Whats The Hax?

Getting a CVE Without Shipping Slop 1d ago PrizeBuzz phishing network analysis 1d ago 27 Years in the Dark: OpenBSD Fixes Ancient Remote Kernel Auth Bypass 1d ago Empty-ciphertext panic in aws-encryption-provider (CVD with AWS) 2d ago SearchLeak: How We Turned M365 Copilot Into a One-Click Data Exfiltration Weapon 3d ago Researcher accidentally gained access to a threat actor-controlled phishing website 4d ago PromptSnatcher: AdBlocker stealing Ai Chats - 90k installs 4d ago MeshCentral: From XSS to RCE 4d ago Getting the PID from random numbers in PHP 5d ago The Axios npm compromise was visible in registry metadata before anyone ran npm install 5d ago Why Use App-Level Auth When Every Database Has Auth? (Splunk Enterprise CVE-2026-20253 Pre-Auth RCE) - watchTowr Labs 5d ago Free Compromise Detection for GitHub Repos - Tracebit Community Edition 5d ago Major AI Clients Shipping With Broken OAuth Implementations (JUNE 2026 UPDATE) 5d ago Old Passwords Die Hard: Abusing CREDHIST for offline credential recovery 5d ago Marking Your Own Homework (Check Point Remote Access VPN IKEv1 Authentication Bypass CVE-2026-50751) - watchTowr Labs 6d ago Detecting AI-specific threats in Claude Enterprise from the Compliance API: a prefilter + LLM-as-judge pipeline with Sigma rules 6d ago Claude Fable 5: mid-tier results on coding tasks 6d ago Fable 5 and the analyst-AI threat model: what a Mythos-class model changes for security work 7d ago Hacking Google with A.I. for $500,000 7d ago Prompt injection: attacking the analyst's AI 7d ago Pre-auth XXE → HTTP SSRF on ArubaOS 8.13.2 closed as "theoretical / no valid PoC" despite TCP pcap, sshd localhost log, and internal port scan — documenting for community review 7d ago We post-trained a model for offensive security instead of teaching it to refuse 7d ago How Fraudsters Bypass Facial Recognition and Stay Hidden in 2026 8d ago FedRAMP Penetration Testing: How to Pass Your ATO Review and Get Cloud Authorized Faster 8d ago certSIGN: Inconsistent revocation status (CRL "revoked" vs OCSP "good") for intermediate CA "certSIGN Web CA" 8d ago BlackSun - Defender for Endpoint on macOS 8d ago GhostTrace – a Windows forensic scanner that finds what "Uninstall" leaves behind (22 modules, read-only, offline) 8d ago Jupyter Enterprise Gateway - From Notebook to Kubernetes Cluster Admin - elttam 8d ago More Evidence That Words Don't Mean What We Thought They Meant (Ivanti Sentry Pre-Auth OS Command Injection CVE-2026-10520) - watchTowr Labs 8d ago Apple’s Siri-AI, or more shouting into the void about “private” agents 8d ago Entra Agent ID from a Security Perspective 9d ago X.com silently injects session-bound tracking tokens into your clipboard on every copy — security tools correctly flag this as malicious injection 9d ago WinGet - Code Execution, Persistence and Detection Strategies 9d ago I found 23 Chrome extensions hijacking 758,000 users' searches for affiliate revenue 9d ago I just completed Search Skills room on TryHackMe! Learn to efficiently search the Internet and use specialised services and technical docs for information 9d ago AI Agents May Always Fall for Prompt Injections 9d ago Arc Gate — runtime governance proxy for AI agents, catches multi-turn prompt injection via geometric drift detection — try to break it 10d ago EDRChoker: Choking The Telemetry Stream to Bypass Defenses 11d ago PSA: Attack Shark R85 HE (FREEWOLF US / Amazon) — BadUSB credential harvester, confirmed malware 11d ago CVE-2026-46640: Developing payloads for Twig sandbox bypass 11d ago Zero-Click HFP/A2DP Takeover via L2CAP Session Preemption 12d ago Keeping Secrets Out of Logs 12d ago Unauthenticated RCE as QSECOFR via IBM i Management Central — port 5555, client-controlled verify flag, no credentials required (V7R4 and earlier) 13d ago System Over Model, Tested: Reproducing Mythos’s FreeBSD Find on Local Open-Weight Models 13d ago Empty-ciphertext panic in aws-encryption-provider (CVD with AWS) 13d ago Re:CACHE - Excessive reflection, type confusion, and 0-click SXSS on Next.js 13d ago Enter the WasmForge: Compiling Sliver into WebAssembly 14d ago Season VI of the US Games launches TOMORROW! 14d ago EU CRA mandatory vulnerability reporting enters into force September 11, 2026 — what the 24-hour obligation requires 14d ago Interesting- What LLM vuln research looks like 15d ago Hacking your PC using your speaker without ever touching it 15d ago Abusing iDEAL (Wero): how criminals weaponise legitimate payment links in phishing 15d ago Golang code review notes II - elttam 15d ago Using AI to Secure Its Generated Code Is a Ponzi Scheme 15d ago Four coordinated npm supply chain campaigns active in May–June 2026 — TTPs, IOCs, and detection notes 15d ago We Added a Detection Rule. We Were Not Expecting This. 15d ago 1-Click GitHub Token Stealing via a VSCode Bug 15d ago Device Code Phishing Forensics: What We Learned Investigating BEC in the Wild 15d ago NuGet Code Execution As A Service 16d ago Blind POST SSRF in phpBB 4.0.0-alhpa1 Web Push (CVD with phpBB) 16d ago Dutch Police and NCSC dismantle 17-million-device botnet running on 200 servers seized from local hosting provider 17d ago r/netsec monthly discussion & tool thread 17d ago Poisoning Claude Code: One GitHub Issue to Break the Supply Chain 17d ago Stealing Passwords via HTML Injection Under a Strict CSP 17d ago Subnet discovery through multi-protocol TTL tracing 17d ago ThinkPad firmware reverse-engineering toolchain: archived Lenovo BIOS → named SoC pads, EC analysis, CVE diffs, coreboot/OpenCore port scaffolding 17d ago LLMReaper - DOM Based AI Conversation Exfiltration via Browser Extensions 18d ago Digital Trap: Iran Uses Selective Internet Restoration to Track and Arrest January Protesters 19d ago A practical checklist for evaluating npm packages (supply chain attacks, slopsquatting, etc.) 19d ago Introducing Keyhog: The First GPU Accelerated secret scanner 19d ago OffensiveCon26 YouTube Playlist released 19d ago 1,001 IPs, 64 countries, one operation: mapping a botnet by its back end · HoneyLabs blog 20d ago I evaluated 5 LLM agents on patching real-world CVEs. Here is what I found. 20d ago Fooling around with encrypted reasoning blobs 20d ago CALIF: An AI audit of FreeBSD 20d ago CoreEvent GraphQL API – BOLA/IDOR exposing 10k+ records (PII, ticket QR codes) via unauthenticated queries 20d ago The Word 'Toad' Gave Any Website Full Control of Chrome's Most Popular VPN 20d ago Visual Studio Extensions Revisited 20d ago Threat Intel: Kemper Corporation Hit by ShinyHunters Salesforce Extortion Campaign (269k Accounts Ingested by HIBP) 20d ago Drupal PostgreSQL SQL Injection: From SELECT-Only to RCE 20d ago What scanners are actually trying against AI infrastructure 21d ago Defense by accumulation 21d ago New Phishing Technique - Vaultjacking: One Captured PIN, the Entire Google Password Manager Vault 21d ago MalShark: MCP-Powered Malware Traffic Analysis — Benchmarked Against Real Malware 21d ago A week after Dutch FIOD seized 800+ servers, the hosting network's ASN (AS209847) is still scanning at its normal daily rate 22d ago HN Security - AI Reporter - Let's automate reporting in Burp Suite! 22d ago Threat Intel: Lithuania Investigates B2B Credential Misuse Exposing 600,000 National Registry Records 22d ago RCE in Strix Agent(Sandbox): A practical guide to prompt injections with impact 22d ago Navigating Lax Load Balancers: When an Intersection Gets You Inside 22d ago Encrypted DNS in 2026: DoH, DoT, DoQ and DoH3 protocol comparison — including DNS hijacking attack vectors and what each protocol actually prevents 22d ago OTP lockout state leaked valid-code signal, enabling OLX account takeover 22d ago How journalists rely on VPNs to protect press freedom 23d ago Analyzing the Taiwan High-Speed Rail (THSR) TETRA incident (part 1) 23d ago Update Starlette Now. New severe vulnerability dropped. 23d ago The War Between Wars: How an IRGC Front Runs Destructive OT and IT Attacks Under Cover of a Ceasefire 23d ago How credential brokering prevents AI agents from compromising credentials via prompt injection 23d ago CVE-2021-21735: ZTE H168N wizard whitelist exposed PPPoE and WLAN secrets pre-auth 23d ago Threat Intel: ShinyHunters Leaks 9.4GB Database of 7-Eleven Franchisee Systems Post-Extortion Refusal 24d ago nmap on Linux: Guide to Network Scanning and Discovery 24d ago Prompt Injection finally broke my brain a little. My first article as a security student. 24d ago How to Use Claude AI: A Complete Technical Beginner's Guide 25d ago Pardon MIE?: how Mythos did not bypass Apple MIE 26d ago CVE-2026-9256 - "nginx-poolslip", another new vulnerability in the rewrite module 26d ago AI Security CTF (free, open) - prompt injection, agent workflow hijacking, guardrail bypass - June 17-22 26d ago Just added an interactive security map to my project NoEyes showing exactly what the server sees (and doesn't) 26d ago Restoring Testability: Handling Complex Scenarios in Burp Suite with a Custom Extension 26d ago Zyxel low-priv account leaked super-admin, FTPS, and TR-069 secrets across router fleets 26d ago Data breach in name of protest 27d ago pnpm 11 Might Finally Be a Better Default Than npm 27d ago durabletask (Microsoft's Python Durable Task client) compromised by TeamPCP | same Mini Shai-Hulud payload as last week's TanStack wave 27d ago [Analysis] CISA contractor left AWS GovCloud admin keys, plaintext passwords, SAML certs, and Kubernetes configs on a public GitHub repo for 183 days — with secret scanning deliberately disabled 27d ago GitHub Actions Cache Poisoning is eating open source 27d ago CVE-2026-40369: Twelve Bytes to Escape the Browser Sandbox 27d ago CVE-2026-34474: Pre-auth credential disclosure in ZTE H298A / H108N via ETHCheat 27d ago FatGid - FreeBSD 14.x kernel LPE 27d ago Keys to the Kingdom: Anonymous SQL Injection in Drupal Core (CVE-2026-9082) 27d ago GitHub ~3,800 internal repos compromised through a malicious VS Code extension 28d ago The IBM X-Force Index 2026 explains all three in one finding. 28d ago Score by collisions, patch by panic: defensive architecture for the post-90-day-disclosure era 28d ago CVE-2026-45585: Windows BitLocker — YellowKey Recovery Bypass Analysis 28d ago [ Removed by Reddit ] 28d ago CVE-2026-34472: Pre-auth credential exposure and auth bypass in ZTE H188A V6 routers 29d ago Iran Wants to Tax the Internet Flowing Through the Strait of Hormuz While Restricting Its Own Citizens Online 29d ago The IBM X-Force Index 2026 explains all three in one finding. 29d ago GitHub hit by a compromised VSCode extension 29d ago When Filenames Become Attack Surfaces: Weaponizing NASA's CFITSIO Extended Filename Syntax 29d ago We audited 12K n8n templates: most have critical vulnerabilities 29d ago Veilgate - Deception proxy 29d ago Sleeping Agent: Silent persistent C2 through Web Push 29d ago GhostTree: Unveiling Path Manipulation Techniques to Bypass Windows Security 29d ago How Storm-2949 turned a compromised identity into a cloud-wide breach 29d ago Pathfinding Labs: Deploy, test, and learn from 100+ intentionally vulnerable AWS environments 30d ago CVE-2026-34473: Pre-auth ZTE H-series router DoS via CGILua request-body parsing 30d ago RCE and arbitrary file write in Vitess vtbackup via untrusted MANIFEST fields 30d ago New Age of Collisions: Reading Arbitrary Files Pre-Auth as root in cPanel (CVE-2026-29205) 30d ago The quiet death of behavioral anti-bot and the pivot to hardware ZKPs 30d ago AudioHijack: adversarial audio attacks on generative voice models transfer from open weights to Microsoft and Mistral production systems 30d ago ShinyHunters Stole 275 Million Student Records. The Ransom Deadline Is May 12. 30d ago The down fall of bug bounties 31d ago TanStack Supply Chain Attack (And How to Lock Down GitHub Actions) 31d ago Attacking Cloud Service Providers (ACSP) - An interactive textbook on control-plane intrusion and breaking cross-tenant isolation 31d ago Autonomous AI Penetration Testing with Consent-First Ethical Framework — Research Paper + Working Implementation 31d ago Ansible security and compliance guide 31d ago Instrumenting QT6 desktop apps with Frida - Part 2: Building the Bypass Chain 32d ago AI-assisted cyberattacks are changing the threat landscape faster than most organizations realize. 32d ago Microsoft MDASH found 16 Windows RCEs — here's exactly how the 100-agent pipeline works 33d ago Apple Maildrop lets you rewrite the filename, size, and icon on any icloud.com attachment link — no signature, no validation — reported July 2023, still live 33d ago North Korean Hackers Now Using AI? Kaspersky Warns of New Threat Targeting South Korean Govt Systems 33d ago Automating code security reviews with Claude Mythos-level capabilities 34d ago Instrumenting QT6 desktop apps with Frida - Part 1 34d ago From Vercel Typosquatting to an Obfuscated macOS Malware Loader 34d ago HyperVenom: Using Hyper-V for Ring -1 Control from Usermode 34d ago Detecting Exploitation of CrushFTP Vulnerability (CVE-2025-31161) With PacketSmith Yara Detection Module - Using track_state and flow_state 34d ago VELVET CHOLLIMA Infostealer Campaign Using Trading App as Lure 35d ago CVE-2026-44338: Scanners Target PraisonAI Within Four Hours of Disclosure 35d ago How to Check Computer Activity: 2026 Guide for Windows and Mac 35d ago CVE-2026-42945 : NGINX Heap Buffer Overflow in rewrite module - Writeup and PoC 35d ago Hunting the Behavior Behind npm Supply Chain Attacks 35d ago WaSteal: 126 Chrome extensions, 148K installs, one Brazilian operator silently sending WhatsApp user data and ad cookies to its servers 35d ago Apple Maildrop lets you rewrite the filename, size, and icon on any icloud.com attachment link — no signature, no validation — reported July 2023, still live 35d ago On vendor disclosure timelines, bounty programme incentive misalignment, and the psychological contract 35d ago /sbin/ping -G sweepmax has no bounds check on macOS: deterministic BSS out-of-bounds write, confirmed by Apple 35d ago Apple's smbd has no FSCTL_SRV_COPYCHUNK limit enforcement: 256 bytes in, 64 GiB disk I/O out 35d ago On-prem vs IaaS vs PaaS vs SaaS for self-hosted IAM (Keycloak case study) 35d ago A stealth approach to Process Injection - EntryPoint Hijacking 35d ago A year of Apple Security Bounty research — 16 closed findings, full disclosure 36d ago AI-Coded App Vulnerability Checklist - 33 LLM-specific items with detection methods 36d ago Dead.Letter (CVE-2026-45185) How XBOW found an unauthenticated RCE on Exim 36d ago The Algorithm Goes to War: Inside the AI Cyberweapon Revolution That Governments Cannot Stop 36d ago Malicious Coding Agent Skills and the Risk of Dynamic Context | Datadog Security Labs 36d ago AI Vulnerability Research and the Fuzzer Era Déjà Vu 36d ago I spent a weekend trying to get OpenClaw to leak my own personal data and it caught me immediately... 37d ago Curl lead developer Daniel Stenberg provides insightful feedbacks from Mythos analysis results 37d ago New ipTIME Pre-Auth RCE in CWMP 37d ago Postmortem: TanStack npm supply-chain compromise 37d ago How do Fortune 10 SOCs handle incident response with 15 people instead of 150? Energy-Based Models. 