bless

joined 1 year ago
sorted by: new top controversial old
NM Highlands University Confirms Ransomware Incident in c/abq@lemmy.world
[–] bless@lemmy.world 2 points 4 months ago* (last edited 4 months ago)

Yes they were hit back in 2019 as well

4
NM Highlands University Confirms Ransomware Incident (lemmy.world)
 

https://www.nmhu.edu/eoc/

3
NM Highlands University Confirms Ransomware Incident (lemmy.world)
 

https://www.nmhu.edu/eoc/

6
Ransomware attack strikes District Attorney offices across New Mexico (www.yahoo.com)
*Permanently Deleted* in c/abq@lemmy.world
Looking for help setting up an alternative to DuckDNS in c/selfhosted@lemmy.world
[–] bless@lemmy.world 6 points 7 months ago (2 children)

Who's your DNS provider? I use cloudflare and powershell script and hits their API. Works well

Best way to set up cloudflare dynamic DNS in late 2023? in c/selfhosted@lemmy.world
[–] bless@lemmy.world 3 points 8 months ago

Same but powershell. Works like a charm runs every 5 minutes

Access home server from anywhere in c/selfhosted@lemmy.world
[–] bless@lemmy.world 1 points 8 months ago* (last edited 8 months ago) (1 children)

You can bound ufw rules to interfaces, so you can allow in only on the wg0 interface and not eth0 interface.

Glad it's working! I love wireguard!

Access home server from anywhere in c/selfhosted@lemmy.world
[–] bless@lemmy.world 2 points 8 months ago (3 children)

Hmm do a traceroute and see where it's dying. Can you ping inside IP of the tunnel on the wireguard server? What about outside?

What did you deploy in docker, firezone or basic wireguard?

Does your phone say connected and you see both incoming and outgoing packets? Is there a firewall in place on the wireguard host (ufw maybe)?

If you have nmap available you can also check port status.

Bluetooth security flaws reveals all devices launched after 2014 can be hacked in c/cybersecurity@lemmy.capebreton.social
[–] bless@lemmy.world 6 points 8 months ago

Thanks for catching that, updated

Access home server from anywhere in c/selfhosted@lemmy.world
[–] bless@lemmy.world 2 points 8 months ago (5 children)

Good thing about wireguard is it's really simple. Google should get it done, if you get stuck send me a DM. I started with basic wireguard, I now run firezone in docker as I like the frontend.

Access home server from anywhere in c/selfhosted@lemmy.world
Bluetooth security flaws reveals all devices launched after 2014 can be hacked in c/cybersecurity@sh.itjust.works
[–] bless@lemmy.world 17 points 8 months ago

It means they can impersonate the Bluetooth device connected. Input devices are particularly concerning (keyboards and mice) as well as BT IoT devices which already historically lack good security controls. A lot of vehicles have Bluetooth integrated as well these days.

2
Bluetooth security flaws reveals all devices launched after 2014 can be hacked (lemmy.world)
submitted 8 months ago* (last edited 8 months ago) by bless@lemmy.world to c/hacking@lemmy.ml
0 comments fedilink
 

Security researchers have discovered new Bluetooth security flaws that allow hackers to impersonate devices and perform man-in-the-middle attacks.

The vulnerabilities impact all devices with Bluetooth 4.2 through Bluetooth 5.4, including laptops, PCs, smartphones, tablets, and others.

Users can do nothing at the moment to fix the vulnerabilities, and the solution requires device manufacturers to make changes to the security mechanisms used by the technology.

Research paper: https://dl.acm.org/doi/pdf/10.1145/3576915.3623066

Github: https://github.com/francozappa/bluffs

CVE: https://nvd.nist.gov/vuln/detail/CVE-2023-24023

Bluetooth security flaws reveals all devices launched after 2014 can be hacked in c/cybersecurity@lemmy.capebreton.social
[–] bless@lemmy.world 10 points 8 months ago

Haha I like the spirit but that's not really a fix that's just avoidance.

70
Bluetooth security flaws reveals all devices launched after 2014 can be hacked (lemmy.world)
submitted 8 months ago* (last edited 8 months ago) by bless@lemmy.world to c/cybersecurity@sh.itjust.works
5 comments fedilink
 

Security researchers have discovered new Bluetooth security flaws that allow hackers to impersonate devices and perform man-in-the-middle attacks.

The vulnerabilities impact all devices with Bluetooth 4.2 through Bluetooth 5.4, including laptops, PCs, smartphones, tablets, and others.

Users can do nothing at the moment to fix the vulnerabilities, and the solution requires device manufacturers to make changes to the security mechanisms used by the technology.

Research paper: https://dl.acm.org/doi/pdf/10.1145/3576915.3623066

Github: https://github.com/francozappa/bluffs

CVE: https://nvd.nist.gov/vuln/detail/CVE-2023-24023

Access home server from anywhere in c/selfhosted@lemmy.world
[–] bless@lemmy.world 45 points 8 months ago (16 children)

I would go with wireguard VPN or something like cloudflare tunnels or tailscale. With wireguard you'll need to open up an external port and forward to your VPN host, but wireguard uses UDP so no one can probe it for responses. CF tunnels and tailscale you don't have to open up holes in your firewall which is nice.

You also have the option of using a proxy and opening up 443 publicly on your firewall, but unless you know what you're doing I'd leave that closed until you learn more.

104
Bluetooth security flaws reveals all devices launched after 2014 can be hacked (lemmy.world)
submitted 8 months ago* (last edited 8 months ago) by bless@lemmy.world to c/cybersecurity@lemmy.capebreton.social
16 comments fedilink
 

  • Security researchers have discovered new Bluetooth security flaws that allow hackers to impersonate devices and perform man-in-the-middle attacks.

  • The vulnerabilities impact all devices with Bluetooth 4.2 through Bluetooth 5.4, including laptops, PCs, smartphones, tablets, and others.

  • Users can do nothing at the moment to fix the vulnerabilities, and the solution requires device manufacturers to make changes to the security mechanisms used by the technology.

Research paper: https://dl.acm.org/doi/pdf/10.1145/3576915.3623066

Github: https://github.com/francozappa/bluffs

CVE: https://nvd.nist.gov/vuln/detail/CVE-2023-24023

35
Bluetooth security flaws reveals all devices launched after 2014 can be hacked (lemmy.world)
submitted 8 months ago* (last edited 8 months ago) by bless@lemmy.world to c/cybersecurity@infosec.pub
1 comments fedilink
 

  • Security researchers have discovered new Bluetooth security flaws that allow hackers to impersonate devices and perform man-in-the-middle attacks.

  • The vulnerabilities impact all devices with Bluetooth 4.2 through Bluetooth 5.4, including laptops, PCs, smartphones, tablets, and others.

  • Users can do nothing at the moment to fix the vulnerabilities, and the solution requires device manufacturers to make changes to the security mechanisms used by the technology.

Research paper: https://dl.acm.org/doi/pdf/10.1145/3576915.3623066

Github: https://github.com/francozappa/bluffs

CVE: https://nvd.nist.gov/vuln/detail/CVE-2023-24023

11
Ardent Hospital ER's Disrupted in 6 States After Ransomware Attack (www.bleepingcomputer.com)
 

Looks like it hit on Thanksgiving

51
APD releases suspect photos from shooting incident at Coronado Mall on 11/24/23 (lemmy.world)
 

Looks very young

9
The Microsoft Security Adoption Framework (SAF) is live (learn.microsoft.com)
4
The Microsoft Security Adoption Framework (SAF) is live (learn.microsoft.com)
view more: next ›