techhub.social is one of the many independent Mastodon servers you can use to participate in the fediverse.
A hub primarily for passionate technologists, but everyone is welcome

Administered by:

Server stats:

4.6K
active users

#DevSecOps

22 posts19 participants0 posts today
Winbuzzer<p>Amazon Q Security Breach Exposes Critical Flaws in AI Coding Assistants</p><p><a href="https://mastodon.social/tags/AI" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>AI</span></a> <a href="https://mastodon.social/tags/AISecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>AISecurity</span></a> <a href="https://mastodon.social/tags/AmazonQ" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>AmazonQ</span></a> <a href="https://mastodon.social/tags/AWS" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>AWS</span></a> <a href="https://mastodon.social/tags/DevSecOps" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>DevSecOps</span></a> <a href="https://mastodon.social/tags/CyberSecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>CyberSecurity</span></a> <a href="https://mastodon.social/tags/Devs" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Devs</span></a> <a href="https://mastodon.social/tags/AIAgents" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>AIAgents</span></a></p><p><a href="https://winbuzzer.com/2025/07/25/amazon-q-security-breach-exposes-critical-flaws-in-ai-coding-assistants-xcxwbn" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">winbuzzer.com/2025/07/25/amazo</span><span class="invisible">n-q-security-breach-exposes-critical-flaws-in-ai-coding-assistants-xcxwbn</span></a></p>
OWASP Foundation<p>🚨 Only have one day to train? Make it count.</p><p>Join us on at OWASP Global AppSec USA 2025 in Washington, D.C. for a full day of expert-led, hands-on security training.</p><p>🎯 Whether you're a builder, breaker, defender, or manager, there's a course to help you go deeper.</p><p>🔗 Register: <a href="https://owasp.glueup.com/event/131624/register/" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">owasp.glueup.com/event/131624/</span><span class="invisible">register/</span></a></p><p><a href="https://infosec.exchange/tags/OWASP" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>OWASP</span></a> <a href="https://infosec.exchange/tags/AppSec" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>AppSec</span></a> <a href="https://infosec.exchange/tags/CyberSecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>CyberSecurity</span></a> <a href="https://infosec.exchange/tags/InfosecTraining" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>InfosecTraining</span></a> <a href="https://infosec.exchange/tags/AIsecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>AIsecurity</span></a> <a href="https://infosec.exchange/tags/ThreatModeling" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ThreatModeling</span></a> <a href="https://infosec.exchange/tags/DevSecOps" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>DevSecOps</span></a> <a href="https://infosec.exchange/tags/OWASP2025" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>OWASP2025</span></a> <a href="https://infosec.exchange/tags/WashingtonDC" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>WashingtonDC</span></a> <a href="https://infosec.exchange/tags/SecurityTraining" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>SecurityTraining</span></a> <a href="https://infosec.exchange/tags/PrivacySecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>PrivacySecurity</span></a></p>
kingthorin_rm<p><a href="https://infosec.exchange/tags/DevSecOps" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>DevSecOps</span></a></p><p>Make sure you keep up-to-date in your CI/CD!</p><p><a href="https://infosec.exchange/@zaproxy/114914127376483494" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">infosec.exchange/@zaproxy/1149</span><span class="invisible">14127376483494</span></a></p>
querypie<p>🔒 스타트업에게도 ‘진짜 보안’이 필요합니다.<br>쿼리파이 커뮤니티 버전을 누구나 1년간 무료로 사용할 수 있도록 공개했습니다 (사용자 최대 5명 활성화 가능).<br>다음 환경의 접근 제어를 한 플랫폼에서:<br> ✔️ SQL 데이터베이스<br> ✔️ 서버 (Linux/Windows)<br> ✔️ Kubernetes 클러스터<br> ✔️ 내부/외부 웹 애플리케이션<br>이미 한국 유니콘 스타트업의 80%가 사용 중인 보안 기술을, <br>이제 누구나 쉽게 시작하실 수 있습니다.<br>우리는 마케팅보다 기술의 공공성을 먼저 생각합니다.<br>지금 필요한 보안을, 누구나 누릴 수 있도록.<br>📦 커뮤니티 버전 설치 가이드: <a href="https://www.querypie.com/resources/learn/documentation/querypie-install-guide" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://www.</span><span class="ellipsis">querypie.com/resources/learn/d</span><span class="invisible">ocumentation/querypie-install-guide</span></a><br> 🔗 AI Hub 가입: <a href="https://app.querypie.com/login" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="">app.querypie.com/login</span><span class="invisible"></span></a></p><p><a href="https://mastodon.social/tags/Security" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Security</span></a> <a href="https://mastodon.social/tags/DevSecOps" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>DevSecOps</span></a> <a href="https://mastodon.social/tags/Kubernetes" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Kubernetes</span></a> <a href="https://mastodon.social/tags/StartupTools" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>StartupTools</span></a> <a