azorius.net

Flipper Zero 'DarkWeb' Firmware Bypasses Rolling Code Security on Major Vehicle Brands (cybersecuritynews.com)
in cybersecurity@infosec.pub from cm0002@lemmy.world on 09 Aug 02:32
comments (3)

Windows User Account Control Bypassed Using Character Editor to Escalate Privileges (cybersecuritynews.com)
in cybersecurity@infosec.pub from cm0002@lemmy.world on 09 Aug 02:21
comments (2)

Hackers Went Looking for a Backdoor in High-Security Safes—and Now Can Open Them in Seconds (www.wired.com)
in cybersecurity@sh.itjust.works from floofloof@lemmy.ca on 09 Aug 00:08
comments (6)

Is it fine if a website says "email already in use" before you hit submit?
in cybersecurity@sh.itjust.works from Jankatarch@lemmy.world on 08 Aug 22:14
comments (8)

DEFCON Twitch Streams are live (dctv.defcon.org)
in cybersecurity@infosec.pub from scytale@piefed.zip on 08 Aug 17:42
comments (0)

Security Researchers found a way to trick Windows Hello authentication, but there is a simple fix - gHacks Tech News (www.ghacks.net)
in cybersecurity@sh.itjust.works from Amoxtli@thelemmy.club on 08 Aug 15:57
comments (1)

Oops Safari, I think You Spilled Something! (blog.exodusintel.com)
in cybersecurity@infosec.pub from Pro@programming.dev on 08 Aug 09:53
comments (0)

Cyber Resilience Corps - Protecting America's Communities Together (www.cybervolunteers.us)
in cybersecurity@infosec.pub from ryokimball@infosec.pub on 08 Aug 00:42
comments (0)

HTTP/1.1 Must Die: What This Means for AppSec Leadership (portswigger.net)
in cybersecurity@infosec.pub from cron@feddit.org on 07 Aug 21:31
comments (1)

GenAI Used to Impersonate Brazil’s Govt Websites | ThreatLabz (www.zscaler.com)
in cybersecurity@sh.itjust.works from kid@sh.itjust.works on 07 Aug 14:24
comments (0)

Shared secret: EDR killer in the kill chain – Sophos News (news.sophos.com)
in cybersecurity@sh.itjust.works from kid@sh.itjust.works on 07 Aug 14:17
comments (0)

Makop Ransomware Identified in Attacks in South Korea - ASEC (asec.ahnlab.com)
in cybersecurity@sh.itjust.works from kid@sh.itjust.works on 07 Aug 14:10
comments (0)

Google suffers data breach in ongoing Salesforce data theft attacks (www.bleepingcomputer.com)
in cybersecurity@sh.itjust.works from kid@sh.itjust.works on 07 Aug 14:01
comments (0)

KLM Confirms Customer Data Breach Linked to Third-Party System (hackread.com)
in cybersecurity@sh.itjust.works from kid@sh.itjust.works on 07 Aug 13:57
comments (1)

Ukraine claims to have hacked secrets from Russia's newest nuclear submarine (www.bitdefender.com)
in cybersecurity@sh.itjust.works from kid@sh.itjust.works on 07 Aug 13:50
comments (0)

Cracking the Vault: how we found zero-day flaws in authentication, identity, and authorization in HashiCorp Vault (cyata.ai)
in cybersecurity@infosec.pub from Pro@programming.dev on 07 Aug 09:01
comments (0)

Akira ransomware abuses CPU tuning tool to disable Microsoft Defender (www.bleepingcomputer.com)
in cybersecurity@infosec.pub from cm0002@piefed.world on 07 Aug 03:18
comments (0)

Gov+ (www.bbb.org)
in cybersecurity@sh.itjust.works from griff@lemmings.world on 06 Aug 18:34
comments (4)

Google suffers data breach in ongoing Salesforce data theft attacks (www.bleepingcomputer.com)
in cybersecurity@infosec.pub from TehBamski@lemmy.world on 06 Aug 17:45
comments (0)

Adobe issues emergency fixes for AEM Forms zero-days after PoCs released (www.bleepingcomputer.com)
in cybersecurity@infosec.pub from TehBamski@lemmy.world on 06 Aug 17:44
comments (0)

Millions of Dell Laptops Vulnerable to Device Takeover and Persistent Malware Attacks (cybersecuritynews.com)
in cybersecurity@sh.itjust.works from kid@sh.itjust.works on 06 Aug 16:23
comments (0)

Kimsuky APT Uses LNK Files to Deploy Reflective Malware and Evade Windows Defender (gbhackers.com)
in cybersecurity@sh.itjust.works from kid@sh.itjust.works on 06 Aug 14:49
comments (0)

ReVault! When your SoC turns against you… (blog.talosintelligence.com)
in cybersecurity@infosec.pub from cm0002@lemmy.world on 06 Aug 14:16
comments (0)

What are You Working on Wednesday
in cybersecurity@infosec.pub from shellsharks@infosec.pub on 06 Aug 13:58
comments (0)

Smart Contract Scams | Ethereum Drainers Pose as Trading Bots to Steal Crypto | SentinelOne (www.sentinelone.com)
in cybersecurity@sh.itjust.works from kid@sh.itjust.works on 06 Aug 13:08
comments (0)

Rapid Breach: Social Engineering to Remote Access in 300 Seconds | NCC Group (www.nccgroup.com)
in cybersecurity@sh.itjust.works from kid@sh.itjust.works on 06 Aug 13:00
comments (0)

