Skip to main content
Go to side pane
PieFed
Home
Home
Popular
All posts
Topics
Browse by topic
All communities
Log in
Register
Donate
Home
Communities
Security@lemmy.ml
Security
Create post
Hot
Top
New
Active
List
Tile
Wide tile
8
0
BIMI and DMARC Can't Save You: The Overlooked DKIM Exploit
(
zone.eu
)
by
lemmyreader
2024-05-18T11:24:02Z
3
22
1
16 years of CVE-2008-0166 - Debian OpenSSL Bug
(
16years.secvuln.info
)
by
lemmyreader
2024-05-12T10:11:34Z
0
32
3
Novel attack against virtually all VPN apps neuters their entire purpose
(
arstechnica.com
)
by
Arthur Besse
2024-05-07T13:43:31Z
20
18
1
How well can an employer be certain of a remote employee's geographical location?
by
maegul
2024-05-03T04:16:04Z
3
18
2
Stealing your Telegram account in 10 seconds flat
(
lyra.horse
)
by
lemmyreader
2024-05-02T21:10:39Z
0
8
0
Nation-state hackers exploit Cisco firewall 0-days to backdoor government networks
(
arstechnica.com
)
by
☆ Yσɠƚԋσʂ ☆
2024-04-29T12:37:56Z
0
41
11
A doubt in encryption
by
t0mri
2024-04-28T04:17:08Z
25
20
0
Computer scientists unveil novel attacks on cybersecurity
(
sciencedaily.com
)
by
lemmyreader
2024-04-27T07:43:56Z
0
9
0
Passkeys: A Shattered Dream
(
fy.blackhats.net.au
)
by
lemmyreader
2024-04-26T07:28:42Z
5
7
1
A dozen+ RCEs on popular LLM framework libraries like LangChain and LlamaIndex - used in lots of chat-assisted apps including GitHub
(
mastodon.social
)
by
☆ Yσɠƚԋσʂ ☆
2024-04-18T14:33:00Z
0
12
0
After XZ Utils, More Open-Source Maintainers Under Attack
(
bankinfosecurity.com
)
by
lemmyreader
2024-04-16T22:07:58Z
1
37
0
PuTTY priority high vulnerability CVE-2024-31497
(
hachyderm.io
)
by
lemmyreader
2024-04-15T20:02:26Z
3
22
0
Gmail And YouTube Hackers Bypass Google’s 2FA Account Security
(
forbes.com
)
by
☆ Yσɠƚԋσʂ ☆
2024-04-14T00:48:28Z
0
17
0
New Technique Detected in an Open Source Supply Chain Attack
(
checkmarx.com
)
by
lemmyreader
2024-04-12T12:36:46Z
1
18
1
New Spectre v2 attack impacts Linux systems on Intel CPUs
(
bleepingcomputer.com
)
by
lemmyreader
2024-04-10T21:59:42Z
0
6
1
Where The Wild Things Are: Brute-Force SSH Attacks In The Wild And How To Stop Them
(
flux.utah.edu
)
by
lemmyreader
2024-04-10T18:09:17Z
0
8
1
Running the “Reflections on Trusting Trust” Compiler
(
research.swtch.com
)
by
Rustmilian
2024-04-10T13:15:46Z
0
18
0
GParted Live Is Now Patched Against the XZ Backdoor, Powered by Linux Kernel 6.7
(
9to5linux.com
)
by
Rustmilian
2024-04-10T09:29:17Z
0
10
0
Thoughts on the xz backdoor: an lzma-rs perspective | Blog
(
gendignoux.com
)
by
Rustmilian
2024-04-10T09:28:45Z
2
11
0
Security advisory for the standard library (CVE-2024-24576)
(
blog.rust-lang.org
)
by
Rustmilian
2024-04-10T09:27:42Z
0
15
1
Critical Rust flaw enables Windows command injection attacks
(
bleepingcomputer.com
)
by
Rustmilian
2024-04-10T09:27:10Z
0
5
0
The Bootstrapping Exam: Escaping from “Trusting Trust”
(
devever.net
)
by
Arthur Besse
2024-04-10T12:19:04Z
1
14
0
XZ Utils backdoor - Wikipedia
(
en.wikipedia.org
)
by
lemmyreader
2024-04-08T18:21:45Z
0
514
22
Amazon storing classified US government documents improperly
by
lemmyreader
2024-04-07T16:10:54Z
57
9
4
Today marks the 10th anniversary of the Heartbleed vulnerability in OpenSSL, which had the same ultimate root cause as recent XZUtils backdoor incident
(
medium.com
)
by
Otto
2024-04-07T18:57:03Z
1
28
0
