Infosec.Pub

4,699 readers
114 users here now

To support infosec.pub, please consider donating through one of the following services:

Paypal: jerry@infosec.exchange

Ko-Fi: https://ko-fi.com/infosecexchange

Patreon: https://www.patreon.com/infosecexchange

founded 2 years ago
ADMINS
jerry
shellsharks
modbot
listing: all - local
751
16
Bank Hacking Has Doubled Since 2023 And Investors Are Getting Spooked (gizmodo.com)
submitted 1 month ago by lemmydev2 to c/pulse_of_truth
0 comments fedilink
 
 

Investors are looking to see which banks have the best cyber resiliency.

752
7
Qantas cuts executive bonuses by 15% after a July data breach (securityaffairs.com)
submitted 1 month ago by lemmydev2 to c/pulse_of_truth
0 comments fedilink
 
 

Qantas cuts executive bonuses by 15% after a July cyberattack exposed data of 5.7M people, despite reporting $1.5B profit last fiscal year. Qantas cuts executive bonuses by 15% after a July cyberattack that exposed data of 5.7M people, despite posting $1.5B profit in the last fiscal year. This case study demonstrates that a security breach […]

753
4
Retrieving kernel process object addresses by exploiting a driver providing R/W to physical memory (github.com)
submitted 1 month ago by digicat to c/blueteamsec
0 comments fedilink
 
 
754
4
A Playbook for Winning the Cyber War | Intelligence, National Security, and Technology Program | CSIS (www.csis.org)
submitted 1 month ago by digicat to c/blueteamsec
0 comments fedilink
755
5
VulnRepairEval: An Exploit-Based Evaluation Framework for Assessing Large Language Model Vulnerability Repair Capabilities (arxiv.org)
submitted 1 month ago by digicat to c/blueteamsec
0 comments fedilink
756
6
We Hacked Burger King: How Authentication Bypass Led to Drive-Thru Audio Surveillance (bobdahacker.com)
submitted 1 month ago by lemmydev2 to c/pulse_of_truth
3 comments fedilink
 
 

We stumbled upon vulnerabilities so catastrophic that we could access every single store in their global empire. From a Burger King in Times Square to that lonely Tim Hortons where Bugs Bunny shoulda taken a left turn at Albuquerque. Oh, and did we mention we could listen to your actual drive-thru conversations? Yeah, that happened too

757
2
dittobytes: Metamorphic cross-compilation of C++ & C-code to PIC, BOF & EXE. (github.com)
submitted 1 month ago by digicat to c/blueteamsec
0 comments fedilink
758
1
BugCheck 0xD1: Potential race condition in Teredo cleanup during flow teardown (medium.com)
submitted 1 month ago by digicat to c/blueteamsec
0 comments fedilink
759
3
New Botnet Emerges from the Shadows: NightshadeC2 (www.esentire.com)
submitted 1 month ago by digicat to c/blueteamsec
0 comments fedilink
760
3
The Czech National Cyber and Information Security Agency issues warning about data transfer to and remote administration from China (nukib.gov.cz)
submitted 1 month ago by digicat to c/blueteamsec
0 comments fedilink
761
1
Salesloft Third-Party Drift Integration Partners FAQ (9:00PM ET) (trust.salesloft.com)
submitted 1 month ago by digicat to c/blueteamsec
0 comments fedilink
762
4
Critical SAP S/4HANA code injection vulnerability (CVE-2025-42957) exploited in the wild (securitybridge.com)
submitted 1 month ago by digicat to c/blueteamsec
1 comments fedilink
763
4
The GhostAction Campaign: 3,325 Secrets Stolen Through Compromised GitHub Workflows (blog.gitguardian.com)
submitted 1 month ago by digicat to c/blueteamsec
0 comments fedilink
764
2
DRMD: Deep Reinforcement Learning for Malware Detection under Concept Drift (arxiv.org)
submitted 1 month ago by digicat to c/blueteamsec
0 comments fedilink
765
2
The Art of Hide and Seek: Making Pickle-Based Model Supply Chain Poisoning Stealthy Again (arxiv.org)
submitted 1 month ago by digicat to c/blueteamsec
0 comments fedilink
766
3
Breaking Diffusion with Cache: Exploiting Approximate Caches in Diffusion Models (arxiv.org)
submitted 1 month ago by digicat to c/blueteamsec
1 comments fedilink
767
1
[2508.20866] AI Agentic Vulnerability Injection And Transformation with Optimized Reasoning (arxiv.org)
submitted 1 month ago by digicat to c/blueteamsec
0 comments fedilink
768
2
Let's evaluate "The Iranian Internet Outage from the Perspective of Cyberspace" from the perspective of real cyberspace. (mp.weixin.qq.com)
submitted 1 month ago by digicat to c/blueteamsec
0 comments fedilink
769
0
LLM-TIKG: Threat intelligence knowledge graph construction utilizing large language model (www.sciencedirect.com)
submitted 1 month ago by digicat to c/blueteamsec
0 comments fedilink
770
2
ReDAN: An Empirical Study on Remote DoS Attacks against NAT Networks (www.ndss-symposium.org)
submitted 1 month ago by digicat to c/blueteamsec
0 comments fedilink
771
5
CTO at NCSC Summary: week ending September 7th (ctoatncsc.substack.com)
submitted 1 month ago by digicat to c/blueteamsec
0 comments fedilink
772
9
Critical SAP S/4HANA flaw CVE-2025-42957 under active exploitation (securityaffairs.com)
submitted 1 month ago by lemmydev2 to c/pulse_of_truth
2 comments fedilink
 
 

Experts warn of an actively exploited vulnerability, tracked as CVE-2025-42957 (CVSS score: 9.9), in SAP S/4HANA software. A critical command injection vulnerability, tracked as CVE-2025-42957 (CVSS score of 9.9), in SAP S/4HANA is under active exploitation. An attacker can exploit this flaw to fully compromise SAP systems, altering databases, creating superuser accounts, and stealing password hashes. “SAP […]

773
6
ImaginaryCTF 2025 | September 5-7, 12 PM PDT | a cybersecurity CTF competition with a variety of challenges for all skill levels (2025.imaginaryctf.org)
submitted 1 month ago by otter@lemmy.ca to c/cybersecurity
0 comments fedilink
 
 

cross-posted from: https://lemmy.ca/post/51072576

774
2
Inside the Kimsuky Leak: How the “Kim” Dump Exposed North Korea’s Credential Theft Playbook (dti.domaintools.com)
submitted 1 month ago by digicat to c/blueteamsec
0 comments fedilink
775
2
Threat Actors Abuse Simplified AI to Steal Microsoft 365 Credentials (www.catonetworks.com)
submitted 1 month ago by digicat to c/blueteamsec
0 comments fedilink
view more: ‹ prev next ›