Cybersecurity Services, Solutions & Products. Global Provider | Group-IB (www.group-ib.com)
in cybersecurity@sh.itjust.works from kid@sh.itjust.works on 06 Aug 12:56
comments (0)

Pandora confirms data breach amid ongoing Salesforce data theft attacks (www.bleepingcomputer.com)
in cybersecurity@sh.itjust.works from kid@sh.itjust.works on 06 Aug 12:49
comments (1)

PBS confirms data breach after employee info leaked on Discord servers (www.bleepingcomputer.com)
in cybersecurity@sh.itjust.works from kid@sh.itjust.works on 06 Aug 12:40
comments (2)

Cisco User Data Stolen in Vishing Attack (www.darkreading.com)
in cybersecurity@sh.itjust.works from kid@sh.itjust.works on 06 Aug 12:33
comments (4)

Microsoft unveils Project Ire, a prototype AI system that can reverse engineer and identify malicious software autonomously, without human assistance (www.microsoft.com)
in cybersecurity@infosec.pub from Pro@programming.dev on 06 Aug 08:59
comments (2)

ClickTok: The SparkKitty Drop on TikTok Shops (www.ctm360.com)
in cybersecurity@infosec.pub from Pro@mander.xyz on 05 Aug 17:13
comments (0)

Critical Vulnerability in NestJS Devtools: Localhost RCE via Sandbox Escape (socket.dev)
in cybersecurity@sh.itjust.works from kid@sh.itjust.works on 05 Aug 13:01
comments (0)

Perplexity is using stealth, undeclared crawlers to evade website no-crawl directives (blog.cloudflare.com)
in cybersecurity@sh.itjust.works from kid@sh.itjust.works on 05 Aug 12:58
comments (5)

LegalPwn Attack Tricks GenAI Tools Into Misclassifying Malware as Safe Code (hackread.com)
in cybersecurity@sh.itjust.works from kid@sh.itjust.works on 05 Aug 12:50
comments (5)

Ransomware groups shift to quadruple extortion to maximize pressure - Help Net Security (www.helpnetsecurity.com)
in cybersecurity@sh.itjust.works from kid@sh.itjust.works on 05 Aug 12:42
comments (0)

Nvidia Patches Critical RCE Vulnerability Chain (www.darkreading.com)
in cybersecurity@sh.itjust.works from kid@sh.itjust.works on 05 Aug 12:35
comments (0)

Connect and corrupt: C++ coroutines prone to code-reuse attack despite control flow integrity (cispa.de)
in cybersecurity@infosec.pub from Pro@mander.xyz on 05 Aug 09:14
comments (0)

Ransomware gangs join attacks targeting Microsoft SharePoint servers (www.bleepingcomputer.com)
in cybersecurity@sh.itjust.works from kid@sh.itjust.works on 04 Aug 17:38
comments (0)

From Laptops to Laundromats: How DPRK IT Workers Infiltrated the Global Remote Economy - DomainTools Investigations | DTI (dti.domaintools.com)
in cybersecurity@sh.itjust.works from kid@sh.itjust.works on 04 Aug 17:29
comments (1)

New ‘Plague’ PAM Backdoor Exposes Critical Linux Systems to Silent Credential Theft (thehackernews.com)
in cybersecurity@sh.itjust.works from kid@sh.itjust.works on 04 Aug 16:55
comments (2)

Mentorship Monday - Discussions for career and learning!
in cybersecurity@infosec.pub from shellsharks@infosec.pub on 04 Aug 14:21
comments (0)

Attackers exploit link-wrapping services to steal Microsoft 365 logins (www.bleepingcomputer.com)
in cybersecurity@sh.itjust.works from kid@sh.itjust.works on 04 Aug 12:25
comments (0)

Pi-hole discloses data breach triggered by WordPress plugin flaw (www.bleepingcomputer.com)
in cybersecurity@sh.itjust.works from kid@sh.itjust.works on 04 Aug 12:16
comments (1)

Average global data breach cost now $4.44 million - Help Net Security (www.helpnetsecurity.com)
in cybersecurity@sh.itjust.works from kid@sh.itjust.works on 04 Aug 12:09
comments (0)

SonicWall firewall devices hit in surge of Akira ransomware attacks (www.bleepingcomputer.com)
in cybersecurity@sh.itjust.works from kid@sh.itjust.works on 04 Aug 12:01
comments (0)

AI-powered Cursor IDE vulnerable to prompt-injection attacks (www.bleepingcomputer.com)
in cybersecurity@sh.itjust.works from kid@sh.itjust.works on 04 Aug 11:56
comments (0)

Early Warning Signals: When Attacker Behavior Precedes New Vulnerabilities (www.greynoise.io)
in cybersecurity@sh.itjust.works from kid@sh.itjust.works on 04 Aug 11:49
comments (0)

Search Engines are Indexing ChatGPT Conversations! - Here is our OSINT Research (cybersecuritynews.com)
in cybersecurity@sh.itjust.works from kid@sh.itjust.works on 04 Aug 11:40
comments (3)

Threat actor uses AI to create a better crypto wallet drainer (getsafety.com)
in cybersecurity@sh.itjust.works from kid@sh.itjust.works on 04 Aug 11:32
comments (0)

APT36 Targets Indian Infrastructure with Desktop Lures and Poseidon Backdoor (hunt.io)
in cybersecurity@sh.itjust.works from kid@sh.itjust.works on 04 Aug 11:26
comments (0)

Lazarus Group rises again, this time with fake FOSS (www.theregister.com)
in cybersecurity@infosec.pub from cm0002@lemmy.world on 04 Aug 03:00
comments (0)