backdoor in upstream xz/liblzma leading to ssh server compromise
(
openwall.com
)
by
Atemu
2024-03-29T16:35:32Z
0
0
0
High Court orders temporary suspension of Telegram's services in Spain
(
reuters.com
)
by
NinjaZ
2024-03-24T06:00:51Z
0
0
0
SIM swappers hijacking phone numbers in eSIM attacks
(
bleepingcomputer.com
)
by
overflow
2024-03-15T16:47:54Z
0
0
0
Debunking the Myth of “Anonymous” Data
(
eff.org
)
by
NinjaZ
2024-03-03T06:49:18Z
0
0
0
Researchers create AI worms that can spread from one system to another
(
arstechnica.com
)
by
☆ Yσɠƚԋσʂ ☆
2024-03-02T13:57:17Z
0
1
0
How the Pentagon Learned to Use Targeted Ads to Find Its Targets—and Vladimir Putin
(
wired.com
)
by
NinjaZ
2024-02-29T08:34:54Z
0
0
0
NIST Releases Version 2.0 of Landmark Cybersecurity Framework
(
nist.gov
)
by
wizardbeard
2024-02-28T13:26:45Z
0
1
0
Vehicle thefts - Insecure vehicles should be banned, not security tools like the Flipper Zero
(
saveflipper.ca
)
by
NinjaZ
2024-02-27T16:46:56Z
0
0
0
Security List
(
security-list.js.org
)
by
NinjaZ
2024-02-26T10:17:31Z
0
0
0
Things that have been happening to me too often lately
by
rhabarba
2024-02-23T20:04:36Z
0
0
0
If the Internet where to be redesigned, what would you change to improve security?
by
FlappyBubble
2024-02-18T18:50:26Z
0
0
0
Why Bloat Is Still Software’s Biggest Vulnerability
(
spectrum.ieee.org
)
by
NinjaZ
2024-02-15T14:47:07Z
0
0
0
This iOS Trojan Is Harvesting Facial-Recognition Data
(
pcmag.com
)
by
☆ Yσɠƚԋσʂ ☆
2024-02-15T12:41:15Z
0
0
0
Critical Outlook RCE with CVSS3.1 (badness) score of 9.8
(
infosec.exchange
)
by
Helix 🧬
2024-02-15T03:06:23Z
0
0
0
Twilio Authy Desktop app, new death date
by
FirstCircle
2024-02-13T19:21:45Z
0
0
0
Nearly half the French population have data nabbed in massive breach
(
theregister.com
)
by
NinjaZ
2024-02-12T09:24:42Z
0
0
0
Chinese Hackers Operate Undetected in U.S. Critical Infrastructure for Half a Decade
(
thehackernews.com
)
by
NinjaZ
2024-02-08T13:55:48Z
0
0
0
Linux Foundation Launches Initiative to Advance Post-Quantum Cryptography | L...
(
linuxsecurity.com
)
by
BlanK0
2024-02-08T00:00:34Z
0
0
0
GitHub - MISP/MISP: MISP (core software) - Open Source Threat Intelligence and Sharing Platform
(
github.com
)
by
BlanK0
2024-02-07T15:32:26Z
0
0
0
GitHub - arkime/arkime: Arkime is an open source, large scale, full packet capturing, indexing, and database system.
(
github.com
)
by
BlanK0
2024-02-07T15:29:40Z
0
0
0
Critical vulnerability affecting most Linux distros allows for bootkits
(
arstechnica.com
)
by
BlanK0
2024-02-07T15:04:54Z
0
0
0
Netherlands reveals Chinese spies attacked its defense dept
(
theregister.com
)
by
BlanK0
2024-02-06T20:01:47Z
0
0
0
Hackers Exploit Job Boards, Stealing Millions of Resumes and Personal Data
(
thehackernews.com
)
by
BlanK0
2024-02-06T19:56:12Z
0
0
0
AnyDesk revokes certs, passwords after IT security breach
(
theregister.com
)
by
BlanK0
2024-02-05T22:12:02Z
0
0
0
Patchwork Using Romance Scam Lures to Infect Android Devices with VajraSpy Malware
(
thehackernews.com
)
by
BlanK0
2024-02-05T22:05:28Z
0
0
0
Leaky Vessels flaws allow hackers to escape Docker, runc containers
(
bleepingcomputer.com
)
by
BlanK0
2024-02-05T22:01:23Z
0
0
0
Pegasus Spyware Targeted iPhones of Journalists and Activists in Jordan
(
thehackernews.com
)
by
BlanK0
2024-02-05T11:04:57Z
0
0
0
XOrg Server and Xwayland Patched Against Multiple Security Vulnerabilities | ...
