sueden.social

The New Oil<a href="https://mastodon.thenewoil.org/tags/Cloudflare" class="mention hashtag" rel="nofollow noopener" target="_blank">#Cloudflare</a> blocks largest recorded <a href="https://mastodon.thenewoil.org/tags/DDoS" class="mention hashtag" rel="nofollow noopener" target="_blank">#DDoS</a> attack peaking at 11.5 Tbps<a href="https://www.bleepingcomputer.com/news/security/cloudflare-blocks-record-breaking-115-tbps-ddos-attack/" rel="nofollow noopener" translate="no" target="_blank">https://www.bleepingcomputer.com/news/security/cloudflare-blocks-record-breaking-115-tbps-ddos-attack/</a><a href="https://mastodon.thenewoil.org/tags/cyberattack" class="mention hashtag" rel="nofollow noopener" target="_blank">#cyberattack</a> <a href="https://mastodon.thenewoil.org/tags/cybercrime" class="mention hashtag" rel="nofollow noopener" target="_blank">#cybercrime</a> <a href="https://mastodon.thenewoil.org/tags/cybersecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#cybersecurity</a>

sjvnCloudflare stops new world's largest <a href="https://mastodon.social/tags/DDoS" class="mention hashtag" rel="nofollow noopener" target="_blank">#DDoS</a> attack over Labor Day weekend <a href="https://www.zdnet.com/article/cloudflare-stops-new-worlds-largest-ddos-attack-over-labor-day-weekend/" rel="nofollow noopener" translate="no" target="_blank">https://www.zdnet.com/article/cloudflare-stops-new-worlds-largest-ddos-attack-over-labor-day-weekend/</a> by <a href="https://mastodon.social/@sjvn" class="u-url mention" rel="nofollow noopener" target="_blank">@sjvn</a> It was a whopper of an attack that topped out at 7.3 terabits per second.

Brian Greenberg :verified:It's easy to get fixated on the headline number, and 11.5 Tbps is certainly impressive. But the real story here isn't just the new DDoS record, it's that these events are becoming routine background noise. The fact that Cloudflare's systems can autonomously mitigate an attack of this scale without human intervention says a lot about where the defense game is heading. This isn't about one big attack, it is about the commoditization of hyper-scale attacks and the absolute necessity of automated, intelligent defense.TL;DR 📈 Cloudflare mitigated a new record, a massive 11.5 Tbps DDoS attack. 💥 The attack was a short, intense UDP flood from multiple sources. 🛡️ Critically, the threat was handled entirely by automated defense systems. ⚙️ This signals the "new normal" where automated defenses are the only viable strategy against such attacks.<a href="https://thehackernews.com/2025/09/cloudflare-blocks-record-breaking-115.html" rel="nofollow noopener" translate="no" target="_blank">https://thehackernews.com/2025/09/cloudflare-blocks-record-breaking-115.html</a> <a href="https://infosec.exchange/tags/DDoS" class="mention hashtag" rel="nofollow noopener" target="_blank">#DDoS</a> <a href="https://infosec.exchange/tags/CyberSecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#CyberSecurity</a> <a href="https://infosec.exchange/tags/Cloudflare" class="mention hashtag" rel="nofollow noopener" target="_blank">#Cloudflare</a> <a href="https://infosec.exchange/tags/NetworkSecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#NetworkSecurity</a> <a href="https://infosec.exchange/tags/security" class="mention hashtag" rel="nofollow noopener" target="_blank">#security</a> <a href="https://infosec.exchange/tags/privacy" class="mention hashtag" rel="nofollow noopener" target="_blank">#privacy</a> <a href="https://infosec.exchange/tags/cloud" class="mention hashtag" rel="nofollow noopener" target="_blank">#cloud</a> <a href="https://infosec.exchange/tags/infosec" class="mention hashtag" rel="nofollow noopener" target="_blank">#infosec</a>

WinFuture.deNeuer <a href="https://mastodon.social/tags/Weltrekord" class="mention hashtag" rel="nofollow noopener" target="_blank">#Weltrekord</a>: <a href="https://mastodon.social/tags/Cloudflare" class="mention hashtag" rel="nofollow noopener" target="_blank">#Cloudflare</a> hat die größte jemals aufgezeichnete <a href="https://mastodon.social/tags/DDoS" class="mention hashtag" rel="nofollow noopener" target="_blank">#DDoS</a>-<a href="https://mastodon.social/tags/Attacke" class="mention hashtag" rel="nofollow noopener" target="_blank">#Attacke</a> vereitelt. Der Angriff erfolgte mit bis zu 11,5 Terabit pro Sekunden und stellt den bisherigen Rekord in den Schatten. <a href="https://winfuture.de/news,153380.html?utm_source=Mastodon&utm_medium=ManualStatus&utm_campaign=SocialMedia" rel="nofollow noopener" translate="no" target="_blank">https://winfuture.de/news,153380.html?utm_source=Mastodon&utm_medium=ManualStatus&utm_campaign=SocialMedia</a>