Internet exchange points are ignored, vulnerable, and absent from infrastructure protection plans (www.theregister.com)
in cybersecurity@infosec.pub from cm0002@lemmy.world on 02 Aug 23:51
comments (0)

New 'Shade BIOS' Technique Beats Every Kind of Security (www.darkreading.com)
in cybersecurity@infosec.pub from cm0002@lemmy.world on 02 Aug 18:41
comments (2)

China accuses US of exploiting Microsoft zero-day in cyberattack (cyberscoop.com)
in cybersecurity@sh.itjust.works from Amoxtli@thelemmy.club on 02 Aug 10:56
comments (3)

SafePay ransomware threatens to leak 3.5TB of Ingram Micro data (www.bleepingcomputer.com)
in cybersecurity@sh.itjust.works from kid@sh.itjust.works on 31 Jul 12:40
comments (0)

Inc Ransomware Claims 1.2TB Data Breach at Dollar Tree (hackread.com)
in cybersecurity@sh.itjust.works from kid@sh.itjust.works on 31 Jul 12:33
comments (0)

Critical Dahua Camera Flaws Enable Remote Hijack via ONVIF and File Upload Exploits (thehackernews.com)
in cybersecurity@sh.itjust.works from kid@sh.itjust.works on 31 Jul 12:25
comments (0)

ShinyHunters behind Salesforce data theft attacks at Qantas, Allianz Life, and LVMH (www.bleepingcomputer.com)
in cybersecurity@sh.itjust.works from kid@sh.itjust.works on 31 Jul 12:16
comments (0)

Hackers stole Social Security numbers during Allianz Life cyberattack | TechCrunch (techcrunch.com)
in cybersecurity@sh.itjust.works from kid@sh.itjust.works on 31 Jul 12:10
comments (0)

Scammers Unleash Flood of Slick Online Gaming Sites (krebsonsecurity.com)
in cybersecurity@infosec.pub from Pro@programming.dev on 30 Jul 20:45
comments (1)

Handling malicious requests with fail2ban (sergiocipriano.com)
in cybersecurity@infosec.pub from cm0002@lemmy.world on 30 Jul 16:10
comments (5)

Palo Alto to scoop up CyberArk for $25 billion to tackle AI-era threats (finance.yahoo.com)
in cybersecurity@infosec.pub from cm0002@lemmy.world on 30 Jul 14:39
comments (0)

Cobalt Strike Beacon delivered via GitHub and social media (securelist.com)
in cybersecurity@infosec.pub from Pro@programming.dev on 30 Jul 10:39
comments (0)

CISA Adds PaperCut NG/MF CSRF Vulnerability to KEV Catalog Amid Active Exploitation (thehackernews.com)
in cybersecurity@infosec.pub from cm0002@lemmy.world on 30 Jul 03:35
comments (0)

Vulnerability-Lookup 2.14.0 released (www.vulnerability-lookup.org)
in cybersecurity@infosec.pub from cm0002@lemmy.world on 29 Jul 20:52
comments (0)

Apple’s New Containerization Feature Allows Kali Linux Integration on macOS (cybersecuritynews.com)
in cybersecurity@infosec.pub from cm0002@lemmy.world on 29 Jul 19:46
comments (5)

Sealed Chain of Deception: Actors leveraging Node.JS to Launch JSCeal (research.checkpoint.com)
in cybersecurity@infosec.pub from Pro@programming.dev on 29 Jul 16:14
comments (0)

China-linked group Fire Ant exploits VMware and F5 flaws since early 2025 (securityaffairs.com)
in cybersecurity@sh.itjust.works from kid@sh.itjust.works on 29 Jul 12:57
comments (1)

Pro-Ukrainian hackers claim massive cyberattack on Russia's Aeroflot | Reuters (www.reuters.com)
in cybersecurity@sh.itjust.works from kid@sh.itjust.works on 29 Jul 12:48
comments (1)

Resecurity | Methods to Bypass OTP in Mobile Apps: Successful VAPT Scenarios (www.resecurity.com)
in cybersecurity@sh.itjust.works from kid@sh.itjust.works on 29 Jul 12:40
comments (1)

Cybersecurity Scams Targeting Fans and Teams at the 2025 Belgian Grand Prix | CloudSEK (www.cloudsek.com)
in cybersecurity@sh.itjust.works from kid@sh.itjust.works on 29 Jul 12:32
comments (0)

Citrix NetScaler Devices Memory Leak: CVE-2025-5777 (www.sonicwall.com)
in cybersecurity@sh.itjust.works from kid@sh.itjust.works on 29 Jul 12:25
comments (0)

Exploit available for critical Cisco ISE bug exploited in attacks (www.bleepingcomputer.com)
in cybersecurity@sh.itjust.works from kid@sh.itjust.works on 29 Jul 12:18
comments (0)

Spy satellite agency says law enforcement probing 'incident' affecting contracting site | Reuters (www.reuters.com)
in cybersecurity@sh.itjust.works from kid@sh.itjust.works on 29 Jul 12:10
comments (0)

The Huawei Dilemma: Why Europe Needs Strong Intelligence Guardrails (www.thecipherbrief.com)
in cybersecurity@infosec.pub from Hotznplotzn@lemmy.sdf.org on 29 Jul 12:09
comments (0)

The Huawei Dilemma: Why Europe Needs Strong Intelligence Guardrails (www.thecipherbrief.com)
in cybersecurity@sh.itjust.works from Hotznplotzn@lemmy.sdf.org on 29 Jul 12:08
comments (0)

