To all companies out there that value #CyberSecurity, #Community and #DEI: Are you up for supporting a unique space where all kinds of folks can share and learn together? The Open Security Conference is looking for sponsors!

💜 Our values: https://opensecurityconference.org/about/values/
📦 Our sponsor packages: https://opensecurityconference.org/support/sponsorship/
💬 How to reach out: https://opensecurityconference.org/contact/

See you at #osco on November 5-8 in Rückersbach! 🤩

#osco26 #Security #InfoSec #AppSec #OTSecurity [lisi]

To all companies out there that value #CyberSecurity, #Community and #DEI: Are you up for supporting a unique space where all kinds of folks can share and learn together? The Open Security Conference is looking for sponsors!

💜 Our values: https://opensecurityconference.org/about/values/
📦 Our sponsor packages: https://opensecurityconference.org/support/sponsorship/
💬 How to reach out: https://opensecurityconference.org/contact/

See you at #osco on November 5-8 in Rückersbach! 🤩

#osco26 #Security #InfoSec #AppSec #OTSecurity [lisi]

As of today, our security champion pilot program officially started! 🤩🎉 The kickoff went really well, all things are in place, and we already see benefits. The next months will show if we can keep the momentum, keep things sustainable, and especially keep this program a valuable investment for everyone. I mean, we have a hypothesis, and we're testing it out right now. 😁 What I love most is that we're having a collaborative atmosphere from the start - it's promising. 😊 #SecurityChampions #AppSec

As of today, our security champion pilot program officially started! 🤩🎉 The kickoff went really well, all things are in place, and we already see benefits. The next months will show if we can keep the momentum, keep things sustainable, and especially keep this program a valuable investment for everyone. I mean, we have a hypothesis, and we're testing it out right now. 😁 What I love most is that we're having a collaborative atmosphere from the start - it's promising. 😊 #SecurityChampions #AppSec

🚨 Early Bird alert! 🚨 Global AppSec Vienna tickets are still available, but not for long. Prices go up on February 1st. Book now to lock in the best rate 🎟️🎟️✨
https://owasp.glueup.com/event/owasp-global-appsec-eu-2026-vienna-austria-162243/

#appsec #earlybird #conference #vienna #owasp #opensource #cybersecurity

🚨 Early Bird alert! 🚨 Global AppSec Vienna tickets are still available, but not for long. Prices go up on February 1st. Book now to lock in the best rate 🎟️🎟️✨
https://owasp.glueup.com/event/owasp-global-appsec-eu-2026-vienna-austria-162243/

#appsec #earlybird #conference #vienna #owasp #opensource #cybersecurity

New year, new #osco! ✨ We're about to regroup and get things started for #osco26, the third edition of the Open Security Conference taking place on November 5-8. We're also super happy to welcome new organizing team members! 🤩 Stay tuned. 😉 #CyberSecurity #Security #InfoSec #AppSec [lisi]

New year, new #osco! ✨ We're about to regroup and get things started for #osco26, the third edition of the Open Security Conference taking place on November 5-8. We're also super happy to welcome new organizing team members! 🤩 Stay tuned. 😉 #CyberSecurity #Security #InfoSec #AppSec [lisi]

#CVECrowd, your go-to place for #CVE discussions on the Fediverse and Bluesky, now supports email alerts.

https://cvecrowd.com

Here's how it works:

- You define one or more alert keywords
- Keywords are matched against vendor, product, and package names from official CVE data
- If a post mentions a CVE that matches one of your keywords, you receive an email notification

Read more below 🧵

#Pentesting #AppSec #InfoSec #CyberSecurity #BugBounty #Hacking

#CVECrowd, your go-to place for #CVE discussions on the Fediverse and Bluesky, now supports email alerts.

https://cvecrowd.com

Here's how it works:

- You define one or more alert keywords
- Keywords are matched against vendor, product, and package names from official CVE data
- If a post mentions a CVE that matches one of your keywords, you receive an email notification

Read more below 🧵

#Pentesting #AppSec #InfoSec #CyberSecurity #BugBounty #Hacking

The year 2025 is slowly coming to an end.

End of years can be joyful and relaxing, exciting and wholesome, full of reflection and gaining energy for the new year. This time can also be lonely and sad, incredibly stressful and terribly difficult to navigate, with folks barely making it through.

Let's be mindful and considerate - and help each other to move the needle. Now and in 2026. 💜

#osco #osco26 #CyberSecurity #Security #InfoSec #AppSec #ProductSecurity #OTsecurity [lisi]

The year 2025 is slowly coming to an end.

End of years can be joyful and relaxing, exciting and wholesome, full of reflection and gaining energy for the new year. This time can also be lonely and sad, incredibly stressful and terribly difficult to navigate, with folks barely making it through.

Let's be mindful and considerate - and help each other to move the needle. Now and in 2026. 💜

#osco #osco26 #CyberSecurity #Security #InfoSec #AppSec #ProductSecurity #OTsecurity [lisi]

"Secure your app with Memory Integrity Enforcement" - An Apple Developer session: https://youtu.be/iYUMr3Y9fAU

https://developer.apple.com/documentation/Xcode/enabling-enhanced-security-for-your-app

#MIE #MTE #AppSec

"Secure your app with Memory Integrity Enforcement" - An Apple Developer session: https://youtu.be/iYUMr3Y9fAU

https://developer.apple.com/documentation/Xcode/enabling-enhanced-security-for-your-app

#MIE #MTE #AppSec

This is such a good read on how secrets end up in logs and neat advice on how to prevent this by @ar: https://allan.reyes.sh/posts/keeping-secrets-out-of-logs/ #RecommendedRead #AppSec #SecureCoding

You're curious how the past editions of #osco turned out? We've got you covered! 🙌🏻

🎉 This was #osco25! Check out our recap: https://2025.opensecurityconference.org/conference/recapitulation/
💜 Gain impressions from all conferences: https://opensecurityconference.org/about/past-conferences/
✅ Save the dates for #osco26 on November 5-8, 2026! 😉

#CyberSecurity #Security #InfoSec #AppSec #ProductSecurity #OTsecurity #OpenSpace [lisi]

This is such a good read on how secrets end up in logs and neat advice on how to prevent this by @ar: https://allan.reyes.sh/posts/keeping-secrets-out-of-logs/ #RecommendedRead #AppSec #SecureCoding

You're curious how the past editions of #osco turned out? We've got you covered! 🙌🏻

🎉 This was #osco25! Check out our recap: https://2025.opensecurityconference.org/conference/recapitulation/
💜 Gain impressions from all conferences: https://opensecurityconference.org/about/past-conferences/
✅ Save the dates for #osco26 on November 5-8, 2026! 😉

#CyberSecurity #Security #InfoSec #AppSec #ProductSecurity #OTsecurity #OpenSpace [lisi]

Moving Beyond the NPM elliptic Package

If you're in a hurry, head on over to soatok/elliptic-to-noble and follow the instructions in the README in order to remove the elliptic package from your project and all dependencies in node_modules. Art: CMYKat Why replace the elliptic package? Yesterday, the Trail of Bits blog published a post about finding cryptographic bugs in the elliptic library (a Javascript package on NPM) by using the Wycheproof.

http://soatok.blog/2025/11/19/moving-beyond-the-npm-elliptic-package/

#npm #crypto #cryptography #elliptic #security #infosec #cve #mitigation #appsec #javascript #js #npm #npmsecurity #npmpackages