Fran Donoso

• Reposted by Fran Donoso
  
  Kevin Beaumont doublepulsar.com · Dec 26, 2025
  [Not loaded yet]
  Repost Quote post

  View on BlueskyCopy Bluesky URLCopy post URLShow all post labels
• Reposted by Fran Donoso
  cje cje.io · Dec 20, 2025
  [Not loaded yet]
  Repost Quote post

  View on BlueskyCopy Bluesky URLCopy post URLShow all post labels
• 
  Fran Donoso francisck.com · Nov 1, 2025
  I may have gone overboard on the Halloween goodies this year #halloween
  
  Repost Quote post

  View on BlueskyCopy Bluesky URLCopy post URLTranslate postDownload imageShow all post labels
• 
  Fran Donoso francisck.com · Sep 14, 2025
  This report from @interseclab.bsky.social on how a Chinese company is exporting some of the capabilities of "The Great Wall of China" to other autocratic countries is INSANELY INTERESTING: interseclab.org/wp-content/u... *EVERY Page is worth reading* Some interesting tidbits in the thread

  https://interseclab.org/wp-content/uploads/2025/09/The-Internet-Coup_September2025.pdf

  interseclab.org
  1

  Repost Quote post

  View on BlueskyCopy Bluesky URLCopy post URLTranslate postShow all post labels
• Reposted by Fran Donoso
  
  did:plc:fwqrfwdkyrw6qjvandyhcgeq handle.invalid · Sep 8, 2025
  [Not loaded yet]
  Repost Quote post

  View on BlueskyCopy Bluesky URLCopy post URLShow all post labels
• 
  Fran Donoso francisck.com · Sep 8, 2025
  Plex was hacked. It included usernames, emails, and hashed passwords. Change your passwords when you can,
  • 
    tierney cyren bnb.im · Sep 8, 2025
    [Not loaded yet]
  Repost Quote post

  View on BlueskyCopy Bluesky URLCopy post URLTranslate postShow all post labels
• Reposted by Fran Donoso
  
  ESET Research handle.invalid · Aug 26, 2025
  [Not loaded yet]
  Repost Quote post

  View on BlueskyCopy Bluesky URLCopy post URLShow all post labels
• Reposted by Fran Donoso
  
  Catalin Cimpanu campuscodi.risky.biz · Aug 5, 2025
  [Not loaded yet]
  Repost Quote post

  View on BlueskyCopy Bluesky URLCopy post URLShow all post labels
• 
  Fran Donoso francisck.com · Aug 4, 2025
  I mean I’ve been urging people to toss their sonicwall devices into a shredder for years now 🤷🏻‍♂️
  • jgreig jgreig.bsky.social · Aug 4, 2025
    [Not loaded yet]
  Repost Quote post

  View on BlueskyCopy Bluesky URLCopy post URLTranslate postShow all post labels
• 
  Fran Donoso francisck.com · Aug 4, 2025
  Our team collaborated with our friends at @sentinellabs.bsky.social to identify and disrupt a PXA infostealer campaign that has an intricate and complex delivery chain: labs.beazley.security/articles/gho... Thanks for the fantastic collab SentinelLabs team!

  BSL - Ghost in the Zip | New PXA Stealer and Its Telegram-Powered Ecosystem

  labs.beazley.security
  Repost Quote post

  View on BlueskyCopy Bluesky URLCopy post URLTranslate postShow all post labels
• Reposted by Fran Donoso
  
  did:plc:fwqrfwdkyrw6qjvandyhcgeq handle.invalid · Jul 26, 2025
  [Not loaded yet]
  Repost Quote post

  View on BlueskyCopy Bluesky URLCopy post URLShow all post labels
• Reposted by Fran Donoso
  
  andy jabbour andyjabbour.bsky.social · Jul 24, 2025
  [Not loaded yet]
  Repost Quote post

  View on BlueskyCopy Bluesky URLCopy post URLShow all post labels
• 
  Fran Donoso francisck.com · Jul 20, 2025
  We’re actively seeing this exploitation as well. Here is my team’s advisory on this vulnerability: labs.beazley.security/advisories/B... Is your have a publicly exposed SharePoint server, its probably already compromised so get ready to do some IR.