Critical Flaws in WordPress Plugin Leave 10,000 Sites Vulnerable - Infosecurity Magazine (www.infosecurity-magazine.com)
in cybersecurity@sh.itjust.works from kid@sh.itjust.works on 29 Jul 12:01
comments (0)

CISA flags PaperCut RCE bug as exploited in attacks, patch now (www.bleepingcomputer.com)
in cybersecurity@sh.itjust.works from kid@sh.itjust.works on 29 Jul 11:58
comments (1)

GLOBAL GROUP Ransomware Claims Breach of Media Giant Albavisión (hackread.com)
in cybersecurity@sh.itjust.works from kid@sh.itjust.works on 29 Jul 11:49
comments (0)

Naval Group Denies Hack Claims, Alleges “Reputational Attack” - Infosecurity Magazine (www.infosecurity-magazine.com)
in cybersecurity@sh.itjust.works from kid@sh.itjust.works on 29 Jul 11:42
comments (0)

Security pros are drowning in threat-intel data and it's making everything more dangerous (www.theregister.com)
in cybersecurity@infosec.pub from cm0002@lemmy.world on 29 Jul 03:52
comments (1)

Vulnhuntr: Open-source tool to identify remotely exploitable vulnerabilities (www.helpnetsecurity.com)
in cybersecurity@infosec.pub from cm0002@lemmy.world on 28 Jul 20:03
comments (1)

Sploitlight: Analyzing a Spotlight-based macOS TCC vulnerability (www.microsoft.com)
in cybersecurity@infosec.pub from Pro@programming.dev on 28 Jul 17:49
comments (0)

Mentorship Monday - Discussions for career and learning!
in cybersecurity@infosec.pub from shellsharks@infosec.pub on 28 Jul 16:28
comments (0)

Soco404 and Koske Malware Target Cloud Services with Cross-Platform Cryptomining Attacks (thehackernews.com)
in cybersecurity@sh.itjust.works from MrSoup@lemmy.zip on 27 Jul 05:26
comments (0)

Microsoft Copilot Rooted to Gain Unauthorized Root Access to its Backend System (cybersecuritynews.com)
in cybersecurity@infosec.pub from cm0002@programming.dev on 26 Jul 18:46
comments (1)

DNS security is important but DNSSEC may be a failed experiment (www.theregister.com)
in cybersecurity@infosec.pub from cm0002@lemmy.world on 26 Jul 17:41
comments (0)

UNC3944 Attacking VMware vSphere and Enabling SSH on ESXi Hosts to Reset 'root' Passwords (cybersecuritynews.com)
in cybersecurity@infosec.pub from cm0002@lemmy.world on 26 Jul 06:43
comments (1)

ArcaneChat 2.6.0 released with major security enhancement
in cybersecurity@infosec.pub from cm0002@lemmy.world on 25 Jul 14:09
comments (0)

AI-Generated Malware in Panda Image Hides Persistent Linux Threat (www.aquasec.com)
in cybersecurity@infosec.pub from cm0002@lemmy.world on 25 Jul 14:07
comments (8)

Off-Topic Friday
in cybersecurity@infosec.pub from shellsharks@infosec.pub on 25 Jul 13:00
comments (0)

Hacker Plants Computer 'Wiping' Commands in Amazon's AI Coding Agent (www.404media.co)
in cybersecurity@infosec.pub from cm0002@lemmy.world on 25 Jul 03:24
comments (4)

Hackers—hope to defect to Russia? Don’t Google “defecting to Russia.” (arstechnica.com)
in cybersecurity@sh.itjust.works from PhilipTheBucket@quokk.au on 25 Jul 01:43
comments (16)

Phishers Target Aviation Execs to Scam Customers (krebsonsecurity.com)
in cybersecurity@infosec.pub from Pro@programming.dev on 24 Jul 20:19
comments (0)

Authorities in Ukraine nab alleged admin of Russian-language cybercrime forum | CyberScoop (cyberscoop.com)
in cybersecurity@sh.itjust.works from kid@sh.itjust.works on 24 Jul 19:26
comments (0)

Trump AI plan pushes critical infrastructure to use AI for cyber defense | CyberScoop (cyberscoop.com)
in cybersecurity@sh.itjust.works from kid@sh.itjust.works on 24 Jul 19:17
comments (14)

Coyote in the Wild: First-Ever Malware That Abuses UI Automation | Akamai (www.akamai.com)
in cybersecurity@sh.itjust.works from kid@sh.itjust.works on 24 Jul 19:10
comments (0)

Operation Cargotalon: Ung0901 Targets Russian Aerospace Defense Using Eaglet Implant (www.seqrite.com)
in cybersecurity@sh.itjust.works from kid@sh.itjust.works on 24 Jul 19:02
comments (0)

Storm-2603 spotted deploying ransomware on exploited SharePoint servers - Help Net Security (www.helpnetsecurity.com)
in cybersecurity@sh.itjust.works from kid@sh.itjust.works on 24 Jul 18:58
comments (0)

Malware in official mouse software: Endgame Gears OP1w 4K V2 tool infected with Xred-RAT (www.igorslab.de)
in cybersecurity@sh.itjust.works from commander@lemmy.world on 24 Jul 17:39
comments (1)

US nuclear weapons agency hacked in Microsoft SharePoint attacks (www.bleepingcomputer.com)
in cybersecurity@sh.itjust.works from kid@sh.itjust.works on 24 Jul 12:26
comments (2)

Massive data leak exposes Swedish citizens' lives | Cybernews (cybernews.com)
in cybersecurity@sh.itjust.works from kid@sh.itjust.works on 24 Jul 12:18
comments (0)