37d ago OpenAI announces Daybreak, "frontier AI for defenders" 37d ago GhostLock: SMB Deny-Share Handles as a Zero-Privilege Availability Weapon 37d ago How I Defeat Passkeys Nearly Every Time in Phishing Assessments 37d ago MyAudi app:Security issues in Audi Connected Vehicle experience 38d ago Giving Claude Code Full Control of a Hardware Fault Injection Setup to Bypass Secure Boot 38d ago Mythos, MOAK, CTEM and the End of CVE Chasing 38d ago Autonomous Vulnerability Hunting with MCP 38d ago ShinyHunters / AT&T ransom payment traced on-chain — paper draft, seeking arXiv cs.CR endorsement 38d ago Data in Use Protection: How MPC Keeps Inputs Hidden from the Cloud - Stoffel - MPC Made Simple 39d ago The compression of the exploit timeline: Why n-day gaps and 90-day embargoes are failing in practice. 39d ago Outrunning SHA256 with Physics 39d ago Memory Poisoning AI Agents via ChromaDB 39d ago Defence in Depth: A Practical Secure Corporate Network Topology 39d ago Technical Analysis of EagleSpy V6.0 (CraxsRAT Rebrand) Distributed Through Odysee and Telegram 39d ago Getting LLMs Drunk to Find Remote Linux Kernel OOB Writes (and More) 39d ago Seclens: Role-specific Evaluation of LLM's for security vulnerablity detection 40d ago Securing CI/CD for an open source project: lessons from Cilium 40d ago ShinyHunters breached Canvas/Instructure — 275M student records stolen from 8,809 schools, ransom deadline May 12 41d ago Needle crypto-stealer C2 analysis: API key embedded in plain text inside the Rust malware unlocked 1,932 victims and the operator's withdrawal config 41d ago Copy Fail (CVE-2026-31431): A Technical Deep Dive 41d ago Kernel LPE Vulnerability Published Early Due To Third-Party Breaking Embargo 41d ago Dirty Frag - Linux LPE similiar to Copy Fail 41d ago Honey Tokens: Bait Credentials That Catch Breaches 41d ago CVE-2026-42511 Breakdown: RCE in FreeBSD 41d ago Bypassing Bitlocker under 5 min using downgrade attack on CVE-2025-48804 41d ago An AI security auditor that red-teams PRs to find exploits, not just patterns (open-source + Ollama support) 42d ago Approve Once, Exploit Forever: The Trust Persistence Problem in Claude Code, Codex and Gemini-CLI 42d ago Quacc++: Automated Open Source Vulnerability Discovery 42d ago Binance fixed the IP whitelist gap — but the disclosure process is still broken 42d ago Non-Determinism of Maps in Golang: Why, How, and the Consequences 42d ago pyghidra-mcp Meets Ghidra GUI: Drive Project-Wide RE with Local AI 43d ago Vulnerability Garden 43d ago Scan. Secure. Simplify. — Free Web Tools Platform 43d ago Bleeding Llama: Critical Unauthenticated Memory Leak in Ollama (CVE-2026–7482) 43d ago Salesforce pentesting novel techniques- how to be an apex predator 43d ago DigiCert: Misissued code signing certificates 43d ago Major AI Clients Shipping With Broken OAuth Implementations 43d ago HN Security - Extending Burp Suite for fun and profit – The Montoya way – Part 10 44d ago Ghosts of Encryption Past – How we Read All Your Emails in Salesforce Marketing Cloud 44d ago The Danger of Multi-SSO AWS Cognito User Pools 44d ago Popular DAEMON Tools software infected – supply chain attack ongoing since April 8, 2026 44d ago Proton Pass: Second-Password Bypass Through Emergency Access 44d ago We probed 6,000 web apps for Stripe webhook signature checks. 1,542 don't bother 44d ago Lateral Movement - Cross-Session Activation 44d ago "AccountDumpling": Hunting Down the Google-Sent Phishing Wave Compromising 30,000+ Facebook Accounts 45d ago Your vibe-coded app is probably violating GDPR right now 45d ago Acoustic Keystroke Recovery - Reconstructing Typed Text from a Laptop Microphone (Full Guide, 85% success rate) 46d ago How to exfiltrate data using only numeric outputs 46d ago For vulnerability research, smaller models run repeatedly can outperform larger frontier models on cost-to-recall. 47d ago Every incident public companies have disclosed to the SEC, in one searchable database 47d ago r/netsec monthly discussion & tool thread 48d ago Handled, Not Hosted: Administrative Activity Inside a Bulletproof Hoster 48d ago Seventeen vulnerabilities in Omi, fourteen days of silence 49d ago High Fidelity Check for the cPanel Authentication Bypass (CVE-2026-41940) 49d ago Copy Fail exploit lets 732 bytes hijack Linux systems and quietly grab root 49d ago The Internet Is Falling Down, Falling Down, Falling Down (cPanel & WHM Authentication Bypass CVE-2026-41940) - watchTowr Labs 49d ago The Thymeleaf Template Injection That Only Hurts If You Let It 49d ago Set up automated dependency scanning after the recent npm/PyPI supply chain attacks 50d ago A Route to Root in a 4G Industrial Router 50d ago [Research] Full-chain RCE in Microsoft Semantic Kernel & Agent Framework 1.0 (6 Bypasses) 51d ago The Bot Left a Fingerprint: Detecting and Attributing LLM-Generated Passwords 51d ago 89 vulnerabilities in XAPI / Citrix XenServer 51d ago [ Removed by Reddit ] 51d ago Kaspersky recently disclosed PhantomRPC, a privilege escalation technique affecting all Windows versions (tested on Server 2022/2025) 51d ago Why a Decade of Writing Detection Logic Makes the Mythos Exploit Numbers Less Scary 51d ago MCPwned: a Burp Suite extension for auditing MCP servers 52d ago

Any solutions we can use? 6d ago Possible targeted attack 6d ago RoguePlanet: Windows Zero-Day That Weaponizes Defender's Own Quarantine Pipeline 6d ago Facebook messenger to text 6d ago Managing Solution Agents 6d ago Nottingham University data breach affects over 450,000 students 6d ago SWGs that support 3rd party external DNS resolver 6d ago Sub:jugation - Hijacking Cloud Identities by Recycling Namespaces in Global OIDC Issuers 6d ago Chrome extensions with 10M+ installations are actively vulnerable to UXSS & UXSG 7d ago Cybersecurity researchers aren't happy about the guardrails on Anthropic's Fable | TechCrunch 7d ago Phishing awareness training resulting in ignoring company comms? 7d ago How are you analyzing Android malware nowadays? 7d ago Hackers Exploit Langflow Vulnerability for Remote Code Execution 7d ago Chaotic Eclipse Strikes Again: New Zero-Day Unlocks BitLocker in Four Hours of Research 7d ago NEED SOME GUIDANCE 7d ago Help setting up local encryption on my pc 7d ago Agentic AI on Cybersecurity 7d ago DoD 0-days Typically Come Down to Authorization Failures 7d ago HDD 7d ago Plzz Helpp - Say you're trying to build a toolkit that checks for LLM vulnerability do y'all know any trustable datasets 7d ago How can we test the firmware code/images security? 7d ago 20 years of Fancy Bear (APT28): How Russian military hackers evolved their tradecraft since 2004 7d ago GitHub announces npm security changes to tackle supply-chain attacks 7d ago The ‘Miasma’ worm source code briefly leaked on GitHub 7d ago CISA Rewrites Federal Patching Requirements for AI Threat Era 7d ago What is the difference between Regular TLS and Mutual TLS? 7d ago Every employee's password was stored in a single Excel file 7d ago npm v12 is changing how dependencies are installed to reduce supply-chain risk 7d ago Why is Gartner Magic Quadrant treated like a procurement benchmark in South Asia? 7d ago How good Microsoft Defender for storage? 7d ago GreatXML bitlocker bypass vulnerability 7d ago Struggle 7d ago Did the work, got the certs, now I'm drowning. Should I keep labbing or go all-in on applications? 7d ago Wiz launches Cloud Security Job Board 7d ago Physical Project Ideas 7d ago How can I get into cybersecurity while studying Information Systems Engineering? 7d ago Cloud Security job board 7d ago Continuous learning 7d ago Angry bug hunter with Microsoft beef drops new Windows 0-day 7d ago Mid-30s, stuck in web pentesting, and wondering what to do ? 7d ago Streamline your Nmap triage: Interactive, single-file HTML reports from raw XM 7d ago Is Microsoft Purview really secure when using Copilot? 7d ago Banking app intentionally block some operations when connected to wifi due to "security reason" is this good or stupid feature? 7d ago Nee academic references for Hashcat's 'Next Big Bang' log 7d ago CISA released BOD 26-04: A new federal government vulnerability management strategy? 7d ago Microsoft patches YellowKey, GreenPlasma, MiniPlasma zero-days 7d ago added Mac support to my corporate hacking sim. Demo now available on Steam 7d ago Suche aktuelle IONOS Phishing .eml für eine technische Blog-Analyse (Header & Artefakte) 7d ago Students' data taken in major University of Nottingham cyber-attack 7d ago Has unmanaged external file sharing ever burned you? 7d ago Anthropic released Claude Fable 5 yesterday. Public version of Mythos with cyber classifiers 8d ago Need feedback on my presentation 8d ago Compensating controls besides admin credentials being needed to download software on employee endpoints 8d ago OpenSSL PKCS#7 CVE-2026-45447 8d ago Presentation Question 8d ago How to Stay Ahead of Deepfake Evolution in 2026 8d ago France’s Government Messaging App Tchap Got Breached 8d ago Where's the fix for MiniPlasma? 8d ago ServiceNow Flaw Exploited to Gain Unauthorized Access to Customer Instances 8d ago Internships 8d ago Six Proto6 Vulnerabilities in protobuf.js Expose Node.js Apps to RCE and DoS 8d ago Microsoft Defender RoguePlanet Zero-Day Grants SYSTEM Access on Updated Windows 8d ago Looking for a Reliable Cybersecurity Provider for a School in North Sydney 8d ago Early Operational Visibility 8d ago how are you actually managing ai agents in production? 8d ago Al app builders: How are you handling security questionnaires when selling your product? 8d ago [ Removed by Reddit ] 8d ago How are all of doing with THE AI model thats big news currently?? 8d ago Skill to Scan your Codebase 8d ago Miasma-style supply chain attacks 8d ago FCaptcha v1.12: Catching AI Agents That Drive Real Browsers 8d ago Flooding invalid deauth frames still kicks PMF clients, tested on 3 Android phones 8d ago More Evidence That Words Don't Mean What We Thought They Meant (Ivanti Sentry Pre-Auth OS Command Injection CVE-2026-10520) - watchTowr Labs 8d ago AI Malware Worm Adapts to New Targets in Real Time, Cybersecurity Experts Say 8d ago Huntress Stack (MS Defender or SentinelOne) 8d ago META DELETES FACE-RECOGNITION SYSTEM FROM ITS SMART GLASSES APP AFTER WIRED REPORT 8d ago FBI is announcing Operation Riptide 8d ago ServiceNow confirmed some customer instances were breached. 8d ago Which are some of the best Cybersecurity / OT Security events that happen in GCC? 8d ago DF/IR Community 8d ago Chaotic Eclipse's new RoguePlanet 8d ago Inside the DPRK-Linked Backdoor Loitering in the VS Code Marketplace 8d ago Thoughts on Automated Compliance? 8d ago A fix for the Windows BitLocker bypass vulnerability dubbed "YellowKey" is available 8d ago North Korean Hackers—Posing As Fake IT Workers—Behind Nearly Half Of All Tech Firm Attacks, Report Says 8d ago Microsoft has released a patch for the bitlocker bypass 8d ago Please advices 8d ago soc analyst l1 8d ago Google Chrome is killing all uBlock Origin bypasses, Microsoft Edge, Opera to follow 8d ago Looking to move off KnowBe4, what are people actually using these days? 8d ago Too Many Certs, Not Enough Experience — What’s the Best Next Step? 8d ago Authenticating ARP and NDP 8d ago Does anyone use rule feeds in 2026? 8d ago Building a tactical Pelican case for my Flipper Zero + AIO setup. Looking for advanced tool and script recommendations! 8d ago Need a vm for practice 8d ago Tips/Tricks to WFH as a SOC Analyst? 8d ago Cybersecurity statistics of the week (June 1st - June 7th) 8d ago Where can GRC folks learn practical AppSec / DevSecOps without going full engineer? 8d ago I almost got “onboarded” into a malware campaign disguised as a job opportunity. 8d ago University of Toronto proof-of-concept AI worm spread to 62% of a test network in 7 days using a free open-weight model 8d ago AI Blocklist - help 8d ago Protecting AI workloads on Linux servers 9d ago Exposing DoNex Ransomware Secrets with Malcore! 9d ago What are the different Disaster Recovery scenarios your teams have tested on? 9d ago someone actually leaked the Miasma supply chain attack toolkit source code on github 9d ago WinGet - Code Execution, Persistence and Detection Strategies 9d ago Ransomware attack shuts Illinois high school until Wednesday 9d ago Ideas for demo 9d ago Microsoft account hacked through infostealer. Trying to log in using authenticator, but not successful. Help please? 9d ago Harnessing Generative AI for Automated Reverse Engineering, Static and Dynamic Analysis, and Risk Scoring of Fraudulent Mobile Applications (APKs) and Malwares. 9d ago Physical attack device 9d ago Hades PyPI Attack: 19 Packages Poisoned to Auto-Run Bun Credential Stealer 9d ago IT GRC News? 9d ago Meta Says Israeli Spyware Firm Targeted WhatsApp Users Again 9d ago Shifting L7 validation to the edge to stop DB resource exhaustion? 9d ago Google Patches 5th Chrome Zero-Day Exploited in 2026 9d ago EC Council CEH exam advice 9d ago About NPower vs PerScholas 9d ago Looking for a vulnerability to learn 9d ago From Brute Force to Malware Execution: Investigating a Multi-Stage Cyberattack in Splunk 9d ago Bad USB through charger? 9d ago Recommendations for Discord community for latest AI security products 9d ago Vulnerability Summary for the Week of June 1, 2026 9d ago Windows Defender Tamper Protection stuck off - no active GPOs, SFC corruption, looking for ideas 9d ago I feel like ive lost my passion to tinker after 6 years in the industry, anyone else? 9d ago I wrote a free, no sign up, defender guide for suspicious USB devices and rogue hardware, with copy-paste detection examples 9d ago really need help with project ideas for MSc 9d ago Which Course for an almost-complete noob? (SANS.edu) 9d ago SoFi confirms third-party data breach at Hong Kong subsidiary 9d ago For the 2nd time in weeks, Microsoft packages laced with credential stealer 9d ago Iran Signed a Ceasefire — Its Hackers Didn't 9d ago New Shai-Hulud attack trojanizes 19 science-focused PyPI packages 9d ago DSPM étude marche 9d ago CMMC Phase 2 November 2026: two readings of SR.1 — C3PAOs are applying the one that requires a verifiable chain, not just a file 9d ago AppSec / Pentesting job market in Canada for experienced overseas applicants? 9d ago Stop Treating Low Severity CVEs as Noise. Start Treating Them as Ingredients. 9d ago Automation Playbooks - which ones would you not want to live without? 9d ago Is it necessary/important to Hash and salt API Keys for a strictly internal use tool? 9d ago Need review on the OMS Cybersecurity program from Georgia Tech? 9d ago If You Use Claude or Gemini, This Microsoft Breach Means Your Data Is at Risk 9d ago 2026 Verizon DBIR: vulnerability exploitation overtakes stolen credentials as #1 breach entry point for the first time in 19 years 9d ago How do you close an alert 9d ago What cybersecurity certifications are great value for money? 9d ago Boxes for CPENT 9d ago SIEM: is it "SIM" or "SEEM" 9d ago I’m looking for recommendations for an online Master’s program that is recognized in the Middle East. (Better if certifications are included) 9d ago How justdeleteme and justgetmydata work? 9d ago I need help - PCI DSS 4.0 requirement 11.6.1 9d ago How are you learning agent pen testing? 