(
linuxsecurity.com
)
by
BlanK0
2024-02-05T11:03:17Z
0
0
0
Breaking Bitlocker - Bypassing the Windows Disk Encryption
(
youtube.com
)
by
☆ Yσɠƚԋσʂ ☆
2024-02-04T23:11:14Z
0
0
0
Tools from EFF's Tech Team
(
eff.org
)
by
NinjaZ
2024-02-03T08:00:00Z
0
0
0
Exposed Docker APIs Under Attack in 'Commando Cat' Cryptojacking Campaign
(
thehackernews.com
)
by
BlanK0
2024-02-02T00:33:50Z
0
0
0
Gitleaks review (repository search for secrets and keys)
(
linuxsecurity.expert
)
by
BlanK0
2024-02-02T00:24:51Z
0
0
0
Telegram Marketplaces Fuel Phishing Attacks with Easy-to-Use Kits and Malware
(
thehackernews.com
)
by
BlanK0
2024-02-01T17:22:58Z
0
0
0
Mastodon security update: every version prior to today's is vulnerable to remote user impersonation and takeover
(
github.com
)
by
Arthur Besse
2024-02-01T16:28:42Z
0
0
0
At least 30 journalists, lawyers and activists hacked with Pegasus in Jordan, forensic probe finds
(
apnews.com
)
by
☆ Yσɠƚԋσʂ ☆
2024-02-01T11:55:16Z
0
0
0
Defending against the Attack of the Clone[d website]s!
(
blog.thinkst.com
)
by
ranok
2024-01-31T18:48:29Z
0
0
0
Ntopng review
(
linuxsecurity.expert
)
by
BlanK0
2024-01-31T13:26:29Z
0
0
0
Root access vulnerability in glibc library impacts many Linux distros
(
securityaffairs.com
)
by
BlanK0
2024-01-31T11:17:52Z
0
0
0
URGENT: Upgrade GitLab - Critical Workspace Creation Flaw Allows File Overwrite
(
thehackernews.com
)
by
BlanK0
2024-01-30T17:01:27Z
0
0
0
Riding the AI Waves: The Rise of Artificial Intelligence to Combat Cyber Threats
(
thehackernews.com
)
by
BlanK0
2024-01-29T18:30:12Z
0
0
0
Cve-search review (local CVE and CPE database)
(
linuxsecurity.expert
)
by
BlanK0
2024-01-29T18:12:49Z
0
0
0
Perfecting the Defense-in-Depth Strategy with Automation
(
thehackernews.com
)
by
BlanK0
2024-01-28T19:37:29Z
0
0
0
Linux Kernel 6.7 Released with Various Security Improvements | LinuxSecurity.com
(
linuxsecurity.com
)
by
BlanK0
2024-01-27T20:27:37Z
0
0
0
The Parrot OS 6.0 Release: Empowering Ethical Hackers with Cutting-edge Tools...
(
linuxsecurity.com
)
by
BlanK0
2024-01-27T20:26:28Z
0
0
0
The Linux Threat Landscape Report - Security News
(
trendmicro.com
)
by
BlanK0
2024-01-27T17:52:57Z
0
0
0
In major gaffe, hacked Microsoft test account was assigned admin privileges
(
arstechnica.com
)
by
canpolat
2024-01-27T06:54:05Z
0
0
0
BusKill Warrant Canary #007 🕵️
(
buskill.in
)
by
maltfield
2024-01-21T17:45:52Z
0
0
0
Apple iMessage Soundly Beaten As Powerful New Update Suddenly Leaks
(
forbes.com
)
by
☆ Yσɠƚԋσʂ ☆
2024-01-15T20:57:45Z
0
0
0
Widespread Weak Keys in Network Devices - factorable.net
(
factorable.net
)
by
overflow
2024-01-14T23:39:17Z
0
1
0
Organic maps which claims to be ad-free was marked by F-Droid as “Containing ads”
by
PrivacyAdd
2024-01-13T21:33:04Z
0
0
0
Hackers can infect network-connected wrenches to install ransomware
(
arstechnica.com
)
by
☆ Yσɠƚԋσʂ ☆
2024-01-09T15:08:42Z
0