Mustafa Kaan Demirhan
LightNews LightNews
banner
mstfknn.bsky.social
Mustafa Kaan Demirhan
@mstfknn.bsky.social
34 followers 12 following 30 posts
Posts Replies Media Videos
mstfknn.bsky.social
Do Not Disturb
Physical access (or "evil maid") attacks are some of the most insidious threats faced by those of us who travel with our Macs.
github.com/objective-se...
#Security #hardening #macos
GitHub - objective-see/DoNotDisturb: Detect Evil Maid Attacks
Detect Evil Maid Attacks. Contribute to objective-see/DoNotDisturb development by creating an account on GitHub.
github.com
June 19, 2025 at 7:55 PM
mstfknn.bsky.social
LuLu
LuLu is the free open-source macOS firewall
github.com/objective-se...
#Security #hardening #macos
GitHub - objective-see/LuLu: LuLu is the free open-source macOS firewall
LuLu is the free open-source macOS firewall. Contribute to objective-see/LuLu development by creating an account on GitHub.
github.com
June 19, 2025 at 7:54 PM
mstfknn.bsky.social
Santa
Santa is a binary and file access authorization system for macOS.
github.com/northpolesec...
#macos #Hardening #Security
GitHub - northpolesec/santa: A binary and file access authorization system for macOS.
A binary and file access authorization system for macOS. - northpolesec/santa
github.com
June 19, 2025 at 7:53 PM
mstfknn.bsky.social
Hardening macOS
www.bejarano.io/hardening-ma...
#macos #Hardening #Security
Hardening macOS
Quick and easy guide for securing macOS systems, for both laymen and security enthusiasts. Last updated for Sequoia.
www.bejarano.io
June 19, 2025 at 7:52 PM
mstfknn.bsky.social
Ekip arkadaşları arıyoruz🎉👇

Back End Developer #TR
www.linkedin.com/jobs/view/42...

Technical Sales Engineer #US
www.linkedin.com/jobs/view/41...

Sales Manager #US
www.linkedin.com/jobs/view/41...

Sales Manager #TR
www.linkedin.com/jobs/view/42...

#hiring @brandefense.bsky.social
BRANDEFENSE hiring Back End Developer in Türkiye | LinkedIn
Posted 10:42:02 AM. Company DescriptionBrandefense is a leading SaaS platform that provides innovative solutions for…See this and similar jobs on LinkedIn.
www.linkedin.com
April 10, 2025 at 2:59 PM
mstfknn.bsky.social
Just in! WordPress Vulnerability & Patch Roundup for June 2023 is now live. Noteworthy updates include patches for Jetpack, WooCommerce Stripe Payment Gateway, and several other plugins.

https://blog.sucuri.net/2023/06/wordpress-vulnerability-patch-roundup-june-2023.html
June 30, 2023 at 11:31 AM
mstfknn.bsky.social
⚠️ Heads up, SAP users! 4 critical vulnerabilities uncovered in SAP's Application Server for ABAP platform tech. One flaw even affects the ABAP Kernel.

https://www.darkreading.com/application-security/researchers-release-technical-details-pocs-for-4-sap-bugs
June 30, 2023 at 11:20 AM
mstfknn.bsky.social
🔐 RedHat has issued a critical security update (RHSA-2023:3954-01) for Red Hat Fuse 7.12, addressing multiple vulnerabilities with varying severity levels. Check your systems and apply the update promptly.

https://access.redhat.com/errata/RHSA-2023:3954
June 30, 2023 at 11:09 AM
mstfknn.bsky.social
🔔 Elasticsearch users, a high-risk DoS vulnerability (CVE-2023-1370) has been detected affecting certain versions. Update now to 8.8.2 or 7.17.11 where this issue has been resolved. Stay vigilant, stay safe! 💻🔒

https://discuss.elastic.co/t/elasticsearch-8-8-2-7-17-11-security-update/337205
June 30, 2023 at 10:58 AM
mstfknn.bsky.social
Urgent update! A critical #RCE vulnerability (CVE-2023-32571) has been identified in #DynamicLinq library. The issue could allow arbitrary code execution.