Geriatric Gardener“Mandelson kept working with Epstein 5 years after paedophilia conviction”by Skwawkbox <a href="https://mastodon.social/@skwawkbox" class="u-url mention" rel="nofollow noopener" target="_blank">@skwawkbox</a> <a href="https://mastodon.cloud/@UKLabour" class="u-url mention" rel="nofollow noopener" target="_blank">@UKLabour</a> “Leaked emails show Blair’s right-hand man kept asking convicted child rapist and trafficker for help and advice for years”<a href="https://skwawkbox.org/2025/09/02/mandelson-kept-working-with-epstein-5-years-after-paedophilia-conviction/" rel="nofollow noopener" translate="no" target="_blank">https://skwawkbox.org/2025/09/02/mandelson-kept-working-with-epstein-5-years-after-paedophilia-conviction/</a><a href="https://mstdn.social/tags/Press" class="mention hashtag" rel="nofollow noopener" target="_blank">#Press</a> <a href="https://mstdn.social/tags/UK" class="mention hashtag" rel="nofollow noopener" target="_blank">#UK</a> <a href="https://mstdn.social/tags/Labour" class="mention hashtag" rel="nofollow noopener" target="_blank">#Labour</a> <a href="https://mstdn.social/tags/Mandelson" class="mention hashtag" rel="nofollow noopener" target="_blank">#Mandelson</a> <a href="https://mstdn.social/tags/Epstein" class="mention hashtag" rel="nofollow noopener" target="_blank">#Epstein</a> <a href="https://mstdn.social/tags/Paedophile" class="mention hashtag" rel="nofollow noopener" target="_blank">#Paedophile</a> <a href="https://mstdn.social/tags/Conviction" class="mention hashtag" rel="nofollow noopener" target="_blank">#Conviction</a> <a href="https://mstdn.social/tags/Leak" class="mention hashtag" rel="nofollow noopener" target="_blank">#Leak</a> <a href="https://mstdn.social/tags/Blair" class="mention hashtag" rel="nofollow noopener" target="_blank">#Blair</a> <a href="https://mstdn.social/tags/Starmer" class="mention hashtag" rel="nofollow noopener" target="_blank">#Starmer</a> <a href="https://mstdn.social/tags/Israel" class="mention hashtag" rel="nofollow noopener" target="_blank">#Israel</a> <a href="https://mstdn.social/tags/Intelligence" class="mention hashtag" rel="nofollow noopener" target="_blank">#Intelligence</a> <a href="https://mstdn.social/tags/Barak" class="mention hashtag" rel="nofollow noopener" target="_blank">#Barak</a> <a href="https://mstdn.social/tags/DDoS" class="mention hashtag" rel="nofollow noopener" target="_blank">#DDoS</a>

Teddy / Domingo (🇨🇵/🇬🇧)<a href="https://framapiaf.org/tags/Cloudflare" class="mention hashtag" rel="nofollow noopener" target="_blank">#Cloudflare</a> stops new world's largest <a href="https://framapiaf.org/tags/DDoS" class="mention hashtag" rel="nofollow noopener" target="_blank">#DDoS</a> attack over Labor Day weekend. This record-smashing DDoS attack was almost 60% larger than the previous largest attack. <a href="https://www.zdnet.com/article/cloudflare-stops-new-worlds-largest-ddos-attack-over-labor-day-weekend/" rel="nofollow noopener" translate="no" target="_blank">https://www.zdnet.com/article/cloudflare-stops-new-worlds-largest-ddos-attack-over-labor-day-weekend/</a>

Marcel SIneM(S)US<a href="https://social.tchncs.de/tags/DDoS" class="mention hashtag" rel="nofollow noopener" target="_blank">#DDoS</a>-Angriffe auf <a href="https://social.tchncs.de/tags/ArchLinux" class="mention hashtag" rel="nofollow noopener" target="_blank">#ArchLinux</a>: Situation vermutlich geklärt | heise online <a href="https://www.heise.de/news/DDoS-Angriffe-auf-Arch-Linux-Situation-vermutlich-geklaert-10627620.html" rel="nofollow noopener" translate="no" target="_blank">https://www.heise.de/news/DDoS-Angriffe-auf-Arch-Linux-Situation-vermutlich-geklaert-10627620.html</a> <a href="https://social.tchncs.de/tags/Arch" class="mention hashtag" rel="nofollow noopener" target="_blank">#Arch</a> :archlinux: <a href="https://social.tchncs.de/tags/OpenSource" class="mention hashtag" rel="nofollow noopener" target="_blank">#OpenSource</a> <a href="https://social.tchncs.de/tags/Linux" class="mention hashtag" rel="nofollow noopener" target="_blank">#Linux</a> :tux:

