all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
All InfoSec / Cybersecurity News

Source: www.reddit.com / /r/netsec - Information Security News & Discussion

https://www.reddit.com/r/netsec
Follow source RSS
Defeating Visual Studio Code embedded reverse shell 21 hours ago | www.reddit.com
block code embedded feedback +10
Muppets group reportedly breached Sirena Travel: 3.5 Billion records compromised 22 hours ago | www.reddit.com
breached compromised netsec records +1
Cryptomining malware detected on a Russian thesaurus with 5 Million+ monthly visits 1 day, 5 hours ago | www.reddit.com
cryptomining malware netsec russian
Critical DICOM Server Misconfigurations Lead to Exposure of 1.6M Medical Records 1 day, 6 hours ago | www.reddit.com
critical dicom exposure medical +4
The WebP 0day 1 day, 21 hours ago | www.reddit.com
0day netsec webp
New ways to inject system CA certificates in Android 14 2 days, 4 hours ago | www.reddit.com
android android 14 certificates inject +2
LUCR-3: Scattered Spider Getting SaaS-y in the Cloud 3 days, 1 hour ago | www.reddit.com
cloud netsec saas scattered spider +1
RCE in Tutanota Desktop: How a single email could compromise your machine 3 days, 1 hour ago | www.reddit.com
compromise desktop email machine +4
Howtorotate.com - Open Source Guides on Key Rotations from the Most Popular Providers 3 days, 22 hours ago | www.reddit.com
guides key netsec open source +1
Crawlector Version 2.0 has been released. This is a milestone release. 4 days, 3 hours ago | www.reddit.com
milestone netsec release version
DEF CON 31 Main Stage Talks 4 days, 10 hours ago | www.reddit.com
con def def con def con 31 +4
Zero-Knowledge Middleboxes 4 days, 22 hours ago | www.reddit.com
knowledge middleboxes netsec
Fileless Remote Code Execution on Juniper Firewalls 5 days, 2 hours ago | www.reddit.com
code code execution fileless firewalls +4
AWS's Hidden Threat: AMBERSQUID Cloud-Native Cryptojacking Operation – Sysdig 5 days, 2 hours ago | www.reddit.com
aws cloud cloud-native cryptojacking +4
When MFA isn't actually MFA 5 days, 2 hours ago | www.reddit.com
isn mfa netsec
Fuzzing with multiple servers in parallel: AFL++ with Network File Systems 5 days, 7 hours ago | www.reddit.com
afl file fuzzing netsec +3
A Practical Approach to SBOM in CI/CD. Presenting concept of SBOM, its advantages, popular formats … 6 days ago | www.reddit.com
concept java netsec popular +3
Account Takeover in Canvas Apps served in Comet due to failure in Cross-Window-Message Origin validation 6 days, 3 hours ago | www.reddit.com
account account takeover apps canvas +8
CVE-2022-32947: macOS GPU-launched kernel privilege escalation exploit (walkthrough slides + demo) 6 days, 7 hours ago | www.reddit.com
cve demo escalation exploit +8
Tickling ksmbd: fuzzing SMB in the Linux kernel 6 days, 8 hours ago | www.reddit.com
fuzzing kernel ksmbd linux +3
CVE-2023-34040 Spring Kafka Deserialization Remote Code Execution 6 days, 8 hours ago | www.reddit.com
code code execution cve deserialization +5
A Big Look at Security in OpenAPI 6 days, 10 hours ago | www.reddit.com
big netsec openapi security
The bogus CVE problem 1 week ago | www.reddit.com
bogus cve netsec problem
New analysis tool: donut-decryptor: Retrieve inner payloads from Donut samples 1 week ago | www.reddit.com
analysis decryptor netsec tool
Correction: the previous CA injection method doesn't work on Android 14, but there is still … 1 week ago | www.reddit.com
android android 14 injection netsec +1
Konni has entered the game: A new, possibly North Korean group exploits WinRAR vulnerability for … 1 week, 1 day ago | www.reddit.com
cyberattacks exploits game konni +5
A detailed analysis of the Money Message Ransomware 1 week, 1 day ago | www.reddit.com
analysis message money money message +3
Meta Quest 2: Defense through offense 1 week, 1 day ago | www.reddit.com
defense meta netsec offense +1
Bypass SSL Pinning on Windows Application 1 week, 1 day ago | www.reddit.com
application applications browser bypass +13
The GitHub Actions Worm: Compromising GitHub Repositories Through the Actions Dependency Tree 1 week, 2 days ago | www.reddit.com
actions dependency github github actions +4
Column-Level Encryption 101: What is It, implementation & Benefits 1 week, 2 days ago | www.reddit.com
benefits column encryption implementation +2
CVE-2023-38146: Arbitrary Code Execution via Windows Themes 1 week, 3 days ago | www.reddit.com
arbitrary code code code execution cve +2
3AM: New Ransomware Family Used As Fallback in Failed LockBit Attack 1 week, 3 days ago | www.reddit.com
attack family lockbit netsec +1
mXSS in Skiff: How browser mutations and Cloudflare helped to steal decrypted emails 1 week, 3 days ago | www.reddit.com
browser cloudflare emails netsec +2
From Terminal Output to Arbitrary Remote Code Execution 1 week, 3 days ago | www.reddit.com
code code execution netsec remote code +2
Malware distributor Storm-0324 facilitates ransomware access 1 week, 4 days ago | www.reddit.com
access distributor malware netsec +2
3.5 TB of data stolen from Datadvance: NDAs, scripts, and contracts leaked 1 week, 4 days ago | www.reddit.com