https://research.nccgroup.com/2023/06/13/dynamic-linq-injection-remote-code-execution-vulnerability-cve-2023-32571/
Dynamic Linq Injection Remote Code Execution Vulnerability (CVE-2023-32571)
Product Details NameSystem.Linq.Dynamic.CoreAffected versions1.0.7.10 to 1.2.25Fixed versions>= 1.3.0URL Vulnerability Summary CVECVE-2023-32571CWECWE-184: Incomplete List of Disallowed InputsCV…
research.nccgroup.com
June 16, 2023 at 1:40 PM
mstfknn.bsky.social
🚨 ALERT: Critical SSRF Vulnerability (CVE-2021-33690) discovered in #SAPNetWeaver. High risk, CVSS score 9.9. Users of versions 7.11 to 7.50, apply SAP's approved patches immediately. Stay vigilant. More info: https://redrays.io/cve-2021-33690-server-side-request-forgery-vulnerability/
June 1, 2023 at 12:46 PM
mstfknn.bsky.social
🔐#SecurityAlert: New critical vulnerability in #ImageMagick allows remote command injection (CVE-2023-34152). If you're running ImageMagick on your servers, apply the patch now!
https://securityonline.info/cve-2023-34152-shell-command-injection-bug-affecting-imagemagick/
May 31, 2023 at 9:36 AM
mstfknn.bsky.social
🚨WordPress is force installing a critical security patch for the Jetpack plug-in on 5M+ sites. Already 4.13M+ sites updated. Be sure to check your version! Stay safe, keep updated.
https://www.bleepingcomputer.com/news/security/wordpress-force-installs-critical-jetpack-patch-on-5-million-sites/
May 31, 2023 at 12:07 AM
mstfknn.bsky.social
WordPress users, stay secure! The May 2023 vulnerability & patch roundup is out. Key vulnerabilities in plugins like Elementor, Advanced Custom Fields Pro & more have been patched. Stay informed, update regularly. https://blog.sucuri.net/2023/05/wordpress-vulnerability-patch-roundup-may-2023.html
May 29, 2023 at 4:54 PM
mstfknn.bsky.social
⚠️ SecurityAlert: Critical vulnerabilities discovered in Moxa's MXsecurity Series. Could allow unauthorized users to bypass authentication or execute commands. Upgrade to software v1.0.1 or higher ASAP!
https://www.cisa.gov/news-events/ics-advisories/icsa-23-145-01
May 25, 2023 at 3:49 PM
mstfknn.bsky.social
⚠️ #SecurityAlert: Critical vulnerabilities found in Zyxel firewall and VPN products. Both are buffer overflow issues allowing potential remote code execution or DoS attacks.
https://www.bleepingcomputer.com/news/security/zyxel-warns-of-critical-vulnerabilities-in-firewall-and-vpn-devices/
May 25, 2023 at 3:02 PM
mstfknn.bsky.social
BarracudaESG Alert! A zero-day vulnerability (CVE-2023-2868) was exploited and has been patched. If impacted, check your ESG interface for instructions and review your networks for compromises. Stay safe! https://securityaffairs.com/146620/hacking/barracuda-email-security-gateway-bug.html
May 24, 2023 at 7:34 PM
mstfknn.bsky.social
🔐 #SecurityUpdate Alert! @Dell has released DSA-2023-187 update addressing vulnerabilities in Avamar, NVE, and PowerProtect DP Series Appliances. Ensure your systems are protected and check out the update here: https://www.dell.com/support/kbdoc/tr-tr/000213738/dsa-2023-187
May 24, 2023 at 11:49 AM
mstfknn.bsky.social
🚨#GitLab users! Critical security flaw (CVE-2023-2825) identified in version 16.0.0 could allow unauthenticated users access to sensitive data. Upgrade immediately to version 16.0.1👉 https://about.gitlab.com/releases/2023/05/23/critical-security-release-gitlab-16-0-1-released/
May 24, 2023 at 8:17 AM
mstfknn.bsky.social
🔐 #CybersecurityAlert: Critical vulnerabilities identified in Mitsubishi Electric MELSEC Series CPU modules & Hitachi Energy's RTU500 Series Product.
Mitsubishi: www.cisa.gov/news-events/ics-advisories/icsa-23-143-03
Hitachi: www.cisa.gov/news-events/ics-advisories/icsa-23-143-02
May 23, 2023 at 5:10 PM
mstfknn.bsky.social
Join my professional network and connect with me on LinkedIn
https://www.linkedin.com/comm/mynetwork/discovery-see-all?usecase=PEOPLE_FOLLOWS&followMember=mstfknn
May 22, 2023 at 12:17 PM
mstfknn.bsky.social
⚠️ Urgent! Power9 & Power10 users, a critical security vulnerability (CVE 2023-30438) has been found in PowerVM hypervisor. Risk of data leakage & arbitrary code execution! https://www.itjungle.com/2023/05/22/critical-security-vulnerability-in-powervm-hypervisor/
May 22, 2023 at 12:10 PM
mstfknn.bsky.social
🚨 SecurityAlert! Multiple vulnerabilities found in Cisco Small Business Series Switches. Could lead to DoS or allow attackers to execute arbitrary code. Updates available, apply ASAP.
https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-sg-web-multi-S9g4Nkgv
May 20, 2023 at 7:01 PM
mstfknn.bsky.social
🚨#Apple users, attention! Three zero-day vulnerabilities have been patched that could expose your devices to serious threats. Update your devices ASAP to stay secure. 🔒 More details: https://www.darkreading.com/application-security/apple-patches-3-zero-days-possibly-already-exploited
May 19, 2023 at 9:32 PM
mstfknn.bsky.social
#Ransomware is on our watch!
We covered 591 incidents that happened over Q1 2023. Improve your defenses with our helpful insights.
Jump in now and discover Cyber Insights.
See the full report here: eu1.hubs.ly/H03NXgb0
May 18, 2023 at 10:45 AM