Jerry on MastodonWow!Cloudflare blocks the largest DDOS attack, 11.5 tbs. Cloudflare confirmed its systems “autonomously detected and mitigated” the threat.<a href="https://cybersecuritynews.com/record-breaking-ddos-attack-11-5-tbps/" rel="nofollow noopener" translate="no" target="_blank">https://cybersecuritynews.com/record-breaking-ddos-attack-11-5-tbps/</a><a href="https://hear-me.social/tags/CyberSecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#CyberSecurity</a> <a href="https://hear-me.social/tags/DDOS" class="mention hashtag" rel="nofollow noopener" target="_blank">#DDOS</a> <a href="https://hear-me.social/tags/Cloudflare" class="mention hashtag" rel="nofollow noopener" target="_blank">#Cloudflare</a>

ManiabelChrisVon Rekord zu Rekord binnen zwei Monaten: Cloudflare verkündete bereits gestern auf einer SocialMediaPlattform, deren Namen hier nicht genannt sein soll, dass es unlängst den größten jemals registrierten Distributed-Denial-of-Service-Angriff (DDoS) ausgehend von GoogleClouds mit einem Spitzenwert von 11,5 Terabit pro Sekunde (Tbps) blockierte, der ca. 35 Sekunden dauerte. <a href="https://mastodon.de/tags/cloudflare" class="mention hashtag" rel="nofollow noopener" target="_blank">#cloudflare</a> <a href="https://mastodon.de/tags/DDoS" class="mention hashtag" rel="nofollow noopener" target="_blank">#DDoS</a> <a href="https://mastodon.de/tags/infosec" class="mention hashtag" rel="nofollow noopener" target="_blank">#infosec</a>

securityaffairs<a href="https://infosec.exchange/tags/Cloudflare" class="mention hashtag" rel="nofollow noopener" target="_blank">#Cloudflare</a> blocked a record 11.5 Tbps <a href="https://infosec.exchange/tags/DDoS" class="mention hashtag" rel="nofollow noopener" target="_blank">#DDoS</a> attack <a href="https://securityaffairs.com/181829/cyber-crime/cloudflare-blocked-a-record-11-5-tbps-ddos-attack.html" rel="nofollow noopener" translate="no" target="_blank">https://securityaffairs.com/181829/cyber-crime/cloudflare-blocked-a-record-11-5-tbps-ddos-attack.html</a> <a href="https://infosec.exchange/tags/securityaffairs" class="mention hashtag" rel="nofollow noopener" target="_blank">#securityaffairs</a> <a href="https://infosec.exchange/tags/hacking" class="mention hashtag" rel="nofollow noopener" target="_blank">#hacking</a>

TugaTech 🖥️Cloudflare trava o maior ataque DDoS de sempre com um pico de 11,5 terabits por segundo 🔗 <a href="https://tugatech.com.pt/t71286-cloudflare-trava-o-maior-ataque-ddos-de-sempre-com-um-pico-de-115-terabits-por-segundo" rel="nofollow noopener" translate="no" target="_blank">https://tugatech.com.pt/t71286-cloudflare-trava-o-maior-ataque-ddos-de-sempre-com-um-pico-de-115-terabits-por-segundo</a><a href="https://masto.pt/tags/ataque" class="mention hashtag" rel="nofollow noopener" target="_blank">#ataque</a> <a href="https://masto.pt/tags/ddos" class="mention hashtag" rel="nofollow noopener" target="_blank">#ddos</a> <a href="https://masto.pt/tags/google" class="mention hashtag" rel="nofollow noopener" target="_blank">#google</a> <a href="https://masto.pt/tags/internet" class="mention hashtag" rel="nofollow noopener" target="_blank">#internet</a> <a href="https://masto.pt/tags/microsoft" class="mention hashtag" rel="nofollow noopener" target="_blank">#microsoft</a> <a href="https://masto.pt/tags/seguran%C3%A7a" class="mention hashtag" rel="nofollow noopener" target="_blank">#segurança</a> <a href="https://masto.pt/tags/tecnologia" class="mention hashtag" rel="nofollow noopener" target="_blank">#tecnologia</a>