href="https://mastodon.social/tags/AccessControl" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>AccessControl</span></a> <a href="https://mastodon.social/tags/QueryPie" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>QueryPie</span></a> <a href="https://mastodon.social/tags/CommunityEdition" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>CommunityEdition</span></a> <a href="https://mastodon.social/tags/AIHub" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>AIHub</span></a> <a href="https://mastodon.social/tags/%EB%B3%B4%EC%95%88" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>보안</span></a> <a href="https://mastodon.social/tags/%EC%8A%A4%ED%83%80%ED%8A%B8%EC%97%85%EB%8F%84%EA%B5%AC" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>스타트업도구</span></a> <a href="https://mastodon.social/tags/%EC%A0%95%EB%B3%B4%EB%B3%B4%ED%98%B8" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>정보보호</span></a> <a href="https://mastodon.social/tags/%EA%B3%B5%EA%B3%B5%EA%B8%B0%EC%88%A0" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>공공기술</span></a></p>
querypie<p>보안은 가진 사람들의 특권이 아니어야 합니다.<br>그래서 저희는 쿼리파이 커뮤니티 에디션을 1년간 무료로 제공합니다.<br> (최대 5 활성 유저, 셀프호스팅 방식)<br>👨‍💻 제어 가능한 환경:<br> – SQL 데이터베이스<br> – 서버 (Linux/Windows)<br> – 쿠버네티스 클러스터<br> – 웹앱 (내부 시스템, SaaS)<br>Docker로 설치하고 바로 시작.<br> 한국 유니콘 스타트업 80%가 이미 사용 중인 기술입니다.<br> 이제, 누구나 사용할 수 있도록 열었습니다.<br>📦 설치 가이드: <a href="https://www.querypie.com/resources/learn/documentation/querypie-install-guide" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://www.</span><span class="ellipsis">querypie.com/resources/learn/d</span><span class="invisible">ocumentation/querypie-install-guide</span></a><br> <a href="https://mastodon.social/tags/%EB%B3%B4%EC%95%88" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>보안</span></a> <a href="https://mastodon.social/tags/%EC%BF%BC%EB%A6%AC%ED%8C%8C%EC%9D%B4" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>쿼리파이</span></a> <a href="https://mastodon.social/tags/DevSecOps" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>DevSecOps</span></a> <a href="https://mastodon.social/tags/%EC%8A%A4%ED%83%80%ED%8A%B8%EC%97%85%EB%8F%84%EA%B5%AC" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>스타트업도구</span></a> <a href="https://mastodon.social/tags/%EA%B3%B5%EA%B3%B5%EA%B8%B0%EC%88%A0" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>공공기술</span></a></p>
querypie<p><a href="https://mastodon.social/tags/Security" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Security</span></a> <a href="https://mastodon.social/tags/StartupTools" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>StartupTools</span></a> <a href="https://mastodon.social/tags/QueryPie" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>QueryPie</span></a> <a href="https://mastodon.social/tags/DevSecOps" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>DevSecOps</span></a> <a href="https://mastodon.social/tags/AccessControl" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>AccessControl</span></a></p>
querypie<p><a href="https://mastodon.social/tags/Security" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Security</span></a> <a href="https://mastodon.social/tags/StartupTools" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>StartupTools</span></a> <a href="https://mastodon.social/tags/QueryPie" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>QueryPie</span></a> <a href="https://mastodon.social/tags/DevSecOps" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>DevSecOps</span></a> <a href="https://mastodon.social/tags/AccessControl" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>AccessControl</span></a></p>
ActiveState<p>Still chasing CVEs? There’s a better way. Automation is revolutionizing vulnerability remediation and container security for DevSecOps teams. </p><p>Cut the manual patching, reduce risk, and get ahead of vulnerabilities—read how: <a href="https://www.activestate.com/blog/stop-chasing-cves-how-automation-is-changing-vulnerability-remediation/" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://www.</span><span class="ellipsis">activestate.com/blog/stop-chas</span><span class="invisible">ing-cves-how-automation-is-changing-vulnerability-remediation/</span></a> </p><p><a href="https://mastodon.social/tags/DevSecOps" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>DevSecOps</span></a> <a href="https://mastodon.social/tags/Cybersecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Cybersecurity</span></a></p>
Finite State<p>DevSecOps ≠ one-size-fits-all.</p><p>IoT &amp; connected products demand unique DevSecOps workflows for compliance, binary analysis, &amp; SBOMs.</p><p>Learn how to adapt DevSecOps for IoT 👉<br><a href="https://finitestate.io/blog/devsecops-for-iot-compliance" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">finitestate.io/blog/devsecops-</span><span class="invisible">for-iot-compliance</span></a></p><p><a href="https://mastodon.social/tags/CyberSecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>CyberSecurity</span></a> <a href="https://mastodon.social/tags/DevSecOps" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>DevSecOps</span></a> <a href="https://mastodon.social/tags/IoTSecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>IoTSecurity</span></a> <a href="https://mastodon.social/tags/ProductSecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ProductSecurity</span></a> <a href="https://mastodon.social/tags/SoftwareSupplyChain" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>SoftwareSupplyChain</span></a></p>
