Infosec.Pub

4,844 readers
123 users here now

To support infosec.pub, please consider donating through one of the following services:

Paypal: jerry@infosec.exchange

Ko-Fi: https://ko-fi.com/infosecexchange

Patreon: https://www.patreon.com/infosecexchange

founded 2 years ago
ADMINS
jerry
shellsharks
modbot
listing: all - local
1
4
Free VPNs leak your data while claiming privacy (securityaffairs.com)
submitted 17 minutes ago by lemmydev2 to c/pulse_of_truth
0 comments fedilink
 
 

Most free Android VPNs track users, request dangerous permissions, and connect to risky servers, privacy comes at a hidden cost. Free VPN apps are some of the most popular downloads on Android, promising privacy at no cost. But the reality is far from what they advertise. Most users tap “install” without a second thought, unaware […]

2
5
Cisco source code stolen in Trivy-linked dev environment breach (www.bleepingcomputer.com)
submitted 2 hours ago by digicat to c/blueteamsec
0 comments fedilink
3
2
Notepad++ compromise IoCs (notepad-plus-plus.org)
submitted 1 hour ago by digicat to c/blueteamsec
0 comments fedilink
4
1
No Paste for You! - Reverse Engineering Apple's ClickFix Protections (objective-see.org)
submitted 1 hour ago by digicat to c/blueteamsec
0 comments fedilink
5
1
PlugX : Mustang Panda APT (0x3obad.github.io)
submitted 1 hour ago by digicat to c/blueteamsec
0 comments fedilink
6
4
An analysis of CrystalX commercial RAT with prankware features (securelist.com)
submitted 2 hours ago by digicat to c/blueteamsec
0 comments fedilink
7
1
North Korea-Nexus Threat Actor Compromises Widely Used Axios NPM Package in Supply Chain Attack (cloud.google.com)
submitted 2 hours ago by digicat to c/blueteamsec
0 comments fedilink
8
1
windbg-mcp: An MCP (Model Context Protocol) server that turns all pybag Windows debugger functions into native MCP tools. control user-mode processes, kernel sessions, and crash dump an (github.com)
submitted 2 hours ago by digicat to c/blueteamsec
0 comments fedilink
9
1
Piratage dans le tourisme : Homair, Vacancéole, Belambra… la piste Septeo/Resalys se dessine-t-elle ? (frenchbreaches.com)
submitted 3 hours ago* (last edited 3 hours ago) by decio to c/cyberveille
0 comments fedilink
 
 

Trois acteurs majeurs du tourisme ont signalé un piratage en quelques jours. Homair, Vacancéole et Belambra ont-ils un prestataire commun, possiblement lié à Septeo/Resalys ?

10
1
Le code source de Claude Code en fuite sur la Toile (www.clubic.com)
submitted 3 hours ago by decio to c/cyberveille
1 comments fedilink
 
 

C’est une bourde qui devrait rester dans les mémoires. Aujourd’hui, le code source de Claude Code, l’assistant IA de codage d’Anthropic, a fuité complètement. Chez Anthropic, on a aujourd’hui un gros problème avec les autorités américaines, qui souhaitent pouvoir utiliser militairement les outils IA Claude sans aucune restriction - ce qui pousse aujourd’hui l’entreprise à mener un combat judiciaire. Mais la liste des soucis ne s’arrête pas là pour la firme de Dario Amodei, avec aujourd'hui une fuite historique du code source de Claude Code.

Le code source de Claude Code se retrouve soudainement à l’air libre ! Il y a des fuites qui portent préjudice. Et nul doute que celle qui vient d’avoir lieu ce 31 mars va marquer. Le spécialiste de la sécurité Chaofan Shou vient en effet de découvrir l’ensemble du code de Claude Code dans un fichier source map de 60 Mo, publié par erreur sur le registre npm.

Pour rappel, un fichier source map est un fichier qui permet de retrouver un code lisible, à des fins notamment de débogage - et qui n’est pas censé être proposé au public. Évidemment, le code a très vite intéressé des nuées d’internautes, et une copie s’est retrouvée sur GitHub, où elle est déjà extrêmement populaire.

11
6
Malware detectors trained on one dataset often stumble on another (www.helpnetsecurity.com)
submitted 5 hours ago by lemmydev2 to c/pulse_of_truth
0 comments fedilink
 
 

Machine learning models built to catch malware on Windows systems are typically evaluated on data that closely resembles their training set. In practice, the malware arriving on enterprise endpoints looks different, comes from different sources, and in many cases has been deliberately obfuscated to evade detection. A study from researchers at the Polytechnic of Porto tests what happens when that gap is made explicit, and the results have direct implications for organizations relying on static … More → The post Malware detectors trained on one dataset often stumble on another appeared first on Help Net Security.