Edwin G. :mapleleafroundel:Cloudflare announced having blocked a 11.5Tbps distributed denial of service attack.That’s roughly 1.44TB/s. Or 28 50GB Blu-Ray movies per second!<a href="https://www.bleepingcomputer.com/news/security/cloudflare-blocks-record-breaking-115-tbps-ddos-attack/" rel="nofollow noopener" translate="no" target="_blank">https://www.bleepingcomputer.com/news/security/cloudflare-blocks-record-breaking-115-tbps-ddos-attack/</a> - - - Cloudflare ont annoncé avoir bloqué une attaque de déni de service distribuée de 11,5Tb/s.C’est environ 1,44To/s. Ou 165,22 films DVD double-couche par seconde.// Article en anglais //<a href="https://mstdn.moimeme.ca/tags/IT" class="mention hashtag" rel="nofollow noopener" target="_blank">#IT</a> <a href="https://mstdn.moimeme.ca/tags/TI" class="mention hashtag" rel="nofollow noopener" target="_blank">#TI</a> <a href="https://mstdn.moimeme.ca/tags/informationTechnologies" class="mention hashtag" rel="nofollow noopener" target="_blank">#informationTechnologies</a> <a href="https://mstdn.moimeme.ca/tags/Technologies" class="mention hashtag" rel="nofollow noopener" target="_blank">#Technologies</a> <a href="https://mstdn.moimeme.ca/tags/DDoS" class="mention hashtag" rel="nofollow noopener" target="_blank">#DDoS</a>

areyou1or0RapperBot: From Infection to DDoS in a Split Second <a href="https://infosec.exchange/tags/DDoS" class="mention hashtag" rel="nofollow noopener" target="_blank">#DDoS</a> <a href="https://infosec.exchange/tags/hacking" class="mention hashtag" rel="nofollow noopener" target="_blank">#hacking</a> <a href="https://www.bitsight.com/blog/rapperbot-infection-ddos-split-second" rel="nofollow noopener" translate="no" target="_blank">https://www.bitsight.com/blog/rapperbot-infection-ddos-split-second</a>

nemo™ 🇺🇦🚨 Arch Linux faced intense DDoS attacks impacting their main site, AUR, and forums. The volunteer team, working with their hosting provider, is mitigating the situation and evaluating anti-DDoS options while thanking users for their patience. Mirrors remain available for packages & ISOs. More info: <a href="https://www.heise.de/en/news/DDoS-attacks-on-Arch-Linux-situation-probably-clarified-10627766.html" rel="nofollow noopener" translate="no" target="_blank">https://www.heise.de/en/news/DDoS-attacks-on-Arch-Linux-situation-probably-clarified-10627766.html</a> <a href="https://mas.to/tags/ArchLinux" class="mention hashtag" rel="nofollow noopener" target="_blank">#ArchLinux</a> <a href="https://mas.to/tags/DDoS" class="mention hashtag" rel="nofollow noopener" target="_blank">#DDoS</a> <a href="https://mas.to/tags/Linux" class="mention hashtag" rel="nofollow noopener" target="_blank">#Linux</a> <a href="https://mas.to/tags/Cybersecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#Cybersecurity</a> 🛡️ <a href="https://mas.to/tags/newz" class="mention hashtag" rel="nofollow noopener" target="_blank">#newz</a>

nemo™ 🇺🇦🚨 Die DDoS-Angriffe auf Arch Linux sind offenbar überwunden! Die Hauptseite, das AUR und Foren wurden in den letzten Tagen stark attackiert, doch dank gemeinsamer Gegenmaßnahmen mit Hosting-Providern ist die Situation nun unter Kontrolle. Geduld & Dank an die Community! 💪🌐 <a href="https://mas.to/tags/ArchLinux" class="mention hashtag" rel="nofollow noopener" target="_blank">#ArchLinux</a> <a href="https://mas.to/tags/DDoS" class="mention hashtag" rel="nofollow noopener" target="_blank">#DDoS</a> <a href="https://mas.to/tags/Cybersecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#Cybersecurity</a> <a href="https://www.heise.de/news/DDoS-Angriffe-auf-Arch-Linux-Situation-vermutlich-geklaert-10627620.html" rel="nofollow noopener" translate="no" target="_blank">https://www.heise.de/news/DDoS-Angriffe-auf-Arch-Linux-Situation-vermutlich-geklaert-10627620.html</a> <a href="https://mas.to/tags/newz" class="mention hashtag" rel="nofollow noopener" target="_blank">#newz</a>

