This dumb password rule is from myezyaccess.com patient portal system.

12-character maximum password length. This is not a single website but a patient portal system used by hundreds of medical facilities via subdomains, with password policy apparently being consistent for all sites.

https://dumbpasswordrules.com/sites/myezyaccess-com-patient-portal-system/

Happy #Sunday security sleuths. By me @Forbes: does anyone actually check Microsoft updates before pushing them out anymore? Serious question - with apologies to my Microsoft buddies.

#infosec

https://www.forbes.com/sites/daveywinder/2025/07/06/microsoft-confirms-windows-11-update-causes-security-firewall-error/

A hidden but increasingly widespread phenomenon. Some negotiators in the cybersecurity field end up profiting even from the pockets of attackers.

https://www.suspectfile.com/cybercrime-and-corrupt-negotiators-the-dark-side-of-ransomware-negotiations/

Trump’s “Made in USA” phone actually made in China, Purism CEO alleges https://technode.com/2025/06/30/trumps-made-in-usa-phone-actually-made-in-china-purism-ceo-alleges/ #cybersecurity #infosec

This dumb password rule is from BBVA.

Username is your national ID (easy to find) and your password must have up to **6** alphanumeric characters only.
For a bank account with all your money in one of the largest financial institutions in the world.

https://dumbpasswordrules.com/sites/bbva/

China launches first brain-computer industry hub in Shanghai https://technode.com/2025/06/30/china-launches-first-brain-computer-industry-hub-in-shanghai/ #cybersecurity #infosec

Trump’s tariff threat pushes Canada to scrap digital services tax https://arstechnica.com/tech-policy/2025/06/trumps-tariff-threat-pushes-canada-to-scrap-digital-services-tax/ #cybersecurity #infosec

Personally I don’t believe that AI will have a sudden, profound impact on companies from the defensive #infosec perspective, since a lot of companies are still considering establishing a committee to evaluate authorizing a project that looks at the cost risk benefit of disabling smbv1.

Germany asks Google, Apple remove DeepSeek AI from app stores https://www.bleepingcomputer.com/news/security/germany-asks-google-apple-remove-deepseek-ai-from-app-stores/ #cybersecurity #infosec

Iran-backed hackers may target US defense companies tied to Israel, agencies warn https://www.defenseone.com/threats/2025/06/iran-backed-hackers-may-target-us-defense-companies-tied-israel-agencies-warn/406435/ #cybersecurity #infosec

Microsoft offers free Windows 10 extended security updates, but there's a catch: you'll have to use cloud backups linked to your OneDrive account if you want Microsoft to continue to support your PC.

Read more: https://arstechnica.com/gadgets/2025/06/microsoft-extends-free-windows-10-security-updates-into-2026-with-strings-attached/

Developer Michael Lynch accidentally discovered that the company goHardDrive is leaking customer details through an insecure RMA status check portal.

Read more: https://www.tomshardware.com/tech-industry/cyber-security/recertified-hdd-vendor-goharddrive-caught-leaking-thousands-of-customer-details-company-pays-astonishingly-low-usd20-bug-bounty-for-discovery-of-inexplicable-online-database-of-names-addresses-phone-numbers-and-more

Backing up your PC is an effective method of preventing data loss. Read the article below to find out how to do so without using expensive third-party software.

https://teknofixitsolutions.com/how-to-back-up-your-entire-windows-pc-for-free/

Is your PC having issues that are too difficult to fix? It might be time to reinstall Windows. Read the article below to find out how.

https://teknofixitsolutions.com/3-ways-you-can-reinstall-windows-10-11/

Iranian Hackers’ Preferred ICS Targets Left Open Amid Fresh US Attack Warning https://www.securityweek.com/iranian-hackers-preferred-ics-targets-left-open-amid-fresh-us-attack-warning/ #cybersecurity #infosec

This dumb password rule is from Pole-Emploi.

Password must contain at least one letter, one number and one character from `&-_@*%=.,;:!?` only.
It rejected passwords generated by pass, while accepting `p@ssw0rd!`...
They also block pasting on the password confirmation field,
forcing you to manually type your 32-letters-long generated passwo...

https://dumbpasswordrules.com/sites/pole-emploi/

Jak wygląda realne zagrożenie ransomware w firmie, która nie może sobie pozwolić na przestój? Na przykładzie cyfrowego banku Maciej Ogórkiewicz pokazał wyzwania związane z zapewnieniem ciągłości działania w obliczu ataku.

Zobacz wykład z OMH 2024 i przygotuj się na tegoroczną edycję:
https://www.youtube.com/watch?v=se472ZlkG2A

Rejestracja na #OhMyHack 2025 trwa https://bit.ly/OMHbilet

How Geopolitical Tensions Are Shaping Cyber Warfare

Threats are no longer abstract. They're specific, persistent, and deeply personal. And they're coming from all corners, including states, proxies, and organized groups.

The organizations that will thrive in this landscape combine fundamentals with foresight.

#cyberwarfare #politics #security #cybersecurity #infosec #hackers #hacking #hacked

https://www.darkreading.com/vulnerabilities-threats/geopolitical-tensions-shape-cyber-warfare

Indiana University silent on major security breach while dozens of services are down for weeks.

https://www.ipm.org/news/2025-07-04/administrator-says-iu-will-never-explain-it-security-breach-publicly?fbclid=IwY2xjawLVRjFleHRuA2FlbQIxMQABHkfpe_KACeX4r2kR7sWjWSMdr6ASrFltBVcS4xXAaIAtUBLiUuG7g8KXBR83_aem_tMrMLsvOTvB3sMFPwNz8qg

Share threat intelligence and detect tools about APT "NightEgle" (APT-Q-95)

https://github.com/RedDrip7/NightEagle_Disclose