Cybersecurity

5974 readers

505 users here now

c/cybersecurity is a community centered on the cybersecurity and information security profession. You can come here to discuss news, post something interesting, or just chat with others.

THE RULES

Instance Rules

Be respectful. Everyone should feel welcome here.
No bigotry - including racism, sexism, ableism, homophobia, transphobia, or xenophobia.
No Ads / Spamming.
No pornography.

Community Rules

Idk, keep it semi-professional?
Nothing illegal. We're all ethical here.
Rules will be added/redefined as necessary.

If you ask someone to hack your "friends" socials you're just going to get banned so don't do that.

Learn about hacking

Hack the Box

Try Hack Me

Pico Capture the flag

Other security-related communities [email protected] [email protected] [email protected] [email protected] [email protected]

Notable mention to [email protected]

founded 2 years ago

MODERATORS

kid

[email protected]

1526

Lessons from a Ransomware Attack against the British Library - Source: www.schneier.com - CISO2CISO.COM & CYBER SECURITY GROUP (ciso2ciso.com)

submitted 9 months ago by [email protected] to c/cybersecurity

0 comments fedilink

1527

Backdoor found in widely used Linux utility breaks encrypted SSH connections (arstechnica.com)

submitted 9 months ago by [email protected] to c/cybersecurity

1 comments fedilink

Malicious code planted in xz Utils has been circulating for more than a month.

1528

Lessons From the LockBit Takedown (www.darkreading.com)

submitted 9 months ago by [email protected] to c/cybersecurity

0 comments fedilink

1529

TheMoon Botnet Resurfaces, Exploiting EoL Devices to Power Criminal Proxy (thehackernews.com)

submitted 9 months ago by [email protected] to c/cybersecurity

0 comments fedilink

1530

Backdoor in upstream xz/liblzma leading to ssh server compromise (www.openwall.com)

submitted 9 months ago by [email protected] to c/cybersecurity

2 comments fedilink

1531

Mind the Patch Gap: Exploiting an io_uring Vulnerability in Ubuntu - Exodus Intelligence (blog.exodusintel.com)

submitted 9 months ago by [email protected] to c/cybersecurity

0 comments fedilink

cross-posted from: https://lemmy.world/post/13657109

1532

Think tank urges US and EU to cooperate over cybersecurity labeling (cybernews.com)

submitted 9 months ago by [email protected] to c/cybersecurity

0 comments fedilink

1533

Cisco IOS Bugs Allow Unauthenticated, Remote DoS Attacks (www.darkreading.com)

submitted 9 months ago by [email protected] to c/cybersecurity

4 comments fedilink

Several Cisco products, including IOS, IOS XE, and AP software, need patching against various high-risk security vulnerabilities.

1534

Linux Version of DinodasRAT Spotted in Cyber Attacks Across Several Countries (thehackernews.com)

submitted 9 months ago by kid to c/cybersecurity

3 comments fedilink

1535

Microsoft: 87% of UK Businesses Are Unprepared for Cyberattacks - Source: www.techrepublic.com (ciso2ciso.com)

submitted 9 months ago by [email protected] to c/cybersecurity

4 comments fedilink

Source: www.techrepublic.com – Author: Owen Hughes A report from Microsoft and Goldsmiths, University of London has found that just 13% of U.K. businesses are resilient to cyberattacks, with 48% deemed vulnerable and the remaining 39% facing high risk. A survey of 1,039 senior business decision-makers and 1,051 employees revealed that the majority of U.K. organisations […]

1536

PyPI suspends new user registration to block malware campaign (www.bleepingcomputer.com)

submitted 9 months ago by [email protected] to c/cybersecurity

0 comments fedilink

1537

Hackers Hit Indian Defense, Energy Sectors with Malware Posing as Air Force Invite (thehackernews.com)

submitted 9 months ago by kid to c/cybersecurity

0 comments fedilink

1538

INC Ransom threatens to leak 3TB of NHS Scotland stolen data (www.bleepingcomputer.com)

submitted 9 months ago by kid to c/cybersecurity

0 comments fedilink

1539

CISA Warns: Hackers Actively Attacking Microsoft SharePoint Vulnerability (thehackernews.com)

submitted 9 months ago by kid to c/cybersecurity

0 comments fedilink

1540

Recent ‘MFA Bombing’ Attacks Targeting Apple Users – Krebs on Security (krebsonsecurity.com)

submitted 9 months ago by kid to c/cybersecurity

3 comments fedilink

1541

New Darcula phishing service targets iPhone users via iMessage (www.bleepingcomputer.com)

submitted 9 months ago by [email protected] to c/cybersecurity

3 comments fedilink

A new phishing-as-a-service (PhaaS) named 'Darcula' uses 20,000 domains to spoof brands and steal credentials from Android and iPhone users in more than 100 countries.

1542

Finland confirms APT31 hackers behind 2021 parliament breach (www.bleepingcomputer.com)

submitted 9 months ago* (last edited 9 months ago) by kid to c/cybersecurity

0 comments fedilink

APT31 is a collective of Chinese state-sponsored intelligence officers, contract hackers and attendant staff that engage in hacking activities and "malicious cyber operations" according to the U.S. Treasury department

1543

TA577 Assault: New Attack Exploiting NTLM Vulnerability | Proofpoint US (www.proofpoint.com)

submitted 9 months ago by kid to c/cybersecurity

0 comments fedilink

1544

New ShadowRay Campaign Targets Ray AI Framework in Global Attack (www.hackread.com)

submitted 9 months ago by kid to c/cybersecurity

0 comments fedilink

1545

Flipping Pages: An analysis of a new Linux vulnerability in nf_tables and hardened exploitation techniques (pwning.tech)

submitted 9 months ago by [email protected] to c/cybersecurity

0 comments fedilink

cross-posted from: https://lemmy.world/post/13589447

1546

Germany Warns Of 17k Vulnerable Microsoft Exchange Servers Exposed Online - RedPacket Security (www.redpacketsecurity.com)

submitted 9 months ago by [email protected] to c/cybersecurity

0 comments fedilink

The German national cybersecurity authority warned on Tuesday that it found at least 17,000 Microsoft Exchange servers in Germany exposed online and

1547

Free Vpn Apps On Google Play Turned Android Phones Into Proxies - RedPacket Security (www.redpacketsecurity.com)

submitted 9 months ago by [email protected] to c/cybersecurity

14 comments fedilink

Over 15 free VPN apps on Google Play were found using a malicious software development kit that turned Android devices into unwitting residential proxies,

1548

Apple Security Bug Opens iPhone, iPad to RCE (www.darkreading.com)

submitted 9 months ago by [email protected] to c/cybersecurity

2 comments fedilink

CVE-2024-1580 allows remote attackers to execute arbitrary code on affected devices.

1549

Worldwide Agenda Ransomware Wave Targets VMware ESXi Servers (www.darkreading.com)

submitted 9 months ago by [email protected] to c/cybersecurity

0 comments fedilink

A new and improved variant of the group's malware combines fileless infection, BYOVD, and more to cause havoc in virtual environments.

1550

TheMoon malware infects 6,000 ASUS routers in 72 hours for proxy service (www.bleepingcomputer.com)

submitted 9 months ago by kid to c/cybersecurity

4 comments fedilink