9d ago Cyber security intern 9d ago Meta to take legal action against Israeli spyware company NSO 9d ago Inside SStar Agent, a cross-platform RAT with an unfinished macOS toolkit 9d ago What's the best way to alert companies of a Glassworm copycat? 9d ago How To Verify If A Site Is Legit? 9d ago What is Flaresolverr 10d ago Research: defenders using generative AI to simulate malware variants before they exist in the wild 10d ago How are regulated orgs actually letting engineers use Claude Code / Copilot? 10d ago Cyber security expo Manchester 10d ago Remote Hiring Opened the Talent Pool — and the Fraud Surface 10d ago Hades Cluster PyPI Worm Abuses Python Startup Hooks 10d ago What certs should I do during summer of 11th grade? 10d ago CISA: Patch actively exploited SolarWinds Serv-U DoS vulnerability (CVE-2026-28318) 10d ago Nobody needs Mythos or 0-days to build a chaos-causing computer worm – free open source models work just fine 10d ago Oxford University discloses data breach after careers platform hack 10d ago Vendor ISO 27001 Assessment - Questions Around Control 8.29 Security Testing 10d ago Got this message from “SimBoss” 10d ago PKCS12 Golang fork 10d ago Malware Insights: Miasma Campaign 10d ago 73 Microsoft GitHub repositories impacted by Miasma malware 10d ago [Honeypot Research] Looking for volunteers to test telemetry/logs 10d ago What is the condition of Bug Bounty program in the era of AI. 10d ago Opening a cloned repo is no longer safe 10d ago Meta Says 20,000 Instagram Accounts Hacked via AI Tool Abuse 10d ago CISA: Hackers now exploit SolarWinds Serv-U flaw to crash servers 10d ago Google Colab CLI opens runtimes to Claude Code and Codex 10d ago VS Code Adds 2-Hour Extension Auto-Update Delay to Limit Supply Chain Attacks 10d ago The AI governance gap no one is talking about: deployment-stage accountability 10d ago Free Study Resources for Comptia Cysa+ 10d ago Mentorship Monday - Post All Career, Education and Job questions here! 10d ago Hi there 10d ago Final risk-based IT Audit interview round with Director and have no experience. Please help! 10d ago Needed help 10d ago [ Removed by Reddit ] 10d ago Career advice 10d ago PhD in cyber Security 10d ago Built a password guessing game. Almost everyone stuck in level 5. 10d ago OSINT (SOCIAL MEDIA) 10d ago Beginner KQL project 10d ago Question about WORM and encryption 10d ago Update:Certified cyber security 10d ago Has anyone have any idea what to expect from Information security engineer- Network interview at Glidewell Dental 10d ago Independent Post-Quantum KEM and Digital Signature Suite in C++ (NSLD Reduction) 10d ago Malware that survives reinstalling the BIOS and OS 10d ago Am I overthinking the x86 compatibility issues? how much friction am I actually facing? 10d ago Fedora Linux 43 exposes 20-year-old Microsoft Outlook security failure 10d ago Managing Microsoft Identity Is More Complicated Than It Looks 10d ago My work email got subscribed to a bunch of israel newsletters 11d ago Shadow AI 11d ago Rate limiting is not enough. What else can I use? 11d ago How To Avoid Potential Malware From Transferring To New Laptop 11d ago Sysmon RegistryEvent exclude not overriding include rule for Event ID 13 11d ago Can't decide. 11d ago looking for partners 11d ago My edge is changing into bing when I search something 11d ago Cybersecurity reality check 11d ago [ Removed by Reddit ] 11d ago Information Management 11d ago IronWorm Malware 11d ago Why do we use UNC for smbclient ? Why don't we use UNC for nc or ssh? 11d ago Why do we use UCL for smbclient ? Why don't we use UCL for nc or ssh? 11d ago Everyone's planning post-quantum migration for enterprises. Nobody's talking about your password manager 11d ago Is a separate “clean” S3 bucket actually a security boundary for uploaded files? 11d ago CVE-2026-46640: Developing payloads for Twig sandbox bypass 11d ago PenTest+ Exam 11d ago AI Agent Uncovers 21 Zero-Days in FFmpeg; Chrome Patches Record 429 Bugs 11d ago Looking for guidance 11d ago Before you attempt any OffSec certification, read what just happened to me 11d ago Reporting Metrics for Management 11d ago got hit with SOC 2, cyber insurance, and a prospect pentest request at the same time 11d ago Found an old Discord CDN ZIP in Opera downloads and I’m trying to figure out if I should be worried 11d ago Shai-Hulud: Miasma (Azure:Durabletask) Open Source - a normalized, deobfuscated copy of the Azure DurableTask JavaScript payload. 12d ago AI Security Certificates 12d ago Guys is bug bounty dead? 12d ago How are folks making it in bug bounty? 12d ago How useful is it to require at least one uppercase letter in a password? 12d ago Cyber security ! Is no more ? 12d ago CISA: Hackers now exploit SolarWinds Serv-U flaw to crash servers 12d ago Ghosts in the Cloud: Chinese Hackers Hid in Microsoft 365 Networks for 18 Months 12d ago Antimiasma Worm to discover/mitigate/vaccinate Miasma worm infected repositories 12d ago How to train employees to feel when something's off? 12d ago ALERT OVERLOAD 12d ago CTO at NCSC Summary: week ending June 7th 12d ago A new BitLocker bypass allows access to encrypted drive in the pre-boot environment with all Windows security features enabled 12d ago Microsoft Azure Repositories Compromised (Disabled) as Miasma Worm Targets AI Coding Agents Through GitHub 12d ago AppSec Engineer Interview Stories 12d ago [OpenSource] Multi-layer sandbox for native code execution on Linux with no external deps. 12d ago Is there a safe way to continue using (unsupported) Windows 10? 12d ago Is Splunk suitable for smaller Enterprises? 12d ago Has anyone else had MFA prompt fatigue issues with users? 12d ago Data Scrubbing from Databases 12d ago Best Certificates? 12d ago Rant 12d ago New York passes data center moratorium and consumer protections as environmental, and housing proposals stall 12d ago Cyber attackers have a new favorite, the browser 12d ago Looking to get into cybersecurity in web3 12d ago Microsoft discovered that Anthropic's Claude Code GitHub Action is vulnerable to prompt injection attacks via issues and Pull Requests 12d ago Should i use email 2fa or only auth and phone number? 12d ago Can I break into cybersecurity with a white collar felony? 12d ago Open Source Intelligence - Building AI Systems That Handle Contradiction at Scale 12d ago How are people supposed to defend against both supply chain attack and zero-day vulnerabilities at the same time? 12d ago What kind of topics do you think should be covered more (in conferences, youtube etc) but they arent? 12d ago How Hard is This 12d ago Installed Fake Codex hidden as a google site 12d ago Virustital scan result help 12d ago CrowdStrike Turned an AI Wave Into Its Best Quarter Ever 12d ago Cyber Resilience Act - Position? Pain points? Struggle? Possible solutions? 12d ago I fell for the cybersecurity degree trap and thought I could beat the job market, I could not. Not sure what to do now 12d ago Being a Security Engineer? Which AI-powered tools are you using on a daily basis? 12d ago Over 900 US gas station tank gauge systems exposed to attacks 12d ago Google and FBI warn of ransomware group that sends fake IT workers to hack victims in person 12d ago SIEM is broken in the AI agents era 12d ago Google Cloud hit by fresh layoffs, security and Mandiant teams among those affected 12d ago Phantom Gyp npm Worm Abuses node-gyp Build Hooks 12d ago Certified cybersecurity ISC2 12d ago Help studying for OSCP 12d ago The current state of Threat Intelligence Tooling 12d ago Malicious podcast, PDF apps spread FlutterShell macOS backdoor malware 13d ago We tested offensive AI agents against deception technology 13d ago A matter that I have been losing my sleep over 13d ago Any experience with Rootly or incident.io for cyber incident management? 13d ago CTIA Study Resources & Preparation Advice? 13d ago Black hat uk vs brucon 13d ago Cisco warns of unpatched SD-WAN zero-day exploited in attacks 13d ago NIS2 hits railway hard 13d ago I need help guys… :( 13d ago Question from the Seniors 13d ago China-Linked Cybercrime Group Expands Attacks Beyond Asia With AI-Assisted Malware 13d ago what certs have u seen in ai security related job posts ? 13d ago How is the Security Architecture / Strategic IT Security process structured in your organization? 13d ago What's happening in cybersecurity job market in US and Europe these days? 13d ago Has any of you pivoted from GRC to CTI? 13d ago Up-date-list of cybercrime types? 13d ago What else should I learn to build a strong cybersecurity foundation? 13d ago Hackerone interview 13d ago Ransomware in the AI Era | ft. Behnaz Karimi | Ep. 109 | ScaleToZero Podcast | Cloudanix 13d ago Testing URL Rewriting? 13d ago Got an internship in IAM with no qualifications and no soft skills 13d ago Work Hours of DFIR/Cloud Security vs Pentest 13d ago Narcissistic Tech Leader.... 13d ago Anyone else's firewall logs just explode after midnight? 13d ago I'm replacing myself.. at least the boring parts 13d ago Anyone else dealing with these phantom login attempts from China? 13d ago Best way to fully clear windows and set everything up securely (pc, accounts etc) 13d ago IBM, AT&T Accused by Whistleblower of Covering Up Foreign Hacks 13d ago Soc analyst 13d ago Do companies actually require cybersecurity insurance 13d ago Uncommon/Unusual CrowdStrike Alerts 13d ago Cyber analyst: law firm or bank 13d ago best free av and how do i properly setup passwords? 13d ago Five 9 Vulnerability 13d ago CVE Lite CLI closes dependency gap — but won't stop modern threats 13d ago Scope change 13d ago We just stopped a social engineering attack on our service desk. Here’s how it played out. 13d ago What is the most underestimated cybersecurity risk right now? 13d ago Update: Company is paying for any certification, which should I obtain? Except Sans 13d ago New paper: every AI model has a naturally occurring unforgeable fingerprint in how it ranks tokens, relevant to fake model detection and supply chain verification 13d ago Anyone else's firewall vendor docs a total nightmare? 13d ago Your opinions about a learning style 13d ago Why Real-Time Fraud Prevention Is the Only Way to Stop AI-Driven Attacks 13d ago New IronWorm malware hits 36 packages in npm supply-chain attack 13d ago Anyone else see their firewall logs just explode after a cloud update? 13d ago Are certifications necessary to get a job in cybersecurity? 13d ago Part 2: Bulk-Injection / Back-dating Signature Found in Public Tech-Governance Dataset (RDB Constraint Bypass) 13d ago Is retyping and translating textbooks too inefficient for CS/Cybersecurity? 13d ago Free Microsoft Enterprise Security Assessment: Worth It 13d ago How are organizations preparing for AI-generated phishing attacks? 13d ago Inside the race to adapt to an AI-powered security world 13d ago 127.0.0.1 in eight headers: what attackers hide in X-Forwarded-For 13d ago Microsoft blames unexpected Windows driver updates on caching issue 13d ago Critical Ledger State-Machine Violation Found in Public Tech-Governance Node Dashboard (Debit Card Transaction Injected on 0 Balance) 14d ago Your CPU model leaks through the browser via WASM timing differences 14d ago Chinese Cybercrime Group in Spotlight for Record Campaign Pace 14d ago Security Engineer 2 interview at Amazon coming up - What to expect? 14d ago A researcher spent $1,500 testing if LLMs could hack a vulnerable app 14d ago Help with university internship 14d ago Are MCP servers becoming the next API security nightmare? 14d ago What's the cybersecurity lesson you learned the hard way? 14d ago ISO 27001 Surveillance audit vs Full recertification 14d ago How important it is to get paid Cybersecurity certificates ? 14d ago Researcher Drops a New VS Code Zero-Day After Losing Trust in Microsoft’s Disclosure Process 14d ago Soc to Architecture 14d ago Does "example file vulnerability" exists? 14d ago VS code forces 2 hour cool down for most integrations. 14d ago Company laptop isolated after Brave/Tor alert - should I be worried? 14d ago Does anyone know how to send false positive to SOCradar ? virus total 14d ago Looking for people to team up for Bug Bounties & CTFs 14d ago Signal Without Smartphone 14d ago I found a trojan on my pc and now im scared my private calls got leaked 14d ago Meta, Microsoft & DOJ Smash Southeast Asia Scam Rings: 1.4 Million Accounts Removed, 63 Arrests 14d ago CISA Adds Exploited Magento RCE Flaw CVE-2026-45247 to KEV Catalog 14d ago How do you change users behavior through awareness training? 14d ago AI-built ransomware toolkit automates EDR evasion, AD discovery 14d ago Safe Rust API for wolfSSL/wolfCOSE 14d ago Looking for feedback on my open-source OT detection ruleset (29 rules for Wazuh/Sigma) 14d ago AMD GPU Users might be compromised 14d ago [ Removed by Reddit ] 14d ago Five Eyes Warn: Chinese Spies Using LinkedIn Recruitment Tactics to Access Sensitive Information 14d ago CISA warns of cyberattacks targeting fuel tank monitoring systems 14d ago [CTF] Struggling to extract RTSP stream from generic Chinese IP Cams (Altobeam SoC) via ONVIF 14d ago how to get good at cyber security? 14d ago Anyone use CrunchAtlas? 14d ago Prompt monitoring laughs 14d ago Malicious Payload in ai-sdk-ollama npm Package 14d ago Can Someone Please ELI5 - "YellowKey" (CVE-2026-45585) to me? (an IT admin that survived the Great Global CrowdStrike Outage of 24) 14d ago what the HELL is dsztfso? 14d ago Yubikey Alternative....? 14d ago Hiring 14d ago CVE-2026-42897: Applying the Mitigation and Closing the Incident Are Not the Same Thing 14d ago Certification Advice 14d ago Question about Linux kernel TLS ULP disclosed June 2 to oss-security 14d ago An IT guy basically stole my entire gmail account and probably posted it somewhere...how do I search for this? 14d ago How to Rob a Data Center (new article on data center physical security) 14d ago US: California Back & Pain Specialists Exposes 133GB of Patient Medical Records on Public Server 14d ago Is it worth taking the EC councils masters program?? Are they legit /2026 14d ago Mid-level AppSec engineers: what do you actually study to prep for interviews? 14d ago Company is paying for any certification, which should I obtain? 14d ago Trusting Microsoft with your offensive security repos 14d ago Automated Fault Injection Attack Framework 14d ago Physical Biometric device as a security measure..?? 14d ago Cybersegurança 14d ago Started Learning Cybersecurity 14d ago InfraGard Application - Seeking Help | Student 14d ago Orientación en Ciberseguridad 14d ago Anthropic's coordinated vulnerability disclosure dashboard 14d ago Hands Free: What LLM Driven Vulnerability Research Looks Like 14d ago Real time Cybersecurity failures regarding Quantum computing/cryptography 14d ago 🕵️‍♂️ PCPJack Hijacked 230 Cloud Servers to Send Email. Here's How They Did It. 14d ago A two-year-old RCE bug in Redis was just made public. An AI tool found it. The full exploit chain is out. 14d ago CISA warns of active attacks exploiting Android, Linux bugs 14d ago Found some open ports on a govt site, should i report or stay quiet? 14d ago What is a good way to keep track of passwords for programs that don't support password managers? 