Tag: cybersecurity

Protect Your Privacy With An XMPP Tor Hidden Service (Prosody)

~ Tom's IT Cafe ~ Leave a comment

The world is changing fast.
Yesterday’s mistake becomes today’s data leak – and tomorrow’s compromise.

Privacy is not a default setting.
It’s constant configuration and calibration.

You know how to install an IRC server as a Tor hidden service.
You’ve seen the modern features and modularity of the XMPP protocol.

A Tor hidden service protects both the server and the user.
This setup is designed to reduce exposure of IP addresses and limit metadata leakage.
It does not protect against compromised endpoints or user mistakes.

Continue reading “Protect Your Privacy With An XMPP Tor Hidden Service (Prosody)”

Run IRC As A Tor Hidden Service (Inspircd + Anope)

~ Tom's IT Cafe ~ 1 Comment

IRC with InspIRCd and Anope works well as an internet-facing service.
Your domain name, the TLS certificates and SASL authentication make it secure.
Cloaking hides your address from other users.

But what about IRC Operators and Network Admins?
They can see the addresses/hosts the clients connect from.

As an IRC Operator you can increase the trust in your services.

You will learn now how to run InspIRCd as a Tor-only hidden service.

Continue reading “Run IRC As A Tor Hidden Service (Inspircd + Anope)”

GPG Basics: Simple, Safe Encryption for Everyday IT Work

~ Tom's IT Cafe ~ Leave a comment

When you hear the word encryption, it often sounds like something only security researchers and intelligence agencies deal with. But in reality, every IT professional – even small teams, freelancers, or home users – should understand the basics of protecting sensitive files.

GnuPG (or GPG) is one of the most trusted tools for this. It’s free, open-source, built into every Linux distribution, and works perfectly for encrypting files, verifying downloads, or signing work-related documents.

This guide walks you through a clean, beginner-friendly setup – no advanced OPSEC, no air-gapped machines, no master-key rituals. Just the essentials that anyone at home or at work can start using today.

Continue reading “GPG Basics: Simple, Safe Encryption for Everyday IT Work”

Small Business Cybersecurity Starter Kit – Ghost Curated

~ Tom's IT Cafe ~ Leave a comment

Large enterprises?
Small businesses?
Threat actors watch them.

They want your data.
They hunt for your money.

Whales defend themselves.
Dedicated security teams.
Budget for tools.

Small businesses?
Vulnerable.
No security team.
No IT budget.
No shield.
Easy targets.

For you, protection comes in a different form.

Continue reading “Small Business Cybersecurity Starter Kit – Ghost Curated”

Vulnerabilities Included – Vibe Coding Security

~ Tom's IT Cafe ~ Leave a comment

Computers are an integral part of our lives.
They manage our bank accounts.
They power the grids that light our cities.
Remote work.
Messaging.
Dating.

In the core – there is code.
Structures of instructions for the computer.

Vibe Coding?
You say it normally as a human.
AI translates it to the machine.

But does it really understand you?

Continue reading “Vulnerabilities Included – Vibe Coding Security”

Command and Control: The Whisper Net of Cyber Intruders

~ Tom's IT Cafe ~ Leave a comment

DeadSwitch Security // Hacking Mindset
“In the right hands, it’s a command center. In the wrong ones, a noise beacon.”

What is a C2?

C2 stands for Command and Control.

It’s the silent channel between an intruder and the compromised machine.
It’s how payloads receive instructions.
How stolen data gets exfiltrated.
How breaches stay active, coordinated, and lethal.

A C2 is not just a tool.
It’s a networked weapon.

Continue reading “Command and Control: The Whisper Net of Cyber Intruders”