NPM package ‘is’ with 2.8M weekly downloads infected devs with malware (www.bleepingcomputer.com)
in cybersecurity@sh.itjust.works from kid@sh.itjust.works on 24 Jul 12:09
comments (3)

Defence giant Naval Group hit with major breach | Cybernews (cybernews.com)
in cybersecurity@sh.itjust.works from kid@sh.itjust.works on 24 Jul 12:02
comments (0)

340K exposed after France Travail data breach | Cybernews (cybernews.com)
in cybersecurity@sh.itjust.works from kid@sh.itjust.works on 24 Jul 11:58
comments (0)

A chit-chat between Llama 2 and ChatGPT for the automated creation of exploits (www.sciencedirect.com)
in cybersecurity@infosec.pub from Pro@programming.dev on 24 Jul 00:19
comments (0)

Operation Grayskull Culminates in Lengthy Sentences for Managers of Dark Web Site Dedicated to Sexual Abuse of Children (www.justice.gov)
in cybersecurity@infosec.pub from Pro@programming.dev on 23 Jul 22:42
comments (1)

[JS Required] xss.is got shutdown. (www.europol.europa.eu)
in cybersecurity@infosec.pub from Pro@programming.dev on 23 Jul 18:22
comments (0)

The Com: Theft, Extortion, and Violence are a Rising Threat to Youth Online (www.ic3.gov)
in cybersecurity@infosec.pub from Pro@programming.dev on 23 Jul 16:52
comments (0)

Hacker Com: Cyber Criminal Subset of The Community (Com) is a Rising Threat to Youth Online (www.ic3.gov)
in cybersecurity@infosec.pub from Pro@programming.dev on 23 Jul 16:34
comments (0)

In Real Life (IRL) Com: Violent Subset of The Community (Com) is a Rising Threat to Youth Online( (www.ic3.gov)
in cybersecurity@infosec.pub from Pro@programming.dev on 23 Jul 16:34
comments (0)

‘If you are reading…’: This password ‘mistake’ shuts down a 158-year-old company (www.hindustantimes.com)
in cybersecurity@infosec.pub from cm0002@lemmy.world on 23 Jul 14:12
comments (3)

"The Irish State pays for China's surveillance in Ireland:" Rights group criticizes government as thousands of China's Hikvision cameras are installed across Ireland despite bans in other countries (www.iccl.ie)
in cybersecurity@infosec.pub from randomname@scribe.disroot.org on 23 Jul 10:33
comments (0)

"The Irish State pays for China's surveillance in Ireland:" Rights group criticizes government as thousands of China's Hikvision cameras are installed across Ireland despite bans in other countries (www.iccl.ie)
in cybersecurity@sh.itjust.works from randomname@scribe.disroot.org on 23 Jul 10:33
comments (0)

TapTrap: new attack on Android that lures you into performing actions you did not intend to do. This allows an app to access your camera or location, or erase your device—all without your consent. (taptrap.click)
in cybersecurity@sh.itjust.works from floofloof@lemmy.ca on 23 Jul 02:23
comments (4)

Lawsuit says Clorox hackers got passwords simply by asking (www.nbcnews.com)
in cybersecurity@sh.itjust.works from floofloof@lemmy.ca on 23 Jul 02:05
comments (13)

Funding to protect US from Stuxnet-like worm expired Sunday (www.theregister.com)
in cybersecurity@sh.itjust.works from BrikoX@lemmy.zip on 22 Jul 22:10
comments (1)

Joint Advisory Issued on Protecting Against Interlock Ransomware (www.cisa.gov)
in cybersecurity@infosec.pub from Pro@programming.dev on 22 Jul 16:08
comments (0)

Dior begins sending data breach notifications to U.S. customers (www.bleepingcomputer.com)
in cybersecurity@sh.itjust.works from kid@sh.itjust.works on 21 Jul 18:48
comments (1)

Afghan data leak: SAS and UK spies named in Afghan data breach (www.bbc.com)
in cybersecurity@sh.itjust.works from kid@sh.itjust.works on 21 Jul 15:02
comments (1)

Dell confirms breach of test lab platform by World Leaks extortion group (www.bleepingcomputer.com)
in cybersecurity@sh.itjust.works from kid@sh.itjust.works on 21 Jul 14:57
comments (0)

Surveillance Firm Exploits SS7 Flaw to Track User Locations (gbhackers.com)
in cybersecurity@sh.itjust.works from kid@sh.itjust.works on 21 Jul 14:48
comments (1)

New GhostContainer Malware Hits High-Value MS Exchange Servers in Asia (hackread.com)
in cybersecurity@sh.itjust.works from kid@sh.itjust.works on 21 Jul 14:41
comments (0)

Singapore warns China-linked group UNC3886 targets its critical infrastructure (securityaffairs.com)
in cybersecurity@sh.itjust.works from kid@sh.itjust.works on 21 Jul 14:32
comments (0)

PoisonSeed Hackers Bypass FIDO Keys Using QR Phishing and Cross-Device Sign-In Abuse (thehackernews.com)
in cybersecurity@sh.itjust.works from kid@sh.itjust.works on 21 Jul 14:25
comments (1)

4 new Android spyware samples linked to Iran's intel agency • The Register (www.theregister.com)
in cybersecurity@sh.itjust.works from kid@sh.itjust.works on 21 Jul 14:17
comments (0)

Anne Arundel Dermatology Data Breach Impacts 1.9 Million People - SecurityWeek (www.securityweek.com)
in cybersecurity@sh.itjust.works from kid@sh.itjust.works on 21 Jul 12:16
comments (0)

