Infosec.Pub

4,699 readers
116 users here now

To support infosec.pub, please consider donating through one of the following services:

Paypal: jerry@infosec.exchange

Ko-Fi: https://ko-fi.com/infosecexchange

Patreon: https://www.patreon.com/infosecexchange

founded 2 years ago
ADMINS
jerry
shellsharks
modbot
listing: all - local
776
2
Inside the Kimsuky Leak: How the “Kim” Dump Exposed North Korea’s Credential Theft Playbook (dti.domaintools.com)
submitted 1 month ago by digicat to c/blueteamsec
0 comments fedilink
777
2
Threat Actors Abuse Simplified AI to Steal Microsoft 365 Credentials (www.catonetworks.com)
submitted 1 month ago by digicat to c/blueteamsec
0 comments fedilink
778
9
How North Korean hackers are using fake job offers to steal cryptocurrency (www.itnews.com.au)
submitted 1 month ago by lemmydev2 to c/pulse_of_truth
0 comments fedilink
 
 

At least 230 victims of 'Contagious Interview' threat identified.

779
14
61% of US Companies Hit by Insider Data Breaches (www.infosecurity-magazine.com)
submitted 1 month ago by lemmydev2 to c/pulse_of_truth
1 comments fedilink
 
 

The OPSWAT report found that insider breaches cost impacted firms $2.7m on average due to factors such as regulatory fines and diminished productivity

780
8
Hackers May Leverage Raw Disk Reads to Bypass EDR Solutions and Access Highly Sensitive Files (cybersecuritynews.com)
submitted 1 month ago by lemmydev2 to c/pulse_of_truth
1 comments fedilink
 
 

A new technique that allows attackers to read highly sensitive files on Windows systems, bypassing many of the modern security tools designed to prevent such breaches. A report from Workday’s Offensive Security team explains how, by reading data directly from a computer’s raw disk, a malicious actor can sidestep Endpoint Detection and Response (EDR) solutions, […] The post Hackers May Leverage Raw Disk Reads to Bypass EDR Solutions and Access Highly Sensitive Files appeared first on Cyber Security News.

781
5
The Flixbus chatbot claims nothing it says is legally binding (but a court found otherwise in Canada, ruling against an airline) (webchat.flixbus.com)
submitted 1 month ago* (last edited 1 month ago) by activistPnk@slrpnk.net to c/assholedesign_web
4 comments fedilink
 
 

A chatbot erroneously told a traveler they get free travel in a particular situation. I don’t recall exact circumstances but it was something like a last minute trip for a funeral. The airline then denied him the free ticket. He sued. The court found that the chatbot represents the company and is therefore legally bound to agreements.

It’s interesting to note that agreements are now being presented which you must click to accept before talking to a chatbot. E.g., from Flixbus:

You are interacting with an automated chatbot. The information provided is for general guidance only and is not binding. If you require further clarification or additional information, please contact a member of our staff directly or check out our terms and conditions and privacy notice.

(emphasis mine)

I’m not in Canada so that may be true. I just wonder if this agreement is enforceable in Europe.

782
0
MeetC2 a.k.a Meeting C2 (medium.com)
submitted 1 month ago by digicat to c/blueteamsec
0 comments fedilink
 
 

**

783
4
orsted: Orsted C2 Framework (github.com)
submitted 1 month ago by digicat to c/blueteamsec
0 comments fedilink
784
12
Microsoft Used China-Based Engineers. - "internal work-tracking system that showed China-based employees recently fixing bugs for SharePoint “OnPrem,”" (www.propublica.org)
submitted 1 month ago by digicat to c/blueteamsec
0 comments fedilink
785
2
ACM SIGCOMM 2025: Proceedings of the ACM SIGCOMM 2025 Conference (conferences.sigcomm.org)
submitted 1 month ago by digicat to c/blueteamsec
0 comments fedilink
786
7
Connected cars are smart, convenient, and open to cyberattacks (www.helpnetsecurity.com)
submitted 1 month ago by lemmydev2 to c/pulse_of_truth
1 comments fedilink
 