SOC GoulashAlright team, it's been a pretty packed 24 hours in the cyber world! We've got some critical zero-days under active exploitation, a flurry of nation-state activity, new ransomware strains, and a deep dive into how attackers are weaponising browsers. Let's get into it:Actively Exploited Vulnerabilities & Zero-Days 🛡️- WhatsApp has patched a zero-day, CVE-2025-55177, actively exploited in sophisticated, targeted attacks, potentially chained with Apple's CVE-2025-43300, likely by commercial surveillanceware vendors. - FreePBX issued an emergency patch for a critical RCE flaw (CVSS 10, CVE-2025-57819) actively exploited since August 21st, allowing database manipulation and remote code execution. Users are urged to upgrade and check for suspicious 'ampuser' accounts. - Docker Desktop on Windows and Mac has a critical vulnerability (CVE-2025-9074) allowing attackers to break container isolation and potentially take over the host system by exploiting an unauthenticated Docker Engine API.🕵🏼 The Register | <a href="https://go.theregister.com/feed/www.theregister.com/2025/09/01/infosec_in_brief/" rel="nofollow noopener" translate="no" target="_blank">https://go.theregister.com/feed/www.theregister.com/2025/09/01/infosec_in_brief/</a> 📰 The Hacker News | <a href="https://thehackernews.com/2025/09/weekly-recap-whatsapp-0-day-docker-bug.html" rel="nofollow noopener" translate="no" target="_blank">https://thehackernews.com/2025/09/weekly-recap-whatsapp-0-day-docker-bug.html</a>Recent Cyber Attacks & Breaches 🚨- A widespread supply chain attack via Salesloft Drift, an AI chat agent, compromised Salesforce instances of numerous organisations, including Zscaler, leading to the theft of customer information and sensitive credentials like AWS access keys and Snowflake tokens. - Nissan's design subsidiary, Creative Box Inc., was hit by the Qilin ransomware group, confirming data leakage, while the city of Baltimore lost $1.5 million in a procurement scam where a fraudster changed vendor payment details. - New ransomware strains like Cephalus, Underground, NightSpire, and Sinobi (a Lynx rebrand) are active, with Sinobi exploiting compromised SonicWall SSL VPN credentials for initial access and lateral movement.🕵🏼 The Register | <a href="https://go.theregister.com/feed/www.theregister.com/2025/09/01/infosec_in_brief/" rel="nofollow noopener" translate="no" target="_blank">https://go.theregister.com/feed/www.theregister.com/2025/09/01/infosec_in_brief/</a> 🤖 Bleeping Computer | <a href="https://www.bleepingcomputer.com/news/security/zscaler-data-breach-exposes-customer-info-after-salesloft-drift-compromise/" rel="nofollow noopener" translate="no" target="_blank">https://www.bleepingcomputer.com/news/security/zscaler-data-breach-exposes-customer-info-after-salesloft-drift-compromise/</a> 📰 The Hacker News | <a href="https://thehackernews.com/2025/09/weekly-recap-whatsapp-0-day-docker-bug.html" rel="nofollow noopener" translate="no" target="_blank">https://thehackernews.com/2025/09/weekly-recap-whatsapp-0-day-docker-bug.html</a>Nation-State Threat Actor Activity 🌍- Amazon disrupted a watering hole campaign by Russian state-sponsored group Midnight Blizzard (APT29), which compromised legitimate websites to redirect targets to malicious Microsoft device code authentication flows, aiming to steal credentials. - North Korea-linked ScarCruft (APT37) is using RokRAT malware in "Operation HanKook Phantom," targeting South Korean academics and former government officials via spear-phishing with LNK files to steal sensitive information and conduct espionage. - The Spanish government cancelled a €10 million contract with Telefónica to use Huawei equipment in its national academic and research network (RedIRIS), citing "reasons of digital strategy and strategic autonomy" amidst ongoing concerns from allies about Chinese vendor risks.🤖 Bleeping Computer | <a href="https://www.bleepingcomputer.com/news/security/amazon-disrupts-russian-apt29-hackers-targeting-microsoft-365/" rel="nofollow noopener" translate="no" target="_blank">https://www.bleepingcomputer.com/news/security/amazon-disrupts-russian-apt29-hackers-targeting-microsoft-365/</a> 📰 The Hacker News | <a href="https://thehackernews.com/2025/09/scarcruft-uses-rokrat-malware-in.html" rel="nofollow noopener" translate="no" target="_blank">https://thehackernews.com/2025/09/scarcruft-uses-rokrat-malware-in.html</a> 🗞️ The Record | <a href="https://therecord.media/spain-cancels-10-million-euro-huawei-contract" rel="nofollow noopener" translate="no" target="_blank">https://therecord.media/spain-cancels-10-million-euro-huawei-contract</a>New Malware & Attack Techniques 🛠️- Android dropper apps are shifting from delivering banking Trojans to simpler SMS stealers and spyware, often masquerading as government or banking apps, to bypass Google Play Protect's new security measures. - Threat actors are using new methods like MixShell malware delivered via website contact forms, physical side-channel attacks (SleepWalk) exploiting CPU power consumption, and financially motivated ShadowCaptcha campaigns leveraging fake CAPTCHA pages. - Other notable techniques include malvertising campaigns pushing the Brokewell banking trojan, fake recipe/guide sites dropping malware, proxyware distribution via fake YouTube download sites, and social media accounts laundering Chinese state media news.📰 The Hacker News | <a href="https://thehackernews.com/2025/09/android-droppers-now-deliver-sms.html" rel="nofollow noopener" translate="no" target="_blank">https://thehackernews.com/2025/09/android-droppers-now-deliver-sms.html</a> 📰 The Hacker News | <a href="https://thehackernews.com/2025/09/weekly-recap-whatsapp-0-day-docker-bug.html" rel="nofollow noopener" translate="no" target="_blank">https://thehackernews.com/2025/09/weekly-recap-whatsapp-0-day-docker-bug.html</a>Threat Landscape Commentary 📈- Distributed Denial of Service (DDoS) remains a "profoundly unsexy" but rampant cybercrime, with Netscout reporting 8 million attacks globally in the first half of 2025, peaking at over 3 Tbps. - DDoS-as-a-Service makes these sophisticated attacks accessible to anyone, targeting critical infrastructure sectors and even niche businesses like classical music websites, often for unclear motives. - An infrastructural defence is needed, moving beyond filtering to automatically detect and take compromised botnet nodes offline, treating them as "broken" devices that require fixing to permanently disrupt DDoS operations.