contracts data leaked netsec +2
Analyzing Security Vulnerabilities in XWiki: In-Depth Examination 1 week, 4 days ago | www.reddit.com
netsec security vulnerabilities
Activation Context Hell - DosDevices Remapping Attack under Impersonation 1 week, 4 days ago | www.reddit.com
attack context impersonation netsec +1
HijackLoader: a new malware downloader with modular architecture 1 week, 5 days ago | www.reddit.com
architecture hijackloader malware modular +1
GitHub - boringtools/git-alerts: A Public Git repository & misconfiguration detection tool 1 week, 5 days ago | www.reddit.com
alerts detection git github +5
“MrTonyScam” — Botnet of Facebook Users Launch High-Intent Messenger Phishing Attack on Business Accounts 1 week, 6 days ago | www.reddit.com
accounts attack botnet business +7
Rustproofing Linux (Part 1/4 Leaking Addresses) 1 week, 6 days ago | www.reddit.com
addresses linux netsec
Azure Incident Response Cheat Sheet (PDF) 2 weeks ago | www.reddit.com
azure cheat incident incident response +3
Bcrypt at 25: A retrospective on password security 2 weeks, 1 day ago | www.reddit.com
bcrypt netsec password password security +1
How to DoS iOS devices with Bluetooth pairing messages using Android 2 weeks, 1 day ago | www.reddit.com
android bluetooth devices dos +4
Orbeon Forms: The Final Form? On A Journey To RCE 0day 2 weeks, 1 day ago | www.reddit.com
0day forms journey netsec +1
BLASTPASS: NSO Group iPhone Zero-Click, Zero-Day Exploit Captured in the Wild 2 weeks, 1 day ago | www.reddit.com
blastpass click exploit iphone +6
New vulnerabilities disclosed in Ivanti EPM 2 weeks, 2 days ago | www.reddit.com
ivanti netsec vulnerabilities
Boot Unguarded: x86 Trust Anchor Downfalls to The Leaked OEM Internal Tools and Signing Keys 2 weeks, 2 days ago | www.reddit.com
anchor boot internal keys +7
Next-Generation Context Aware Password Cracking 2 weeks, 2 days ago | www.reddit.com
aware context cracking netsec +2
A tale about a Red Team exercise and the Forcepoint Endpoint One DLP client - … 2 weeks, 2 days ago | www.reddit.com
client dlp endpoint exercise +4
Results of Major Technical Investigations for Storm-0558 Key Acquisition (How a threat actor acquired and … 2 weeks, 2 days ago | www.reddit.com
access acquisition actor customer +14
DogeRAT malware targets Indian users (tracks Locations, makes illegal payments, and more) 2 weeks, 3 days ago | www.reddit.com
illegal malware netsec payments
Main Analytical Frameworks for CTI 2 weeks, 3 days ago | www.reddit.com
cti frameworks main netsec
XSS vulnerability in Proton Mail allowed to leak unencrypted emails 2 weeks, 3 days ago | www.reddit.com
emails leak mail netsec +5
How to Write a Secure JWT Library If You Absolutely Must 2 weeks, 3 days ago | www.reddit.com
jwt library netsec
Lord Of The Ring0 part 5 is out (kernel development series) 2 weeks, 3 days ago | www.reddit.com
development kernel lord netsec +1
Peeking under the bonnet of the Litter Robot 3 2 weeks, 3 days ago | www.reddit.com
netsec robot under
Android 14 blocks all modification of system certificates, even as root 2 weeks, 3 days ago | www.reddit.com
android android 14 certificates modification +3
Tickling ksmbd: fuzzing SMB in the Linux kernel 6 days, 8 hours ago | www.reddit.com
fuzzing kernel ksmbd linux +3
CVE-2022-32947: macOS GPU-launched kernel privilege escalation exploit (walkthrough slides + demo) 6 days, 7 hours ago | www.reddit.com
cve demo escalation exploit +8
A Big Look at Security in OpenAPI 6 days, 10 hours ago | www.reddit.com
big netsec openapi security
Fuzzing with multiple servers in parallel: AFL++ with Network File Systems 5 days, 7 hours ago | www.reddit.com
afl file fuzzing netsec +3
Defeating Visual Studio Code embedded reverse shell 21 hours ago | www.reddit.com
block code embedded feedback +10
Muppets group reportedly breached Sirena Travel: 3.5 Billion records compromised 22 hours ago | www.reddit.com
breached compromised netsec records +1
When MFA isn't actually MFA 5 days, 2 hours ago | www.reddit.com
isn mfa netsec
Account Takeover in Canvas Apps served in Comet due to failure in Cross-Window-Message Origin validation 6 days, 3 hours ago | www.reddit.com
account account takeover apps canvas +8
New ways to inject system CA certificates in Android 14 2 days, 4 hours ago | www.reddit.com
android android 14 certificates inject +2
RCE in Tutanota Desktop: How a single email could compromise your machine 3 days, 1 hour ago | www.reddit.com
compromise desktop email machine +4
The WebP 0day 1 day, 21 hours ago | www.reddit.com
0day netsec webp
DEF CON 31 Main Stage Talks 4 days, 10 hours ago | www.reddit.com
con def def con def con 31 +4
Howtorotate.com - Open Source Guides on Key Rotations from the Most Popular Providers 3 days, 22 hours ago | www.reddit.com
guides key netsec open source +1
Cryptomining malware detected on a Russian thesaurus with 5 Million+ monthly visits 1 day, 5 hours ago | www.reddit.com
cryptomining malware netsec russian
Zero-Knowledge Middleboxes 4 days, 22 hours ago | www.reddit.com
knowledge middleboxes netsec

