Infosec.Pub

4,621 readers
132 users here now

To support infosec.pub, please consider donating through one of the following services:

Paypal: jerry@infosec.exchange

Ko-Fi: https://ko-fi.com/infosecexchange

Patreon: https://www.patreon.com/infosecexchange

founded 2 years ago
ADMINS
jerry
shellsharks
modbot
listing: all - local
76
19
Best Free and Open Source Alternatives to Autodesk Fusion (www.linuxlinks.com)
submitted 5 days ago by Sunshine@piefed.ca to c/foss
0 comments fedilink
77
3
autoswagger: Autoswagger by Intruder - detect API auth weaknesses (github.com)
submitted 3 days ago by digicat to c/blueteamsec
0 comments fedilink
78
3
ICANN writes letter to Web Commerce Communications Limited dba WebNic.cc for not dealing with DNS domain abuse reports (www.icann.org)
submitted 3 days ago by digicat to c/blueteamsec
0 comments fedilink
79
3
Microsoft OAuth App Impersonation Campaign Leads to MFA Phishing (www.proofpoint.com)
submitted 3 days ago by digicat to c/blueteamsec
0 comments fedilink
80
26
Study reveals how mobile apps track users through WiFi and Bluetooth (techxplore.com)
submitted 5 days ago by lemmydev2 to c/pulse_of_truth
2 comments fedilink
 
 

Researchers from IMDEA Networks, in collaboration with Universidad Carlos III de Madrid, IMDEA Software Institute, and the University of Calgary, have conducted the first large-scale study—"Your Signal, Their Data: An Empirical Privacy Analysis of Wireless-scanning SDKs in Android"—on how certain Android mobile applications use a device's WiFi and Bluetooth connections to track users' movements in their daily lives, thereby violating their privacy.

81
1
Beyond the Patch: SharePoint Exploits and the Hidden Threat of IIS Module Persistence (www.splunk.com)
submitted 3 days ago by digicat to c/blueteamsec
0 comments fedilink
82
1
Hunting for Secrets in Plain Sight: Leveraging Internal Logging and Monitoring Services (www.praetorian.com)
submitted 3 days ago by digicat to c/blueteamsec
0 comments fedilink
83
1
UNC2891 Bank Heist: Physical ATM Backdoor & Linux Forensic Evasion Evasion (www.group-ib.com)
submitted 3 days ago by digicat to c/blueteamsec
0 comments fedilink
84
1
CTO at NCSC Summary: week ending August 3rd (ctoatncsc.substack.com)
submitted 3 days ago by digicat to c/blueteamsec
0 comments fedilink
85
1
#OFTW v3.0 - 'Objective for the We' v3.0 - London, July 2025 - slides and videos (objective-see.org)
submitted 3 days ago by digicat to c/blueteamsec
0 comments fedilink
86
33
Welcome to the new home of what was /r/Blueteamsec and how it works.. (self.blueteamsec)
submitted 6 days ago* (last edited 5 days ago) by digicat to c/blueteamsec
9 comments fedilink
 
 

Firstly, welcome - you have found us.

Secondly, the origin story - https://www.reddit.com/r/blueteamsec/comments/1mc3pza/reddit_managed_to_ban_the_mod_of_rblueteamsec_due/ of which the tl;dr is we were in /r/Blueteamsec since 2018 and then in July 2025 the mod account got banned.

Thirdly, settle in as this is going to be the permanent home. The only features missing from Lemmy really are:

  • the titles are a little shorter than we are used to
  • the ability to style some of the community
  • categories

but in short nothing material. The Jerboa mobile client is excellent.

Fourthly, how does this work? Broadly speaking

  • there are optimised sources across X, various sites, groups and lists etc.
  • they are reviewed generally once or twice a day (start / end)
  • content is ideally < 1 week old at time of posting
  • content is then reviewed / curated / titles edited and posted

the rough rule of thumb being:

  • link to the source where possible i.e. not a news article but the technical source
  • cyber security relevant and insightful to cyber defence across technology, adversarial tradecraft/techniques/tools, threat intelligence, policy or events

Finally, all community contributions welcome!