14d ago Cybersecurity statistics of the week (May 25th - May 31st) 14d ago ASN Emissions Index. Networks ranked by how much noise they create on the internet. 14d ago Have you sold cve before? 14d ago i want to become a pentester, but i don't know how to 14d ago The OT Security Problem Nobody Wants to Own 14d ago Don't Take Wednesday Off When You Manage Vulnerabilities 14d ago I finally finished a production version after 4 yrds 15d ago Support role pivot to cloud security 15d ago How do you manage your passwords? 15d ago Mad rush to produce AI driven slop 15d ago O Tails é seguro para acessar links suspeitos? 15d ago Cyber Essentials plus + "legacy" network segments 15d ago Insight for OPSWAT deep CDR 15d ago Android vs iOS 15d ago ShinyHunters leaks Charter Communications data: 4.9M customer records exposed via a social-engineering attack on an employee's Microsoft account 15d ago Security Audits at an MSP 15d ago [ Removed by Reddit ] 15d ago Passkey registration breaks after moving off localhost.. 15d ago Does your team hire fresh AI engineer who doesn't know anything about Security operations? 15d ago UARs for Equation (banking system) 15d ago IoT pentesting cert 15d ago Anthropic Expands Project Glasswing, Bringing AI Cyber Defense Tools to 150 More Organizations 15d ago Experience with Tac Security 15d ago Weedhack Attacks Minecraft Users, CountLoader Hits 86K, Miners Spread via Pirated Content 15d ago Found Security Vulnerabilities in my university website 15d ago Preinstall to persistence: Inside the Red Hat npm Miasma credential-stealing campaign | Microsoft Threat Intelligence 15d ago AI - Threat to the CyberSec Industry? 15d ago Built a honeypot platform to catch lateral movement. How are you guys detecting this? 15d ago How should small SaaS teams safely answer customer security questionnaires? 15d ago Can AI Do Intelligence Analysis? Apparently Not. 15d ago PROMPTPurify - 14MB Tiny Prompt Injection Guardrail Open Weight Model 15d ago Regarding Certified Ethical Hacker (CEH Practical) exam 15d ago Asking for advices on pursuing first CERTIFICATE 15d ago I opened my own company and I can't find clients! 15d ago ShinyHunters vaza dados de clientes da Spectrum após recusa de resgate da Charter 15d ago Do you support the idea of creating a European commission that would issue special licenses for social media platforms, with standardized account creation rules and mandatory KYC (Know Your Customer) verification requirements across the EU? 15d ago Anyone knows Quad9 dns ? 15d ago I've a fullstack dev, I'm devleoping my own authentication for my application, Can anyone help me for it's security aspects ? 15d ago Greynoise swarm 15d ago SecOT+ certification for free 15d ago How is the state of the job market for mid-level security engineers? 15d ago Is anyone else still coding manually to learn? The market will continue to hire people that know what's going on even if you can now use AI to code many things 15d ago WaSteal Update: Infrastructure Pivoting Reveals 57 Additional Extensions, Campaign Now at 183 Total 15d ago Laid off from TPRM job - need help on the future of my career 15d ago Anyone compared RoboShadow vs ConnectSecure for vulnerability management? 15d ago Any one send vulnerability to MITRE? 15d ago Need advice for a 30 min Security Apprenticeship interview 15d ago UltraViolet: your own Shodan, in Docker, with CVE/KEV/EPSS 15d ago Microsoft insists Defender is enough for most PCs, but admits third‑party antivirus tools still offer extras it can’t match 15d ago Virustotal API as private data source 15d ago Account Number Security Flaw 15d ago Is Red Team Leaders Certification (RTL) actually useful for jobs or just for learning? 15d ago A PoC to demonstrate that without PMF, MAC filtering at the AP level is the only thing stopping selective WiFi deauth 15d ago [ Removed by Reddit ] 15d ago [ Removed by Reddit ] 15d ago Phishing simulation platform 15d ago Just task about OSI model 15d ago Need help improving DNS Spy from a security tool angle 15d ago Device Code Phishing Forensics: What We Learned Investigating BEC in the Wild 15d ago Oracle's first monthly patch update just dropped 77 CVEs. 15d ago Cleaning up after a legacy service account breach. How are you handling automated secrets discovery? 15d ago Airbus digital apprenticeship 15d ago Anthropic is expanding Project Glasswing — giving 150 more critical infrastructure orgs access to Claude Mythos to scan for vulnerabilities 16d ago Google fixes one actively exploited Android zero-day, 124 flaws 16d ago Can elections be hacked? Modern day computational propaganda techniques described by the EU's East Stratcom Task Force 16d ago Parsing Cisco IOS configs for CIS Auditing: Why regex fails on block contexts, and how are you handling offline static analysis? 16d ago Security Architects who who actively use modelling - What's your approach? 16d ago PAN-OS authentication bypass bug added to list of exploited vulnerabilities 16d ago I have extreme anxiety about being hacked 16d ago Fresher 16d ago Hackers Used Meta AI Bot to Hijack Instagram Accounts in Major Security Breach 16d ago Career advice needed! 16d ago GoDaddy found malware on 1,980 WordPress sites using Steam as C2 infrastructure 16d ago Google sr. security engineer interview 16d ago Is offensive AI actually changing cybersecurity, or are we overestimating the impact? 16d ago Multiple Red Hat NPM packages victim of Mini Shai-Hulud Miasma wave 16d ago is emerald chat safe? 16d ago Does anyone on this subreddit who has an VirusTotal premium account can help me with something important ? 16d ago ClickJack in the wild 16d ago Thoughts on A.I assisted Malware Analysis? 16d ago 19-Year-Old Linux Kernel Vulnerability Exposes Systems to Root Access 16d ago What articles do you use for cybersecurity news? (2026) 16d ago Is anyone using agents in regulated industries? How do you make sure sensitive data doesn't go back to the AI provider? 16d ago Roadmap and Training Recommodation 16d ago Les anti-triche de niveau noyau et leur risque de sécurité 16d ago Asked to Send Sensitive Documents via MMS 16d ago SC-200 compared to CC (isc2) 16d ago Every SaaS Company Is Accidentally Building Meta's Instagram Vulnerability Right Now 16d ago Looking to move off KB4, what are people actually using these days? 16d ago Got my Security+. What's next? 16d ago Vulnerability Summary for the Week of May 25, 2026 16d ago Malware 16d ago Alternative Search Engine to Utilize in 2026? 16d ago Hackers Simply Asked Meta AI to Give Them Access to High-Profile Instagram Accounts. It Worked 16d ago Windows Server vulnerability can grant system privileges with just a malformed packet — domain controllers are being exploited in the wild 16d ago Grand Theft Auto V cheat service gets hacked, exposing thousands of gamers 16d ago AI compliance 16d ago Red Hat npm Packages Compromised to Spread a Credential-Stealing Worm 16d ago Is TeamPCP a Russian-affiliated APT? How can preventive security principles assist defending ecosystems against attacks on software supply chains? 16d ago MacBook or Windows Laptop for Cybersecurity 16d ago What's the most creative MFA bypass you've seen? 16d ago Research Notes from Building a Windows Event Log Hunting Workflow 16d ago How to fix securityheaders scan X-Frame-Options and Content-Security-Policy ?? 16d ago Free AI tools for TPRM? 16d ago incomplete phone number from togo, need help reporting to police 16d ago NPM packages from RedHat Compromised 16d ago Linux Copy Fail CVE-2026-31431: KEV Privilege Escalation on Shared Build Hosts 16d ago SOC Analyst working towards Threat Intelligence 16d ago Is XSS possible through PDFs? 17d ago The Next AI Governance Failure Won’t Be the Model 17d ago Microsoft MFA Is Down Again 17d ago Started my first writeup - Sherlock NeuroSync-D (CVE-2025-29927) 17d ago Computer logic or Science 17d ago I am a Full Stack Developer but I want to switch to a cybersecurity centered position. Which positions should I prepare for? 17d ago What C2s Are You Using 17d ago PNPT Exam 17d ago What do you do when a supplier refuses or lacks a reporting clause on vendor incident notification? 17d ago Any appsec engineer working in fortune 500? 17d ago I'm developing an IDS/EDR. I need suggestions which blind spots I have, whats missing and what should be added next 17d ago Anyone transition from AWS Data Center Operations to InfoSec? 17d ago I think my account got hacked but it's weird 17d ago current market for detecting deepfakes? 17d ago Worried about friend being doxxed on doxbin 17d ago how to shift from a service based company to a product based one in cybersecurity ? 17d ago Meta AI Password Reset Flaw Reportedly Bypassed Instagram 2FA 17d ago Claude AI user data directory exfiltration via malicious npm package 17d ago Bitdefender blocking amd stuff? False positive or? 17d ago Mentorship Monday - Post All Career, Education and Job questions here! 17d ago did they have my password?? what triggers this specific email??? instagram HELP. 17d ago ATTENTION: Dashlane may have been breached. (Password manager). 17d ago Norton blocked a “malicious script”? 17d ago Need Advice: Ex Claims He Still Has Access to My Mac/iCloud After Resets and New Accounts 17d ago Security researchers have uncovered a new attack technique that lets malicious websites spy on your browsing activity through hard drive. 17d ago I wrote about the 5 biggest threats in 2026, curious what this community thinks. 17d ago MSPs: What evidence do cyber insurance underwriters ask you for that is hardest to produce? 17d ago Im new to cybersecurity and have a iPhone 7 (iOS 15.8.5) I wanna pentest, any suggestions? 17d ago NetworkChuck 17d ago LLM for creating phishing tool 17d ago Why are we still treating IAM like a compliance checkbox? 17d ago Polyfill pop up? 17d ago SecAI+ difficulty question 18d ago Could you guys give an honest feedback to a completely automated ssrf attack tool? 18d ago tengo 61 y mi famila y amigos me espian I am 61 and my family and friends spy on me 18d ago Microsoft Joined the DMARC Club 18d ago Help. 18d ago Vibe Coding Security 18d ago Looking for a Company to Partner With 18d ago Best reporting tools? 18d ago What actually moved the needle on our alert fatigue (Wazuh + some automation, lessons after ~6 months) 18d ago How Can Polyfill.io Still Act Maliciously? 18d ago Need THM voucher code for cheap? Any known seller? 18d ago Ghost passwords? 18d ago Was a stipulation in my offer letter that I was required to obtain my CISM certification in 6 months... I did not. 18d ago LLMReaper - DOM Based AI Conversation Exfiltration via Browser Extensions 18d ago Anyone else having Chatgpt Strikes / Violations while learning cybersecurity? 18d ago Working at Cisco, worth it? 18d ago Want to Learn Cybersecurity in 2026 – Need Guidance, Roadmap, Tools, Resources & AI Advice 18d ago Are you pen testing AI Agents? 18d ago Question of android malware 18d ago External attack surface: how are you correlating DNS, SSL, and IP reputation today? 18d ago how do i properly setup 2fa and bitwarden? 18d ago Hacking India's Largest Exam Evaluation Portal: From Authentication Bypass to Full Account Takeover (Covered by BBC) 18d ago i need a partner to learn coding with me and have fun too,Hey, I'm 16 and just started learning cybersecurity and coding. I'm looking for a coding buddy around beginner level. We can learn Python, web development, and build small projects together. Anyone interested? 18d ago Question for teams running parallel agents: Would you actually pay for a deterministic control plane, or are we all just building custom wrappers forever? 18d ago Can Steam Cloud Files Transfer Malware 18d ago Questions for the cloud security engineers 18d ago Thoughts on this as a starter and doing bug bounty on the side 18d ago How are new SC-200 candidates practicing labs without an E5 Developer tenant? 18d ago Getting OTP spammed from every app and website I've ever used. Should I be worried? 19d ago A browser tool for checking contractor insurance certificates 19d ago Am I getting screwed? 19d ago SECODER | Security Coding Challenges for SOC Analysts & Detection Engineers 19d ago PAN-OS added to KEV, Langflow exploit activity, and a surprising Windows EPSS jump — today's most actionable vulnerability signals [Threat Intel 2026/5/29} 19d ago CTO at NCSC Summary: week ending May 31st 19d ago BountyLabs — Bug Bounty Training with Labs, Challenges, and AI Mentorship 19d ago Need suggestion 19d ago [INDIA] Need Advice: Shared mobile number risk on a joint minor account after a small P2P trade (P2P Fraud / Bank Freeze Anxiety) 19d ago Was Dave Bittner interviewing an AI? 19d ago CTF for complete beginner 19d ago Hitting a plateau after 2 years in Web Security: How do I transition from standard OWASP bugs to finding CVEs and novel techniques? 19d ago AI-Era Cyber Risk Standards 19d ago BEC Victim - Attacker replied inside a real email thread using a lookalike domain 19d ago Question for those who transitioned from remote to work from anywhere 19d ago Website Keeps Getting Falsely Flagged as Phishing/Malicious By Security Vendors 19d ago Do you enjoy what you do or do you wish you could go back in time and change it? 19d ago Is understanding how API keys, public/private keys, and secrets actually work necessary to work in cyber? 19d ago For those who made the jump to independent cybersecurity consulting, what was the hardest part of the first year? 19d ago Is a basic understanding of PKI and Public Key Cryptography necessary to work in cyber ? 19d ago Do you think AI will make cybersecurity products/services cheaper over the next 5-10 years? 19d ago Botnet of more than 17 million devices dismantled 19d ago Exposed credentials on logs 19d ago What do you think is the biggest cybersecurity risk for small businesses in 2026? 19d ago Wanted to shift to cloud security, but have some questions 19d ago Zero Trust is Overrated? Navigating the Complexity 19d ago Test API post with flair 19d ago Warning on MAD20 Subscriptions: $500 Blind Auto-Renewals and Hostage Certifications 19d ago How Do You Handle the Massive Amount of Information in the CPTS Path? 19d ago Help an upcoming cybersecurity engineer! 19d ago Repeated Microsoft MFA attempts even after password change 19d ago What Is Device Intelligence and How Does It Stop Fraud? 19d ago [FOSS Tool] WiFi-SpiderWeb V2.0: Active Cyber Defense for OpenWrt Routers with Live Radar Sweep (Python + SSE) 19d ago IBM commits $5 billion to secure open-source software 19d ago Structuring an AI-Assisted Pentesting Homelab for a Final Year Project 19d ago Are teams actually monitoring LLM traffic in production environments? 19d ago How to protect passwords from memory scraping/API hooking on a compromised target machine during a remote session? (No Admin access, No 2FA) 19d ago Raspberry pi 19d ago What is the biggest obstacle to using AI safely in a company? 19d ago Advice going forward 20d ago MCP Firewall help 20d ago I wanted to shift to security but people told me the market is extremely bad, is that true? 20d ago Best Personality Type/Traits for Working in Cyber Security 20d ago A fake freelance job interview almost installed malware on my PC 20d ago Is there a viable career path here or am I just being delusional? 