  SharePoint 0Day Vulnerability Under Active Exploitation (CVE-2025-53770)

  labs.beazley.security
  • 
    did:plc:eyixtuogercyaq5npymdzi5l handle.invalid · Jul 20, 2025
    [Not loaded yet]
  Repost Quote post

  View on BlueskyCopy Bluesky URLCopy post URLTranslate postShow all post labels
• Reposted by Fran Donoso
  
  Glenn ntkramer.bsky.social · Jul 16, 2025
  [Not loaded yet]
  Repost Quote post

  View on BlueskyCopy Bluesky URLCopy post URLShow all post labels
• Reposted by Fran Donoso
  
  Catalin Cimpanu campuscodi.risky.biz · Jul 13, 2025
  [Not loaded yet]
  Repost Quote post

  View on BlueskyCopy Bluesky URLCopy post URLShow all post labels
• Reposted by Fran Donoso
  
  Joe Slowik pylos.co · Jul 11, 2025
  [Not loaded yet]
  Repost Quote post

  View on BlueskyCopy Bluesky URLCopy post URLShow all post labels
• 
  Fran Donoso francisck.com · Jul 2, 2025
  Worth turning on if you have AT&T. Other carriers (like T-mobile) have similar programs.
  • 
    did:plc:eyixtuogercyaq5npymdzi5l handle.invalid · Jul 1, 2025
    [Not loaded yet]
  Repost Quote post

  View on BlueskyCopy Bluesky URLCopy post URLTranslate postShow all post labels
• Reposted by Fran Donoso
  
  Whitney Merrill wbm312.bsky.social · Jun 26, 2025
  [Not loaded yet]
  Repost Quote post

  View on BlueskyCopy Bluesky URLCopy post URLShow all post labels
• 
  Fran Donoso francisck.com · Jun 6, 2025
  This is related to ROP code exec on switch 2
  • 
    David Buchanan retr0.id · Jun 5, 2025
    [Not loaded yet]
  Repost Quote post

  View on BlueskyCopy Bluesky URLCopy post URLTranslate postShow all post labels
• Reposted by Fran Donoso
  
  Zack Whittaker zackwhittaker.com · May 28, 2025
  [Not loaded yet]
  Repost Quote post

  View on BlueskyCopy Bluesky URLCopy post URLShow all post labels
• Reposted by Fran Donoso
  
  Kenn White kennwhite.bsky.social · May 27, 2025
  [Not loaded yet]
  Repost Quote post

  View on BlueskyCopy Bluesky URLCopy post URLShow all post labels
• Reposted by Fran Donoso
  wietzebeukema wietzebeukema.nl · Mar 24, 2025
  [Not loaded yet]
  Repost Quote post

  View on BlueskyCopy Bluesky URLCopy post URLShow all post labels
• Reposted by Fran Donoso
  
  Catalin Cimpanu campuscodi.risky.biz · May 8, 2025
  [Not loaded yet]
  Repost Quote post

  View on BlueskyCopy Bluesky URLCopy post URLShow all post labels
• Reposted by Fran Donoso
  
  Joseph Cox josephcox.bsky.social · May 4, 2025
  [Not loaded yet]
  Repost Quote post

  View on BlueskyCopy Bluesky URLCopy post URLShow all post labels
• Reposted by Fran Donoso
  
  Ian Coldwater 🧊🚫 lookitup.baby · Mar 25, 2025
  [Not loaded yet]
  Repost Quote post

  View on BlueskyCopy Bluesky URLCopy post URLShow all post labels
• Reposted by Fran Donoso
  thedfirreport thedfirreport.bsky.social · Mar 23, 2025
  [Not loaded yet]
  Repost Quote post