87
10
FBI seizes 20 BTC from Chaos Ransomware affiliate targeting Texas firms (securityaffairs.com)
submitted 5 days ago by lemmydev2 to c/pulse_of_truth
0 comments fedilink
 
 

FBI Dallas seized 20 BTC from Chaos ransomware affiliate “Hors,” tied to cyberattacks on Texas firms, on April 15, 2025. The FBI division in Dallas seized about 20 Bitcoins on April 15, 2025, from a wallet belonging to a Chaos ransomware affiliate named as “Hors.” The Hors affiliate is responsible for multiple cyberattacks on Texas […]

88
4
Earthquake! (piefed.blahaj.zone)
submitted 4 days ago by Catoblepas@piefed.blahaj.zone to c/los_angeles
0 comments fedilink
 
 

That got the adrenaline pumping!

4.5 according to USGS.

Don’t forget to fill out a felt report.

89
1
BSides Oslo 2023 (youtube.com)
submitted 3 days ago by ashar to c/security_cpe
0 comments fedilink
 
 

BSides Oslo 2023 playlist

90
2
Let’s Be Objective: A Deep Dive into 0bj3ctivityStealer's Features (www.trellix.com)
submitted 3 days ago by digicat to c/blueteamsec
0 comments fedilink
91
4
M365 Email OSINT After the Lockdown: What Still Works in 2025 (dstreefkerk.github.io)
submitted 4 days ago by digicat to c/blueteamsec
0 comments fedilink
92
2
2025 GenAI Code Security Report: ASSESSING THE SECURITY OF USING LLMS FOR CODING (www.veracode.com)
submitted 3 days ago by digicat to c/blueteamsec
0 comments fedilink
93
2
machofile: machofile is a module to parse Mach-O binary files (github.com)
submitted 3 days ago by digicat to c/blueteamsec
0 comments fedilink
94
3
Attackers abusing Proofpoint & Intermedia link wrapping to deliver phishing payloads (www.cloudflare.com)
submitted 4 days ago by digicat to c/blueteamsec
0 comments fedilink
95
1
From Georgia to Ukraine: Seventeen Years of Russian Cyber Capabilities at War - Modern War Institute (mwi.westpoint.edu)
submitted 3 days ago by digicat to c/blueteamsec
0 comments fedilink
96
10
Palo Alto to scoop up CyberArk for $25 billion to tackle AI-era threats (finance.yahoo.com)
submitted 5 days ago by cm0002@lemmy.world to c/cybersecurity
0 comments fedilink
97
4
Why rural hospitals are losing the cybersecurity battle (www.helpnetsecurity.com)
submitted 4 days ago by lemmydev2 to c/pulse_of_truth
0 comments fedilink
 
 

Cyber threats are becoming more frequent and sophisticated, and rural hospitals and clinics are feeling the pressure from all sides: tight budgets, small teams, limited training, complex technology, and vendors that do not always offer much help. Often, they are left juggling security tools without the IT support to use them effectively, according to Paubox. Compared to their urban counterparts, rural healthcare organizations are hitting more cybersecurity roadblocks, and not just in one or two … More → The post Why rural hospitals are losing the cybersecurity battle appeared first on Help Net Security.

98
36
OpenAI’s ChatGPT Agent casually clicks through “I am not a robot” verification test (arstechnica.com)
submitted 6 days ago by lemmydev2 to c/pulse_of_truth
3 comments fedilink
 
 

"This step is necessary to prove I'm not a bot," wrote the bot as it passed an anti-AI screening step.

99
3
Frozen in transit: Secret Blizzard’s AiTM campaign against diplomats (www.microsoft.com)
submitted 4 days ago by digicat to c/blueteamsec
0 comments fedilink
100
7
Scammers Unleash Flood of Slick Online Gaming Sites (krebsonsecurity.com)
submitted 5 days ago by Pro@programming.dev to c/cybersecurity
1 comments fedilink
view more: ‹ prev next ›