this post was submitted on 21 May 2024
19 points (100.0% liked)

Cybersecurity

5731 readers
121 users here now

c/cybersecurity is a community centered on the cybersecurity and information security profession. You can come here to discuss news, post something interesting, or just chat with others.

THE RULES

Instance Rules

Community Rules

If you ask someone to hack your "friends" socials you're just going to get banned so don't do that.

Learn about hacking

Hack the Box

Try Hack Me

Pico Capture the flag

Other security-related communities [email protected] [email protected] [email protected] [email protected] [email protected] [email protected] [email protected]

Notable mention to [email protected]

founded 1 year ago
MODERATORS
 

​A critical Fluent Bit vulnerability that can be exploited in denial-of-service and remote code execution attacks impacts all major cloud providers and many technology giants.

top 2 comments
sorted by: hot top controversial new old
[–] paysrenttobirds 3 points 6 months ago

I don't know much about this stuff, but thinking of all the work drm games have gone through to prevent piracy, is it possible to do something with these highly popular dependencies so each user gets a sort of differently obfuscated version or something so that finding a vulnerability in one distribution doesn't give you immediate access to all of them, so that it isn't such a valuable target in the first place and damage can be limited? There's going to be no end to this kind of attack as long as you have a single piece of software embedded in thousands of giant systems.

[–] kid 2 points 6 months ago