lingo.lol is one of the many independent Mastodon servers you can use to participate in the fediverse.
A place for linguists, philologists, and other lovers of languages.

Server stats:

61
active users

#security

72 posts60 participants4 posts today

#Hackers —hope to defect to #Russia ? Don’t #Google#defecting to Russia.”

To the casual observer, #cybercriminals can look like swashbuckling geniuses.

They possess technical skills formidable enough to penetrate the networks of the biggest companies on the planet.

They cover their tracks using technology that is arcane to most people—VPNs, #encrypted #chat apps, onion routing, aliases in dark web forums.
#privacy #security #vpn #tor #onionrouting #darkweb

arstechnica.com/security/2025/

Illustration of ones and zeros being encrypted.
Ars Technica · Hackers—hope to defect to Russia? Don’t Google “defecting to Russia.”By Nate Anderson

DATE: July 24, 2025 at 05:15PM
SOURCE: HEALTHCARE INFO SECURITY

Direct article link at end of text block below.

@HHSOCR Fines #Surgery Practice $250K in #Ransomware Breach t.co/IznsqqwPdJ #HIPAA #NewYork #Syracuse

Here are any URLs found in the article text:

t.co/IznsqqwPdJ

Articles can be found by scrolling down the page at healthcareinfosecurity.com/ under the title "Latest"

-------------------------------------------------

Private, vetted email list for mental health professionals: clinicians-exchange.org

Healthcare security & privacy posts not related to IT or infosec are at @HIPAABot . Even so, they mix in some infosec with the legal & regulatory information.

-------------------------------------------------

#security #healthcare #doctors #itsecurity #hacking #doxxing #psychotherapy #securitynews #psychotherapist #mentalhealth #psychiatry #hospital #socialwork #datasecurity #webbeacons #cookies #HIPAA #privacy #datanalytics #healthcaresecurity #healthitsecurity #patientrecords @infosec #telehealth #netneutrality #socialengineering

#FederalReserve staff blamed #tariffs & #inflation for the high cost of the renovation of the central bank’s HQ Thurs & defended many of the upgrades as necessary for #security & maintaining the building’s historic architecture.

The explanation for the cost of the project came on a nearly 3-hr visit to the site before #Trump was set to visit to view the construction. The $2.5B project, which started in 2022, is being used by Trump to target the Fed chair, #JeromePowell.

nytimes.com/2025/07/24/busines

The construction site at the Federal Reserve, where renovations require as many as 800 construction workers over two shifts per day.
The New York Times · Why Is the Fed Renovation So Expensive? Staff Cite Tariffs and Inflation.By Alan Rappeport

Windows market share in Germany drops to 69.78%, down nearly 10 points in a year 📉

Meanwhile, macOS rises to 19.59%, driven by user demand for privacy & seamless integration 🍏

Linux more than doubles to 5.49%, reflecting growing interest in open-source, secure, and flexible systems 🐧

#Linux#Desktop#FOSS
Replied in thread

@alpine Supposedly, business accounts are protected by “enterprise data protection”. The last bullet point in this header of their documentation states that one implication of this is what “your data isn’t used to train foundation models”.

As far as I can tell from the second link, “foundation models” are their largest models that their smaller, purpose-built models are based on. To me, this leaves a clear loophole to enable training any of their more niche models on even *enterprise data*.

Let me be clear. I know firsthand that this was enabled without warning for companies with NDAs working on critical infrastructure and hospitals with HIPAA laws to follow. As far as I can tell right now, this looks like a clear attempt at training their AIs on protected information.

And this doesn’t even cover the case of people signing into their work computers with personal Microsoft accounts, opening the door for company and patient data to be scraped with even fewer legal guardrails.

#Privacy #security #infosec #BigTech

learn.microsoft.com/en-us/copi

blogs.microsoft.com/on-the-iss

Microsoft Learn
learn.microsoft.comEnterprise data protection in Microsoft 365 Copilot and Microsoft 365 Copilot ChatLearn what enterprise data protection means for Microsoft 365 Copilot and Microsoft 365 Copilot Chat.

#AIslop and fake reports are exhausting #security #bugbounties
The world of #cybersecurity is not immune to this problem. In last year, people across the cybersecurity industry have raised concerns about #AI #slop #bugbounty reports, meaning reports that claim to have found #vulnerabilities that do not actually exist, because they were created with a #largelanguagemodel (#LLM) that simply made up the #vulnerability, and then packaged it into a professional-looking writeup
techcrunch.com/2025/07/24/ai-s

TechCrunch · AI slop and fake reports are exhausting some security bug bounties | TechCrunch

DATE: July 24, 2025 at 09:08AM
SOURCE: HEALTHCARE INFO SECURITY

Direct article link at end of text block below.

Why are U.S. federal authorities warning #criticalinfrastructure sector entities, including #healthcare providers, about the #Interlock #ransomware group now? t.co/K4d9WwXHTp

Here are any URLs found in the article text:

t.co/K4d9WwXHTp

Articles can be found by scrolling down the page at healthcareinfosecurity.com/ under the title "Latest"

-------------------------------------------------

Private, vetted email list for mental health professionals: clinicians-exchange.org

Healthcare security & privacy posts not related to IT or infosec are at @HIPAABot . Even so, they mix in some infosec with the legal & regulatory information.