  View on BlueskyCopy Bluesky URLCopy post URLShow all post labels
• 
  Fran Donoso francisck.com · Mar 15, 2025
  This is interesting. Good write up here: www.stepsecurity.io/blog/harden-... The commit that backdoors this is bash that executes something that is base64 encoded which is something that attempts to run a python script to scrape memory on the runner for secrets (see attached image) 🧵 1/2
  

  Harden-Runner detection: tj-actions/changed-files action is compromised - StepSecurity

  tj-actions/changed-files

  stepsecurity.io
  • syndrowm syndrowm.com · Mar 15, 2025
    [Not loaded yet]
  1

  Repost Quote post

  View on BlueskyCopy Bluesky URLCopy post URLTranslate postShow all post labels
• Reposted by Fran Donoso
  
  Mike Masnick masnick.com · Mar 4, 2025
  Wrote up something about Techdirt's recent coverage, and why (whether we like it or not) we need to be a "democracy blog" now, rather than just a "tech" blog (not that we've ever been just a tech blog). This story is *the* story and it impacts everything else. www.techdirt.com/2025/03/04/w...
  

  Why Techdirt Is Now A Democracy Blog (Whether We Like It Or Not)

  While political reporters are still doing their view-from-nowhere “Democrats say this, Republicans say that” dance, tech and legal journalists have been watching an unfortunately recogn…

  techdirt.com
  Repost Quote post

  1

  View on BlueskyCopy Bluesky URLCopy post URLTranslate postShow all post labels
• Reposted by Fran Donoso
  
  Andy Greenberg agreenberg.bsky.social · Feb 13, 2025
  [Not loaded yet]
  Repost Quote post

  View on BlueskyCopy Bluesky URLCopy post URLShow all post labels
• Reposted by Fran Donoso
  
  Chad Loder chadloder.bsky.social · Feb 11, 2025
  [Not loaded yet]
  Repost Quote post

  View on BlueskyCopy Bluesky URLCopy post URLShow all post labels
• Reposted by Fran Donoso
  
  Joseph Menn joemenn.bsky.social · Feb 10, 2025
  [Not loaded yet]
  1

  Repost Quote post

  View on BlueskyCopy Bluesky URLCopy post URLShow all post labels
• Reposted by Fran Donoso
  
  WIRED wired.com · Feb 7, 2025
  [Not loaded yet]
  Repost Quote post

  View on BlueskyCopy Bluesky URLCopy post URLShow all post labels
• 
  Fran Donoso francisck.com · Feb 6, 2025
  The last few weeks have made me proud to be a subscribed of @wired.com and have solidified by desire to remain subscribed for the foreseeable future. Great work keeping us informed about the craziness that is happening.
  Repost Quote post

  View on BlueskyCopy Bluesky URLCopy post URLTranslate postShow all post labels
• 
  Fran Donoso francisck.com · Jan 28, 2025
  I’ve updated the cybersec feed to temporarily remove “social engineering” due to that language showing up in a recent Executive Order and causing the feed to fill up with non infosec stuff.
  Repost Quote post

  View on BlueskyCopy Bluesky URLCopy post URLTranslate postShow all post labels
• 
  Fran Donoso francisck.com · Dec 20, 2024
  This was a great talk! Worth a watch for sure
  • 
    Philippe Vynckier handle.invalid · Dec 20, 2024
    [Not loaded yet]
  Repost Quote post

  View on BlueskyCopy Bluesky URLCopy post URLTranslate postShow all post labels
• Reposted by Fran Donoso
  hackingne hackingne.ws · Dec 17, 2024
  [Not loaded yet]
  Repost Quote post

  View on BlueskyCopy Bluesky URLCopy post URLShow all post labels
• Reposted by Fran Donoso
  dinosn dinosn.bsky.social · Dec 11, 2024
  [Not loaded yet]
  Repost Quote post