20d ago What 2,000 Exposed Vibe-Coded Apps Reveal About the Limits of Most Security Stacks 20d ago How do enterprises actually prevent developers from exfiltrating source code? 20d ago I have a datastealer malware 20d ago Dúvida de carreira. 20d ago Someone hid a full RAT inside a fake npm package and exfiltrated victim data to HuggingFace 20d ago Need Cloud Security Engineer simulator to learn the Job. I need to be more hands on with running tools ,Please advise thank you. Your resources are appreciated 20d ago is SIEM really needed here ? 20d ago Decompiled an app, found a bunch of secrets, what now? 20d ago Can someone give me a correct method for learning reverse engineering? 20d ago Critical Gogs Zero-Day RCE Remains Unpatched After 2+ Months 20d ago GRC Advise 20d ago [ Removed by Reddit ] 20d ago Did something happen to haveibeenpwned? Any alternatives? 20d ago RAT SUSPECTED 20d ago How do people afford certificate s? 20d ago I’m curious — what’s one cybersecurity tip you wish more people knew before getting hacked or scammed? 20d ago Puck Scout: Autonomous, read-only endpoint investigation via MCP. Ask a question about your fleet, get a narrative answer with containment recommendations. 20d ago Phone Forwarding 20d ago Opinions on running Full Microsoft E5 Security Stack 20d ago Claiming "XDR" 20d ago Typosquatted npm packages used to steal cloud and CI/CD secrets 20d ago Microsoft security 20d ago Need help regarding building a home lab 20d ago Should I turn on passwordless accounts for all my Microsoft accounts? 20d ago Transitioning from AWS Data Center Operations to Security Engineering 20d ago Probably the wrong place. 20d ago What after IT helpdesk? 20d ago How are you security-testing API changes before production without slowing CI/CD? 20d ago Are we trusting update repos or are you all extra paranoid now as well? 20d ago Disgruntled 0-day hunter 'humiliated' by Microsoft pledges 'bone shattering drop' as Redmond calls cops 20d ago Prevent supply chain attacks 20d ago Cybersecurity Authorities Issue Joint Guidance on the Adoption of Agentic AI Systems 20d ago FBI warns of fake FIFA websites running World Cup fraud schemes 20d ago Hackers are trying to steal Signal users' backups in new wave of phishing attacks 20d ago Incident Response Testing Preparation 20d ago Kevin Mandia is speaking in NOVA on June 10 — probably the most candid you'll ever hear him outside of a major conference 20d ago [Open-Source] WiFi-SpiderWeb: Turn any OpenWrt Router into an Active Cyber Defense & Honeypot System via USB 🕷️🔥 20d ago 3rd Party NFC cards.. secure? 20d ago Vulnerability Management Tickets & SLA 20d ago Defending at Machine-Speed: Building AI Threat Readiness 20d ago AI agents running in our environment have broader access than our sysadmins and ownership of that is unresolved 20d ago HEAD request body processing leading 20d ago Malicious npm Package Stole Files From Claude AI User Directory via GitHub 20d ago Does anyone have an app like substack to keep being updated and engaging within the cyber domain? 20d ago What’s an attack vector people massively underestimate in 2026? 20d ago We security-reviewed our own free CVE tool and shipped the fixes - EPSS Lookup Tool v2.7 20d ago A Deeper Look at GLASSWORM's Solana Variant 20d ago Calling Cyber Security Beginners 20d ago Busco oportunidad laboral / consejos para iniciar en TI, ciberseguridad o análisis 20d ago built something for ai agents, ended up looking a lot like classic appsec 20d ago Is Gophish still usable in 2026? 20d ago Microsoft vs Chaotic Eclipse: three zero-days now actively exploited 21d ago what do you think 21d ago Why would be clicking a website, redirect me? 21d ago Zapier fixes bug chain that researchers say risked widespread account takeover 21d ago Writing cybersecurity policies is a waste of time 21d ago Raising the Cybersecurity Stakes: Ante up for the Agentic Era. 21d ago Public CAs are exiting client authentication. Most organisations haven't inventoried what depends on it. 21d ago [ Removed by Reddit ] 21d ago Released: Dataforge Honeypot 21d ago Google Unveils AI Threat Defense Platform to Fight AI-Powered Cyberattacks 21d ago CEH-free 21d ago Hottest cybersecurity open-source tools of the month: May 2026 21d ago Preparation tips for CPENT 21d ago How do you handle AI tools in your organization? 21d ago I think i got scammed anybody can help me with that 21d ago New phishing campaign targeting Japanese online banking users uses 'PayPoy' domain/branding typo 21d ago Is it safe to have passwords copied to clipboard on IOS temporarily? 21d ago Developers working on anti-fraud systems deserve more credit 21d ago My company is moving to security clearance requirements but I am a foreign national. Anyone know time lines / realistic outcomes for me? Currently working as a sec analyst 21d ago Security awareness training for AI heavy smb workflows? 21d ago Minimum Requirements for Helpdesk Role ? 21d ago Reddit spear phishing 21d ago GitHub - iss4cf0ng/OpenPetya: A Proof-of-Concept bootkit inspired by Petya ransomware, written in Assembly, C, and C++ 21d ago What to do 21d ago What resources would you recommend for studying cysa+ 21d ago Provenance of Data 21d ago Websites have a new way to spy on visitors: analyzing their SSD activity 21d ago 12 years in secops, military to vendor then internal. Internal feels like all loss and no win. Is this normal? 21d ago Russian Art Teacher - Hinder Security Clearance? 21d ago EDR/MDR Vendor Questions 21d ago Cybersecurity as a Highschooler? 21d ago New department created, would love your input 21d ago OWASP Vienna - anyone going? 21d ago Interview with Upstart 21d ago 18, immigrant in Portugal (no Portuguese), failing high school. Need a stable path to Hardware/Network Cyber. 21d ago Is cloud security engineer viable with my current position? 21d ago Cloudflare Access users: what would actually make JIT useful for you? 21d ago eBPF to Detect Unexpected Control-Plane Traffic Inside GTP-U Tunnels 21d ago Questions regarding Ubuntu 24 LTS hardening 21d ago Cómo puedo interferir señal de un dispositivo que está cerca de mí para que no le funcione la señal de wifi a la que él está conectado, cómo puedo protegerme? Se me tipos de cómo protegerme, soy nuevo en esto, me gusta mucho. 21d ago Honest question about OT Security Engineer work life in India 21d ago Who is using CVE Lite CLI? Share your use case (OWASP Incubator Project for JS/TS dependency scanning) 21d ago AI Security 21d ago Iranian threat group targets US aviation sector with AI-assisted ‘MiniFast’ backdoor 21d ago 🚨 Exposed Global Smishing Operation Hitting 19 Countries Across 3 Continents 21d ago Building Detection Engineering on AWS from scratch — roast my plan 21d ago Academic Survey - AI in Cybersecurity Governance and Regulatory Compliance 21d ago I went to prison for internet piracy and hacking; my FBI profiler sent me a message on LinkedIn when I got out, and now we’re presenting at SLEUTHCON. I'm Josh Brody and I ran HeheStreams: AMA. 21d ago Research: All three major eBPF security monitors (Falco, Tracee, Tetragon) can be silently disabled via BPF map poisoning 21d ago Final Year Project: Looking for non-generic IAM project ideas that solve real problems 21d ago GlassWorm takedown: year-long developer supply chain campaign using VS Code extensions and npm packages dismantled. 21d ago Breaking out of IT Helpdesk - how? 22d ago A year in Cybersecurity — Where Do I Go From Here? 22d ago MalShark: MCP-Powered Malware Traffic Analysis — Benchmarked Against Real Malware 22d ago 22, SOC Analyst experience + certs, still no interviews since January - looking for honest advice from people in cyber 22d ago FBI: Silent Ransom Group Turns to IT Support Ploy 22d ago How do machine builders track Siemens/Rockwell security advisories? 22d ago GlassWorm Developer Supply-Chain Botnet Takedown 22d ago The Word 'Toad' Gave Any Website Full Control of Chrome's Most Popular VPN 22d ago Active Exploitation - LiteSpeed cPanel Plugin CVE-2026-48172 CVSS 10.0: Root Privilege Escalation added to KEV 22d ago Got cybersec work what next ? 22d ago Hi everyone! I’m a doctoral student conducting research on how people’s cybersecurity concerns affect their use of technologies like Apple Pay, smart devices, wearables. I’m looking for adults (18+) who currently use or have recently used these types of technology; smart devices or smart wearables 22d ago Ekoparty Miami - Interface Anti-Patterns: Exploiting Insecure Navigation in 3rd Party Android App Lockers 22d ago Trying to understand the scope of NVIDIA's attestation (NRAS), what am I missing? 22d ago GitHub - facebook/mcpguard-dynamic: Kernel-level eBPF sandbox for securing LLM agent tool calls made through the Model Context Protocol (MCP) 22d ago nightmare eclipse is probably French here is why 22d ago Poor Risk Analysis Cost 4 Firms $1.7 Million in HIPAA Fines 22d ago Measuring performance of JA4/JA4H AI Model 22d ago What things are you really focused on this year? 22d ago Hypothetical EDR spoofer 22d ago ISO 27001 Audit Stage 1 22d ago Microsoft SharePoint Has a New RCE Flaw. If You Haven’t Patched Yet, Go Do That. 22d ago Looking for Hacker Friends to Learn☺️ 22d ago Comptes Instagram et Facebook piratés et désactivés 22d ago How to safely disinfect a USB stick from potential malware files? 22d ago Is anyone else concerned about how quickly AI is outpacing cloud security? 22d ago What's a CyberSecurity job like? 22d ago Microsoft Live credential stuffing 22d ago I am on placement and part of a lab where we use cyber security and do research what jobs are similar to this? 22d ago Security architects- summarize your responsibilities and role 22d ago Finding Work in OSINT 22d ago State of SDLC Security 2026 22d ago Reported to police for coding html 22d ago [Open Source] Desarrollé un mutador de huellas TLS en Rust para evadir sistemas Anti-Bot (JA3/JA4 scrambling) 22d ago I open-sourced KernelEye — an eBPF/XDP-based Linux server security monitoring project 22d ago Iranian hackers blamed for breach of Los Angeles transit system that took weeks to recover 22d ago Shai-Hulud Hackers TeamPCP: Lucky or Skilled Operators? 22d ago KnowledgeDeliver flaw exploited as a zero-day to install web shells 22d ago Breaking GROK'S DEFENSES to make it HACK Real Public Websites 22d ago GitHub Actions Cache Poisoning is eating open source 22d ago Nightmare-Eclipse has also been banned on GitLab :DD 22d ago Do we still have time before we are in the Age of the movie "Minority Report"? ↓ 22d ago SimHub (popular sim racing dashboard software) appears to silently disable Windows Defender via hidden Group Policy file 22d ago What Software Supply Chain, Water Filters, and Power Grids Have in Common 22d ago QA engineer trying to move into AppSec — does this plan hold up? 22d ago Is work from anywhere really impossible to find?? 22d ago Cybersecurity statistics of the week (May 18th - May 24th) 22d ago Engineering a Post Quantum Fortress Inside the Citadel Archite 22d ago Cyber Security Analyst 22d ago Environmental consulting firm pushing heavy AI adoption despite employee concerns over environmental impact and data governance 22d ago Two layer email security tool thesis 22d ago When OTP rate limiting fails: OLX account takeover with persistent sessions 22d ago Entra ID sessions revoke 22d ago Anyone who attended GPCSSI before? Need some clarification 22d ago Lost on my career path. 23d ago EU-based folks: external pentest vs mandatory data/security training? 23d ago help needed from experienced people 23d ago How do you evaluate whether a privacy service is actually privacy-respecting? 23d ago Which one Intellipaat or coursera which one to choose 23d ago CERT-In Recommends 12-Hour Patching for Internet-Facing Flaws Amid AI-Assisted Attacks 23d ago India's CERT-In just mandated patching critical vulnerabilities within 12 hours. That sounds good — but is it actually realistic? 23d ago Audited 20 production repos after the May supply chain attack. Every single one had at least 3 of the 8 misconfigs. 23d ago Did anyone pass the SC-200 certificate recently? 23d ago Honeypot 23d ago passkeys, MFA, biometrics, and you can still reset everything with access to one gmail account 23d ago Career in IAM as a fresher 23d ago CISA orders feds to patch actively exploited Drupal vulnerability 23d ago Telegram's Hidden Gatekeeper? OCCRP Probe Puts Spotlight on Shadowy Engineer Linked to App's Infrastructure 23d ago GitHub bans vindictive security researcher dropping Windows zero-days: “I will make sure your bones are shattered” 23d ago Cyber security tool 23d ago Saw this tool and it has potential 23d ago 🚨 14 npm/PyPI/AI Supply-Chain Threats Today (2026-05-26): Critical Worms, Parse Server DoS, and AI RCEs 23d ago 7-Zip CVE-2026-48095: NTFS Heap Overflow Can Trigger Through Renamed Files 23d ago Follow up : showing Claude install random pacakage in its vm instance without asking or prompting 23d ago ¿Is safe? 23d ago Need help 23d ago What is the best tool for masking in kali 23d ago What are the best tools other than ghostTracker? 23d ago TrapDoor Cross-Ecosystem Crypto Stealer Campaign 23d ago Follow up : Steal Your Files Claude AI installing package because internet say so 23d ago New to Cybersecurity: Looking for general advice & help with Nmap 23d ago Open sourcing our hardware red team RF toolkit: the Crimson Flipper Arsenal 23d ago Looking for tech role references 23d ago How do you balance Paw? 23d ago I'm a security professional who has dealt with ransomware. AMA about incident response and business continuity. 23d ago From Stuxnet to Handala: The reverse-engineering of a nation-state cyber weapon and its implications for ICS/SCADA security 23d ago Ghost CMS flaw being actively exploited to compromise 700+ sites and serve malware to visitors through fake CAPTCHAs. Patch has been out since February 23d ago What Companies are Legit? 23d ago start learning cybersecurity from scratch 23d ago Follow-up: measuring LLM-agent failures with replay evidence 23d ago Follow-up: measuring LLM-agent failures with replay evidence 23d ago WhatsApp users on alert after hacker drops massive dataset 23d ago 17 years old going into CS — what certs should I start going after now? 23d ago i want to hire an osint expert 23d ago Open University pros/cons 23d ago How important do you think browser/device fingerprinting has become for modern fraud detection compared to traditional bot detection? 23d ago Career in IAM as a fresher 23d ago Anyone Can Silently Steal Your Files from your Claude AI chat – Live Demo 23d ago Need Advice 23d ago Before going to college, what certifications should I get to prepare myself for cyber security as a person with no experience with cyber security at all? 23d ago Someone from Germany on iOS keeps trying to login to my MSFT account 23d ago AI cautionary tale... 23d ago AI powered red vs blue teaming 23d ago Starting a security analyst student apprenticeship next week, need advice 23d ago Why CVE Does Not Work for AI Agents, but AVE? 23d ago SC-200 or Security+ — which actually helps land a security title 23d ago How about AI having access to your hard drive. 