Infosec.Pub

4,844 readers
111 users here now

To support infosec.pub, please consider donating through one of the following services:

Paypal: jerry@infosec.exchange

Ko-Fi: https://ko-fi.com/infosecexchange

Patreon: https://www.patreon.com/infosecexchange

founded 2 years ago
ADMINS
jerry
shellsharks
modbot
listing: all - local
101
4
Security boffins scoured the web and found hundreds of valid API keys (www.theregister.com)
submitted 4 days ago by lemmydev2 to c/pulse_of_truth
0 comments fedilink
 
 

Global bank's devs have some cleaning up to do after cloud creds found in website code Computer security boffins have conducted an analysis of 10 million websites and found almost 2,000 API credentials strewn across 10,000 webpages.…

102
4
Dutch Police discloses security breach after phishing attack (www.bleepingcomputer.com)
submitted 4 days ago by lemmydev2 to c/pulse_of_truth
0 comments fedilink
 
 

The Dutch National Police (Politie) says a security breach resulting from a successful phishing attack has had a limited impact and hasn't affected citizens' data. [...]

103
1
Building a Firewall ...via Endpoint Security!? On macOS (objective-see.org)
submitted 3 days ago by digicat to c/blueteamsec
0 comments fedilink
104
3
Critical Vulnerability in TP-Link Archer Products (www.csa.gov.sg)
submitted 4 days ago by digicat to c/blueteamsec
0 comments fedilink
105
3
Honey for Hackers: A Study of Attacks Targeting the Recent CVE-2026-21962 and Other Critical WebLogic Vulnerabilities on a High Interactive Oracle Honeypot (www.cloudsek.com)
submitted 4 days ago by digicat to c/blueteamsec
0 comments fedilink
106
3
Weaponizing Legitimate Low-Level Tools: How Ransomware Evades Antivirus Protections (www.seqrite.com)
submitted 4 days ago by digicat to c/blueteamsec
0 comments fedilink
107
3
Reflecting on Your Tier Model: CVE-2025-33073 and the One-Hop Problem (www.praetorian.com)
submitted 4 days ago by digicat to c/blueteamsec
0 comments fedilink
108
3
Silver Fox: The Only Tax Audit Where the Fine Print Installs Malware (blog.sekoia.io)
submitted 4 days ago by digicat to c/blueteamsec
0 comments fedilink
109
1
Environment-Grounded Multi-Agent Workflow for Autonomous Penetration Testing (arxiv.org)
submitted 3 days ago by digicat to c/blueteamsec
0 comments fedilink
110
1
CVE-2025-14325: SpiderMonkey Type Confusion in Baseline JIT Inline Cache - found via AI assisted fuzzing (qriousec.github.io)
submitted 3 days ago by digicat to c/blueteamsec
0 comments fedilink
111
1
trustme: BOF to impersonate TrustedInstaller via DISM API trigger and thread impersonation (github.com)
submitted 3 days ago by digicat to c/blueteamsec
0 comments fedilink
112
1
BridgeHead: Native C++ access to Active Directory over ADWS, no .NET, no WCF, no HTTP stack. (github.com)
submitted 3 days ago by digicat to c/blueteamsec
0 comments fedilink
113
4
Hundreds of Millions of iPhones Can Be Hacked With a New Tool Found in the Wild (www.wired.com)
submitted 4 days ago by Innerworld@lemmy.world to c/cybersecurity
0 comments fedilink
114
8
Hackers Plant Stealthy BPFdoor Backdoors in Telecom Networks for Long-Term Access (cybersecuritynews.com)
submitted 5 days ago by lemmydev2 to c/pulse_of_truth
0 comments fedilink
 
 

A months-long investigation by Rapid7 Labs has exposed a sophisticated, state-sponsored espionage campaign by the China-nexus threat actor Red Menshen, which has embedded some of the most covert digital sleeper cells ever documented inside global telecommunications infrastructure. Released on March 26, 2026, the findings reveal a deliberate shift from opportunistic hacking to long-term pre-positioning within […] The post Hackers Plant Stealthy BPFdoor Backdoors in Telecom Networks for Long-Term Access appeared first on Cyber Security News.

115
5
Hackers have exposed more than 8.3 million supposedly confidential reports to tip lines like Crime Stoppers (san.com)
submitted 4 days ago by Innerworld@lemmy.world to c/cybersecurity
0 comments fedilink
116
4
European Commission confirms cyberattack after hackers claim data breach (techcrunch.com)
submitted 4 days ago by lemmydev2 to c/pulse_of_truth
0 comments fedilink
 
 

The European Union's top executive body has confirmed a cyberattack after hackers reportedly stole reams of data from the European Commission's cloud storage.

117
3
filterforge: Tool for solving BPF filters and crafting packets based on these. (github.com)
submitted 4 days ago by digicat to c/blueteamsec
0 comments fedilink
118
2
K000156741: F5 BIG-IP APM vulnerability CVE-2025-53521 - from October - K000160486: Indicators of Compromise for c05d5254 from March (my.f5.com)
submitted 4 days ago by digicat to c/blueteamsec
0 comments fedilink
119
2
Local Privilege Escalation in Vienna Assistant (MacOS) - Vienna Symphonic Library - apparently no patch, vendor didn't response (sec-consult.com)
submitted 4 days ago by digicat to c/blueteamsec
0 comments fedilink
120
2
strongSwan Vulnerability (CVE-2026-25075) (www.strongswan.org)
submitted 4 days ago by digicat to c/blueteamsec
0 comments fedilink
121
2
SQUID-2026:3 Out of Bounds Read in ICP message handling (github.com)
submitted 4 days ago by digicat to c/blueteamsec
0 comments fedilink
122
2
Grafana security release: Critical and high severity security fixes for CVE-2026-27876 and CVE-2026-27880 | Grafana Labs (grafana.com)
submitted 4 days ago by digicat to c/blueteamsec
0 comments fedilink
123
2
A cunning predator: How Silver Fox preys on Japanese firms this tax season (www.welivesecurity.com)
submitted 4 days ago by digicat to c/blueteamsec
0 comments fedilink
124
2
Under CTRL: Dissecting a Previously Undocumented Russian .Net Access Framework (censys.com)
submitted 4 days ago by digicat to c/blueteamsec
0 comments fedilink
125
2
Advancing Windows driver security: Removing trust for the cross-signed driver program (techcommunity.microsoft.com)
submitted 4 days ago by digicat to c/blueteamsec
0 comments fedilink
view more: ‹ prev next ›