Cybersecurity

6889 readers
53 users here now

c/cybersecurity is a community centered on the cybersecurity and information security profession. You can come here to discuss news, post something interesting, or just chat with others.

THE RULES

Instance Rules

Community Rules

If you ask someone to hack your "friends" socials you're just going to get banned so don't do that.

Learn about hacking

Hack the Box

Try Hack Me

Pico Capture the flag

Other security-related communities [email protected] [email protected] [email protected] [email protected] [email protected]

Notable mention to [email protected]

founded 2 years ago
MODERATORS
kid
[email protected]
listing: all - local
776
11
More_eggs MaaS Expands Operations with RevC2 Backdoor and Venom Loader (thehackernews.com)
submitted 3 months ago by kid to c/cybersecurity
0 comments fedilink
777
14
Bypassing WAFs with the phantom $Version cookie (portswigger.net)
submitted 3 months ago by kid to c/cybersecurity
0 comments fedilink
778
35
Chinese Hackers Breach US Firm, Maintain Network Access for Months (hackread.com)
submitted 3 months ago by kid to c/cybersecurity
0 comments fedilink
779
7
URL File NTLM Hash Disclosure Vulnerability (0day) - and Free Micropatches for it (blog.0patch.com)
submitted 3 months ago by kid to c/cybersecurity
0 comments fedilink
780
197
China bans use of Intel, AMD and Nvidia Processor Chips for security concerns (www.cybersecurity-insiders.com)
submitted 3 months ago by kid to c/cybersecurity
52 comments fedilink
781
43
Microsoft spots another China spy crew stealing US data (www.theregister.com)
submitted 3 months ago by kid to c/cybersecurity
1 comments fedilink
782
17
Russia's 'BlueAlpha' APT Hides in Cloudflare Tunnels (www.darkreading.com)
submitted 3 months ago by kid to c/cybersecurity
0 comments fedilink
783
33
Russian programmer says FSB agents planted spyware on his Android phone (techcrunch.com)
submitted 3 months ago by kid to c/cybersecurity
0 comments fedilink
784
3
State-Provided Software Helped Stop Cyber Attack in Texas (www.govtech.com)
submitted 3 months ago by [email protected] to c/cybersecurity
0 comments fedilink
785
14
Solana SDK backdoored to steal secrets, private keys (www.csoonline.com)
submitted 3 months ago by [email protected] to c/cybersecurity
2 comments fedilink
 
 

Two spoofed versions of the Web3.js library were pushed out to capture private keys and send them to a hardcoded address.

786
7
'Earth Minotaur' Exploits WeChat, Sends Spyware to Uyghurs (www.darkreading.com)
submitted 3 months ago by [email protected] to c/cybersecurity
0 comments fedilink
 
 

The emerging threat actor, potentially a Chinese state-sponsored APT, is using the known exploit kit Moonshine in cross-platform attacks that deliver a previously undisclosed backdoor called "DarkNimbus" to ethnic minorities, including Tibetans.

787
19
Backdoor slips into popular code library, drains ~$155k from digital wallets (arstechnica.com)
submitted 3 months ago by [email protected] to c/cybersecurity
1 comments fedilink
788
9
Cisco NX-OS Flaw Let Attackers Bypass Image Signature Verification (gbhackers.com)
submitted 3 months ago by kid to c/cybersecurity
0 comments fedilink
789
49
Ukraine’s DDoS attack cripples Russia’s Gazprombank (english.nv.ua)
submitted 3 months ago by kid to c/cybersecurity
2 comments fedilink
790
17
Deepfake Fraud: How AI is Bypassing Biometric Security in Financial Institutions (www.group-ib.com)
submitted 3 months ago by kid to c/cybersecurity
0 comments fedilink
 
 

Our research highlights several key aspects of deepfake fraud. It explores the main deepfake techniques used by fraudsters to bypass Know Your Customer (KYC) and biometric verification systems. It also outlines observed behavior patterns of deepfake fraud, based on insights from the Group-IB Fraud Protection Team. The financial and societal impacts of deepfake fraud are evaluated, emphasizing its growing urgency. Recommendations are provided for financial institutions to enhance their security systems against deepfake-based fraud. Additionally, the document calls for greater awareness within the financial sector about the emerging threat of deepfake technology and the importance of proactive defense measures.

791
19
83% of organizations reported insider attacks in 2024 (securityintelligence.com)
submitted 3 months ago by kid to c/cybersecurity
1 comments fedilink
792
12
New DroidBot Android malware targets 77 banking, crypto apps (www.bleepingcomputer.com)
submitted 3 months ago by kid to c/cybersecurity
0 comments fedilink
793
11
Massive breach exposes major USAID contractor (cybernews.com)
submitted 3 months ago by kid to c/cybersecurity
0 comments fedilink
794
49
T-Mobile US CSO: Spies jumped from one telco to another in a way "I've not seen in my career" (go.theregister.com)
submitted 3 months ago by [email protected] to c/cybersecurity
4 comments fedilink
795
186
FBI Warns Americans to Start Using Encrypted Messaging Apps (gizmodo.com)
submitted 3 months ago by kid to c/cybersecurity
53 comments fedilink
796
11
Deloitte UK Hacked - Brain Cipher Group Claim to Have Stolen 1 TB of Data (gbhackers.com)
submitted 3 months ago by kid to c/cybersecurity
4 comments fedilink
797
6
BT unit took servers offline after Black Basta ransomware breach (www.bleepingcomputer.com)
submitted 3 months ago by kid to c/cybersecurity
0 comments fedilink
798
9
NHS Ransomware Attack: Russian INC Ransom Gang Steals Patient Data (hackread.com)
submitted 3 months ago by kid to c/cybersecurity
0 comments fedilink
799
29
Russian hackers hijack Pakistani hackers' servers for their own attacks (www.bleepingcomputer.com)
submitted 3 months ago by kid to c/cybersecurity
1 comments fedilink
800
10
New TLDs Such as .shop, .top and .xyz Leveraged by Phishers (gbhackers.com)
submitted 3 months ago by kid to c/cybersecurity
0 comments fedilink
view more: ‹ prev next ›