ActiveState<p>ActiveState &amp; Carahsoft have teamed up to bring secure, compliant open source solutions to the public sector. Government IT and DevSecOps teams can now accelerate open source adoption—without sacrificing security or compliance. </p><p>Read the full story: <a href="https://www.activestate.com/resources/press-releases/activestate-carahsoft-partner/" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://www.</span><span class="ellipsis">activestate.com/resources/pres</span><span class="invisible">s-releases/activestate-carahsoft-partner/</span></a> </p><p><a href="https://mastodon.social/tags/DevSecOps" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>DevSecOps</span></a> <a href="https://mastodon.social/tags/Cybersecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Cybersecurity</span></a></p>
App Sec Village<p>How Accurate Is AI at Fixing IaC Security Flaws? 🤔</p><p>This article puts leading AI models to the test, benchmarking how they remediate real-world IaC vulnerabilities. Many models miss the mark—not from lack of power, but focus.</p><p>The takeaway? AI works best with clear context and a tight scope.</p><p>Read from our friends at Symbiotic Security → <a href="https://buff.ly/0xTl47W" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="">buff.ly/0xTl47W</span><span class="invisible"></span></a></p><p>At AppSec Village, we’re always sharing technical insights for our community. 💙</p><p><a href="https://defcon.social/tags/AI" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>AI</span></a> <a href="https://defcon.social/tags/CodeSecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>CodeSecurity</span></a> <a href="https://defcon.social/tags/DevSecOps" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>DevSecOps</span></a> <a href="https://defcon.social/tags/IaC" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>IaC</span></a> <a href="https://defcon.social/tags/AppSec" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>AppSec</span></a></p>
The Linux Foundation<p>⁉️ How do global tech organizations identify and close their tech teams' cybersecurity skill gaps?</p><p>They use the Cybersecurity Skills Framework — built for technical roles.<br>🔹 DevOps, SREs, AppDev, Architects and more<br>🔹 Skills mapped to each role and experience level<br>🔹 Practical, customizable, easy</p><p>📺 Watch our on-demand webinar, "Cybersecurity Skills: A Framework That Works," to learn more: <a href="https://training.linuxfoundation.org/resources/webinars/cybersecurity-skills-framework-webinar/" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">training.linuxfoundation.org/r</span><span class="invisible">esources/webinars/cybersecurity-skills-framework-webinar/</span></a> </p><p><a href="https://social.lfx.dev/tags/CyberSecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>CyberSecurity</span></a> <a href="https://social.lfx.dev/tags/DevSecOps" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>DevSecOps</span></a> <a href="https://social.lfx.dev/tags/SREs" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>SREs</span></a> <a href="https://social.lfx.dev/tags/CTO" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>CTO</span></a> <a href="https://social.lfx.dev/tags/CISO" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>CISO</span></a> <a href="https://social.lfx.dev/tags/SysAdmins" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>SysAdmins</span></a> <a href="https://social.lfx.dev/tags/Developers" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Developers</span></a></p>
OWASP Foundation<p>🔍 Ready to level up your offensive security skills?</p><p>Join Dawid Czagan on November 3–5 at OWASP Global AppSec USA 2025 for a 100% hands-on training: "Full-Stack Pentesting Laboratory"</p><p>👉 REGISTER: <a href="https://owasp.glueup.com/event/131624/register/" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">owasp.glueup.com/event/131624/</span><span class="invisible">register/</span></a></p><p><a href="https://infosec.exchange/tags/OWASP" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>OWASP</span></a> <a href="https://infosec.exchange/tags/CyberSecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>CyberSecurity</span></a> <a href="https://infosec.exchange/tags/AppSec" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>AppSec</span></a> <a href="https://infosec.exchange/tags/Pentesting" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Pentesting</span></a> <a href="https://infosec.exchange/tags/DevSecOps" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>DevSecOps</span></a> <a href="https://infosec.exchange/tags/InfosecTraining" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>InfosecTraining</span></a> <a href="https://infosec.exchange/tags/EthicalHacking" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>EthicalHacking</span></a> <a href="https://infosec.exchange/tags/RedTeam" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>RedTeam</span></a> <a href="https://infosec.exchange/tags/OWASP2025" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>OWASP2025</span></a> <a href="https://infosec.exchange/tags/WashingtonDC" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>WashingtonDC</span></a></p>
