Cybersecurity

Cybersecurity BrikoX • 2d ago • 100%

Intel, AMD CPUs on Linux impacted by newly disclosed Spectre bypass

> he latest generations of Intel processors, including Xeon chips, and AMD's older microarchitectures on Linux are vulnerable to new speculative execution attacks that bypass existing ‘Spectre’ mitigations.

Cybersecurity BrikoX • 2d ago • 100%

MacOS Safari Exploit Exposes Camera, Mic, Browser Data

www.darkreading.com

> Microsoft researchers toyed with app permissions to uncover CVE-2024-44133, using it to access sensitive user data. Adware merchants may have as well.

Cybersecurity BrikoX • 3d ago • 100%

Microsoft said it lost weeks of security logs for its customers' cloud products

techcrunch.com

> Missing logs could make it more difficult to identify unauthorized access to the customers' networks during that two-week window.

Cybersecurity BrikoX • 2d ago • 100%

ESET partner breached to send data wipers to Israeli orgs

> Hackers breached ESET's exclusive partner in Israel to send phishing emails to Israeli businesses that pushed data wipers disguised as antivirus software for destructive attacks.

Cybersecurity Seigest • 3d ago • 100%

Advice needed: dmarc setup and mail.ru

I'm not in the security field so sorry if I seem like a newbie. Not sure where else to ask. I setup my own email domain thing with the help of some kind Lemmy folk. I'm on Namecheap, it was a little tricky for me to set up but it seems to have been working out great. But yesterday, and again today I got this notice from DMARC that Mail . ru is doing stuff with my account. advice I was able to google suggest I needed to change a setting from "none" to "reject". can anyone tell me if I've done this right? also has any damage been done by me not having this set sooner?

Cybersecurity BrikoX • 6d ago • 85%

Chinese researchers break RSA encryption with a quantum computer

www.csoonline.com

> The research team, led by Wang Chao from Shanghai University, found that D-Wave’s quantum computers can optimize problem-solving in a way that makes it possible to attack encryption methods such as RSA. Paper: http://cjc.ict.ac.cn/online/onlinepaper/wc-202458160402.pdf Follow up to https://lemmy.ca/post/30853830

Cybersecurity 0x0 • 4d ago • 100%

Sudanese Brothers Arrested in ‘AnonSudan’ Takedown – Krebs on Security

So they *were* from Sudan...

Cybersecurity BrikoX • 6d ago • 94%

New FASTCash malware Linux variant helps steal money from ATMs

> North Korean hackers are using a new Linux variant of the FASTCash malware to infect the payment switch systems of financial institutions and perform unauthorized cash withdrawals.

Cybersecurity kid • 6d ago • 83%

EDRSilencer: The Red Team Tool Turned Cybercriminal Weapon

securityonline.info

EDRSilencer “disrupts the transmission of telemetry or alerts to EDR management consoles,” rendering these security tools ineffective at identifying and removing malware. By leveraging the Windows Filtering Platform (WFP), EDRSilencer blocks network communication from processes associated with various EDR products, creating a blind spot in an organization’s security defenses.

Cybersecurity BrikoX • 1w ago • 100%

1 bug, $50,000+ in bounties, how Zendesk intentionally left a backdoor in hundreds of Fortune 500 companies

gist.github.com

> 1 bug, $50,000+ in bounties, how Zendesk intentionally left a backdoor in hundreds of Fortune 500 companies - zendesk.md