1.4 Million Affected by Data Breach at Virginia Radiology Practice - SecurityWeek (www.securityweek.com)
in cybersecurity@sh.itjust.works from kid@sh.itjust.works on 21 Jul 12:08
comments (0)

HPE warns of hardcoded passwords in Aruba access points (www.bleepingcomputer.com)
in cybersecurity@sh.itjust.works from kid@sh.itjust.works on 21 Jul 12:01
comments (1)

Microsoft SharePoint servers under attack via zero-day vulnerability (CVE-2025-53770) - Help Net Security (www.helpnetsecurity.com)
in cybersecurity@sh.itjust.works from kid@sh.itjust.works on 21 Jul 11:57
comments (2)

Hackers Exploit Critical CrushFTP Flaw to Gain Admin Access on Unpatched Servers (thehackernews.com)
in cybersecurity@sh.itjust.works from kid@sh.itjust.works on 21 Jul 11:50
comments (0)

Microsoft to stop using engineers in China to work on U.S. Defense computer systems in wake of investigative report (www.tomshardware.com)
in cybersecurity@sh.itjust.works from heyWhatsay@slrpnk.net on 21 Jul 11:44
comments (4)

3-line exploit revealed for critical NVIDIA Container Toolkit flaw | SC Media (www.scworld.com)
in cybersecurity@sh.itjust.works from kid@sh.itjust.works on 21 Jul 11:33
comments (1)

A 0-day flaw in Microsoft SharePoint is being exploited in RCE attacks on servers globally; no patch exists and tens of thousands of servers are at risk (research.eye.security)
in cybersecurity@infosec.pub from Pro@programming.dev on 20 Jul 22:30
comments (4)

Active Global Attacks Targeting On-premises SharePoint Server (CVE-2025-53770) (msrc.microsoft.com)
in cybersecurity@infosec.pub from mhewitt@infosec.pub on 20 Jul 17:46
comments (0)

Firmware Vulnerabilities Continue to Plague Supply Chain (www.darkreading.com)
in cybersecurity@infosec.pub from cm0002@lemmy.world on 19 Jul 06:47
comments (0)

The ASUS Dumpster Fire
in cybersecurity@sh.itjust.works from recursive_recursion@piefed.ca on 18 Jul 22:43
comments (6)

Before Vegas: The “Red Hackers” Who Shaped China’s Cyber Ecosystem (css.ethz.ch)
in cybersecurity@infosec.pub from Pro@programming.dev on 18 Jul 19:07
comments (0)

Spain: Chinese company Huawei must not be allowed access to wiretap data in 'normalisation of censorship and surveillance', rights group says (www.article19.org)
in cybersecurity@infosec.pub from Hotznplotzn@lemmy.sdf.org on 18 Jul 16:47
comments (0)

Spain: Chinese company Huawei must not be allowed access to wiretap data in 'normalisation of censorship and surveillance', rights group says (www.article19.org)
in cybersecurity@sh.itjust.works from Hotznplotzn@lemmy.sdf.org on 18 Jul 16:47
comments (1)

US aims to ban Chinese technology in undersea telecommunications cables over security concerns (www.reuters.com)
in cybersecurity@infosec.pub from Hotznplotzn@lemmy.sdf.org on 18 Jul 14:19
comments (0)

US aims to ban Chinese technology in undersea telecommunications cables over security concerns (www.reuters.com)
in cybersecurity@sh.itjust.works from Hotznplotzn@lemmy.sdf.org on 18 Jul 14:19
comments (0)

Russia’s war against Ukraine, China’s coercive actions toward Taiwan very likely 'primary drivers' of state-linked sabotage targeting submarine cable infrastructure, report says (www.recordedfuture.com)
in cybersecurity@infosec.pub from randomname@scribe.disroot.org on 18 Jul 13:28
comments (0)

Russia’s war against Ukraine, China’s coercive actions toward Taiwan very likely 'primary drivers' of state-linked sabotage targeting submarine cable infrastructure, report says (www.recordedfuture.com)
in cybersecurity@sh.itjust.works from randomname@scribe.disroot.org on 18 Jul 13:28
comments (0)

Salt Typhoon breach: Chinese APT compromises U.S. Army National Guard network (securityaffairs.com)
in cybersecurity@infosec.pub from Hotznplotzn@lemmy.sdf.org on 18 Jul 05:11
comments (0)

Salt Typhoon breach: Chinese APT compromises U.S. Army National Guard network (securityaffairs.com)
in cybersecurity@sh.itjust.works from Hotznplotzn@lemmy.sdf.org on 18 Jul 05:11
comments (0)

Watch out, another max-severity Cisco bug on the loose (go.theregister.com)
in cybersecurity@sh.itjust.works from PhilipTheBucket@quokk.au on 17 Jul 19:15
comments (0)

The Invisible Risks of Insecure Chinese Surveillance Cameras (chinaobservers.eu)
in cybersecurity@infosec.pub from Hotznplotzn@lemmy.sdf.org on 17 Jul 17:16
comments (0)

The Invisible Risks of Insecure Chinese Surveillance Cameras (chinaobservers.eu)
in cybersecurity@sh.itjust.works from Hotznplotzn@lemmy.sdf.org on 17 Jul 17:15
comments (4)

‘All US forces must now assume their networks are compromised’ after Salt Typhoon breach (www.itpro.com)
in cybersecurity@sh.itjust.works from PhilipTheBucket@quokk.au on 17 Jul 16:30
comments (14)