  View on BlueskyCopy Bluesky URLCopy post URLShow all post labels
• Reposted by Fran Donoso
  
  Kathryn Tewson handle.invalid · Nov 29, 2024
  [Not loaded yet]
  Repost Quote post

  View on BlueskyCopy Bluesky URLCopy post URLShow all post labels
• Reposted by Fran Donoso
  
  Matthew Kennedy matthewkennedy.bsky.social · Dec 5, 2024
  [Not loaded yet]
  Repost Quote post

  View on BlueskyCopy Bluesky URLCopy post URLShow all post labels
• Reposted by Fran Donoso
  
  techcrunch techcrunch.com · Dec 2, 2024
  [Not loaded yet]
  Repost Quote post

  View on BlueskyCopy Bluesky URLCopy post URLShow all post labels
• 
  Fran Donoso francisck.com · Nov 26, 2024
  Interesting discussion in this thread.
  • signalblur signalblur.bsky.social · Nov 26, 2024
    [Not loaded yet]
  Repost Quote post

  View on BlueskyCopy Bluesky URLCopy post URLTranslate postShow all post labels
• Reposted by Fran Donoso
  mtlynch mtlynch.io · Nov 26, 2024
  [Not loaded yet]
  Repost Quote post

  View on BlueskyCopy Bluesky URLCopy post URLShow all post labels
• Reposted by Fran Donoso
  
  CNN cnn.com · Nov 26, 2024
  [Not loaded yet]
  Repost Quote post

  View on BlueskyCopy Bluesky URLCopy post URLShow all post labels
• 
  Fran Donoso francisck.com · Nov 22, 2024
  Great research from the Volexity team into how a Russian APT weaponized some WIFI access points close to their target to ultimately pivot into target networks. www.volexity.com/blog/2024/11...
  

  The Nearest Neighbor Attack: How A Russian APT Weaponized Nearby Wi-Fi Networks for Covert Access

  In early February 2022, notably just ahead of the Russian invasion of Ukraine, Volexity made a discovery that led to one of the most fascinating and complex incident investigations Volexity had ever w...

  volexity.com
  Repost Quote post

  View on BlueskyCopy Bluesky URLCopy post URLTranslate postShow all post labels
• Reposted by Fran Donoso
  jinx69 jinx69.bsky.social · Nov 22, 2024
  [Not loaded yet]
  Repost Quote post

  View on BlueskyCopy Bluesky URLCopy post URLShow all post labels
• Reposted by Fran Donoso
  
  Tom Hegel hegel.bsky.social · Nov 21, 2024
  🚨 New Research Drop: 🇰🇵 DPRK IT Workers | A Network of Active Front Companies and Their Links to China Summary: ⚪ Newly Disrupted Front Companies by USG ⚪ Impersonating US based software and tech orgs ⚪ Links to still-active front orgs, CN association Report: www.sentinelone.com/labs/dprk-it...
  

  DPRK IT Workers | A Network of Active Front Companies and Their Links to China

  SentinelLabs has identified multiple deceptive websites linked to businesses in China fronting for North Korea's fake IT workers scheme.

  sentinelone.com
  1

  Repost Quote post

  1

  View on BlueskyCopy Bluesky URLCopy post URLTranslate postShow all post labels
• Reposted by Fran Donoso
  hackinglz hackinglz.hackpwn.net · Nov 21, 2024
  [Not loaded yet]
  Repost Quote post

  View on BlueskyCopy Bluesky URLCopy post URLShow all post labels
• 
  Fran Donoso francisck.com · Nov 20, 2024
  Anyone else on #Mac experiencing notification delays with Apple “Intelligence”? Even with “Notification Summaries” OFF, enabling Apple Intelligence causes a noticeable multi-second delay for notifications (e.g., Slack messages) to show up after they’re sent. WTF?
  Repost Quote post

  View on BlueskyCopy Bluesky URLCopy post URLTranslate postShow all post labels