Cybersecurity

9755 readers

92 users here now

c/cybersecurity is a community centered on the cybersecurity and information security profession. You can come here to discuss news, post something interesting, or just chat with others.

THE RULES

Instance Rules

Be respectful. Everyone should feel welcome here.
No bigotry - including racism, sexism, ableism, homophobia, transphobia, or xenophobia.
No Ads / Spamming.
No pornography.

Community Rules

Idk, keep it semi-professional?
Nothing illegal. We're all ethical here.
Rules will be added/redefined as necessary.

If you ask someone to hack your "friends" socials you're just going to get banned so don't do that.

Learn about hacking

Pico Capture the flag

Other security-related communities !databreaches@lemmy.zip !netsec@lemmy.world !securitynews@infosec.pub !cybersecurity@infosec.pub !pulse_of_truth@infosec.pub

Notable mention to !cybersecuritymemes@lemmy.world

founded 2 years ago

MODERATORS

kid@sh.itjust.works

Lanky_Pomegranate530@midwest.social

1

41

Matrix Protocol Surveillance and Forensic Analysis Suite (lemmy.world)

submitted 22 hours ago by Nikolas5476@lemmy.world to c/cybersecurity@sh.itjust.works

1 comments fedilink

Source code and details: https://github.com/nikolas-trey/Prometheus

What Project Does:
Prometheus is a forensic intelligence toolkit for the Matrix federation. Given one or more target MXIDs, it reconstructs who invited them, where, and when, then monitors those spaces for ongoing activity.

Target Audience:
Private investigators, forensic analysts.

Why?
It helps investigators and forensic analysts reconstruct invitation chains and monitor related Matrix spaces so they can reliably attribute account relationships, timelines, and ongoing activity.

2

19

Chinese Hackers Target European Governments in Espionage Campaigns - Infosecurity Magazine (www.infosecurity-magazine.com)

submitted 21 hours ago by kid@sh.itjust.works to c/cybersecurity@sh.itjust.works

0 comments fedilink

3

11

Crypto platform Drift suspends services after millions stolen in security incident | The Record from Recorded Future News (therecord.media)

submitted 21 hours ago by kid@sh.itjust.works to c/cybersecurity@sh.itjust.works

0 comments fedilink

4

14

WhatsApp malware campaign uses malicious VBS files to gain persistent access | CSO Online (www.csoonline.com)

submitted 22 hours ago by kid@sh.itjust.works to c/cybersecurity@sh.itjust.works

0 comments fedilink

5

15

UK manufacturers under cyber fire with 80% reporting attacks • The Register (www.theregister.com)

submitted 23 hours ago by kid@sh.itjust.works to c/cybersecurity@sh.itjust.works

1 comments fedilink

6

11

Infrsatructure Attacks With Physical Consequences Down 25% (www.darkreading.com)

submitted 22 hours ago by kid@sh.itjust.works to c/cybersecurity@sh.itjust.works

0 comments fedilink

7

12

Mercor confirms security incident tied to LiteLLM supply chain attack | The Record from Recorded Future News (therecord.media)

submitted 23 hours ago by kid@sh.itjust.works to c/cybersecurity@sh.itjust.works

0 comments fedilink

8

8

Casbaneiro Phishing Targets Latin America and Europe Using Dynamic PDF Lures (thehackernews.com)

submitted 23 hours ago by kid@sh.itjust.works to c/cybersecurity@sh.itjust.works

0 comments fedilink

9

5

New CrystalRAT malware adds RAT, stealer and prankware features (www.bleepingcomputer.com)

submitted 1 day ago by kid@sh.itjust.works to c/cybersecurity@sh.itjust.works

0 comments fedilink

10

2

Hackers exploit TrueConf zero-day to push malicious software updates (www.bleepingcomputer.com)

submitted 23 hours ago by kid@sh.itjust.works to c/cybersecurity@sh.itjust.works

0 comments fedilink

11

20

WA local gov entity lost $350,000 in phishing attack - iTnews (www.itnews.com.au)

submitted 1 day ago by kid@sh.itjust.works to c/cybersecurity@sh.itjust.works

0 comments fedilink

12

12

Axios npm supply chain attack: Malicious updates add remote access trojan | news | SC Media (www.scworld.com)

submitted 1 day ago by kid@sh.itjust.works to c/cybersecurity@sh.itjust.works

0 comments fedilink

13

13

GIGABYTE Control Center vulnerable to arbitrary file write flaw (www.bleepingcomputer.com)

submitted 1 day ago by kid@sh.itjust.works to c/cybersecurity@sh.itjust.works

0 comments fedilink

14

11

Vertex AI Vulnerability Exposes Google Cloud Data and Private Artifacts (thehackernews.com)

submitted 1 day ago by kid@sh.itjust.works to c/cybersecurity@sh.itjust.works

0 comments fedilink

15

5

TeamPCP Explores Ways to Exploit Stolen Supply Chain Secrets - Infosecurity Magazine (www.infosecurity-magazine.com)

submitted 1 day ago by kid@sh.itjust.works to c/cybersecurity@sh.itjust.works

0 comments fedilink

16

13

Cisco source code stolen in Trivy-linked dev environment breach (www.bleepingcomputer.com)

submitted 2 days ago by kid@sh.itjust.works to c/cybersecurity@sh.itjust.works

1 comments fedilink

17

12

Behind the Curtain: AI's looming cyber nightmare (www.axios.com)

submitted 2 days ago by return2ozma@lemmy.world to c/cybersecurity@sh.itjust.works

2 comments fedilink

18

2

CrewAI Vulnerabilities Expose Devices to Hacking - SecurityWeek (www.securityweek.com)

submitted 1 day ago by kid@sh.itjust.works to c/cybersecurity@sh.itjust.works

0 comments fedilink

19

14

Hackers exploiting critical F5 BIG-IP flaw in attacks, patch now (www.bleepingcomputer.com)

submitted 2 days ago by kid@sh.itjust.works to c/cybersecurity@sh.itjust.works

0 comments fedilink

20

11

Cybercriminals Exploit Tax Season With New Phishing Tactics - Infosecurity Magazine (www.infosecurity-magazine.com)

submitted 2 days ago by kid@sh.itjust.works to c/cybersecurity@sh.itjust.works

0 comments fedilink

21

10

Dutch Finance Ministry takes treasury banking portal offline after breach (www.bleepingcomputer.com)

submitted 2 days ago by kid@sh.itjust.works to c/cybersecurity@sh.itjust.works

0 comments fedilink

22

8

OpenAI ChatGPT fixes DNS data smuggling flaw • The Register (www.theregister.com)

submitted 2 days ago by kid@sh.itjust.works to c/cybersecurity@sh.itjust.works

3 comments fedilink

23

29

China Upgrades the Backdoor It Uses to Spy on Telcos Globally (www.darkreading.com)

submitted 3 days ago by kid@sh.itjust.works to c/cybersecurity@sh.itjust.works

1 comments fedilink

24

5

Healthcare tech firm CareCloud says hackers stole patient data (www.bleepingcomputer.com)

submitted 2 days ago by kid@sh.itjust.works to c/cybersecurity@sh.itjust.works

0 comments fedilink

25

11

LangChain, LangGraph Flaws Expose Files, Secrets, Databases in Widely Used AI Frameworks (thehackernews.com)

submitted 3 days ago by kid@sh.itjust.works to c/cybersecurity@sh.itjust.works

1 comments fedilink