🕵🏼 The Register | <a href="https://go.theregister.com/feed/www.theregister.com/2025/09/01/ddos_opinion/" rel="nofollow noopener" translate="no" target="_blank">https://go.theregister.com/feed/www.theregister.com/2025/09/01/ddos_opinion/</a>Regulatory & Policy Updates ⚖️- Microsoft will begin requiring multi-factor authentication (MFA) for all non-read-only access to Azure systems from October 1st, with extensions available until July 1st next year for complex environments. - Microsoft is implementing email throttling from October 15th, limiting external recipients to 100 per organisation per 24-hour window, to combat spam originating from newly created '.onmicrosoft.com' tenants. - OpenSSH will start showing warnings for connections to SSH servers lacking post-quantum cryptography protections from version 10.1, urging server updates to support sntrup761x25519-sha512 or mlkem768x25519-sha256.🕵🏼 The Register | <a href="https://go.theregister.com/feed/www.theregister.com/2025/09/01/infosec_in_brief/" rel="nofollow noopener" translate="no" target="_blank">https://go.theregister.com/feed/www.theregister.com/2025/09/01/infosec_in_brief/</a> 📰 The Hacker News | <a href="https://thehackernews.com/2025/09/weekly-recap-whatsapp-0-day-docker-bug.html" rel="nofollow noopener" translate="no" target="_blank">https://thehackernews.com/2025/09/weekly-recap-whatsapp-0-day-docker-bug.html</a>AI Security & Prompt Injection 🧠- Researchers discovered "LegalPwn," a novel prompt injection attack that tricks Large Language Models (LLMs) into ignoring guardrails by embedding adversarial instructions within legal documents, making them appear legitimate. - This technique successfully bypassed AI-driven security analysis in models like OpenAI's GPT-4o, Google's Gemini 2.5, and xAI's Grok, even leading to recommendations for executing reverse shells on user systems. - AI systems are also vulnerable to prompt injection via image scaling attacks, where malicious instructions are hidden in high-resolution images, becoming visible and executable when the AI agent downscales them for processing.🕵🏼 The Register | <a href="https://go.theregister.com/feed/www.theregister.com/2025/09/01/legalpwn_ai_jailbreak/" rel="nofollow noopener" translate="no" target="_blank">https://go.theregister.com/feed/www.theregister.com/2025/09/01/legalpwn_ai_jailbreak/</a> 📰 The Hacker News | <a href="https://thehackernews.com/2025/09/weekly-recap-whatsapp-0-day-docker-bug.html" rel="nofollow noopener" translate="no" target="_blank">https://thehackernews.com/2025/09/weekly-recap-whatsapp-0-day-docker-bug.html</a>Useful Tools & Resources 💡- PcapXray is an open-source tool designed to speed up packet capture investigations by visualising PCAP files into clear network diagrams, highlighting hosts, traffic flows, Tor usage, and potential malicious activity. - Kopia is an open-source backup and restore tool that creates encrypted snapshots of selected files and directories to various destinations, offering deduplication, compression, and end-to-end encryption for efficient and secure backups. - The "Weekly Recap" also highlights tools and strategies for securing Model Context Protocol (MCP) servers used by AI tools like GitHub Copilot, recommending auditing, stress-testing, policy enforcement, and Zero-Trust access.📰 The Hacker News | <a href="https://thehackernews.com/2025/09/weekly-recap-whatsapp-0-day-docker-bug.html" rel="nofollow noopener" translate="no" target="_blank">https://thehackernews.com/2025/09/weekly-recap-whatsapp-0-day-docker-bug.html</a>Sponsored Content & Insights 🤝- "When Browsers Become the Attack Surface: Rethinking Security for Scattered Spider" highlights how over 80% of security incidents now originate from web applications, detailing Scattered Spider's browser-targeting techniques and advocating for multi-layered browser security. - Other sponsored insights from The Hacker News cover "Code-to-Cloud Security" for AppSec leaders, practical steps to secure AI agents from cyberattacks, methods for hunting down "Shadow AI," and strategies for locking down Model Context Protocol (MCP) servers. - These articles collectively emphasise the evolving attack surface, from browsers to AI agents and cloud-native applications, urging CISOs to adapt defence strategies with runtime protection, contextual policies, and integrated security stacks.📰 The Hacker News | <a href="https://thehackernews.com/2025/09/when-browsers-become-attack-surface.html" rel="nofollow noopener" translate="no" target="_blank">https://thehackernews.com/2025/09/when-browsers-become-attack-surface.html</a> 📰 The Hacker News | <a href="https://thehackernews.com/2025/09/weekly-recap-whatsapp-0-day-docker-bug.html" rel="nofollow noopener" translate="no" target="_blank">https://thehackernews.com/2025/09/weekly-recap-whatsapp-0-day-docker-bug.html</a><a href="https://infosec.exchange/tags/CyberSecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#CyberSecurity</a> <a href="https://infosec.exchange/tags/ThreatIntelligence" class="mention hashtag" rel="nofollow noopener" target="_blank">#ThreatIntelligence</a> <a href="https://infosec.exchange/tags/Ransomware" class="mention hashtag" rel="nofollow noopener" target="_blank">#Ransomware</a> <a href="https://infosec.exchange/tags/NationState" class="mention hashtag" rel="nofollow noopener" target="_blank">#NationState</a> <a href="https://infosec.exchange/tags/APT" class="mention hashtag" rel="nofollow noopener" target="_blank">#APT</a> <a href="https://infosec.exchange/tags/ZeroDay" class="mention hashtag" rel="nofollow noopener" target="_blank">#ZeroDay</a> <a href="https://infosec.exchange/tags/Vulnerability" class="mention hashtag" rel="nofollow noopener" target="_blank">#Vulnerability</a> <a href="https://infosec.exchange/tags/DDoS" class="mention hashtag" rel="nofollow noopener" target="_blank">#DDoS</a> <a href="https://infosec.exchange/tags/AI" class="mention hashtag" rel="nofollow noopener" target="_blank">#AI</a> <a href="https://infosec.exchange/tags/PromptInjection" class="mention hashtag" rel="nofollow noopener" target="_blank">#PromptInjection</a> <a href="https://infosec.exchange/tags/SupplyChain" class="mention hashtag" rel="nofollow noopener" target="_blank">#SupplyChain</a> <a href="https://infosec.exchange/tags/Malware" class="mention hashtag" rel="nofollow noopener" target="_blank">#Malware</a> <a href="https://infosec.exchange/tags/IncidentResponse" class="mention hashtag" rel="nofollow noopener" target="_blank">#IncidentResponse</a> <a href="https://infosec.exchange/tags/InfoSec" class="mention hashtag" rel="nofollow noopener" target="_blank">#InfoSec</a> <a href="https://infosec.exchange/tags/CyberAttack" class="mention hashtag" rel="nofollow noopener" target="_blank">#CyberAttack</a> <a href="https://infosec.exchange/tags/BrowserSecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#BrowserSecurity</a> <a href="https://infosec.exchange/tags/MFA" class="mention hashtag" rel="nofollow noopener" target="_blank">#MFA</a> <a href="https://infosec.exchange/tags/Regulatory" class="mention hashtag" rel="nofollow noopener" target="_blank">#Regulatory</a>

