Pawb.Social Reports @transparency

1 post1 participant0 posts today

**AskUbuntu** @askubuntu@ubuntu.social · 4d

Unable to Fetch Update from security.ubuntu #networking #apt #server #updates #firewall

Ask UbuntuUnable to Fetch Update from security.ubuntuI have been unable to update my Ubuntu server. I have tried just about every fix I can find, but nothing seems to work. When I try to run sudo apt --fix-broken install this is the return E: Failed to

**𝕂𝚞𝚋𝚒𝚔ℙ𝚒𝚡𝚎𝚕** @kubikpixel@chaos.social · 2025-03-14T16:55:10.000Z

𝕂𝚞𝚋𝚒𝚔ℙ𝚒𝚡𝚎𝚕 @kubikpixel@chaos.social

Ransomware gang creates tool to automate VPN brute-force attacks

The Black Basta ransomware operation created an automated brute-forcing framework dubbed 'BRUTED' to breach edge networking devices like firewalls and VPNs.

https://www.bleepingcomputer.com/news/security/black-basta-ransomware-creates-automated-tool-to-brute-force-vpns/

BleepingComputer · Mar 14Ransomware gang creates tool to automate VPN brute-force attacksBy Bill Toulas

#vpn #hacking #ransomware

Mar 15

**AskUbuntu** @askubuntu@ubuntu.social · Mar 9

AskUbuntu @askubuntu@ubuntu.social

Ufw blocking packets from tun0 after allowing them #networking #vpn #firewall #openvpn #ufw

https://askubuntu.com/q/1543277/612

Ask UbuntuUfw blocking packets from tun0 after allowing themI have a pi5 running 24.04.2 LTS with a simple openvpn (OpenVPN 2.6.12 aarch64-unknown-linux-gnu) install with a config looking something like: client dev tun0 proto udp remote xx 1194 resolv-retry

Mar 9

**Kevin Karhan** @kkarhan@infosec.space · Mar 2 *

Kevin Karhan @kkarhan@infosec.space

@torproject same with #obfs4 bridges: there is no option to say like ports=80,443 or similar, which makes it cumbersome to get said bridges.

And yes, for people stuck on #publicWiFi and shitty #MVNO|s this is most likely the only way they can get any #Tor connection work through #CGNAT and #firewall|s, as most do #BlockTor and it's associated #ports alongside common #proxy ports like 8000-9999 and anything they can't #MITM that isn't #HTTPS or #IMAP!

And trying to get places to #DontBlockTor that criminalize the use of #Tor is foolish at best.

I mean, I'm glad that I'm in #Germany and whilst #Hosters do ban Tor [contabo.com] in their #ToS, my #ISP can't ban me from operating a #relay or #bridge at home...

Contabo ToS Section 9.4:

"
(4) The Provider is entitled to immediately block any webspace packages and servers that are being used to operate the “TOR” service, insofar as the Provider has become aware that the server or package is being used unlawfully. "

#germany #hosters #tos

Mar 2 *

**Yoshimatsu** @Yoshi@toot.community · Feb 27 *

Yoshimatsu @Yoshi@toot.community

@ProPublica Get your act behind a #vpn, #firewall, #encrypted email, #burnerPhone and #pw protected computer. Just bc you're paranoid doesn't mean #MAGAmron and #muskrat aren't out to get you! Even if you're not the target, you don't want to end up as collateral damage.

Feb 27 *

**heise Security** @heisec@social.heise.de · 2025-02-24T09:55:00.000Z

heise Security @heisec@social.heise.de

Telekom bringt "SMS-Firewall"

Im April will die Telekom Empfänger besser vor bösartigen SMS schützen. Das Unternehmen startet eine "SMS-Firewall".

https://www.heise.de/news/Telekom-bringt-SMS-Firewall-10292738.html?wt_mc=sm.red.ho.mastodon.mastodon.md_beitraege.md_beitraege&utm_source=mastodon

heise online · Feb 24Telekom bringt "SMS-Firewall"By Dirk Knop

#Firewall #Security #SMS

Feb 24

**The New Oil** @thenewoil@mastodon.thenewoil.org · 2025-02-19T12:35:46.000Z

The New Oil @thenewoil@mastodon.thenewoil.org

#PaloAltoNetworks warns of another #firewall vulnerability under attack by hackers

https://techcrunch.com/2025/02/19/palo-alto-networks-warns-of-another-firewall-vulnerability-under-attack-by-hackers/

TechCrunch · Feb 19Palo Alto Networks warns of another firewall vulnerability under attack by hackers | TechCrunchThe US cybersecurity giant says hackers are exploiting the high-severity flaw to break into unpatched customer networks.

#cybersecurity #PaloAlto

Feb 20

**c't Magazin** @ct_Magazin@social.heise.de · Feb 17

c't Magazin @ct_Magazin@social.heise.de

heise+ | Blockadekonzepte: Unerwünschte Internetdienste und Server sperren

Kriminelle Server werden durch Firewalls oder Malware-Blocker begrenzt. Doch Regierungen können sie ohne Netzwerk-Kontakt auch gänzlich verstummen lassen.

https://www.heise.de/hintergrund/Blockadekonzepte-Unerwuenschte-Internetdienste-und-Server-sperren-10273884.html?wt_mc=sm.red.ho.mastodon.mastodon.md_beitraege.md_beitraege&utm_source=mastodon

c't MagazinBlockadekonzepte: Unerwünschte Internetdienste und Server sperrenKriminelle Server werden durch Firewalls oder Malware-Blocker begrenzt. Doch Regierungen können sie ohne Netzwerk-Kontakt auch gänzlich verstummen lassen.