12
2
The Offense Death Cycle: Proactive Environmental Control as a Method of Persistent Cyber Defense (cyberdefensereview.army.mil)
submitted 4 hours ago by digicat to c/blueteamsec
0 comments fedilink
13
5
Baidu Robotaxis Freeze in Wuhan, Sparking Flurry of Police Calls (www.bloomberg.com)
submitted 5 hours ago by lemmydev2 to c/pulse_of_truth
0 comments fedilink
 
 

A number of Baidu Inc.’s Apollo Go robotaxis suddenly stopped on the streets of China’s Wuhan city on Tuesday, leaving passengers stranded and raising concerns about the safety and reliability of autonomous driving technology.

14
3
Iran‑Nexus M365 Password Spray Campaign in the Middle East (blog.checkpoint.com)
submitted 5 hours ago by digicat to c/blueteamsec
0 comments fedilink
15
1
Supply Chain : Axios victime d'un piratage majeur sur npm, des millions de systèmes visés (www.zdnet.fr)
submitted 4 hours ago by decio to c/cyberveille
0 comments fedilink
 
 

L'un des piliers de l'écosystème JavaScript, la bibliothèque Axios, a été compromise pour diffuser un malware. En piratant le compte d'un mainteneur, des attaquants ont injecté une dépendance malveillante dans deux versions officielles, exposant serveurs et postes de travail au vol de données.

16
2
Operation TrueChaos: 0-Day Exploitation Against Southeast Asian Government Targets (research.checkpoint.com)
submitted 4 hours ago by digicat to c/blueteamsec
0 comments fedilink
17
2
Česká firma inkasovala 2,2 milionu korun od tvůrců špionážního systému Predator - Czech company collects 2.2 million crowns from creators of Predator spy system (www.investigace.cz)
submitted 4 hours ago by digicat to c/blueteamsec
0 comments fedilink
18
2
Maryland Man Charged With Defrauding Crypto Exchange Of Over $50 Million In Hacks (www.justice.gov)
submitted 5 hours ago by digicat to c/blueteamsec
0 comments fedilink
19
2
RFC 9849: TLS Encrypted Client Hello - network detection just got harder (datatracker.ietf.org)
submitted 5 hours ago by digicat to c/blueteamsec
0 comments fedilink
20
9
Quantum computers need vastly fewer resources than thought to break vital encryption (arstechnica.com)
submitted 13 hours ago by lemmydev2 to c/pulse_of_truth
0 comments fedilink
 
 

No, the sky isn't falling, but Q Day is coming, and it won't be as expensive as thought.

21
7
Cisco source code stolen in Trivy-linked dev environment breach (www.bleepingcomputer.com)
submitted 13 hours ago by lemmydev2 to c/pulse_of_truth
0 comments fedilink
 
 

Cisco has suffered a cyberattack after threat actors used stolen credentials from the recent Trivy supply chain attack to breach its internal development environment and steal source code belonging to the company and its customers. [...]

22
5
Iran targets M365 accounts with password-spraying attacks (www.theregister.com)
submitted 13 hours ago by lemmydev2 to c/pulse_of_truth
0 comments fedilink
 
 

Researchers say some targets correlate with cities hit by Iranian missile strikes Suspected Iran-linked threat actors are conducting password-spraying attacks against hundreds of organizations, primarily Middle Eastern municipalities, in campaigns that security researchers believe may have been aimed at supporting bomb-damage assessment following missile strikes.…

23
4
How Small Can A Linux Executable Be? (hackaday.com)
submitted 13 hours ago by lemmydev2 to c/pulse_of_truth
1 comments fedilink
 
 

With ever increasing sizes of various programs (video games being notorious for this), the question of size optimization comes up more and more often. [Nathan Otterness] shows us how it’s …read more

24
15
Supply chain attack hits 300 million-download Axios npm package (www.itnews.com.au)
submitted 18 hours ago by cm0002@toast.ooo to c/cybersecurity
0 comments fedilink
25
3
Who is using differential privacy? A new registry aims to make it visible (techxplore.com)
submitted 13 hours ago by lemmydev2 to c/pulse_of_truth
0 comments fedilink
 
 

When Apple discovers trending popular emojis, or when Google reports traffic at a busy restaurant, they're analyzing large datasets made up of individual people. Those people's personal information is systematically protected thanks in large part to research by Harvard computer scientists. Now, after two decades of work on the cryptography-adjacent mathematical framework known as differential privacy, researchers in the John A. Paulson School of Engineering and Applied Sciences have reached a key milestone in moving privacy best practices from academia into real-world applications.

view more: next ›