23d ago How a Date Tag Hijacks macOS via ExifTool 23d ago Need ideas for final year cybersec project : “CodeSafe” MCP for AI coding tools 23d ago How credential brokering prevents AI agents from compromising credentials via prompt injection 23d ago Built a tiny daily cyber puzzle game during evenings/weekends 23d ago Crypto4A launches quantum-safe rival to AWS Secrets Manager 23d ago ZTE rated this router leak 3.5 Low. NVD rated it 6.5 Medium. The impact explains why. 23d ago Cyber Sec project 23d ago CySA+ 24d ago Anyone tried Morgancyberhelp ? 24d ago As AI speeds coding, CVE Lite CLI keeps security deliberately AI-free 24d ago Why are most of the dfir tools built to be used in windows 24d ago OnlyFans mega leak reveals 340M user records, hackers claim 24d ago Perplexity BumbleBee 24d ago Cisco patches critical 10.0 flaw in Secure Workload APIs 24d ago Stalker has my phonenumber 24d ago Need some guidance 24d ago Are you currently allocating budget to services that remove executive PII from B2B data brokers? 24d ago About CEHv13 book 24d ago We open-sourced the most dangerous part of our security startup on purpose. 24d ago Which conference(s) result in the most people finding jobs? 24d ago My discord account has been hacked second time even after enabling two factor authentication and resetting password 24d ago What's the most efficient way to learn cloud governance and compliance 24d ago Does anyone know C2 framwork and free hosting to host C2? 24d ago CIS-CAT Assessor for assessment Windows server 2022 and 2025 24d ago Auditor wants a specific access report format and our IAM tool can't produce it, how do you handle this 24d ago Installed BlueStacks, 3 hours later "new login on your google account" and its from the same city as me and a samsung s22 galaxy that i did not authorize, does this have any relation to bluestacks? 24d ago Recent adoption of AI taught me what is Cybersecurity. 24d ago The Pentagon Changed the Rules for Cybersecurity Compliance 24d ago Can someone explain to a noob like me what the implications of this exploit are? 24d ago SHub's "Reaper" Variant Seen Bypassing New macOS Terminal Protections 24d ago Window between zero-day CVE and a patch! 24d ago Is it risky when a website puts on technology components with versions they used in their website? 24d ago Anyone else losing their mind over this "AI Cybersecurity" hype? 24d ago URL parsing behavior in a canonical tag lab 24d ago Would an open source CLI tool that audits GitHub repos for supply chain attacks be useful to you? 24d ago Any tips for me pls 24d ago How do you minimize legal liability as a solo contractor? 24d ago How does your MSSP handle fine-tuning detection rules for false positives? (e.g. "Guest" policy hitting UDP/TCP scan alerts) — do you verify with the customer before suppressing? 24d ago Mentorship Monday - Post All Career, Education and Job questions here! 24d ago Provenance: A survival toolkit for an AI dominant information landscape 24d ago [ Removed by Reddit ] 24d ago Active Drupal SQLi exploitation is a real „patch now“ moment 24d ago machscope — macOS XPC, Mach services, launchd, and trust relationship explorer (zero-dependency, terminal-native) 24d ago Need suggestions and input; not a promotion 24d ago Need advice! 24d ago New Zealand is becoming a focal point for AI-driven superhacking threats. 24d ago nmap on Linux: Guide to Network Scanning and Discovery 24d ago TrapDoor supply-chain campaign hits npm, PyPI, and Crates.io with AI-assistant poisoning angle 24d ago How would Phishing look like in the future? (targeting agents, not humans) 24d ago Best beginner/intermediate book for system security (blue team / defense / audits)? 24d ago Why is on-prem and air-gapped asset inventory still such a mess? 24d ago keep getting MS authentication sign in attempts? 24d ago Silly issue 24d ago How to practice cybersecurity while studying prograaming ? 25d ago [AI Security] Exploring Behavioral AI for Runtime Threat Detection 25d ago Podman and krun: is it pointless to harden quadlets? 25d ago How to handle security researchers (and firms) without a bounty program? 25d ago Product analytics is becoming a third-party breach surface 25d ago How can i learn and get into red teaming? 25d ago Governments increasingly assume they’ll use offensive cyber tools as part of state power | Federal News Network 25d ago I got hacked 25d ago Soc analysts in big companies, how it looks like? 25d ago CTO at NCSC Summary: week ending May 24th 25d ago These special phone and app features can help protect you from spyware 25d ago Is there a tool that lets you automatically rotate all your ssh keys and k8s creds and whatever else with a click of a button? 25d ago Capcha Code Malware 25d ago getting lost when hunting 25d ago How to find information behind an account? 25d ago Theoretical Design Concept for Post-Exploitation Browser Defense 25d ago Google Certifications... 25d ago How to continue when finding a possible Vulnerability but local law prohibits me from investigating further 25d ago Netherlands seizes 800 servers of hosting firm enabling cyberattacks 25d ago Is the CISSP still a reputable cert for getting jobs? 25d ago Which of these gоv roles would fare better in the private sector? 25d ago Laravel Lang packages hijacked to deploy credential-stealing malware 25d ago Mapping binaries to EDR feature spaces 25d ago Lost my number + WhatsApp account — worried about old chats, photos, and videos 25d ago what is the most painful or time-consuming part of your work right now?" 25d ago Anthropic says Mythos has already found more than 10,000 vulnerabilities 25d ago What is the experience needed for “entry level” cybersecurity jobs? 25d ago Browser extension testing. 25d ago Interviewer ask me if you observe port scanning from internal ip , the scanning ip is not authorised for scanning. How will you investigate it and how will you find attackers ip? 25d ago Have you ever had your face or voice misused by AI? I’m building a free reporting tool and need feedback 25d ago Prompt Injection finally broke my brain a little. My first article as a cybersecurity student, cat approved edition 25d ago Can someone recommend me some good, large universities to study cybersecurity? 25d ago New guy khikhi 25d ago Examples of intentional backdoors being breached? 25d ago Non-Compliant Vocab 25d ago Drupal Core SQL injection flaw actively exploited less than 48 hours after patch. 15,000 attack attempts already recorded across 6,000 sites 25d ago infostealers just spawned a 5,000+ repo github supply chain attack 25d ago The latest Megalodon campaign against GitHub leveraged a spray of fake PRs targeting CI workflows. Here's the complete analysis 26d ago GRO frag 26d ago We audited 12K n8n templates: most have critical vulnerabilities 26d ago Zyxel super-admin credential leak expanded from one router image to CPE/ONT/LTE/5G devices + password gen algorithm. 26d ago Taking the PSAA - Practical SOC Analyst Associate by TCM Security next week 26d ago Mitigated Vulnerabilities by Vendor as Feed 26d ago Kash Patel-Linked Merchandise Site Goes Dark After Hack Allegedly Spread Malware to Visitors 26d ago A new GitHub attack dubbed Megalodon compromised more than 5.5K repositories 26d ago Where can I find the tools freely on internet to practice for soc analyst 26d ago residential proxies 26d ago Recommendations for getting started in cybersecurity 26d ago Linux mint or Ubuntu for complete beginner 26d ago Indirect prompt injection is jokingly trivial. AI is social engineering a toddler with the knowledge of the world. 26d ago Pentesting company recommendation 26d ago Have you ever failed a certification exam? 26d ago AI Chatbot Security Research – Prompt Injection Behavior in Financial Context (Seeking Responsible Disclosure Guidance 26d ago What do i need to learn to get into application security? Which Degrees/Certs 26d ago RSAC online membership? Is it worth it? 26d ago Can someone give me a detailed roadmap for becoming a SOC Analyst? 26d ago Puedo conseguir trabajo? 26d ago How do i learn networking for cyber security? 26d ago What's going to be Hacking and Cybersecurity's future is gonna be like? 26d ago Cyber security placement - Interview Help 26d ago Anonymous revendique le piratage de satellites chinois pour protester contre les lois sur la vérification de l'âge 26d ago Feedback needed 26d ago Handoff Transition 26d ago Just added an interactive security map showing exactly what the server sees (and doesn't) 26d ago Trend Micro warns of Apex One zero-day exploited in the wild 26d ago Lawmakers Demand Answers as CISA Tries to Contain Data Leak 26d ago https://www.reuters.com/business/finance/morgan-stanley-asks-bankers-carry-separate-phone-china-trips-source-says-2026-05-20/ 26d ago Harvard and 140 other legitimate websites compromised 26d ago Votre Satisfaction Dans Votre Travail 26d ago 5,561 GitHub repos got malicious CI/CD commits injected in 6 hours. The commits looked exactly like routine bot maintenance. Here is what happened and how to check if you were hit. 26d ago US states urge Congress to renew cybersecurity grants 26d ago The CISO's Guide to IDE Security in 2026 26d ago Help with evilginx 26d ago Watching AI Brain Drain on Attackers in Real Time 26d ago Zyxel super-admin credential leak expanded from one router image to CPE/ONT/LTE/5G devices + password gen algorithm. 27d ago api-rta cyberwarfare labs 27d ago Does Security Implement Fixes? 27d ago Ultimate Cybersecurity without needing AV ect? 27d ago User Onboarding with IAM 27d ago pnpm 11 Might Finally Be a Better Default Than npm 27d ago 14 npm/PyPI/AI Supply-Chain Threats Today (2026-05-22): Critical Worms, Credential Harvesting, and RCEs 27d ago Hunting a PhaaS Operator: From Phishing Email to Lagos, Nigeria 27d ago Millions of NGINX Servers Face Fresh Zero-Day Concerns After Recent Rift Patch dubbed "nginx-poolslip" 27d ago Looking for a cybersecurity professional to interview for a university project (interview in French) 27d ago Safe read-only check script for Copy Fail / CVE-2026-31431 27d ago New to GRC at an MSSP startup. Want to build a local AI on an RTX 3050 to automate documentation without leaking data. Possible? 27d ago [TOOL] CLR-Stomp – BOF-Based .NET CLR Stomping for Stealthy inlineExecuteAssembly 27d ago Cisco used AI to write security incident reports, with mixed results 27d ago [TOOL] QSLCL v2.1.4 - Universal Silicon Communication Layer (DFU/EDL/BROM) 27d ago Cyber Insurance Actuary Looking for Educational Resources 27d ago As a bank , how do i give protected access to claude to my team? 27d ago Can seasonal Apple Store employees apply for internal IT/cybersecurity roles? 27d ago Reliable IP reputation check tools besides IPQS?(for work) 27d ago Supply Chain Security Crisis: Too Many Vulnerabilities, Too Little Visibility (5/2026) 27d ago Time to Switch: How to Set Up Passkeys Before Microsoft Ditches SMS 2FA Logins 27d ago Hacked by Rat Tools for 2.5 years. 27d ago Google API Keys Remain Active After Deletion 27d ago how do cyber sec consultants and pentesters actually get new clients? 27d ago Post Incident Paranoia? 27d ago Verizon DBIR 2026: Vulnerability Exploitation Overtakes Credential Theft as Top Breach Vector 27d ago Upcoming CS Student: What OS approach is best to balance university coding and learning cybersecurity? 27d ago Sensing ‘renewed outbreak’ of war, Iran hackers vow ‘dozens’ of ‘devastating’ infrastructure attacks ready 27d ago You can counter MEMZ with Krotten in XP 27d ago What are the most effective ways to do Blackbox testing? 27d ago Npm registry sets stage for more secure package publishing 27d ago Need a Wi-Fi Adapter for Better Range + Wi-Fi Pentesting Support 27d ago Basira - open source AI code reviewer with OWASP audit, 0 CVEs, BYOK 27d ago Is the Cybercorps SFS still worth it? 27d ago Microsoft warns hackers are exploiting password resets to gain access to user accounts 27d ago Unpopular opinion: the GitHub breach is 100% predictable and the security industry deserves the blame 27d ago WORM USB drives 27d ago An OWASP-aligned launch gate for AI agents — Would you please share critique on the threat model? 27d ago CISOs - Holding the Line 27d ago A Hacker Group Is Poisoning Open Source Code at an Unprecedented Scale 27d ago Security Scroll Down? 27d ago mass github repo backdooring via CI workflows(Megalodon) 27d ago Threat Modeling Autonomous Dev Agents: How do we cryptographically prove a human actually reviewed a commit? 27d ago CVE-2026-40369: Twelve Bytes to Escape the Browser Sandbox 27d ago DNS blocked by Cisco Umbrella, but symantec EDR & Event Viewer are completely blind 27d ago FaceTec (ID verification) company appears to store user biometrics 27d ago CVE-2026-34474: ZTE H298A / H108N routers expose credentials before authentication 27d ago It seems that FaceTec (ID Verification company) allows for storage of user biometrics 27d ago Two Microsoft Defender vulnerabilities actively exploited. One grants full SYSTEM access. CISA has a June 3 federal deadline. Here is what to check. 27d ago Can I block outbound connections to Google cloud on my host firewall? What port? What IP range? Any advice. Trying to prevent Google spying and collecting data 27d ago What Questions Do You Ask During SSP Control Interviews? 27d ago Feed The Cat BackDoor 28d ago Flipper One - Asking for help from the community 28d ago Flipper One — tech specs 28d ago Architecture Zero Trust détaillée 28d ago Cybersecurity in Healthcare 28d ago Staged publishing for npm packages | npm Docs 28d ago 9-Year-Old Linux Kernel Flaw Enables Root Command Execution on Major Distros (Yes there is another one, only a CVS 5.5 though this time, still looks pretty bad though) 28d ago Neither MFA, Passkey, nor trusted IP help here 28d ago cyber security remote 28d ago CSIRT incident response 28d ago Trying to find a graduate role 28d ago Microsoft warns of new Defender zero-days exploited in attacks 28d ago what is the best security app option for pixel8a? 28d ago How an image could compromise your Mac: understanding an ExifTool vulnerability (CVE-2026-3102) 28d ago IoT Security 28d ago GitHub links repo breach to TanStack npm supply-chain attack 28d ago Another working Linux LPE exploit is out. How are teams treating local-only bugs now? 28d ago Highly Critical Drupal Core Flaw Exposes PostgreSQL Sites to RCE Attacks 28d ago Google publishes exploit code threatening millions of Chromium users 28d ago landing a remote Vulnerability Management role 28d ago Three low-hanging vulns in a Rails SaaS: unauthenticated S3 uploads, rate-limit bypass via proxy pool, and OAuth route leaking internals. Full authorized case. 28d ago I feel like the past month has been more optimistic than in the past with AI taking jobs. Has the market been the same for those hunting? 28d ago Microsoft Releases Mitigation for YellowKey BitLocker Bypass CVE-2026-45585 Exploit 28d ago What volume of TPRM do you handle per month? 28d ago safest virtual machine? 28d ago Second Time, Same Sandbox: Another Anthropic Claude Code Network Sandbox Bypass Enables Data Exfiltration 28d ago Cybercrime service disrupted for abusing Microsoft platform to sign malware 28d ago GitHub notifications 28d ago Is there no more privacy left in the world? 