Cybersecurity

7228 readers
85 users here now

c/cybersecurity is a community centered on the cybersecurity and information security profession. You can come here to discuss news, post something interesting, or just chat with others.

THE RULES

Instance Rules

Community Rules

If you ask someone to hack your "friends" socials you're just going to get banned so don't do that.

Learn about hacking

Hack the Box

Try Hack Me

Pico Capture the flag

Other security-related communities [email protected] [email protected] [email protected] [email protected] [email protected]

Notable mention to [email protected]

founded 2 years ago
MODERATORS
kid
[email protected]
listing: all - local
876
3
Chrome 132 Arrives: 16 Security Fixes in Latest Stable Release (securityonline.info)
submitted 4 months ago by kid to c/cybersecurity
0 comments fedilink
877
24
Millions Stolen: North Korea Hackers Target Blockchain Industry (securityonline.info)
submitted 4 months ago by kid to c/cybersecurity
1 comments fedilink
878
10
WP3.XYZ malware attacks add rogue admins to 5,000+ WordPress sites (www.bleepingcomputer.com)
submitted 4 months ago by kid to c/cybersecurity
0 comments fedilink
879
35
FBI deletes Chinese PlugX malware from thousands of US computers (www.bleepingcomputer.com)
submitted 4 months ago by kid to c/cybersecurity
6 comments fedilink
880
21
RSYNC: 6 vulnerabilities (www.openwall.com)
submitted 4 months ago by [email protected] to c/cybersecurity
0 comments fedilink
 
 

Two independent groups of researchers have identified a total of 6 vulnerabilities in rsync. In the most severe CVE, an attacker only requires anonymous read access to a rsync server, such as a public mirror, to execute arbitrary code on the machine the server is running on.

881
7
Microsoft January 2025 Patch Tuesday (isc.sans.edu)
submitted 4 months ago by kid to c/cybersecurity
0 comments fedilink
 
 

This month's Microsoft patch update addresses a total of 209 vulnerabilities, including 12 classified as critical. Among these, 3 vulnerabilities have been actively exploited in the wild, and 5 have been disclosed prior to the patch release, marking them as zero-days. The updates span various components, with significant attention required for vulnerabilities that could lead to privilege escalation and remote code execution. Users and administrators are strongly advised to prioritize the application of these patches to safeguard against potential threats and maintain system integrity.

882
15
Google OAuth flaw lets attackers gain access to abandoned accounts (www.bleepingcomputer.com)
submitted 4 months ago by kid to c/cybersecurity
1 comments fedilink
883
28
US removes malware allegedly planted on computers by Chinese-backed hackers (www.reuters.com)
submitted 4 months ago by [email protected] to c/cybersecurity
3 comments fedilink
884
46
UK Considers Ban on Ransomware Payments by Public Bodies (www.infosecurity-magazine.com)
submitted 4 months ago by kid to c/cybersecurity
6 comments fedilink
885
12
Hackers use FastHTTP in new high-speed Microsoft 365 password attacks (www.bleepingcomputer.com)
submitted 4 months ago by kid to c/cybersecurity
3 comments fedilink
886
15
Backdooring Your Backdoors - Another $20 Domain, More Governments (labs.watchtowr.com)
submitted 4 months ago by [email protected] to c/cybersecurity
0 comments fedilink
887
219
Insurance company accused of using secret software to illegally collect and sell location data on millions of Americans (www.malwarebytes.com)
submitted 4 months ago by kid to c/cybersecurity
15 comments fedilink
888
8
Critical SAP Flaws Revealed: CVE-2025-0070 and CVE-2025-0066 with CVSS 9.9 Demand Immediate Action (securityonline.info)
submitted 4 months ago by kid to c/cybersecurity
0 comments fedilink
889
24
Hackers Attacking Internet Connected Fortinet Firewalls Using Zero-Day Vulnerability (gbhackers.com)
submitted 4 months ago by kid to c/cybersecurity
4 comments fedilink
890
13
Linux Kernel Privilege Escalation Vulnerability (CVE-2024-27397) Exploited: PoC Released (securityonline.info)
submitted 4 months ago by kid to c/cybersecurity
0 comments fedilink
891
21
Microsoft: macOS bug lets hackers install malicious kernel drivers (www.bleepingcomputer.com)
submitted 4 months ago by kid to c/cybersecurity
1 comments fedilink
892
5
UK domain registry Nominet confirms breach via Ivanti zero-day (www.bleepingcomputer.com)
submitted 4 months ago by kid to c/cybersecurity
0 comments fedilink
893
12
Ransomware crew abuses AWS native encryption (www.theregister.com)
submitted 4 months ago by kid to c/cybersecurity
0 comments fedilink
894
23
EU law enforcement training agency data breach: Data of 97,000 individuals compromised (www.helpnetsecurity.com)
submitted 4 months ago by kid to c/cybersecurity
0 comments fedilink
895
14
Phishing Campaigns Exploit YouTube URLs and Microsoft 365 Themes to Steal Credentials (securityonline.info)
submitted 4 months ago by kid to c/cybersecurity
2 comments fedilink
896
17
NoName057 targets Italy again after Zelensky's visit to the country (securityaffairs.com)
submitted 4 months ago by kid to c/cybersecurity
0 comments fedilink
897
10
IBM Watsonx.ai Vulnerability Let Attackers Trigger XSS Attacks (gbhackers.com)
submitted 4 months ago by kid to c/cybersecurity
0 comments fedilink
898
17
PoC Exploit Released for Critical macOS Sandbox Vulnerability (CVE-2024-54498) (gbhackers.com)
submitted 4 months ago by kid to c/cybersecurity
1 comments fedilink
899
36
Microsoft sues service for creating illicit content with its AI platform (arstechnica.com)
submitted 4 months ago by kid to c/cybersecurity
4 comments fedilink
900
9
Meet FunkSec: A New, Surprising Ransomware Group, Powered by AI (blog.checkpoint.com)
submitted 4 months ago by kid to c/cybersecurity
0 comments fedilink
view more: ‹ prev next ›