Malware in DNS - DomainTools Investigations | DTI (dti.domaintools.com)
in cybersecurity@infosec.pub from cm0002@lemmy.world on 17 Jul 14:13
comments (0)

VLAI Hugging Face Set (discourse.ossbase.org)
in cybersecurity@infosec.pub from cm0002@lemmy.world on 17 Jul 14:13
comments (0)

Teams Call to Ransomware: Matanbuchus 3.0 MaaS Levels Up (www.morphisec.com)
in cybersecurity@sh.itjust.works from kid@sh.itjust.works on 17 Jul 12:42
comments (1)

Ukrainian Hackers Wipe 47TB of Data from Top Russian Military Drone Supplier (www.kyivpost.com)
in cybersecurity@sh.itjust.works from kid@sh.itjust.works on 17 Jul 12:33
comments (0)

Co-op boss says sorry to 6.5m people who had data stolen in hack (www.bbc.com)
in cybersecurity@sh.itjust.works from kid@sh.itjust.works on 17 Jul 12:26
comments (6)

Compumedics Ransomware Attack Led to Data Breach Impacting 318,000 - SecurityWeek (www.securityweek.com)
in cybersecurity@sh.itjust.works from kid@sh.itjust.works on 17 Jul 12:18
comments (0)

Urgent: Google Releases Critical Chrome Update for CVE-2025-6558 Exploit Active in the Wild (thehackernews.com)
in cybersecurity@sh.itjust.works from kid@sh.itjust.works on 17 Jul 12:09
comments (0)

CyberArk: Rise in Machine Identities Poses New Risks (www.bankinfosecurity.in)
in cybersecurity@sh.itjust.works from kid@sh.itjust.works on 17 Jul 12:01
comments (0)

Louis Vuitton says regional data breaches tied to same cyberattack (www.bleepingcomputer.com)
in cybersecurity@sh.itjust.works from kid@sh.itjust.works on 17 Jul 11:57
comments (0)

New Fortinet FortiWeb hacks likely linked to public RCE exploits (www.bleepingcomputer.com)
in cybersecurity@sh.itjust.works from kid@sh.itjust.works on 17 Jul 11:49
comments (0)

GhostContainer backdoor for Exchange servers (securelist.com)
in cybersecurity@sh.itjust.works from Pro@programming.dev on 17 Jul 10:06
comments (0)

GhostContainer backdoor for Exchange servers (securelist.com)
in cybersecurity@infosec.pub from Pro@programming.dev on 17 Jul 10:05
comments (0)

Google finds custom backdoor being installed on SonicWall network devices (arstechnica.com)
in cybersecurity@sh.itjust.works from PhilipTheBucket@quokk.au on 16 Jul 21:42
comments (3)

Critical Golden dMSA Attack in Windows Server 2025 Enables Cross-Domain Attacks and Persistent Access (thehackernews.com)
in cybersecurity@sh.itjust.works from kid@sh.itjust.works on 16 Jul 19:24
comments (0)

Europol and Eurojust disrupt pro-Russian hacktivist group NoName057(16) that has claimed responsibility for 1,000+ DDoS attacks since 2022, and make two arrests (www.eurojust.europa.eu)
in cybersecurity@infosec.pub from Pro@programming.dev on 16 Jul 18:23
comments (0)

Europol and Eurojust disrupt pro-Russian hacktivist group NoName057(16) that has claimed responsibility for 1,000+ DDoS attacks since 2022, and make two arrests (www.eurojust.europa.eu)
in cybersecurity@sh.itjust.works from Pro@programming.dev on 16 Jul 18:23
comments (0)

Afghans burnt by UK data leak because someone used email to send a large sensitive dataset -- which email service, anyone know? (www.theguardian.com)
in cybersecurity@infosec.pub from evenwicht@lemmy.sdf.org on 16 Jul 16:10
comments (3)

Zyxel security advisory for path traversal vulnerability in APs | Zyxel Networks (www.zyxel.com)
in cybersecurity@sh.itjust.works from kid@sh.itjust.works on 16 Jul 12:42
comments (0)

Konfety Returns: Classic Mobile Threat with New Evasion Techniques (zimperium.com)
in cybersecurity@sh.itjust.works from kid@sh.itjust.works on 16 Jul 12:33
comments (0)

Hyper-volumetric DDoS attacks skyrocket: Cloudflare’s 2025 Q2 DDoS threat report (blog.cloudflare.com)
in cybersecurity@sh.itjust.works from kid@sh.itjust.works on 16 Jul 12:25
comments (0)

Insecure Shopify plugin exposed hundreds of stores| Cybernews (cybernews.com)
in cybersecurity@sh.itjust.works from kid@sh.itjust.works on 16 Jul 12:17
comments (1)

CISA adds serious Wing FTP Server vulnerability to must-fix list - iTnews (www.itnews.com.au)
in cybersecurity@sh.itjust.works from kid@sh.itjust.works on 16 Jul 12:10
comments (0)

Threat Actors Use SVG Smuggling for Browser-Native Redirection - SecurityWeek (www.securityweek.com)
in cybersecurity@sh.itjust.works from kid@sh.itjust.works on 16 Jul 12:02
comments (0)

Marks & Spencer hackers hit US retailer Belk | Cybernews (cybernews.com)
in cybersecurity@sh.itjust.works from kid@sh.itjust.works on 16 Jul 11:57
comments (0)

US National Guard unit was 'extensively' hacked by Salt Typhoon in 2024, memo says | Reuters (www.reuters.com)
in cybersecurity@sh.itjust.works from kid@sh.itjust.works on 16 Jul 11:50
comments (4)

