soc.octade.net is a Fediverse instance that uses the ActivityPub protocol. In other words, users at this host can communicate with people that use software like Mastodon, Pleroma, Friendica, etc. all around the world.
This server runs the snac software and there is no automatic sign-up process.
#Tuta One-Click Migration is now in closed beta!
New, by me: Felons, Fraudsters Flog Offensive Cybersecurity Startup
A cybersecurity startup dangling millions of dollars to acquire zero-day security vulnerabilities in popular software is run by a pair of far-right conspiracy theorists and convicted felons whose most recent ventures included fake intelligence companies and a now-defunct AI-based lobbying platform they operated under assumed names.
https://krebsonsecurity.com/2026/07/felons-fraudsters-flog-offensive-cybersecurity-startup/
The ‘first’ #AI-run #ransomware attack still needed a human
https://techcrunch.com/2026/07/06/the-first-ai-run-ransomware-attack-still-needed-a-human/
Daily Digest | 8 July 2026
Your daily dose of Privacy, Data Protection, AI & Cybersecurity news.
5 stories you should not miss.
Read more: https://www.nicfab.eu/daily-digest/
Meta Muse Image sparks privacy backlash by letting anyone generate AI likenesses of public Instagram users without consent. Plus Microsoft cuts OpenAI reliance and LLMs uncover real crypto bugs.
🚨 GitHub had two trust failures in the same week. Neither broke cryptography. Neither hacked AI.
They simply exploited the gap between what GitHub checks and what developers assume.
1️⃣ Git Hash Chain Malleability
A signed commit can be transformed into multiple different commit SHAs without the signing key.
✅ Same code
✅ Same signature
✅ Still shows Verified
❌ Different commit hash
2️⃣ GitLost (AI Prompt Injection)
GitHub's AI agent could be tricked into reading data from private repositories and posting it publicly through a malicious issue.
One attacks cryptographic trust.
The other attacks AI trust.
Different bugs. Same lesson:
"Verified" doesn't always mean what you think it means.
Full breakdown with technical details 👇
https://thecybersecguru.com/news/github-verified-commit-vulnerability/
#GitHub #Git #CyberSecurity #SupplyChainSecurity #DevSecOps #AppSec #AI #LLMSecurity #OpenSource #InfoSec
Digital addiction: when devices take over #negativepid #digitalInvestigations #OSINT #cybersecurity #AI #tech #onlineInvestigations #robotics #cyberpsychology #cybercrime https://negativepid.blog/digital-addiction-when-devices-take-over/?utm_source=mastodon&utm_medium=social&utm_campaign=fedica-Negative-PID-Blog
Organized cybercrime: the Ransomware cartels #negativepid #digitalInvestigations #OSINT #cybersecurity #AI #tech #onlineInvestigations #robotics #cyberpsychology #cybercrime https://negativepid.blog/organized-cybercrime-the-ransomware-cartels/?utm_source=mastodon&utm_medium=social&utm_campaign=fedica-Negative-PID-Blog
boostedFoolish kings decree secret entrances be built into every would-be fortress. Assassins use them and realms fall, yet no king learns. #cybersecurity https://cromwell-intl.com/cybersecurity/backdoors.html?s=mc
Link and network analysis: the structure behind the data #negativepid #digitalInvestigations #OSINT #cybersecurity #AI #tech #onlineInvestigations #robotics #cyberpsychology #cybercrime https://negativepid.blog/link-and-network-analysis-the-structure-behind-the-data/?utm_source=mastodon&utm_medium=social&utm_campaign=fedica-Negative-PID-Blog
Canadian spy agency says it hacked drug traffickers, extremists, and a #ransomware gang last year
#Canada #privacy #surveillance #cybersecurity #intelligence #crime #CSE
Chat Control 1.0 and 2.0 Explained
https://fightchatcontrol.eu/chat-control-overview
Comments: https://news.ycombinator.com/item?id=48818311
#HackerNews #ChatControl #Explained #ChatPrivacy #DigitalRights #TechNews #Cybersecurity
"Help EFF Cut the AI Hype"
"It's just the opposite for EFF. In the global race to build and dominate the AI industry, it can sure seem like the interests of ordinary people sit last on the agenda."
#Windows11 identifier code used to track #ScatteredSpider perp after #Microsoft shared info with FBI
Daily Digest | 7 July 2026
Your daily dose of Privacy, Data Protection, AI & Cybersecurity news.
5 stories you should not miss.