Dark Web Informer :verified_paw:🚨🇱🇹 Z-ALLIANCE Targeted the Website of Lithuanian Defence and Security Industry Association <a href="https://infosec.exchange/tags/DDoS" class="mention hashtag" rel="nofollow noopener" target="_blank">#DDoS</a>

Linux MagazineThe Arch User Repository continues to be under a DDoS attack that has been going on for two weeks <a href="https://www.linux-magazine.com/Online/News/AUR-Repository-Still-Under-DDoS-Attack?utm_source=mlm" rel="nofollow noopener" translate="no" target="_blank">https://www.linux-magazine.com/Online/News/AUR-Repository-Still-Under-DDoS-Attack?utm_source=mlm</a> <a href="https://fosstodon.org/tags/AUR" class="mention hashtag" rel="nofollow noopener" target="_blank">#AUR</a> <a href="https://fosstodon.org/tags/ArchLinux" class="mention hashtag" rel="nofollow noopener" target="_blank">#ArchLinux</a> <a href="https://fosstodon.org/tags/DDoS" class="mention hashtag" rel="nofollow noopener" target="_blank">#DDoS</a> <a href="https://fosstodon.org/tags/security" class="mention hashtag" rel="nofollow noopener" target="_blank">#security</a> <a href="https://fosstodon.org/tags/outage" class="mention hashtag" rel="nofollow noopener" target="_blank">#outage</a> <a href="https://fosstodon.org/tags/Linux" class="mention hashtag" rel="nofollow noopener" target="_blank">#Linux</a> <a href="https://fosstodon.org/tags/repository" class="mention hashtag" rel="nofollow noopener" target="_blank">#repository</a>