A Little-Known Microsoft Program Could Expose the U.S. Defense Department to Chinese Hackers (www.propublica.org)
in cybersecurity@sh.itjust.works from Hotznplotzn@lemmy.sdf.org on 16 Jul 09:41
comments (2)

A Little-Known Microsoft Program Could Expose the U.S. Defense Department to Chinese Hackers (www.propublica.org)
in cybersecurity@infosec.pub from Hotznplotzn@lemmy.sdf.org on 16 Jul 09:41
comments (0)

North Korea-linked actors spread XORIndex malware via 67 malicious npm packages (securityaffairs.com)
in cybersecurity@sh.itjust.works from kid@sh.itjust.works on 15 Jul 13:00
comments (0)

MITRE Launches AADAPT Framework to Counter Real-World Attacks on Digital Asset Systems (gbhackers.com)
in cybersecurity@sh.itjust.works from kid@sh.itjust.works on 15 Jul 12:56
comments (0)

OpenAI's ChatGPT-powered browser is codenamed 'Aura' (www.bleepingcomputer.com)
in cybersecurity@sh.itjust.works from kid@sh.itjust.works on 15 Jul 12:48
comments (10)

New Grok AI model surprises experts by checking Elon Musk’s views before answering - Ars Technica (arstechnica.com)
in cybersecurity@sh.itjust.works from kid@sh.itjust.works on 15 Jul 12:40
comments (4)

UK launches vulnerability research program for external experts (www.bleepingcomputer.com)
in cybersecurity@sh.itjust.works from kid@sh.itjust.works on 15 Jul 12:32
comments (0)

Chasing Ghosts Over RDP: Lateral Movement in Tiny Bitmaps | by Mat Cyb3rF0x Fuchs | Jul, 2025 | Medium (medium.com)
in cybersecurity@sh.itjust.works from kid@sh.itjust.works on 15 Jul 12:25
comments (0)

AsyncRAT evolves as ESET tracks its most popular malware forks - Help Net Security (www.helpnetsecurity.com)
in cybersecurity@sh.itjust.works from kid@sh.itjust.works on 15 Jul 12:16
comments (5)

Interlock ransomware adopts FileFix method to deliver malware (www.bleepingcomputer.com)
in cybersecurity@sh.itjust.works from kid@sh.itjust.works on 15 Jul 12:08
comments (0)

Indian Police Raid Tech Support Scam Call Center (www.infosecurity-magazine.com)
in cybersecurity@sh.itjust.works from kid@sh.itjust.works on 14 Jul 19:18
comments (4)

Filch Stealer: A new infostealer leveraging old techniques (www.rapid7.com)
in cybersecurity@sh.itjust.works from Pro@programming.dev on 14 Jul 19:07
comments (0)

Filch Stealer: A new infostealer leveraging old techniques (www.rapid7.com)
in cybersecurity@infosec.pub from Pro@programming.dev on 14 Jul 19:06
comments (0)

Interlock Ransomware Unleashes New RAT in Widespread Campaign - Infosecurity Magazine (www.infosecurity-magazine.com)
in cybersecurity@sh.itjust.works from kid@sh.itjust.works on 14 Jul 17:25
comments (0)

Malicious VSCode extension in Cursor IDE led to $500K crypto theft (www.bleepingcomputer.com)
in cybersecurity@sh.itjust.works from kid@sh.itjust.works on 14 Jul 17:16
comments (0)

Security vulnerability on U.S. trains that let anyone activate the brakes on the rear car was known for 13 years — operators refused to fix the issue until now (www.tomshardware.com)
in cybersecurity@sh.itjust.works from floofloof@lemmy.ca on 14 Jul 14:34
comments (5)

Flaws in Gigabyte Firmware Allow Security Bypass, Backdoor Deployment - SecurityWeek (www.securityweek.com)
in cybersecurity@sh.itjust.works from kid@sh.itjust.works on 14 Jul 14:16
comments (0)

Global Louis Vuitton data breach impacts UK, South Korea, and Turkey (securityaffairs.com)
in cybersecurity@sh.itjust.works from kid@sh.itjust.works on 14 Jul 14:10
comments (0)

Google Gemini flaw hijacks email summaries for phishing (www.bleepingcomputer.com)
in cybersecurity@sh.itjust.works from kid@sh.itjust.works on 14 Jul 14:02
comments (0)

Cyber-Insurance Premiums Drop, but Coverage Is Key (www.darkreading.com)
in cybersecurity@sh.itjust.works from kid@sh.itjust.works on 14 Jul 13:57
comments (0)

Windows 10 KB5062554 update breaks emoji panel search feature (www.bleepingcomputer.com)
in cybersecurity@sh.itjust.works from kid@sh.itjust.works on 14 Jul 13:48
comments (0)

Business Logic Vulnerability in Dell’s Payment API — Reported via Bugcrowd | by Yeswehack | May, 2025 | InfoSec Write-ups (infosecwriteups.com)
in cybersecurity@sh.itjust.works from kid@sh.itjust.works on 14 Jul 12:01
comments (0)

Alabama city hack exposed financial data, citizens | Cybernews (cybernews.com)
in cybersecurity@sh.itjust.works from kid@sh.itjust.works on 14 Jul 11:50
comments (0)

Dark Web Profile: Arkana Ransomware - SOCRadar® Cyber Intelligence Inc. (socradar.io)
in cybersecurity@sh.itjust.works from kid@sh.itjust.works on 14 Jul 11:41
comments (0)