 

Consumers are concerned about vulnerabilities in their vehicles, which directly impacts purchasing behavior and brand loyalty, according to RunSafe Security. Vehicles now run on over 100 million lines of code, which is more than most fighter jets, but they often lack the cybersecurity measures needed to keep them safe. These innovations bring plenty of convenience, from over-the-air (OTA) updates to smartphone integration, but they also create new opportunities for cybercriminals to exploit. 65% of drivers … More → The post Connected cars are smart, convenient, and open to cyberattacks appeared first on Help Net Security.

787
4
ACM SIGCOMM 2025: Proceedings of the Workshops (conferences.sigcomm.org)
submitted 1 month ago by digicat to c/blueteamsec
0 comments fedilink
788
14
Frostbyte10 bugs put thousands of refrigerators at major grocery chains at risk (www.theregister.com)
submitted 1 month ago by cm0002@piefed.world to c/cybersecurity
0 comments fedilink
789
2
Operation BarrelFire: NoisyBear Targets Kazakhstan Oil & Gas (www.seqrite.com)
submitted 1 month ago by digicat to c/blueteamsec
0 comments fedilink
790
4
GhostRedirector poisons Windows servers: Backdoors with a side of Potatoes (www.welivesecurity.com)
submitted 1 month ago by digicat to c/blueteamsec
0 comments fedilink
791
1
From CastleLoader to CastleRAT: TAG-150 Advances Operations with Multi-Tiered Infrastructure (www.recordedfuture.com)
submitted 1 month ago by digicat to c/blueteamsec
0 comments fedilink
792
2
Addressing the unauthorized issuance of multiple TLS certificates for 1.1.1.1 (blog.cloudflare.com)
submitted 1 month ago by digicat to c/blueteamsec
0 comments fedilink
793
31
The number of mis-issued 1.1.1.1 certificates grows. Here’s the latest. (arstechnica.com)
submitted 1 month ago by cm0002@lemmy.world to c/cybersecurity
3 comments fedilink
794
36
I'm sure you already know, but it's out — Hollow Knight: Silksong, a metroidvania about gross bugs, is out on all major platforms (I guess Playstation is coming…) (self.metroidvanias)
submitted 1 month ago by chrisbrummel to c/metroidvanias
12 comments fedilink
 
 

Needs no introduction in this sub. I'm getting this out just before hitting play.

Discover a vast, haunted kingdom in Hollow Knight: Silksong! Explore, fight and survive as you ascend to the peak of a land ruled by silk and song.

No reviews are out yet, but I really doubt you need one for this.

🎮

795
14
France slaps Google with €325M fine for violating cookie regulations (www.bleepingcomputer.com)
submitted 1 month ago by lemmydev2 to c/pulse_of_truth
1 comments fedilink
 
 

The French data protection authority has fined Google €325 million ($378 million) for violating cookie regulations and displaying ads between Gmail users' emails without their consent. [...]

796
7
Contagious Interview | North Korean Threat Actors Reveal Plans and Ops by Abusing Cyber Intel Platforms (www.sentinelone.com)
submitted 1 month ago by digicat to c/blueteamsec
0 comments fedilink
797
12
‘Unrestrained’ Chinese Cyberattackers May Have Stolen Data From Almost Every American (www.nytimes.com)
submitted 1 month ago by digicat to c/blueteamsec
0 comments fedilink
798
2
Leveraging Raw Disk Reads to Bypass EDR (medium.com)
submitted 1 month ago by digicat to c/blueteamsec
0 comments fedilink
799
2
auth0/auth0-customer-detections (github.com)
submitted 1 month ago by digicat to c/blueteamsec
0 comments fedilink
800
3
Building On Cardano: In Conversation with the CSWAP team (www.youtube.com)
submitted 1 month ago by rss@ibbit.at to c/cardano
0 comments fedilink
 
 

From Input Output via this RSS feed

view more: ‹ prev next ›