Cybersecurity

5922 readers

312 users here now

c/cybersecurity is a community centered on the cybersecurity and information security profession. You can come here to discuss news, post something interesting, or just chat with others.

THE RULES

Instance Rules

Be respectful. Everyone should feel welcome here.
No bigotry - including racism, sexism, ableism, homophobia, transphobia, or xenophobia.
No Ads / Spamming.
No pornography.

Community Rules

Idk, keep it semi-professional?
Nothing illegal. We're all ethical here.
Rules will be added/redefined as necessary.

If you ask someone to hack your "friends" socials you're just going to get banned so don't do that.

Learn about hacking

Hack the Box

Try Hack Me

Pico Capture the flag

Other security-related communities [email protected] [email protected] [email protected] [email protected] [email protected]

Notable mention to [email protected]

founded 2 years ago

MODERATORS

kid

[email protected]

251

Hackers abuse Avast anti-rootkit driver to disable defenses (www.bleepingcomputer.com)

submitted 1 month ago by kid to c/cybersecurity

0 comments fedilink

252

-5

The Technology the Trump Administration Could Use to Hack Your Phone (www.newyorker.com)

submitted 1 month ago by [email protected] to c/cybersecurity

5 comments fedilink

cross-posted from: https://fed.dyne.org/post/315914

253

China Wiretaps Americans in 'Worst Hack in Our Nation's History' (gizmodo.com)

submitted 1 month ago by [email protected] to c/cybersecurity

4 comments fedilink

cross-posted from: https://lemmy.zip/post/26768429

America's aging infrastructure seems to be the culprit.

254

Five Ransomware Groups Responsible for 40% of Cyber-Attacks in 2024 (www.infosecurity-magazine.com)

submitted 1 month ago by kid to c/cybersecurity

0 comments fedilink

255

Russian Hackers Deploy HATVIBE and CHERRYSPY Malware Across Europe and Asia (thehackernews.com)

submitted 1 month ago by kid to c/cybersecurity

0 comments fedilink

256

Russian Spies Jumped From One Network to Another Via Wi-Fi in an Unprecedented Hack (www.wired.com)

submitted 1 month ago by [email protected] to c/cybersecurity

6 comments fedilink

257

'Water Barghest' Sells Hijacked IoT Devices for Proxy Botnet Misuse (www.darkreading.com)

submitted 1 month ago by kid to c/cybersecurity

1 comments fedilink

258

US military officials used China-linked promotional gift shop GS-JJ, exposing over 300K emails (cybernews.com)

submitted 1 month ago by kid to c/cybersecurity

4 comments fedilink

259

Apple Admits to Security Vulnerability That Leaves Crypto Users Exposed—Here's What You Should Do - Decrypt (decrypt.co)

submitted 1 month ago by [email protected] to c/cybersecurity

1 comments fedilink

Apple has become aware of a security flaw that could let hackers take control of a user’s iPhone or iPad if they visit a harmful website.

Maybe i'm reading this wrong but it doesn't seem to be cryptocurrency-specific:

Jeremiah O’Connor, CTO and co-founder of crypto cybersecurity firm Trugard, told Decrypt that “attackers could access sensitive data like private keys or passwords” stored in their browser, enabling crypto theft if the user’s device remained unpatched.

260

Chinese APT Gelsemium Targets Linux Systems with New WolfsBane Backdoor (thehackernews.com)

submitted 1 month ago by kid to c/cybersecurity

0 comments fedilink

261

2,000 Palo Alto Networks devices compromised in latest attacks (www.helpnetsecurity.com)

submitted 1 month ago by kid to c/cybersecurity

0 comments fedilink

262

Helldown Ransomware Attacking VMware ESX And Linux Servers (gbhackers.com)

submitted 1 month ago by kid to c/cybersecurity

0 comments fedilink

263

MITRE shares 2024's top 25 most dangerous software weaknesses (www.bleepingcomputer.com)

submitted 1 month ago by kid to c/cybersecurity

0 comments fedilink

264

China's Liminal Panda APT Attacks Telcos, Steals Data (www.darkreading.com)

submitted 1 month ago by kid to c/cybersecurity

2 comments fedilink

265

Ransomware Gangs Evolve: They're Now Recruiting Penetration Testers (blog.knowbe4.com)

submitted 1 month ago by kid to c/cybersecurity

2 comments fedilink

266

Ubuntu affected by 10-year-old flaws in needrestart package (www.scworld.com)

submitted 1 month ago by kid to c/cybersecurity

0 comments fedilink

267

Cyberattack at French hospital exposes health data of 750,000 patients (www.bleepingcomputer.com)

submitted 1 month ago by kid to c/cybersecurity

0 comments fedilink

268

US and UK Military Social Network "Forces Penpals" Exposes SSN, PII Data (hackread.com)

submitted 1 month ago by kid to c/cybersecurity

0 comments fedilink

269

D-Link says replace vulnerable routers or risk pwnage (www.theregister.com)

submitted 1 month ago by [email protected] to c/cybersecurity

2 comments fedilink

Owners of older models of D-Link VPN routers are being told to retire and replace their devices following the disclosure of a serious remote code execution (RCE) vulnerability.

Most of the details about the bug are being kept under wraps given the potential for wide exploitation. The vendor hasn't assigned it a CVE identifier or really said much about it at all other than that it's a buffer overflow bug that leads to unauthenticated RCE.

Unauthenticated RCE issues are essentially as bad as vulnerabilities get, and D-Link warned that if customers continued to use the affected products, the devices connected to them would also be put at risk.

270

New 'Helldown' Ransomware Variant Expands Attacks to VMware and Linux Systems (thehackernews.com)

submitted 1 month ago by kid to c/cybersecurity

2 comments fedilink

271

Ford 'actively investigating' breach claims (www.theregister.com)

submitted 1 month ago by kid to c/cybersecurity

0 comments fedilink

272

Recently disclosed VMware vCenter Server bugs are actively exploited in attacks (securityaffairs.com)

submitted 1 month ago by kid to c/cybersecurity

0 comments fedilink