Read more: https://www.nicfab.eu/daily-digest/
Organized cybercrime: the global fraud factories #negativepid #digitalInvestigations #OSINT #cybersecurity #AI #tech #onlineInvestigations #robotics #cyberpsychology #cybercrime https://negativepid.blog/organized-cybercrime-the-global-fraud-factories/?utm_source=mastodon&utm_medium=social&utm_campaign=fedica-Negative-PID-Blog
From shadows to leadership: women shaping cybersecurity #negativepid #digitalInvestigations #OSINT #cybersecurity #AI #tech #onlineInvestigations #robotics #cyberpsychology #cybercrime https://negativepid.blog/from-shadows-to-leadership-women-shaping-cybersecurity/?utm_source=mastodon&utm_medium=social&utm_campaign=fedica-Negative-PID-Blog
The Internet’s hidden libraries and archives #negativepid #digitalInvestigations #OSINT #cybersecurity #AI #tech #onlineInvestigations #robotics #cyberpsychology #cybercrime https://negativepid.blog/the-internets-hidden-libraries-and-archives/?utm_source=mastodon&utm_medium=social&utm_campaign=fedica-Negative-PID-Blog
Meta paused its employee-tracking MCI tool after an internal exposure made monitoring data accessible beyond intended staff. 🔒
The AI training program logged keystrokes, mouse activity and screen content, and remains paused while data protection controls are reviewed. 🛡️
#TechNews #Meta #Privacy #Cybersecurity #AI #Employee #Monitoring #Surveillance #DataProtection #OpenSource #Linux #Infosec #DigitalRights #Technology #FOSS #Security
AI stylometry algorithms can identify anonymous authors with up to 99.8% accuracy just by counting subconscious function words. The technology is so precise it is sparking debates about whether writing style is biometric data. #TechNews #Privacy #AI #Cybersecurity
https://blazetrends.com/how-ai-stylometry-identifies-anonymous-authors-the-code-behind-your-writing-dna/?fsp_sid=46822
Google will begin enforcing Android developer verification for sideloaded apps in four countries on September 30, adding new installation checks. 📱 Unverified apps will require extra approval steps, while verified developers gain streamlined tools and limited accounts support before global expansion in 2027. 🔐
🔗 https://finance.biggo.com/news/202606211920_Android-sideloading-restrictions-start-September-30
#TechNews #Android #Google #GooglePlay #Sideloading #Apps #AppSecurity #Developer #Privacy #OpenSource #Mobile #Cybersecurity #Linux #Technology #Software #FOSS
Pegasus spyware infected former MEP Stelios Kouloglou while he served on the European Parliament committee probing spyware abuse, Citizen Lab found. 🕵️♂️
EU civil society groups now urge stronger spyware rules, independent investigations, and safeguards for oversight, privacy, and accountability. 🛡️
🔗 https://edri.org/our-work/joint-statement-pegasus-in-the-european-parliament-the-eu-must-act-now/
#TechNews #Pegasus #Spyware #EU #Europe #European #Parliament #Privacy #Cybersecurity #Surveillance #OpenSource #InfoSec #Technology #HumanRights #Politics #Government
🚨 WHOIS privacy is under pressure.
GoDaddy is challenging an Indian court ruling that could fundamentally change how domain privacy works by requiring:
🔹 Mandatory e-KYC for domain registrations
🔹 WHOIS privacy no longer enabled by default
🔹 Registrars to disclose registrant details within 72 hours to parties claiming a "legitimate interest"
This isn't just about India.
The outcome could influence domain privacy, ICANN policy, RDAP adoption, cybersecurity investigations, trademark enforcement, and the future of online anonymity worldwide.
I break down:
✅ What the court actually ordered
✅ Why GoDaddy is appealing
✅ How WHOIS and RDAP really work
✅ The privacy vs law enforcement debate
✅ What it means for domain owners, security researchers, and businesses
Read the full analysis 👇
https://thecybersecguru.com/news/godaddy-india-whois-privacy-ruling/?utm_source=mastodon&utm_medium=social
#CyberSecurity #WHOIS #GoDaddy #DomainNames #Privacy #RDAP #ICANN #OSINT #DNS #InfoSec #CyberLaw #India #DataPrivacy #CyberNews
🔒 A 19-year-old cybercriminal was caught despite using a VPN across multiple countries - because Windows has a tracking number built into every install that a VPN can't hide.
Peter Stokes, arrested in Finland in April and extradited to the US last week, is tied to Scattered Spider, the hacking group behind the 2023 MGM and Caesars casino breaches. The group is linked to 100+ intrusions and over $100 million in extortion.
The FBI didn't crack his VPN. Microsoft handed over his Global Device ID (GDID), a unique identifier baked into every Windows installation at setup. It doesn't change when you update, switch networks, or use a VPN. The only way to reset it is a full OS reinstall.
Investigators matched Stokes's GDID across IP addresses in Estonia, New York, and Thailand, correlating with login times on his Snapchat, Apple, and Facebook accounts. The same device that breached a luxury jewelry retailer and demanded $8 million in ransom also logged into Snapchat and a video game from his real network.
So while VPNs mask your IP address, they were never designed to hide device-level identifiers embedded in your operating system. The tracking can live one layer deeper than the one most people defend.
Read more:
https://www.itnews.com.au/news/microsoft-device-telemetry-key-to-unmasking-alleged-scattered-spider-hacker-627148
https://www.databreachtoday.com/scattered-spider-suspect-extradited-from-finland-to-us-a-32140
Who is building quantum computers and why? #negativepid #digitalInvestigations #OSINT #cybersecurity #AI #tech #onlineInvestigations #robotics #cyberpsychology #cybercrime https://negativepid.blog/who-is-building-quantum-computers-and-why/?utm_source=mastodon&utm_medium=social&utm_campaign=fedica-Negative-PID-Blog
I'd like to share the latest version of my project.
It's a a decentralised P2P messaging app. The aim is of course privacy and security.
It demonstrates a fairly unique approach by using browser-based local-only storage with webrtc.
https://www.reddit.com/r/positive_intentions/comments/1tq1u62/introducing_enkrypted_chat
---
#Privacy #OnlinePrivacy #DataPrivacy #Infosec #CyberSecurity #OpSec #DigitalRights #AntiSurveillance #DataOwnership #E2EE #P2P #PeerToPeer #WebRTC #LocalFirst #LocalOnly #NoCloud #NoRegistration #PWA #SignalProtocol #PostQuantum #Cryptography #SecureMessaging #PrivateChat #EncryptedChat #Decentralized #OpenSource #SelfHosted #BetaTesting #FeedbackWelcome #TechDemo #ProofOfConcept #BuildInPublic #IndieDev #DevCommunity