Cybersecurity

7483 readers
111 users here now

c/cybersecurity is a community centered on the cybersecurity and information security profession. You can come here to discuss news, post something interesting, or just chat with others.

THE RULES

Instance Rules

Community Rules

If you ask someone to hack your "friends" socials you're just going to get banned so don't do that.

Learn about hacking

Hack the Box

Try Hack Me

Pico Capture the flag

Other security-related communities [email protected] [email protected] [email protected] [email protected] [email protected]

Notable mention to [email protected]

founded 2 years ago
MODERATORS
kid
[email protected]
listing: all - local
801
91
PirateFi game on Steam caught installing password-stealing malware (www.bleepingcomputer.com)
submitted 3 months ago by kid to c/cybersecurity
4 comments fedilink
802
14
What is device code phishing, and why are Russian spies so successful at it? (arstechnica.com)
submitted 3 months ago by [email protected] to c/cybersecurity
0 comments fedilink
803
6
people who gave comptia security+ am i improving/ready for the test? (lemmy.world)
submitted 3 months ago by [email protected] to c/cybersecurity
4 comments fedilink
 
 

804
65
Government Networks Being Exposed (cyberintel.substack.com)
submitted 3 months ago by [email protected] to c/cybersecurity
4 comments fedilink
 
 

Can anyone verify this report? This seems... Bad.

Between January 14 and February 8, servers belonging to Lawrence Livermore National Laboratory, Los Alamos National Laboratory, Thomas Jefferson National Accelerator Facility, and Fermi Accelerator National Laboratory have been found with Remote Desktop Protocol (RDP) services exposed to the public internet. This grants malicious actors the opportunity to hack into servers hosting sensitive nuclear research data, a golden egg for spy agencies across the globe.

My investigation also revealed government servers directly interfacing with AI products, creating yet another disturbing risk to national security that is extremely difficult to reverse or mitigate.

With the state of government security before this, I don't have a lot of hope these were secure, but at least they weren't exposed directly to the Internet for attack.....

805
15
China’s Salt Typhoon Spies Are Still Hacking Telecoms—Now by Exploiting Cisco Routers (www.wired.com)
submitted 3 months ago by kid to c/cybersecurity
0 comments fedilink
806
11
Hacker leaks account data of 12 million Zacks Investment users (www.bleepingcomputer.com)
submitted 3 months ago by kid to c/cybersecurity
0 comments fedilink
807
9
Exploitation of Old ThinkPHP, OwnCloud Vulnerabilities Surges (www.securityweek.com)
submitted 3 months ago by kid to c/cybersecurity
0 comments fedilink
808
5
PostgreSQL Vulnerability Exploited Alongside BeyondTrust Zero-Day in Targeted Attacks (thehackernews.com)
submitted 3 months ago by kid to c/cybersecurity
0 comments fedilink
809
11
RansomHub Becomes 2024’s Top Ransomware Group, Hitting 600+ Organizations Globally (thehackernews.com)
submitted 3 months ago by kid to c/cybersecurity
0 comments fedilink
810
4
Chinese APT 'Emperor Dragonfly' Moonlights With Ransomware (www.darkreading.com)
submitted 3 months ago by kid to c/cybersecurity
0 comments fedilink
811
18
whoAMI attacks give hackers code execution on Amazon EC2 instances (www.bleepingcomputer.com)
submitted 3 months ago by kid to c/cybersecurity
0 comments fedilink
812
32
Spyware maker caught distributing malicious Android apps for years (techcrunch.com)
submitted 3 months ago by [email protected] to c/cybersecurity
2 comments fedilink
813
14
New Malware Exploiting Outlook As a Communication Channel via The Microsoft Graph API (cybersecuritynews.com)
submitted 3 months ago by kid to c/cybersecurity
1 comments fedilink
814
3
Palo Alto Networks Patches Authentication Bypass Exploit in PAN-OS Software (thehackernews.com)
submitted 3 months ago by kid to c/cybersecurity
0 comments fedilink
815
8
Massive IoT Data Breach Exposes 2.7 Billion Records (www.infosecurity-magazine.com)
submitted 3 months ago by kid to c/cybersecurity
1 comments fedilink
816
9
DPRK hackers dupe targets into typing PowerShell commands as admin (www.bleepingcomputer.com)
submitted 3 months ago by kid to c/cybersecurity
1 comments fedilink
817
9
AultCare Announces Data Breach Affecting Employer-Sponsored Health Plan Participants | JD Supra (www.jdsupra.com)
submitted 3 months ago by kid to c/cybersecurity
0 comments fedilink
818
18
Microsoft Uncovers Sandworm Subgroup's Global Cyber Attacks Spanning 15+ Countries (thehackernews.com)
submitted 3 months ago by kid to c/cybersecurity
0 comments fedilink
819
19
Millions exposed as 14M shipping records accidentally leaked (cybernews.com)
submitted 3 months ago by kid to c/cybersecurity
1 comments fedilink
820
40
[Patched 09/02/25] Leaking the email of any YouTube user for $10,000 (brutecat.com)
submitted 3 months ago by [email protected] to c/cybersecurity
2 comments fedilink
 
 

cross-posted from: https://feddit.org/post/7894572

Leaking the email of any YouTube user for $10,000

821
8
North Korean Hackers Exploit PowerShell Trick to Hijack Devices in New Cyberattack (thehackernews.com)
submitted 3 months ago by kid to c/cybersecurity
2 comments fedilink
822
26
SystemBC RAT Now Targets Linux, Spreading Ransomware and Infostealers (hackread.com)
submitted 3 months ago by kid to c/cybersecurity
1 comments fedilink
823
8
OpenAI Was Not Breached, Say Researchers (www.infosecurity-magazine.com)
submitted 3 months ago by kid to c/cybersecurity
0 comments fedilink
824
39
New hack uses prompt injection to corrupt Gemini’s long-term memory (arstechnica.com)
submitted 3 months ago by kid to c/cybersecurity
6 comments fedilink
825
31
OpenSSL patched high-severity flaw CVE-2024-12797 (securityaffairs.com)
submitted 3 months ago by kid to c/cybersecurity
0 comments fedilink
view more: ‹ prev next ›