28d ago Microsoft Edge had a password blunder, and it raises a bigger browser trust problem 28d ago Huawei zero-day attack behind last year’s crash of Luxembourg's entire telecoms network 28d ago Aconselhamento / mini texto 28d ago CISA with an absolutely embarrassing data leak. 28d ago Microsoft is pulling the plug on SMS codes, wants you to switch to passkeys 28d ago Anyone else feeling like static AppSec workflows are starting to hit limits? 28d ago GitHub breach highlights developer tools as part of attack surface 28d ago Why do some malware use unique user-agent strings? 28d ago Encrypted emails bypassing email security tool 28d ago Ctf groups 28d ago Score by collisions, patch by panic: defensive architecture for the post-90-day-disclosure era 28d ago Opensource that automatically scans your git repos for breaches 28d ago CVE-2026-34472: According to ZTE, an unauthenticated auth bypass is just a 'customer-specific low-risk requirement.' MITRE disagreed. 29d ago Your developers are deploying agents in your production environment right now. You have no governance for it. 29d ago ¿Como me preparo para EC-Council CSA? 29d ago The IBM X-Force Index 2026 explains all three in one finding. 29d ago Securing iPad's question 29d ago Cybersecurity 101 29d ago What would this job role be? 29d ago MSPs & MSSPs suck 29d ago [ Removed by Reddit ] 29d ago Crossroads 29d ago Advice regarding "SOC" job that automates everything 29d ago Is this Medium article about "NetMirror" malware legit? 29d ago AI silently removed human-in-the-loop security checks during a large refactor. Is this a known phenomenon? 29d ago Developer tooling is part of the attack surface before a project is even run 29d ago How the hell do you manage developers, their code, their apps? 29d ago Hackers Spent Nearly 3 Months Inside the New York City Health System Before Anyone Noticed 29d ago Do people still rely on antivirus software in 2026, or is built-in security enough now? 29d ago GitHub Investigating TeamPCP Claimed Breach of ~4,000 Internal Repositories 29d ago Automatic CLI for spinning up vulnerable labs + objectives 29d ago ISO/IEC 27701 scenario question 29d ago Discord rolls out end-to-end encryption on voice, video calls 29d ago GitHub investigates internal repositories breach claimed by TeamPCP 29d ago Two AI-based science assistants succeed with drug-retargeting tasks 29d ago America's top cyber-defense agency left a GitHub repo open with with passwords, keys, tokens – and incredibly obvious filenames 29d ago An AI coding assistant installed malware into production environments. Nobody typed the command. AMA on what "supply chain attack" means now. 29d ago New to cybersecurity 29d ago Anyone interview or work with Moxfive? 29d ago A stealth Firefox version that passes all anti-bot and CAPTCHA 29d ago mkPIVM - a polymorphic position-independent shellcode virtualizer 29d ago Started in IT and need a Cybersecurity Roadmap with my Useless Degree! 29d ago GitHub announces internal data breached. 29d ago Roadmap to Cybersecurity roles 29d ago Malware installed without literally doing anything? 29d ago CTFs 29d ago Crossroads 29d ago Canara Bank SuRaksha Cyber Hackathon 2.0, 29d ago Anti BOT Tipps und Tricks gesucht. 29d ago GhostTree: Unveiling Path Manipulation Techniques to Bypass Windows Security 29d ago New to Cybersecurity 29d ago Is the ISC2 Certified in Cybersecurity worth it? 29d ago Average Days to Close by Source CNAPP Severity Tag 2026 29d ago I want free nmap resource 29d ago If I clear browser history regularly, does it reduce the chances of malware that target browser data? 29d ago What is next after 1.5 Year as Security Analyst? 29d ago Analysis advice 29d ago Stop me if you heard this one before... (YellowKey related) 29d ago Can you be protected from yellowkey by disabling WinRe? does it work from support os then WinRe? 29d ago Looking for advice: where should I post/publish CVE write-ups? 29d ago Cybersecurity statistics of the week (May 11th - May 17th) 29d ago How can I test my website locally for cybersecurity? 29d ago Use of coding in security operations 29d ago Iran demands Big Tech pay fees for undersea Internet cables in Strait of Hormuz 29d ago Microsoft disrupts cybercrime service that abused software verification systems en masse 29d ago I've built an open source honeypot probe database accessible via curl, http and mcp 29d ago 6,000+ Automatic Tank Gauges Exposed With No Authentication 29d ago Twice in two days I've had a MS Auth request from a random device, I changed my password after the first, what more can I do to protect my email? 29d ago If humans are the weakest link, why won't companies evolve? 29d ago Someone asks "How much does a VAPT cost?" or "Do we really need a penetration test?" 29d ago Cloudflare's CISO gives his hands on review of Anthropic's new Mythos LLM 30d ago Local transcription vs cloud transcription, which actually feels safer? 30d ago Why do governments and militaries still use what amounts to giant preshared electronic codebooks when we have really good encryption today? 30d ago Shai-Hulud keeps burrowing: 314 npm packages infected after another account compromise 30d ago Shai-Hulud source leak is turning npm malware into a copycat problem 30d ago Framework for Preventing Secret Ideas from Leakage 30d ago Local LLM for building AI Security platform 30d ago SEPPMail Secure E-Mail Gateway Vulnerabilities Enable RCE and Mail Traffic Access 30d ago Emerging Cyber security niches 30d ago ISO/IEC 27701 30d ago Solo dev building a terminal-heavy hacking game inspired by corporate security 30d ago Symantec has published its analysis of Fast16: a pre-Stuxnet sabotage tool built to subvert nuclear weapons simulations 30d ago CS/IT Student Looking to Grow My LinkedIn Network 😃 30d ago CVE-2026-34473: Unauthenticated Denial of Service in ZTE Routers affecting 140K+ devices worldwide (17+ models) 30d ago Is Amazon Cognito a good choice long term? Alternatives? 30d ago Was hacking easier in the 80s and 90s and early 2000s? 30d ago Need some Advice in SOAR heavy environment 30d ago Trying to find serious builders in cybersecurity - not just “let’s build” conversations 30d ago AI Phishing 30d ago One Hacked Login Led to a Massive Cloud Breach, Microsoft Reveals 30d ago How easy is it to get into the cyber security field? 30d ago 314 npm packages just got compromised, 271 @antv, echarts-for-react, size-sensor, timeago.js 30d ago Frontend SWE (3-4 YOE) looking to pivot to AppSec. Where should I start? 30d ago ‘The Worst Leak That I’ve Witnessed’: U.S. Cybersecurity Agency Leaves Its Digital Keys Out in Public on GitHub — Gizmodo 30d ago CEH/CPENT vs OSCP vs GPEN 30d ago ntroducing Yokai Linux — A Cyberpunk Security-Focused Linux Distro” 30d ago CISA Contractor Admin Leaked AWS GovCloud Keys on Github 30d ago Suspecious activity in my account 30d ago Is it safe to use my first name and middle name on platforms? 30d ago Stuck choosing a cybersecurity specialization — especially with a local market context (Senegal). Need honest advice. 30d ago Just received an email from shinyhunters about their amtrack hack 30d ago Optoma CinemaX Projectors: Critical Vulnerabilities Including Remote Root Access 30d ago Bywaf: an auditable Python commandlet framework for chained pentest workflows 30d ago For anyone currently working in a SOC: 30d ago Fellow Tier 1 SOC/Security Analysts - What does your day to day look like? 30d ago How do you threat hunt for RMM tools in environments where RMM is all over the place? 30d ago Microsoft - "your single use code" email when it was not requested by yourself 30d ago Directory of vendor security questionnaires 30d ago Mini Shai-Hulud Strikes Again: TanStack + more npm Packages Compromised 30d ago MCA student with 2 yrs SOC/VAPT experience struggling to land interviews — looking for guidance/referrals 30d ago Cybersecurity job market in Phoenix (East/West Valley?) – looking for local insight 30d ago How is AI affecting the cybersecurity market? 30d ago MCP security 30d ago YellowKey Mitigation 30d ago Anyone else on the receiving end of ShinyHunters extortion email? 30d ago Ultimate irony: Microsoft researchers say you shouldn’t trust AI with work docs 30d ago What’s the biggest mistake people still make about online security in 2026? 31d ago Anthropic shuts the EU out of its most advanced cyber AI model 31d ago Most AI agent governance playbooks still assume you can turn the agent off... Once its wired into production that stops being true [Rethinking AI security through a dimmer switch lens] 31d ago Best hotel for attending all three conferences in Vegas? 31d ago What's your company's actual PQC migration plan? Not the one on paper - the real one. 31d ago Does buying local cybersecurity (services/products/etc) matter to you? 31d ago LinkedIn user hides AI prompt injection in bio to force recruitment spam to be sent in Olde English prose 31d ago Detection Engineering AI Maturity Framework 31d ago Microsoft code 31d ago Microsoft confirms Windows 11 security update install issues 31d ago Linus Torvalds says AI-powered bug hunters have made Linux security mailing list ‘almost entirely unmanageable’ 31d ago Exploit available for new DirtyDecrypt Linux root escalation flaw 31d ago Four Malicious npm Packages Deliver Infostealers and Phantom Bot DDoS Malware 31d ago Suspicious with a company offer letter 31d ago Direct external access to CyberArk PVWA vs. enforcing a VDI/Jump Box first? 31d ago Why do some recovery workflows still require full wallet uploads? 31d ago Need help with interview for soc l1 31d ago Feeling stuck in SOC want to moving toward Detection Engineering & Cloud Security (need guidance & cert roadmap) 31d ago New Windows 'MiniPlasma' zero-day exploit gives SYSTEM access, PoC released 31d ago carrer path in cybersecurity for a btech stud 31d ago Agents usage in production 31d ago ‘Q-Day’ is almost here. It could unleash a cybersecurity crisis far worse than Y2K 31d ago Are teams still finding AI API keys in public repos? 31d ago Mentorship Monday - Post All Career, Education and Job questions here! 31d ago Mean time-to-exploit just hit 2.1 days. Critical vulnerabilities everywhere. Is the AI apocalypse here? 31d ago Does the CBP bug phones? 31d ago What We Learned Building Runtime Visibility for Modern Telco Networks 31d ago Ive got my Spotify account hacked! How do I solve this? 31d ago The Politics of AI Transparency 31d ago A million baby monitors and security cameras were easily viewable by hackers 31d ago NGINX CVE-2026-42945 Exploited in the Wild, Causing Worker Crashes and Possible RCE 31d ago Is cybersecurity becoming more behavioral than technical? 31d ago Questions About Promo Items for a Cybersecurity Conference 31d ago Dois-je m'inquiéter ? 31d ago I am dying to work abroad , rate my journey so far 31d ago Microsoft - "Your single use code" email when it was not requested 31d ago Security / Compliance work going Agentic? 31d ago Don't believe the media, specially in cybersec 31d ago Microsoft account keeps getting Authenticator requests? 31d ago [Tool] Grafana Final Scanner - Mass CVE Testing Script with All Public CVEs Aggregated. 31d ago Struggling to generate security bulletins — any ideas? 31d ago Certs to go into Security Engineer/architect 31d ago 18882745552 beware of email with this number 31d ago Transition from traditional penetration testing into AI security 31d ago Seeking advice on next career steps 31d ago Will the analyst role become obsolete? 32d ago Alert Fatigue 32d ago Best path into cybersecurity for a high schooler? 32d ago Keep getting hacked 32d ago How Do I implement sessions management in a vibe coded app ? Also suggest sessions management best practices 32d ago I’m interested in joining the Red Team Hackers Academy in Bangalore. 32d ago A clueless teenager 💔 32d ago Complete beginner looking to learn cybersecurity for personal/everyday use. Where to start? 32d ago Am I overthinking Claude Code security or is this actually a risk? 32d ago is someone know about shadow ai and can give me an explain about this im junior in cyber and i hear about this 32d ago ISO/IEC 27701 ( SoA ) Applicability 32d ago Security Executive Playbook 32d ago This article about AI allucinations written by thehackernews, is literally written with AI lol... We need to do something to stop this phenomenon 32d ago I feel crazy I hope someone has insight . 32d ago ΡHANTΟΜ Al-Powered Pentesting Command Center 32d ago Interview Assessments 32d ago We built a blue-team mode for AI security training — you write a defensive prompt, we throw 12 attack probes at it 32d ago Questions about data blockers 32d ago Post Implementation task 32d ago Mythos, MOAK, CTEM and the End of CVE Chasing 32d ago Cyber security jobs in Austria 32d ago Personal favorite deception layer. 32d ago Estudiar Ciberseguridad 32d ago Learning way 32d ago How do you report large volume detections to a CISO without making the BPA report a SOC story? 32d ago Can anyone share bugbase platform screenshot having professional usage on dashboard? 32d ago CTO at NCSC Summary: week ending May 17th 32d ago Security Executive Playbook 32d ago Tired of tab-switching between CTI tools - here's what we put together 32d ago I contributed to an open-source Bluetooth stress testing tool that just got a major algorithm refactor 32d ago In Cybersecurity 32d ago Anyone else feel like most MSP tooling is either overkill or painfully manual? 32d ago Thinkpad vs Macbook pro endpoint security 32d ago Any more affordable alternatives to “IntelligenceX”? 33d ago Experts Confirm the Fast16 Malware Was Sabotaging Nuclear Weapons Tests, Likely in Iran 33d ago tanstack checker github action 33d ago Drivers Alpha AWUS036AXML 33d ago Splunk download for free 33d ago Funnel Builder WordPress plugin bug exploited to steal credit cards 33d ago Anyone here using pager duty? 33d ago Scammer targeting posters 33d ago Seeking advice 33d ago Looking for Free Cybersecurity Conferences & Meetups in Europe (September 2026) 33d ago Just got an email about a single use code, maybe someone was trying to log in? 33d ago Can a background in DevOps enter the cybersecurity field? 33d ago Using ai in learning 33d ago Avanzamento area Blue Team/SOC 33d ago Please what could be helpful 33d ago CVE exploit chain 33d ago What are the widely accepted SaaS security accreditations/audits an app should seek in fintech 33d ago Preparing for The Quantum Era: AT&T Business Debuts Post-Quantum Cryptography Secure SD-WAN, Powered by Cisco 33d ago Major flaw in Indian Cyber and IT assurance landscape 33d ago Red Team Ops Ⅱ ( CRTL ) exam preparation 33d ago Recomendations 33d ago Recommended cybersecurity certification for a UX designer new to the domain? 33d ago insdubai.com: Motor insurance policies, data of insured persons was exposed on an unprotected server 33d ago Career path 33d ago Merit America offers a program that gets you into cyber security roles. 33d ago Brovan: Binary user-mode emulator for x86_64 33d ago AmEx Interview! 