Bobbys Bytes<p>Heads up, developers! A major npm Registry security breach has compromised 847 packages. Social engineering gave attackers access to maintainer accounts. Stay vigilant!<br><a href="https://mastodon.social/tags/Cybersecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Cybersecurity</span></a> <a href="https://mastodon.social/tags/DevSecOps" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>DevSecOps</span></a> <a href="https://mastodon.social/tags/npm" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>npm</span></a></p>
JAVAPRO<p>What if your app’s outdated dependency isn’t just a risk to your company—but to someone’s life? @spoole167 shows how software supply chains are becoming weapons.</p><p>Read now before the next breach becomes a blackout: <a href="https://javapro.io/2025/07/23/from-breaches-to-blackouts-the-human-consequences-of-software-supply-chain-attacks/" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">javapro.io/2025/07/23/from-bre</span><span class="invisible">aches-to-blackouts-the-human-consequences-of-software-supply-chain-attacks/</span></a></p><p><a href="https://mastodon.social/tags/DevSecOps" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>DevSecOps</span></a> <a href="https://mastodon.social/tags/OpenSource" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>OpenSource</span></a> <a href="https://mastodon.social/tags/JAVAPRO" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>JAVAPRO</span></a> <a href="https://mastodon.social/tags/Java" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Java</span></a></p>
Wu Evar 🇪🇺🇺🇦<p><a href="https://mastodon.green/tags/DevSecOps" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>DevSecOps</span></a> <a href="https://mastodon.green/tags/DevOps" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>DevOps</span></a> </p><p>Ahahaha 😆 Das Ding ist sooooo on-point.</p><p><a href="https://www.youtube.com/watch?v=rXPpkzdS-q4" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://www.</span><span class="">youtube.com/watch?v=rXPpkzdS-q4</span><span class="invisible"></span></a></p>
@doctator (0xDEADBEEF)<p>Between hundreds of kernel knobs, pluggable LSMs, systemd worming into everything, and a userland mashup of dbus, glibc, and 50 other daemons...<br>is it even realistic to secure a modern Linux box anymore?</p><p>Compare that to OpenBSD or a tight FreeBSD jail — where the surface area is minimal and sane by default.</p><p>🧠 Is “do one thing well” security dead on Linux?</p><p>Let’s talk attack surface, patch fatigue, and whether “hardening” just means hoping no one finds the hole.</p><p><a href="https://infosec.exchange/tags/infosec" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>infosec</span></a> <a href="https://infosec.exchange/tags/linux" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>linux</span></a> <a href="https://infosec.exchange/tags/cybersecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>cybersecurity</span></a> <a href="https://infosec.exchange/tags/opsec" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>opsec</span></a> <a href="https://infosec.exchange/tags/unix" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>unix</span></a> <a href="https://infosec.exchange/tags/bsd" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>bsd</span></a> <a href="https://infosec.exchange/tags/openbsd" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>openbsd</span></a> <a href="https://infosec.exchange/tags/freebsd" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>freebsd</span></a> <a href="https://infosec.exchange/tags/sysadmin" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>sysadmin</span></a> <a href="https://infosec.exchange/tags/devsecops" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>devsecops</span></a> <a href="https://infosec.exchange/tags/securityengineering" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>securityengineering</span></a> <a href="https://infosec.exchange/tags/attackSurface" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>attackSurface</span></a> <a href="https://infosec.exchange/tags/systemd" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>systemd</span></a> <a href="https://infosec.exchange/tags/bloatware" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>bloatware</span></a> <a href="https://infosec.exchange/tags/hackerthoughts" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>hackerthoughts</span></a></p>