Items published with this topic over the last 90 days.

Latest

Defeating Visual Studio Code embedded reverse shell 21 hours ago | www.reddit.com
block code embedded feedback +10
Muppets group reportedly breached Sirena Travel: 3.5 Billion records compromised 22 hours ago | www.reddit.com
breached compromised netsec records +1
Cryptomining malware detected on a Russian thesaurus with 5 Million+ monthly visits 1 day, 5 hours ago | www.reddit.com
cryptomining malware netsec russian
Critical DICOM Server Misconfigurations Lead to Exposure of 1.6M Medical Records 1 day, 6 hours ago | www.reddit.com
critical dicom exposure medical +4
The WebP 0day 1 day, 21 hours ago | www.reddit.com
0day netsec webp
New ways to inject system CA certificates in Android 14 2 days, 4 hours ago | www.reddit.com
android android 14 certificates inject +2
LUCR-3: Scattered Spider Getting SaaS-y in the Cloud 3 days, 1 hour ago | www.reddit.com
cloud netsec saas scattered spider +1
RCE in Tutanota Desktop: How a single email could compromise your machine 3 days, 1 hour ago | www.reddit.com
compromise desktop email machine +4
Howtorotate.com - Open Source Guides on Key Rotations from the Most Popular Providers 3 days, 22 hours ago | www.reddit.com
guides key netsec open source +1
Crawlector Version 2.0 has been released. This is a milestone release. 4 days, 3 hours ago | www.reddit.com
milestone netsec release version
DEF CON 31 Main Stage Talks 4 days, 10 hours ago | www.reddit.com
con def def con def con 31 +4
Zero-Knowledge Middleboxes 4 days, 22 hours ago | www.reddit.com
knowledge middleboxes netsec
Fileless Remote Code Execution on Juniper Firewalls 5 days, 2 hours ago | www.reddit.com
code code execution fileless firewalls +4
AWS's Hidden Threat: AMBERSQUID Cloud-Native Cryptojacking Operation – Sysdig 5 days, 2 hours ago | www.reddit.com
aws cloud cloud-native cryptojacking +4
When MFA isn't actually MFA 5 days, 2 hours ago | www.reddit.com
isn mfa netsec
Fuzzing with multiple servers in parallel: AFL++ with Network File Systems 5 days, 7 hours ago | www.reddit.com
afl file fuzzing netsec +3
A Practical Approach to SBOM in CI/CD. Presenting concept of SBOM, its advantages, popular formats … 6 days ago | www.reddit.com
concept java netsec popular +3
Account Takeover in Canvas Apps served in Comet due to failure in Cross-Window-Message Origin validation 6 days, 3 hours ago | www.reddit.com
account account takeover apps canvas +8
CVE-2022-32947: macOS GPU-launched kernel privilege escalation exploit (walkthrough slides + demo) 6 days, 7 hours ago | www.reddit.com
cve demo escalation exploit +8
Tickling ksmbd: fuzzing SMB in the Linux kernel 6 days, 8 hours ago | www.reddit.com
fuzzing kernel ksmbd linux +3
CVE-2023-34040 Spring Kafka Deserialization Remote Code Execution 6 days, 8 hours ago | www.reddit.com
code code execution cve deserialization +5
A Big Look at Security in OpenAPI 6 days, 10 hours ago | www.reddit.com
big netsec openapi security
The bogus CVE problem 1 week ago | www.reddit.com
bogus cve netsec problem
New analysis tool: donut-decryptor: Retrieve inner payloads from Donut samples 1 week ago | www.reddit.com
analysis decryptor netsec tool
Correction: the previous CA injection method doesn't work on Android 14, but there is still … 1 week ago | www.reddit.com
android android 14 injection netsec +1
Konni has entered the game: A new, possibly North Korean group exploits WinRAR vulnerability for … 1 week, 1 day ago | www.reddit.com
cyberattacks exploits game konni +5
A detailed analysis of the Money Message Ransomware 1 week, 1 day ago | www.reddit.com
analysis message money money message +3
Meta Quest 2: Defense through offense 1 week, 1 day ago | www.reddit.com
defense meta netsec offense +1
Bypass SSL Pinning on Windows Application 1 week, 1 day ago | www.reddit.com
application applications browser bypass +13
The GitHub Actions Worm: Compromising GitHub Repositories Through the Actions Dependency Tree 1 week, 2 days ago | www.reddit.com
actions dependency github github actions +4
