are NOT phishing-resistant due to the possibility of being able to trick users with credential transfers: <a href="https://arxiv.org/abs/2501.07380" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://</span><span class="">arxiv.org/abs/2501.07380</span><span class="invisible"></span></a>) and avoid Outlook (or <a href="https://graz.social/tags/Microsoft" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Microsoft</span></a>) whenever possible.</p><p>Further learning: it could happen to the best of us! Don't be ashamed, try to minimize risks and be open about your mistakes.</p><p>Note: any 2FA is better than no 2FA at all.</p><p><a href="https://graz.social/tags/email" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>email</span></a> <a href="https://graz.social/tags/malware" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>malware</span></a> <a href="https://graz.social/tags/security" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>security</span></a> <a href="https://graz.social/tags/OTP" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>OTP</span></a> <a href="https://graz.social/tags/TOTP" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>TOTP</span></a> <a href="https://graz.social/tags/Passkey" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Passkey</span></a> <a href="https://graz.social/tags/haveibeenpwned" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>haveibeenpwned</span></a> <a href="https://graz.social/tags/Ihavebeenpwned" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Ihavebeenpwned</span></a></p>
Recent searches
No recent searches
Search options
Only available when logged in.
en.osm.town is one of the many independent Mastodon servers you can use to participate in the fediverse.
An independent, community of OpenStreetMap people on the Fediverse/Mastodon.
Funding graciously provided by the OpenStreetMap Foundation.
Administered by:
Server stats:
257active users
en.osm.town: About · Profiles directory · Privacy policy
Mastodon: About · Get the app · Keyboard shortcuts · View source code · v4.3.8
#troyhunt
0 posts · 0 participants · 0 posts today
pablolarah<p>🟠 "Pwned", The Book, Is Now Available for Free<br>by <span class="h-card" translate="no"><a href="https://infosec.exchange/@troyhunt" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@<span>troyhunt</span></a></span> <br>In PDF & EPUB formats.</p><p><a href="https://mastodon.social/tags/TroyHunt" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>TroyHunt</span></a> <a href="https://mastodon.social/tags/Pwned" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Pwned</span></a> <a href="https://mastodon.social/tags/freeEbook" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>freeEbook</span></a> </p><p><a href="https://www.troyhunt.com/pwned-the-book-is-now-available-for-free/" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://www.</span><span class="ellipsis">troyhunt.com/pwned-the-book-is</span><span class="invisible">-now-available-for-free/</span></a></p>
Tarnkappe.info<p>📬 Internet Archive gehackt: 31 Millionen Benutzerkonten betroffen<br><a href="https://social.tchncs.de/tags/Datenschutz" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Datenschutz</span></a> <a href="https://social.tchncs.de/tags/ITSicherheit" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>ITSicherheit</span></a> <a href="https://social.tchncs.de/tags/BlackMeta" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>BlackMeta</span></a> <a href="https://social.tchncs.de/tags/CyberAngriff" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>CyberAngriff</span></a> <a href="https://social.tchncs.de/tags/haveibeenpwned" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>haveibeenpwned</span></a> <a href="https://social.tchncs.de/tags/InternetArchive" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>InternetArchive</span></a> <a href="https://social.tchncs.de/tags/ScottHelme" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>ScottHelme</span></a> <a href="https://social.tchncs.de/tags/TroyHunt" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>TroyHunt</span></a> <a href="https://sc.tarnkappe.info/8b4ed9" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://</span><span class="">sc.tarnkappe.info/8b4ed9</span><span class="invisible"></span></a></p>
Tarnkappe.info<p>📬 BreachForums: Daten-Leak enthüllt Infos von 200.000 Forum-Mitgliedern<br><a href="https://social.tchncs.de/tags/DarkCommerce" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>DarkCommerce</span></a> <a href="https://social.tchncs.de/tags/Datenschutz" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Datenschutz</span></a> <a href="https://social.tchncs.de/tags/BreachForums" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>BreachForums</span></a> <a href="https://social.tchncs.de/tags/ConorBrianFitzpatrick" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>ConorBrianFitzpatrick</span></a> <a href="https://social.tchncs.de/tags/DatenbankBackup" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>DatenbankBackup</span></a> <a href="https://social.tchncs.de/tags/Emo" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Emo</span></a> <a href="https://social.tchncs.de/tags/Pompompourin" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Pompompourin</span></a> <a href="https://social.tchncs.de/tags/TroyHunt" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>TroyHunt</span></a> <a href="https://sc.tarnkappe.info/04b564" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://</span><span class="">sc.tarnkappe.info/04b564</span><span class="invisible"></span></a></p>
Tarnkappe.info<p>📬 Zugangsdaten auf Telegram geleakt: 361 Millionen Accounts betroffen<br><a href="https://social.tchncs.de/tags/Datenschutz" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Datenschutz</span></a> <a href="https://social.tchncs.de/tags/ITSicherheit" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>ITSicherheit</span></a> <a href="https://social.tchncs.de/tags/Datenleck" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Datenleck</span></a> <a href="https://social.tchncs.de/tags/Datenskandal" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Datenskandal</span></a> <a href="https://social.tchncs.de/tags/haveibeenpwned" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>haveibeenpwned</span></a> <a href="https://social.tchncs.de/tags/LoginDaten" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>LoginDaten</span></a> <a href="https://social.tchncs.de/tags/Telegram" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Telegram</span></a> <a href="https://social.tchncs.de/tags/TroyHunt" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>TroyHunt</span></a> <a href="https://sc.tarnkappe.info/3081fb" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://</span><span class="">sc.tarnkappe.info/3081fb</span><span class="invisible"></span></a></p>
RedPacket Security<p>Avito - 2,721,835 breached accounts - <a href="https://www.redpacketsecurity.com/avito-2-721-835-breached-accounts/" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://www.</span><span class="ellipsis">redpacketsecurity.com/avito-2-</span><span class="invisible">721-835-breached-accounts/</span></a></p><p><a href="https://mastodon.social/tags/databreach" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>databreach</span></a> <a href="https://mastodon.social/tags/HaveIBeenPwnedLatestBreaches" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>HaveIBeenPwnedLatestBreaches</span></a> <a href="https://mastodon.social/tags/HIBP" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>HIBP</span></a> <a href="https://mastodon.social/tags/OSINT" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>OSINT</span></a> <a href="https://mastodon.social/tags/Security" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Security</span></a> <a href="https://mastodon.social/tags/threatintel" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>threatintel</span></a> <a href="https://mastodon.social/tags/TroyHunt" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>TroyHunt</span></a></p>
ExploreLive feeds
Mastodon is the best way to keep up with what's happening.
Follow anyone across the fediverse and see it all in chronological order. No algorithms, ads, or clickbait in sight.
Create accountLoginDrag & drop to upload