LMG Security<p>Leaked and Loaded: DOGE’s API Key Crisis</p><p>One leaked API key exposed 52 private LLMs and potentially sensitive systems across SpaceX, Twitter, and even the U.S. Treasury.</p><p>In this episode of Cyberside Chats, <span class="h-card" translate="no"><a href="https://infosec.exchange/@sherridavidoff" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>sherridavidoff</span></a></span> and <span class="h-card" translate="no"><a href="https://infosec.exchange/@MDurrin" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>MDurrin</span></a></span> break down the DOGE/XAI API key leak. They share how it happened, why key management is a growing threat, and what you should do to protect your organization from similar risks.</p><p>🎥 Watch the video: <a href="https://youtu.be/Lnn225XlIc4" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="">youtu.be/Lnn225XlIc4</span><span class="invisible"></span></a></p><p>🎧 Listen to the podcast: <a href="https://www.chatcyberside.com/e/api-key-catastrophe-when-secrets-get-leaked/" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://www.</span><span class="ellipsis">chatcyberside.com/e/api-key-ca</span><span class="invisible">tastrophe-when-secrets-get-leaked/</span></a></p><p><a href="https://infosec.exchange/tags/APIsecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>APIsecurity</span></a> <a href="https://infosec.exchange/tags/Cybersecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Cybersecurity</span></a> <a href="https://infosec.exchange/tags/DevSecOps" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>DevSecOps</span></a> <a href="https://infosec.exchange/tags/PenetrationTesting" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>PenetrationTesting</span></a> <a href="https://infosec.exchange/tags/LMGSecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>LMGSecurity</span></a> <a href="https://infosec.exchange/tags/CybersideChats" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>CybersideChats</span></a> <a href="https://infosec.exchange/tags/IncidentResponse" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>IncidentResponse</span></a> <a href="https://infosec.exchange/tags/VendorRisk" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>VendorRisk</span></a> <a href="https://infosec.exchange/tags/KeyLeak" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>KeyLeak</span></a> <a href="https://infosec.exchange/tags/CISO" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>CISO</span></a> <a href="https://infosec.exchange/tags/ITsecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ITsecurity</span></a> <a href="https://infosec.exchange/tags/DFIR" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>DFIR</span></a> <a href="https://infosec.exchange/tags/Pentest" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Pentest</span></a></p>
zenthracore<p>🚀 First working Redis with post-quantum mTLS using Falcon (NIST finalist) — running in a hardened Alpine container with OpenSSL 3.3.4 + oqs-provider.<br>⚙️ Falcon keys + certs generated inside the image, Redis launched via --tls-port, and PONGs confirmed via PQ mTLS.</p><p>📦 GitHub: <a href="https://github.com/zenthracore/zen.redis" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">github.com/zenthracore/zen.red</span><span class="invisible">is</span></a><br>🐳 Docker: <a href="https://hub.docker.com/r/zenthracore/zen.redis" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">hub.docker.com/r/zenthracore/z</span><span class="invisible">en.redis</span></a></p><p>💡 This might be the first public Redis instance running on PQ crypto.</p><p><a href="https://mastodon.social/tags/PQC" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>PQC</span></a> <a href="https://mastodon.social/tags/Falcon" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Falcon</span></a> <a href="https://mastodon.social/tags/Redis" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Redis</span></a> <a href="https://mastodon.social/tags/OpenSSL" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>OpenSSL</span></a> <a href="https://mastodon.social/tags/ZeroTrust" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ZeroTrust</span></a> <a href="https://mastodon.social/tags/mTLS" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>mTLS</span></a> <a href="https://mastodon.social/tags/DevSecOps" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>DevSecOps</span></a> <a href="https://mastodon.social/tags/Docker" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Docker</span></a> <a href="https://mastodon.social/tags/PostQuantum" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>PostQuantum</span></a> <a href="https://mastodon.social/tags/Infosec" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Infosec</span></a></p>
PSConfEU<p>🛡️ Securing <a class="hashtag" rel="nofollow noopener" href="https://bsky.app/search?q=%23PowerShell" target="_blank">#PowerShell</a> 7? Start here. At <a class="hashtag" rel="nofollow noopener" href="https://bsky.app/search?q=%23PSConfEU" target="_blank">#PSConfEU</a> 2025, Anam Navied showed: 🔐 Full vs Constrained Language Modes 🧱 Lockdown with AppLocker &amp; WDAC 💻 Runtime script trust checks ⚠️ Secure-by-default PowerShell setups 🎟️ <a href="https://psconf.eu" rel="nofollow noopener" target="_blank">psconf.eu</a> <a class="hashtag" rel="nofollow noopener" href="https://bsky.app/search?q=%23Security" target="_blank">#Security</a> <a class="hashtag" rel="nofollow noopener" href="https://bsky.app/search?q=%23DevSecOps" target="_blank">#DevSecOps</a><br><br><a href="https://youtu.be/IiJpuKBILY8?si=epKzywrcnKTzbtib" rel="nofollow noopener" target="_blank">- YouTube</a></p>