Column-Level Encryption 101: What is It, implementation & Benefits 1 week, 2 days ago | www.reddit.com
benefits column encryption implementation +2
CVE-2023-38146: Arbitrary Code Execution via Windows Themes 1 week, 3 days ago | www.reddit.com
arbitrary code code code execution cve +2
3AM: New Ransomware Family Used As Fallback in Failed LockBit Attack 1 week, 3 days ago | www.reddit.com
attack family lockbit netsec +1
mXSS in Skiff: How browser mutations and Cloudflare helped to steal decrypted emails 1 week, 3 days ago | www.reddit.com
browser cloudflare emails netsec +2
From Terminal Output to Arbitrary Remote Code Execution 1 week, 3 days ago | www.reddit.com
code code execution netsec remote code +2
Malware distributor Storm-0324 facilitates ransomware access 1 week, 4 days ago | www.reddit.com
access distributor malware netsec +2
3.5 TB of data stolen from Datadvance: NDAs, scripts, and contracts leaked 1 week, 4 days ago | www.reddit.com
contracts data leaked netsec +2
Analyzing Security Vulnerabilities in XWiki: In-Depth Examination 1 week, 4 days ago | www.reddit.com
netsec security vulnerabilities
Activation Context Hell - DosDevices Remapping Attack under Impersonation 1 week, 4 days ago | www.reddit.com
attack context impersonation netsec +1
HijackLoader: a new malware downloader with modular architecture 1 week, 5 days ago | www.reddit.com
architecture hijackloader malware modular +1
GitHub - boringtools/git-alerts: A Public Git repository & misconfiguration detection tool 1 week, 5 days ago | www.reddit.com
alerts detection git github +5
“MrTonyScam” — Botnet of Facebook Users Launch High-Intent Messenger Phishing Attack on Business Accounts 1 week, 6 days ago | www.reddit.com
accounts attack botnet business +7
Rustproofing Linux (Part 1/4 Leaking Addresses) 1 week, 6 days ago | www.reddit.com
addresses linux netsec
Azure Incident Response Cheat Sheet (PDF) 2 weeks ago | www.reddit.com
azure cheat incident incident response +3
Bcrypt at 25: A retrospective on password security 2 weeks, 1 day ago | www.reddit.com
bcrypt netsec password password security +1
How to DoS iOS devices with Bluetooth pairing messages using Android 2 weeks, 1 day ago | www.reddit.com
android bluetooth devices dos +4
Orbeon Forms: The Final Form? On A Journey To RCE 0day 2 weeks, 1 day ago | www.reddit.com
0day forms journey netsec +1
BLASTPASS: NSO Group iPhone Zero-Click, Zero-Day Exploit Captured in the Wild 2 weeks, 1 day ago | www.reddit.com
blastpass click exploit iphone +6
New vulnerabilities disclosed in Ivanti EPM 2 weeks, 2 days ago | www.reddit.com
ivanti netsec vulnerabilities
Boot Unguarded: x86 Trust Anchor Downfalls to The Leaked OEM Internal Tools and Signing Keys 2 weeks, 2 days ago | www.reddit.com
anchor boot internal keys +7
Next-Generation Context Aware Password Cracking 2 weeks, 2 days ago | www.reddit.com
aware context cracking netsec +2
A tale about a Red Team exercise and the Forcepoint Endpoint One DLP client - … 2 weeks, 2 days ago | www.reddit.com
client dlp endpoint exercise +4
Results of Major Technical Investigations for Storm-0558 Key Acquisition (How a threat actor acquired and … 2 weeks, 2 days ago | www.reddit.com
access acquisition actor customer +14
DogeRAT malware targets Indian users (tracks Locations, makes illegal payments, and more) 2 weeks, 3 days ago | www.reddit.com
illegal malware netsec payments
Main Analytical Frameworks for CTI 2 weeks, 3 days ago | www.reddit.com
cti frameworks main netsec
XSS vulnerability in Proton Mail allowed to leak unencrypted emails 2 weeks, 3 days ago | www.reddit.com
emails leak mail netsec +5
How to Write a Secure JWT Library If You Absolutely Must 2 weeks, 3 days ago | www.reddit.com
jwt library netsec
Lord Of The Ring0 part 5 is out (kernel development series) 2 weeks, 3 days ago | www.reddit.com
development kernel lord netsec +1
Peeking under the bonnet of the Litter Robot 3 2 weeks, 3 days ago | www.reddit.com
netsec robot under
Android 14 blocks all modification of system certificates, even as root 2 weeks, 3 days ago | www.reddit.com
android android 14 certificates modification +3

