Cybersecurity

5915 readers
282 users here now

c/cybersecurity is a community centered on the cybersecurity and information security profession. You can come here to discuss news, post something interesting, or just chat with others.

THE RULES

Instance Rules

Community Rules

If you ask someone to hack your "friends" socials you're just going to get banned so don't do that.

Learn about hacking

Hack the Box

Try Hack Me

Pico Capture the flag

Other security-related communities [email protected] [email protected] [email protected] [email protected] [email protected]

Notable mention to [email protected]

founded 2 years ago
MODERATORS
kid
[email protected]
listing: all - local
151
11
More_eggs MaaS Expands Operations with RevC2 Backdoor and Venom Loader (thehackernews.com)
submitted 1 month ago by kid to c/cybersecurity
0 comments fedilink
152
14
Bypassing WAFs with the phantom $Version cookie (portswigger.net)
submitted 1 month ago by kid to c/cybersecurity
0 comments fedilink
153
35
Chinese Hackers Breach US Firm, Maintain Network Access for Months (hackread.com)
submitted 1 month ago by kid to c/cybersecurity
0 comments fedilink
154
7
URL File NTLM Hash Disclosure Vulnerability (0day) - and Free Micropatches for it (blog.0patch.com)
submitted 1 month ago by kid to c/cybersecurity
0 comments fedilink
155
197
China bans use of Intel, AMD and Nvidia Processor Chips for security concerns (www.cybersecurity-insiders.com)
submitted 1 month ago by kid to c/cybersecurity
52 comments fedilink
156
43
Microsoft spots another China spy crew stealing US data (www.theregister.com)
submitted 1 month ago by kid to c/cybersecurity
1 comments fedilink
157
17
Russia's 'BlueAlpha' APT Hides in Cloudflare Tunnels (www.darkreading.com)
submitted 1 month ago by kid to c/cybersecurity
0 comments fedilink
158
33
Russian programmer says FSB agents planted spyware on his Android phone (techcrunch.com)
submitted 1 month ago by kid to c/cybersecurity
0 comments fedilink
159
3
State-Provided Software Helped Stop Cyber Attack in Texas (www.govtech.com)
submitted 1 month ago by [email protected] to c/cybersecurity
0 comments fedilink
160
14
Solana SDK backdoored to steal secrets, private keys (www.csoonline.com)
submitted 1 month ago by [email protected] to c/cybersecurity
2 comments fedilink
 
 

Two spoofed versions of the Web3.js library were pushed out to capture private keys and send them to a hardcoded address.

161
7
'Earth Minotaur' Exploits WeChat, Sends Spyware to Uyghurs (www.darkreading.com)
submitted 1 month ago by [email protected] to c/cybersecurity
0 comments fedilink
 
 

The emerging threat actor, potentially a Chinese state-sponsored APT, is using the known exploit kit Moonshine in cross-platform attacks that deliver a previously undisclosed backdoor called "DarkNimbus" to ethnic minorities, including Tibetans.

162
19
Backdoor slips into popular code library, drains ~$155k from digital wallets (arstechnica.com)
submitted 1 month ago by [email protected] to c/cybersecurity
1 comments fedilink
163
9
Cisco NX-OS Flaw Let Attackers Bypass Image Signature Verification (gbhackers.com)
submitted 1 month ago by kid to c/cybersecurity
0 comments fedilink
164
49
Ukraine’s DDoS attack cripples Russia’s Gazprombank (english.nv.ua)
submitted 1 month ago by kid to c/cybersecurity
2 comments fedilink
165
17
Deepfake Fraud: How AI is Bypassing Biometric Security in Financial Institutions (www.group-ib.com)
submitted 1 month ago by kid to c/cybersecurity
0 comments fedilink
 
 

Our research highlights several key aspects of deepfake fraud. It explores the main deepfake techniques used by fraudsters to bypass Know Your Customer (KYC) and biometric verification systems. It also outlines observed behavior patterns of deepfake fraud, based on insights from the Group-IB Fraud Protection Team. The financial and societal impacts of deepfake fraud are evaluated, emphasizing its growing urgency. Recommendations are provided for financial institutions to enhance their security systems against deepfake-based fraud. Additionally, the document calls for greater awareness within the financial sector about the emerging threat of deepfake technology and the importance of proactive defense measures.

166
19
83% of organizations reported insider attacks in 2024 (securityintelligence.com)
submitted 1 month ago by kid to c/cybersecurity
1 comments fedilink
167
12
New DroidBot Android malware targets 77 banking, crypto apps (www.bleepingcomputer.com)
submitted 1 month ago by kid to c/cybersecurity
0 comments fedilink
168
11
Massive breach exposes major USAID contractor (cybernews.com)
submitted 1 month ago by kid to c/cybersecurity
0 comments fedilink
169
49
T-Mobile US CSO: Spies jumped from one telco to another in a way "I've not seen in my career" (go.theregister.com)
submitted 1 month ago by [email protected] to c/cybersecurity
4 comments fedilink
170
185
FBI Warns Americans to Start Using Encrypted Messaging Apps (gizmodo.com)
submitted 1 month ago by kid to c/cybersecurity
53 comments fedilink
171
11
Deloitte UK Hacked - Brain Cipher Group Claim to Have Stolen 1 TB of Data (gbhackers.com)
submitted 1 month ago by kid to c/cybersecurity
4 comments fedilink
172
6
BT unit took servers offline after Black Basta ransomware breach (www.bleepingcomputer.com)
submitted 1 month ago by kid to c/cybersecurity
0 comments fedilink
173
9
NHS Ransomware Attack: Russian INC Ransom Gang Steals Patient Data (hackread.com)
submitted 1 month ago by kid to c/cybersecurity
0 comments fedilink
174
29
Russian hackers hijack Pakistani hackers' servers for their own attacks (www.bleepingcomputer.com)
submitted 1 month ago by kid to c/cybersecurity
1 comments fedilink
175
10
New TLDs Such as .shop, .top and .xyz Leveraged by Phishers (gbhackers.com)
submitted 1 month ago by kid to c/cybersecurity
0 comments fedilink
view more: ‹ prev next ›