Cybersecurity

6847 readers

16 users here now

c/cybersecurity is a community centered on the cybersecurity and information security profession. You can come here to discuss news, post something interesting, or just chat with others.

THE RULES

Instance Rules

Be respectful. Everyone should feel welcome here.
No bigotry - including racism, sexism, ableism, homophobia, transphobia, or xenophobia.
No Ads / Spamming.
No pornography.

Community Rules

Idk, keep it semi-professional?
Nothing illegal. We're all ethical here.
Rules will be added/redefined as necessary.

If you ask someone to hack your "friends" socials you're just going to get banned so don't do that.

Learn about hacking

Pico Capture the flag

Other security-related communities [email protected] [email protected] [email protected] [email protected] [email protected]

Notable mention to [email protected]

founded 2 years ago

MODERATORS

[email protected]

26

15

Oracle Denies Breach Amid Hacker’s Claim of Access to 6 Million Records (hackread.com)

submitted 4 days ago by kid to c/cybersecurity

0 comments fedilink

27

11

Medusa ransomware uses malicious Windows driver ABYSSWORKER to disable security tools (securityaffairs.com)

submitted 4 days ago by kid to c/cybersecurity

0 comments fedilink

28

11

Steampipe: How to secure API credentials? (sh.itjust.works)

submitted 4 days ago* (last edited 4 days ago) by _synack to c/cybersecurity

11 comments fedilink

I learned of the existence of steampipe recently, which seems to be an interesting tool to help teams - including cybersecurity teams - understand their cloud assets and ensure compliance with security policies.

I started playing around with it, and one thing that struck me immediately is the need to store API credentials for the various plugins in plaintext in JSON files in your user profile. This struck me as incredibly insecure, especially given that the default UNIX permissions on the files seem to be 644.

Does anyone know if there is a way to store and dynamically retrieve these API credentials more securely, such as in a remote key store like AWS Secrets Manager or Azure Key Vault? I spent awhile searching and watching some YouTube videos, but didn't come across a method to do this.

29

8

Linux kernel Rust module for rootkit detection (blog.thalium.re)

submitted 4 days ago by kid to c/cybersecurity

0 comments fedilink

30

7

Cloak Ransomware Hits Virginia Attorney General’s Office, Disrupts IT Systems (hackread.com)

submitted 4 days ago by kid to c/cybersecurity

0 comments fedilink

31

8

Coinbase was primary target of recent GitHub Actions breaches (www.bleepingcomputer.com)

submitted 4 days ago by kid to c/cybersecurity

0 comments fedilink

32

6

New VanHelsingRaaS Attacking Linux, BSD, ARM, and ESXi Systems (cybersecuritynews.com)

submitted 4 days ago by kid to c/cybersecurity

0 comments fedilink

33

6

Hidden Threats: How Microsoft 365 Backups Store Risks for Future Attacks (www.bleepingcomputer.com)

submitted 4 days ago by kid to c/cybersecurity

0 comments fedilink

34

6

Next.js and the corrupt middleware: the authorizing artifact (zhero-web-sec.github.io)

submitted 4 days ago by kid to c/cybersecurity

0 comments fedilink

35

4

New SvcStealer Malware Attacking Users To Steal Sensitive Data From Browsers & Apps (cybersecuritynews.com)

submitted 4 days ago by kid to c/cybersecurity

0 comments fedilink

36

2

Nation-State 'Paragon' Spyware Infections Target Civil Society (www.darkreading.com)

submitted 4 days ago by kid to c/cybersecurity

0 comments fedilink

37

2

Cybercriminals Exploit CheckPoint Driver Flaws in Malicious Campaign (www.infosecurity-magazine.com)

submitted 4 days ago by kid to c/cybersecurity

0 comments fedilink

38

5

Web Shell to Ransomware: New VMware Attack Vector Exposed by Sygnia (securityonline.info)

submitted 1 week ago by kid to c/cybersecurity

2 comments fedilink

39

3

RansomHub affiliate uses custom backdoor Betruger (securityaffairs.com)

submitted 1 week ago by kid to c/cybersecurity

0 comments fedilink

40

5

CVE-2025-0755: MongoDB C Driver Vulnerability Could Lead to Buffer Overflow (securityonline.info)

submitted 1 week ago by kid to c/cybersecurity

0 comments fedilink

41

8

LayerX Labs Identifies New Phishing Campaign Targeted at Mac Users - LayerX (layerxsecurity.com)

submitted 1 week ago by kid to c/cybersecurity

0 comments fedilink

42

25

WhatsApp fixed zero-day used to deploy Paragon Graphite spyware (securityaffairs.com)

submitted 1 week ago by kid to c/cybersecurity

0 comments fedilink

43

5

Operation FishMedley targeting governments, NGOs, and think tanks (www.welivesecurity.com)

submitted 1 week ago by kid to c/cybersecurity

0 comments fedilink

44

12

Rooted Androids 3,000x More Likely to Be Breached, Even iPhones Not Safe (hackread.com)

submitted 1 week ago by kid to c/cybersecurity

2 comments fedilink

45

7

Veeam RCE bug lets domain users hack backup servers, patch now (www.bleepingcomputer.com)

submitted 1 week ago by kid to c/cybersecurity

0 comments fedilink

46

5

U.S. CISA adds Edimax IC-7100 IP Camera, NAKIVO, and SAP NetWeaver AS Java flaws to its Known Exploited Vulnerabilities catalog (securityaffairs.com)

submitted 1 week ago by kid to c/cybersecurity

0 comments fedilink

47

11

PoC Released: Windows Explorer CVE-2025-24071 Vulnerability Exposes NTLM Hashes (securityonline.info)

submitted 1 week ago by kid to c/cybersecurity

0 comments fedilink

48

10

UK urges critical orgs to adopt quantum cryptography by 2035 (www.bleepingcomputer.com)

submitted 1 week ago by kid to c/cybersecurity

4 comments fedilink

49

21

HTTP Flaw in Apple’s Passwords App Left iPhone Users Vulnerable to Phishing for Over 3 Years (techoreon.com)

submitted 1 week ago by kid to c/cybersecurity

0 comments fedilink

50

9

HellCat hackers go on a worldwide Jira hacking spree (www.bleepingcomputer.com)

submitted 1 week ago by kid to c/cybersecurity

0 comments fedilink