#DNS #Firewall #Internet

Feb 17

**The New Oil** @thenewoil@mastodon.thenewoil.org · 2025-02-14T18:13:10.000Z

The New Oil @thenewoil@mastodon.thenewoil.org

#SonicWall #firewall bug leveraged in attacks after PoC exploit release

https://www.bleepingcomputer.com/news/security/sonicwall-firewall-bug-leveraged-in-attacks-after-poc-exploit-release/

BleepingComputer · Feb 14SonicWall firewall bug leveraged in attacks after PoC exploit release

More from

Sergiu Gatlan

#cybersecurity

Feb 16

**heise Security** @heisec@social.heise.de · 2025-02-16T10:29:00.000Z

heise Security @heisec@social.heise.de

Jetzt patchen! Sonicwall-Angreifer umgehen Authentifizierung von Firewalls

Derzeit finden Attacken auf Firewalls von Sonicwall statt. Sicherheitsupdates stehen zum Download bereit.

https://www.heise.de/news/Jetzt-patchen-Sonicwall-Angreifer-umgehen-Authentifizierung-von-Firewalls-10283899.html?wt_mc=sm.red.ho.mastodon.mastodon.md_beitraege.md_beitraege&utm_source=mastodon

heise online · Feb 16Jetzt patchen! Sonicwall-Angreifer umgehen Authentifizierung von FirewallsBy Dennis Schirrmacher

#Cyberangriff #Exploit #Firewall

Feb 16

**Kevin Karhan** @kkarhan@infosec.space · Feb 15 *

Kevin Karhan @kkarhan@infosec.space

@snow Maybe consider a provider that allows you to do #Blackholing?

In fact that is something #DECIX advocates for: Stopping #DDoS at the #IX level!

#Contabo for example allows to book a dedicaded, managed #pfSense #Firewall woth their #dedicaded #Servers so you can just block entire ASNs aggressively.

In my experience, blocking entire ASNs like #pfCloud, #CloudFlare, #DDoSguard, #aws and entire countries like Russia has been effective.

#pfcloud #cloudflare #ddosguard

Feb 15 *

**Topher** @topher@infosec.space · Feb 14

Topher @topher@infosec.space

Ok, for those of you who already know how to computer, here you go - this should be pretty damn good (pending a few additional things I'll be reviewing and potentially tweaking/adding).

Put these on your outbound and/or forward chains with reject or drop targets and enjoy not being able to reach Facebook/Meta properties.

I'll be publishing an actual script as well as all my notes and reference on these ranges, the netblock names, link to the SEC filings to confirm the names of their subsidiaries, so forth.

#Facebook #FuckFacebook #Meta #Firewall

31.13.24.0/21
31.13.64.0/18
45.64.40.0/22
57.141.0.0/16
57.142.0.0/15
57.144.0.0/14
57.148.0.0/15
66.220.144.0/20
69.63.176.0/20
69.171.224.0/19
74.119.76.0/22
102.221.188.0/22
102.132.96.0/19
103.4.96.0/22
129.134.0.0/16
147.75.208.0/20
157.240.0.0/16
163.70.128.0/17
163.77.128.0/17
163.114.128.0/20
173.252.64.0/18
179.60.192.0/22
185.60.216.0/22
185.89.216.0/22
199.201.64.0/22
204.15.20.0/22

Feb 14

**The New Oil** @thenewoil@mastodon.thenewoil.org · 2025-02-11T18:56:13.000Z

The New Oil @thenewoil@mastodon.thenewoil.org

#Fortinet discloses second #firewall auth bypass patched in January

https://www.bleepingcomputer.com/news/security/fortinet-discloses-second-firewall-auth-bypass-patched-in-january/

BleepingComputer · Feb 11Fortinet discloses second firewall auth bypass patched in January

More from

Sergiu Gatlan

#cybersecurity

Feb 13

**The New Oil** @thenewoil@mastodon.thenewoil.org · 2025-02-11T15:56:34.000Z

The New Oil @thenewoil@mastodon.thenewoil.org

#SonicWall #firewall exploit lets hackers hijack #VPN sessions, patch now

https://www.bleepingcomputer.com/news/security/sonicwall-firewall-exploit-lets-hackers-hijack-vpn-sessions-patch-now/

BleepingComputer · Feb 11SonicWall firewall exploit lets hackers hijack VPN sessions, patch nowBy Bill Toulas

#cybersecurity

Feb 13

**steve mookie kong** @mookie@chow.fan · Feb 5

steve mookie kong @mookie@chow.fan

This is why running an opnSense router awesome.

Splitting the software from off-the-shelf hardware means that I can keep my hardware and replace the software if it ever stops getting updates or the software maker starts doing shenanigans (looking at you pfSense).

#router #firewall #opnsense #pfsense #opensource

https://mastodon.social/@zackwhittaker/113951421812871589

MastodonZack Whittaker (@zackwhittaker@mastodon.social)Wow. Router maker Zyxel says it has no plans to release a patch for two *actively exploited* flaws in its routers affecting potentially thousands of customers. Instead, Zyxel is advising customers to rip out affected devices and buy new routers. However, the affected buggy routers are still available for purchase. https://techcrunch.com/2025/02/05/router-maker-zyxel-tells-customers-to-replace-vulnerable-hardware-exploited-by-hackers/

Feb 5

**Linuxiac** @linuxiac@mastodon.social · Jan 29

Linuxiac @linuxiac@mastodon.social

OPNsense 25.1 open-source firewall and routing platform rolls out powered by FreeBSD 14.2, with a revamped UI, ZFS snapshot support, and more.
https://linuxiac.com/opnsense-celebrates-10-years-with-the-25-1-ultimate-unicorn-release/

#freebsd #firewall #opnsense

Jan 29