Top (last 7 days)

Tickling ksmbd: fuzzing SMB in the Linux kernel 6 days, 8 hours ago | www.reddit.com
fuzzing kernel ksmbd linux +3
CVE-2022-32947: macOS GPU-launched kernel privilege escalation exploit (walkthrough slides + demo) 6 days, 7 hours ago | www.reddit.com
cve demo escalation exploit +8
A Big Look at Security in OpenAPI 6 days, 10 hours ago | www.reddit.com
big netsec openapi security
Fuzzing with multiple servers in parallel: AFL++ with Network File Systems 5 days, 7 hours ago | www.reddit.com
afl file fuzzing netsec +3
Defeating Visual Studio Code embedded reverse shell 21 hours ago | www.reddit.com
block code embedded feedback +10
Muppets group reportedly breached Sirena Travel: 3.5 Billion records compromised 22 hours ago | www.reddit.com
breached compromised netsec records +1
When MFA isn't actually MFA 5 days, 2 hours ago | www.reddit.com
isn mfa netsec
Account Takeover in Canvas Apps served in Comet due to failure in Cross-Window-Message Origin validation 6 days, 3 hours ago | www.reddit.com
account account takeover apps canvas +8
New ways to inject system CA certificates in Android 14 2 days, 4 hours ago | www.reddit.com
android android 14 certificates inject +2
RCE in Tutanota Desktop: How a single email could compromise your machine 3 days, 1 hour ago | www.reddit.com
compromise desktop email machine +4
The WebP 0day 1 day, 21 hours ago | www.reddit.com
0day netsec webp
DEF CON 31 Main Stage Talks 4 days, 10 hours ago | www.reddit.com
con def def con def con 31 +4
Howtorotate.com - Open Source Guides on Key Rotations from the Most Popular Providers 3 days, 22 hours ago | www.reddit.com
guides key netsec open source +1
Cryptomining malware detected on a Russian thesaurus with 5 Million+ monthly visits 1 day, 5 hours ago | www.reddit.com
cryptomining malware netsec russian
Zero-Knowledge Middleboxes 4 days, 22 hours ago | www.reddit.com
knowledge middleboxes netsec

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

Business Information Security Officer

@ Metrolink | Los Angeles, CA
View on infosec-jobs.com

Senior Security Engineer

@ Freedom of the Press Foundation | Remote, 4 hour time zone overlap with New York City
View on infosec-jobs.com

Security Engineer

@ ChartMogul | Remote, EU
View on infosec-jobs.com

Security Analyst, IT - Cyber Security

@ Catholic Healthcare | Macquarie Park, Australia
View on infosec-jobs.com

(1st line) IT Security Officer

@ Vattenfall | Katowice, Poland
View on infosec-jobs.com

Sr. Security Incident Handler

@ Databricks | Remote - California
View on infosec-jobs.com
View more jobs