-------------------------------------------------

#security #healthcare #doctors #itsecurity #hacking #doxxing #psychotherapy #securitynews #psychotherapist #mentalhealth #psychiatry #hospital #socialwork #datasecurity #webbeacons #cookies #HIPAA #privacy #datanalytics #healthcaresecurity #healthitsecurity #patientrecords @infosec #telehealth #netneutrality #socialengineering

How do security-aware people feel about downloading and installing web browsers from "the Internet"? For example, for FreeBSD there is Pale Moon, but there is no port/package for it. On Linux, at least some distros don't have LibreWolf. So, you have to go and download these from their respective websites. (Well, on Linux I could maybe use DistroBox if I could find a LibreWolf package in another distro.)

I'm sure bad actors could manage to hide malicious code in packages that you get via your OS/distro repos as well, but it feels a little bit more secure when someone from the OS/distro has gone through the trouble of creating and releasing a package via their own package system.

Basically, how can I trust a tool I download from the Internet with quite sensitive data?

Am I just being naive? Should I *always* run all web browsers inside jails or use flatpaks etc so they can't access files in my $HOME dir etc?

Continued thread

Did you spot the bug in this post? 😅 Well, you could say that information was leaked prematurely. Or: we were simply so eager to post about this that we ended up a week too early. 🙈 But hey, today is International Self-Care Day for real and it's still important to take care of ourselves. So let's do this together. #InternationalSelfCareDay #WorldSelfCareDay #SelfCareDay #SelfCare #osco #osco25 #CyberSecurity #Security #InfoSec #AppSec #ProductSecurity #OTsecurity #OpenSpace [lisi]

I cannot overstate how unwelcome this device & others like it, would be in my home or anywhere near me... and how rude it would be to bring this near someone without their knowledge.

Everyone having surveillance equipment in their doorbells, meetings, & on their coffee tables is bad enough.

Stop giving corporations & law enforcement a giant microscope into your life & the lives of those around you.

techradar.com/computing/artifi

TechRadar · If you felt like Amazon could eavesdrop on you before, get ready to meet its AI wearableAmazon’s newly acquired wrist-worn AI listens to your life in case you want ambient surveillance
#privacy#AI#OpSec

DATE: July 23, 2025 at 05:08PM
SOURCE: HEALTHCARE INFO SECURITY

Direct article link at end of text block below.

@FBI, @CISAgov, @HHSGov Warn #Healthcare, Other Sectors of #Interlock #Cyberattack Threats t.co/uBjPNfmPgY

Here are any URLs found in the article text:

t.co/uBjPNfmPgY

Articles can be found by scrolling down the page at healthcareinfosecurity.com/ under the title "Latest"

-------------------------------------------------

Private, vetted email list for mental health professionals: clinicians-exchange.org

Healthcare security & privacy posts not related to IT or infosec are at @HIPAABot . Even so, they mix in some infosec with the legal & regulatory information.

-------------------------------------------------

#security #healthcare #doctors #itsecurity #hacking #doxxing #psychotherapy #securitynews #psychotherapist #mentalhealth #psychiatry #hospital #socialwork #datasecurity #webbeacons #cookies #HIPAA #privacy #datanalytics #healthcaresecurity #healthitsecurity #patientrecords @infosec #telehealth #netneutrality #socialengineering

New Privacy Guides tutorial :mastodon: ✅
by me:

This article is now a series of two articles on Privacy and Security on Mastodon.

This tutorial is a step-by-step guide
to help Mastodon users make the most of the privacy and security features the platform offers.

The first article of this series was divided to better segment the information for readers who might prefer to read or share each part independently.

How To Improve Your Privacy and Security on Mastodon

Privacy Guides · How To Improve Your Privacy and Security on Mastodon
More from Em :official_verified:

Linux is a pain in the ass.

I can barely get people to use Signal or enable 2FA, you think they're ready for Linux? Nope. Even the people who use it, complain about it. 🙃

Start where people are, and with the systems they use every day.

If they want to transition, cool cool cool, prepare to have every bro debate the best distro with you and why the one you use isn't the right one.

~~~~~
I teach cool security & privacy ish to the end user and I'm pretty great at it. Follow for more nifty ways to make men cry.

DATE: July 23, 2025 at 10:47AM
SOURCE: HEALTHCARE INFO SECURITY

Direct article link at end of text block below.

Should the U.S. Do the Same?
U.K. Government Set to Impose #Ransomware Payment Ban t.co/uOcfXEE0Zo

Here are any URLs found in the article text:

t.co/uOcfXEE0Zo

Articles can be found by scrolling down the page at healthcareinfosecurity.com/ under the title "Latest"

-------------------------------------------------

Private, vetted email list for mental health professionals: clinicians-exchange.org

Healthcare security & privacy posts not related to IT or infosec are at @HIPAABot . Even so, they mix in some infosec with the legal & regulatory information.

-------------------------------------------------

#security #healthcare #doctors #itsecurity #hacking #doxxing #psychotherapy #securitynews #psychotherapist #mentalhealth #psychiatry #hospital #socialwork #datasecurity #webbeacons #cookies #HIPAA #privacy #datanalytics #healthcaresecurity #healthitsecurity #patientrecords @infosec #telehealth #netneutrality #socialengineering