Cybersecurity

5984 readers

31 users here now

c/cybersecurity is a community centered on the cybersecurity and information security profession. You can come here to discuss news, post something interesting, or just chat with others.

THE RULES

Instance Rules

Be respectful. Everyone should feel welcome here.
No bigotry - including racism, sexism, ableism, homophobia, transphobia, or xenophobia.
No Ads / Spamming.
No pornography.

Community Rules

Idk, keep it semi-professional?
Nothing illegal. We're all ethical here.
Rules will be added/redefined as necessary.

If you ask someone to hack your "friends" socials you're just going to get banned so don't do that.

Learn about hacking

Hack the Box

Try Hack Me

Pico Capture the flag

Other security-related communities [email protected] [email protected] [email protected] [email protected] [email protected]

Notable mention to [email protected]

founded 2 years ago

MODERATORS

kid

[email protected]

1751

advice needed (aussie.zone)

submitted 1 year ago by [email protected] to c/cybersecurity

10 comments fedilink

Hi, I’m not a coder etc but I’m not a complete noob with computers.

My FIL has apparently been scammed / hacked by some shithead (according to wife) who has apparently managed to get control whenever he turns his laptop on. I don’t know much more than that right now. The situation is pretty shityy because the poor old man lost EVERYTHING in recent flooding; all possessions, personal documents etc. He was given this laptop to help him get his life back together, personal admin etc.

He’s actually an OG coder and mathematician but is old enough to be vulnerable to the crap that these scum pull on the unsuspecting.

I’m wondering if there’s a way (rubberduck?) to quickly delete teamware etc as soon as the pc boots. Not sure how much admin control he has anymore.

Is there a safe mode (?) way of getting back control / kicking external admins?

Many thanks for any advice.

1752

DNS TXT Verification records (self.cybersecurity)

submitted 1 year ago by 1boiledpotato to c/cybersecurity

3 comments fedilink

Today I checked DNSDumpster for my domain and realized that TXT verification records for my email are visible to everyone. Should I be worried? If yes how can I hide them?

1753

IT Modernization Efforts Need to Prioritize Cybersecurity (www.cyberdefensemagazine.com)

submitted 1 year ago by [email protected] to c/cybersecurity

6 comments fedilink

1754

Russian Hacker Vladimir Dunaev Convicted for Creating TrickBot Malware (thehackernews.com)

submitted 1 year ago by [email protected] to c/cybersecurity

0 comments fedilink

1755

Bluetooth security flaws reveals all devices launched after 2014 can be hacked (lemmy.world)

submitted 1 year ago* (last edited 1 year ago) by [email protected] to c/cybersecurity

5 comments fedilink

Security researchers have discovered new Bluetooth security flaws that allow hackers to impersonate devices and perform man-in-the-middle attacks.

The vulnerabilities impact all devices with Bluetooth 4.2 through Bluetooth 5.4, including laptops, PCs, smartphones, tablets, and others.

Users can do nothing at the moment to fix the vulnerabilities, and the solution requires device manufacturers to make changes to the security mechanisms used by the technology.

Research paper: https://dl.acm.org/doi/pdf/10.1145/3576915.3623066

Github: https://github.com/francozappa/bluffs

CVE: https://nvd.nist.gov/vuln/detail/CVE-2023-24023

1756

Zyxel Releases Patches to Fix 15 Flaws in NAS, Firewall, and AP Devices (thehackernews.com)

submitted 1 year ago by [email protected] to c/cybersecurity

0 comments fedilink

1757

Okta hackers stole data on all customer support users in major breach (www.cnbc.com)

submitted 1 year ago by [email protected] to c/cybersecurity

0 comments fedilink

Hackers who compromised Okta’s customer support system stole data from all of the cybersecurity firm’s customer support users, Okta said in a letter to clients obtained by CNBC Tuesday, a far greater incursion than the company initially believed.

1758

Google Chrome emergency update fixes 6th zero-day exploited in 2023 (www.bleepingcomputer.com)

submitted 1 year ago by [email protected] to c/cybersecurity

1 comments fedilink

1759

Ardent Hospital ER's Disrupted in 6 States After Ransomware Attack (www.bleepingcomputer.com)

submitted 1 year ago by [email protected] to c/cybersecurity

0 comments fedilink

Looks like it hit on Thanksgiving

1760

The Microsoft Security Adoption Framework (SAF) is live (learn.microsoft.com)

submitted 1 year ago by [email protected] to c/cybersecurity

0 comments fedilink

1761

Socks5Systemz proxy service infects 10,000 systems worldwide (www.bleepingcomputer.com)

submitted 1 year ago by [email protected] to c/cybersecurity

0 comments fedilink

1762

NodeStealer attacks on Facebook take a provocative turn – threat actors deploy malvertising campaigns to hijack users’ accounts (www.bitdefender.com)

submitted 1 year ago by [email protected] to c/cybersecurity

0 comments fedilink

1763

Okta defends 2-week gap in response to identity token theft, says 134 customers affected (therecord.media)

submitted 1 year ago by [email protected] to c/cybersecurity

1 comments fedilink

1764

New Microsoft Exchange zero-days allow RCE, data theft attacks (www.bleepingcomputer.com)

submitted 1 year ago by [email protected] to c/cybersecurity

4 comments fedilink

1765

First handset with MTE on the market (googleprojectzero.blogspot.com)

submitted 1 year ago by [email protected] to c/cybersecurity

0 comments fedilink

1766

Your browser extension could grab your password and sensitive info (news.wisc.edu)

submitted 1 year ago by [email protected] to c/cybersecurity

3 comments fedilink

1767

The Wiki-Slack Cyberattack Analysis by eSentire’s Threat Response… (www.esentire.com)

submitted 1 year ago by [email protected] to c/cybersecurity

0 comments fedilink

1768

LastPass breach linked to theft of $4.4 million in crypto (www.bleepingcomputer.com)

submitted 1 year ago by [email protected] to c/cybersecurity

15 comments fedilink

1769

IT Army of Ukraine disrupted internet providers in territories occupied by Russia (securityaffairs.com)

submitted 1 year ago by [email protected] to c/cybersecurity

0 comments fedilink

1770

Cloudflare mitigated 89 hyper-volumetric HTTP distributed DDoS attacks exceeding 100 million rps (securityaffairs.com)

submitted 1 year ago by [email protected] to c/cybersecurity

2 comments fedilink

1771

Now Android and Windows devices aren't safe from Flipper Zero either (news.retiolus.net)

submitted 1 year ago by [email protected] to c/cybersecurity

0 comments fedilink

1772

Hackers that breached Las Vegas casinos rely on violent threats, research shows (cyberscoop.com)

submitted 1 year ago by [email protected] to c/cybersecurity

3 comments fedilink

1773

StripedFly malware framework infects 1 million Windows, Linux hosts (www.bleepingcomputer.com)

submitted 1 year ago by [email protected] to c/cybersecurity

6 comments fedilink

1774

Samsung Galaxy S23 hacked two more times at Pwn2Own Toronto (www.bleepingcomputer.com)

submitted 1 year ago by [email protected] to c/cybersecurity

1 comments fedilink

1775

5 southwestern Ontario hospitals hit by cyberattack, patient appointments to be rescheduled (www.cbc.ca)

submitted 1 year ago by [email protected] to c/cybersecurity

1 comments fedilink

Online services such as patient records and email have been down since Monday morning at five southwestern Ontario hospitals following a cyberattack, according to the hospitals' IT provider.