Kevin Karhan :verified:<a href="https://snug.moe/@lumi" class="u-url mention" rel="nofollow noopener" target="_blank">@lumi</a> <a href="https://shrimp.starlightnet.work/@hazel" class="u-url mention" rel="nofollow noopener" target="_blank">@hazel</a> yes, it's easier to avoid:<ul><li>Just use <a href="https://infosec.space/tags/IRC" class="mention hashtag" rel="nofollow noopener" target="_blank">#IRC</a> & <a href="https://infosec.space/tags/Mumble" class="mention hashtag" rel="nofollow noopener" target="_blank">#Mumble</a> instead!</li><li>As for <a href="https://infosec.space/tags/documentation" class="mention hashtag" rel="nofollow noopener" target="_blank">#documentation</a>, <a href="https://infosec.space/tags/MkDocs" class="mention hashtag" rel="nofollow noopener" target="_blank">#MkDocs</a>-Material and for project managment, <a href="https://infosec.space/tags/GitLab" class="mention hashtag" rel="nofollow noopener" target="_blank">#GitLab</a> works fine.</li></ul>I merely use <a href="https://infosec.space/tags/GitHub" class="mention hashtag" rel="nofollow noopener" target="_blank">#GitHub</a> because they ain't got impacted by <a href="https://infosec.space/tags/DDoS" class="mention hashtag" rel="nofollow noopener" target="_blank">#DDoS</a> and their moderation team actually cares, and I don't expect other platforms to be able and willing to do the same.<ul><li>If there is a convenient way to only use it to <a href="https://infosec.space/tags/host" class="mention hashtag" rel="nofollow noopener" target="_blank">#host</a> a copy of a repo & files as a "slave" (fork) repo (similar to <a href="https://infosec.space/tags/Linux" class="mention hashtag" rel="nofollow noopener" target="_blank">#Linux</a>) I'll gladly consider that.</li><li>It's just not the highest priority rn as I'm preoccupied with more pressing issues.</li></ul>

Carlos SolísTo the people currently <a href="https://hub.azkware.net/search?tag=DDoS" class="mention hashtag" rel="nofollow noopener" target="_blank">#DDoS</a> -ing <a href="https://hub.azkware.net/search?tag=ArchLinux" class="mention hashtag" rel="nofollow noopener" target="_blank">#ArchLinux</a> : what do you gain by doing that, seriously? Who bothers keeping a distro's repos down so insistently if there's no motivation behind it? Is this just a distro war gone sour? <a href="https://status.archlinux.org/" rel="nofollow noopener" target="_blank">status.archlinux.org/</a>

Frühere Suchanfragen

Suchoptionen

Verwaltet von:

Serverstatistik:

#ddos