33d ago Developer credential-stealing pipeline also collected operator workstations 33d ago need help building a case. 33d ago Personal favorite SIEM platform? 33d ago Cardputer ADV 33d ago Alternative for Qualys 33d ago The 4th Linux kernel flaw this month can lead to stolen SSH host keys 33d ago Stack Buffer Overflow Explained (Using a Classic Doom Bug) 33d ago Confused about cybersecurity career 33d ago Transferring from pen test consulting to application security? 33d ago Curso de especializacion de Ciberseguridad 33d ago Does host MS Defender Network Protection intercept and alert on traffic generated inside Windows Sandbox? 33d ago Lost, tempted to throw in the towel 33d ago Microsoft Exchange, Windows 11 hacked on second day of Pwn2Own 33d ago I open-sourced a Docker security scanner I use to audit all my websites 33d ago Testing Deception Technique 33d ago A malware got into my account and spread spam ad to my friends and relatives 33d ago North Korean Hackers Now Using AI? Kaspersky Warns of New Cyber Threat Targeting South Korean Govt Systems 33d ago Most pentest reports I review are padded with garbage findings 33d ago Cyber Essentials and use of third party websites - MFA 33d ago Rapid 7 and Cisa Kev 33d ago Anyone know much about MS Defender? 33d ago EN18031 for IoT: struggling to see the big picture — advice from experienced people? 34d ago Automating Code Security Reviews 34d ago New Linux privilege escalation flaw ‘Fragnesia’ disclosed; PoC available 34d ago AI coding tools on developer machines — looking for input on how you're handling it 34d ago Chrome 148 Update Patches Critical Vulnerabilities 34d ago Microsoft warns of Exchange zero-day flaw exploited in attacks 34d ago I need help. i am lost 34d ago Beyond Acceleration and Automation: How AI + Intelligence Changes Cyber Defence 34d ago Physical red teaming: 7 low‑tech paths we keep finding into ‘secure’ environments 34d ago SentinelOne. Backup delete attempt at 06:28, Kill process mitigation action at 06:31. Was the deletion blocked or not? 34d ago I'm going crazy. At the application level what I can actually do to prevent DDos? 34d ago Is anyone enrolled in Intellipaat's cybersecurity course? 34d ago Will AI Replace Cybersecurity Jobs? 34d ago What's best certification choice after OSWE 34d ago Facebook Page Call Slipping through Sleep mode 34d ago ssh-keysign-pwn: Linux LPE allows unprivileged users to read root-owned files. PoC with SSH server privkey 34d ago New Linux LPE allows local users to read any file, including privkeys 34d ago A fix for the previous Linux kernel critical exploit has seemingly introduced another critical local privilege escalation exploit, a third in two weeks. 34d ago Your experience as IT Admin on Alerts 34d ago Slow-drip responses as a bot defense: streaming fake credentials 3 bytes at a time 34d ago Maximum Severity Cisco SD-WAN Bug Exploited in the Wild 34d ago Discord VC lag Exploit 34d ago FrostyNeighbor: Fresh mischief and digital shenanigans 34d ago Bug FB - Inicio de sesion por password 34d ago Does anyone know how to configure EVILGINX for testing 34d ago How long does it take to get familiar with a tool 34d ago Scam website 34d ago ANTS Hack: 19 million records exposed in French ID agency breach 34d ago Is it really that easy to obtain SMS codes using an SS7 attack? 34d ago AI coding tools are shipping code faster than security can review it. What's your team doing about it 34d ago Interview for AI security engineer position at a fortune 500 company 34d ago How’s the job market for Senior AppSec Engineers? How are the interviews? 34d ago Has anyone read "The Art of Deception"? How does it hold up to now? 34d ago Is metadata protection becoming more important than traditional endpoint security for ordinary users? 34d ago Zero trust in hybrid environments - what's actually worked for you 34d ago Have you encountered issues with CSAF advisories in practice? 34d ago Zero trust in hybrid environments - what's actually working for you 34d ago OpenAI confirms security breach in TanStack supply chain attack 34d ago Bachelors Degree Options 34d ago I need help protecting my privacy 34d ago Free Threat Intellegence 34d ago What discovery in cybersecurity amazed you the most? 34d ago Scholarship for Service 34d ago For teams archiving logs outside the SIEM: how often do you actually query them, and for what reasons? 34d ago Another day, another supply chain 34d ago How often do you actually see SSRF exploited in real incidents vs just discussed in CTFs/blogs? 34d ago Teaching Linux+ & CEH..... 34d ago Russian Hacks of Polish Water Utilities Shows How Hybrid Warfare Uses Fear as Weapon 34d ago SIEM use case development 34d ago JFrog vs Mend as Scanners 34d ago KQLab - open-source query manager for SOC teams 34d ago Which Vendors Publish the Best (or Worst) Security Advisories? 34d ago Synthetic training data vs. real attack telemetry — does it actually matter? 34d ago Operative IT-Sicherheit | SIEM & Splunk 34d ago SOC not for junior level? 34d ago Cybersecurity at MSG 35d ago pii-tools.com reputable? 35d ago Hey all! sharing this week's issue I wrote on the TeamPCP supply chain compromise 35d ago Contract jobs worth the risk? 35d ago HackTheBoxAcademy vs LetsDefend vs CyberDefenders 35d ago Automating code security reviews with Claude: near Mythos-level capabilities at lower cost 35d ago Making Right Career Decision? 35d ago I tried using apparmor (linux security) but it doesn't seem to work very well 35d ago Level Effect AMA! Former NSA Operators turned EDR developers and trainers in 2020. We’ve seen a lot of trends over the years and want to start being active in r/cybersecurity giving back. Ask us anything! 35d ago Struggling to Stay Up to Date With Vulnerabilities 35d ago How to Transfer files Safely from a Compromised (work) Device 35d ago Two brothers deleted 96 federal databases after being fired – one googled how to hide the evidence afterward 35d ago Multiple data breaches in one week 35d ago How are small security teams handling vulnerability overload now? 35d ago Concerns mount that EU will demand age verification for VPNs 35d ago Automating code security reviews: Claude Mythos-level capabilities with lower cost 35d ago The Rare Patch: A Digital Sovereignty Challenge 35d ago Advise 35d ago GRC 35d ago Admins and Engineers 35d ago Microsoft's multi-agent AI system tops Anthropic's Mythos on cybersecurity benchmark 35d ago Prompt injection in browser coding agents is the threat model nobody is ready for 35d ago New Fragnesia Linux flaw lets attackers gain root privileges 35d ago Transition from MSP to Network Engineering? 35d ago So called “off grid” method 35d ago Convince me I’m not paranoid: a unique hacking situation. 35d ago Hunting the Behavior Behind npm Supply Chain Attacks 35d ago Question for AppSec Members 35d ago Beginners guide to Google Dorks by Heisenberg 35d ago Alguém sabe algo sobre raven eye technology 35d ago Gophish Porject - Requirement 35d ago Security Team Won’t Assess Risk 35d ago Trusted Unknown Apps Protocol (TUAP) – A Global Behavior‑Based Security Framework 35d ago Microsoft’s new multi-model agentic security system tops leading industry benchmark 35d ago Microsoft MDASH Deployment Identifies 16 Windows Flaws via 100+ AI Agents 35d ago Overwhelmed on how to enter the job market. 35d ago Social media scam bill targets tech giants as New Yorkers lose billions 35d ago What are the biggest technical & cultural hurdles you’re facing right now? 35d ago CISSP / CCSP training - Experienced engineer 35d ago Vulnerability in Canvas/Instructure Support Tickets had part in breach? 35d ago is malwarefox legit? 35d ago what lab to learn zero trust? 35d ago Anyone else got a bunch of emails leaked by Samsung? 35d ago This is what some the world's largest banks of malware look like stacked as hard drives 35d ago I need feedback on my project please 35d ago would like to understand the role of "Cyber Insurance UnderWriters" 35d ago Free on-device tool for monitoring AI traffic on macOS — visibility before policy 35d ago Is secure evidence handling and controlled derivative file sharing needed? 35d ago Will Adding Some Certifications Help Me in the Job Market? 35d ago Linux driver posted for Intel Silicon Security Engine Interface "ISSEI" 35d ago Hello guys I am hearing everywhere Cybersecurity is the most demanding Subject. If it is true then where can I learn and get certified? 35d ago Fragnesia made public as latest Linux local privilege escalation vulnerability 35d ago HP ZBook Fury G8 vs ThinkPad T Series for Cybersecurity? 35d ago NIST is surrendering to the amount of CVEs coming in 35d ago Military Veteran looking to get into the Cyber Field 35d ago Microsoft BitLocker-protected drives can now be opened with just some files on a USB stick — YellowKey zero-day exploit demonstrates an apparent backdoor 35d ago Post-quantum audit substrate for critical national infrastructure. The NCSC 2031 high-priority deadline reframed as an operator-side playbook. 35d ago Cve apis for a database 35d ago Empresas de Cyberseguridad en Mexico (Reacciones) 35d ago Joined a new company: GRC landscape advice 35d ago Removing admin rights 35d ago a leak from "the gentleman" ransomware group confirms Infostealers were often used to establish initial access 35d ago FamousSparrow's evolved DLL sideloading - execution gated behind the host app's normal control flow 35d ago Golden years for cyber security about to start? 35d ago A stealth approach to Process Injection - EntryPoint Hijacking 35d ago Detecting CopyFail and DirtyFrag by thinking outside the box 35d ago Adaptive Behavioral Identity: A Human‑First Model for Symbiotic Security 36d ago Career advice 36d ago The exponential rise of economic damage caused by cyber-crime continues 36d ago Today's cybersecurity systems are not ready for AI 36d ago Are certifications worth it, or do practical skills matter more? 36d ago [Tool Release] IOCX – deterministic IOC extraction engine (static‑only, PE‑aware, plugin‑extensible) 36d ago Claude Mythos technical breakdown: CVE-2026-4747 ROP chain, OpenBSD SACK integer overflow, Linux 1-bit OOB-to-root, and what AISLE's reproductions actually showed 36d ago Apple Supplier Foxconn in Taiwan Confirms Cyberattack After Ransomware Gang Claims 8TB Data Theft 36d ago What to do after security+ 36d ago AI-Generated Fake Marketplaces Are Poisoning Search Results and Stealing Card Data 36d ago Malware crew TeamPCP open-sources its Shai-Hulud worm on GitHub 36d ago Is it realistic to move from Tech Risk/GRC into technical cybersecurity? 36d ago Are IPhone autofill passwords safe to use? 36d ago Access approvals happen over Slack dm and I don't know how to present that to an auditor 36d ago 🕷️ NetCrawler v1.0.0 — AI Pentesting Agent | Open Source | Fully Offline 36d ago China is going dark to develop its own Mythos, German cyber chief fears 36d ago Is prompt injection a real problem for you? 36d ago New Exim BDAT bug shows why “just patch the mail server” is still not simple 36d ago Microsoft France's legal affairs director told the French Senate, under oath, that he can't guarantee European "sovereign cloud" data stays out of US reach 36d ago Cybersecurity guide 36d ago [Conseil Orientation] LP ASUR (ANSSI) après une L3 Générale pour viser un Master Cyber ? 36d ago How you guys rate Google Cyber security course and certificate out of 10 !? 36d ago Cyebrsecurity Startup Advice 36d ago Can anyone give a real world based AI based attack? 36d ago How worried should we be about AI powered cyberattacks? 36d ago Built STIS-ICS — an open ICS/OT security learning project 36d ago OS scanner that checks repos for traces of the Shai Hulud worm 36d ago Foxconn Ransomware Attack Shows Nothing Is Safe Forever 36d ago Open-source CLI for testing LLM agents across prompt, tool, and replay boundaries 36d ago AI Vulnerability Research and the Fuzzer Era Déjà Vu 36d ago Explorer shows random letter/number filenames before copying my actual files — normal behavior? 36d ago Zscaler AI Security Capabilities ? 36d ago Cybersecurity degree 36d ago Disgruntled researcher who dropped BlueHammer and RedSun drops two new Windows 11 zero-days: A Bitlocker bypass, nicknamed YellowKey, and LPE, nicknamed GreenPlasma 36d ago Cyber security 36d ago New York Senate takes on junk fees, digital subscriptions, surveillance pricing 36d ago Cybersecurity statistics of the week (May 4th - May 10th) 36d ago Feels like AI changed the speed of attacks more than most companies want to admit 36d ago Anyone used Kasm or ReplicaCyber? 36d ago Škoda warns of customer data breach after online shop hack 36d ago Google launches new Android security feature to help uncover spyware attacks 36d ago Fancy Bear: Stealing Credentials Invisibly 36d ago Nightmare Eclipse has published Greenplasma and YellowKey 36d ago Copilot Agent 36d ago What SANS cert I should consider acquiring (from my job)? Most useful ones or one that goes across many roles? 36d ago Career Advice 36d ago Anyone else exhausted by the nonstop AI hype? 36d ago Reviewing the trends in ransomware attacks in 2026 36d ago Is It a Good Idea to Change Jobs Shortly After Getting Hired? 37d ago SSO makes life easier but MFA keeps it safe, do we actually need both? 37d ago Didn’t land a Cybersecurity internship—starting IT Support for POS systems. Tips on maximizing my off-hours? 37d ago How are SOC teams actually deciding what not to investigate anymore? 37d ago Spam calls on this number he was distrubing a girl idk about this guy but the girl placed an order on blinkit and he started acting that he's not able to find the location so she gave her number on ws and now he's spamming unecessarily 37d ago Chris Cochran at SANS Institute: AMA about the AI Security Maturity Model we just released. 37d ago Has anyone tryed this out yet? 37d ago The frontier model caught my prompt injection but the cheaper fallback didn't (and most devs have no idea which one they're on..) 37d ago Switching to Cyber 37d ago Nitrogen ransomware group claims Foxconn after Wisconsin plant outage 37d ago Shai Hulud attack ships signed malicious TanStack, Mistral npm packages 37d ago Using Cape Sandbox for Phishing Analysis 37d ago Canvas hack: company pays criminals to delete students' stolen data 37d ago i have 1 year of experience as product security intern. Please let me know if there are any job oppurtunities available for freshers. I have to start earning. 37d ago AI integrations are quietly creating a new OAuth supply-chain problem 37d ago Instructure reaches 'agreement' with ShinyHunters to stop data leak 37d ago UnMapper: a tool that crawls a target, finds its JavaScript, and reconstructs the original source tree from any sourcemaps it ships 37d ago Hardcoded secrets in Git 37d ago Mini Shai-Hulud Worm Compromises TanStack, Mistral AI, Guardrails AI & More Packages 37d ago UK water company allowed hackers to lurk undetected for nearly two years, regulator finds 37d ago New ipTIME Pre-Auth RCE in CWMP 37d ago Instructure Reaches Ransom Agreement with ShinyHunters to Stop 3.65TB Canvas Leak 37d ago Is my phone hacked? 37d ago Switched to a grc role after a year in SOC L1 37d ago Forecasting Lazarus Crypto Heists 37d ago Infrastructure Security Incident Update & FAQs 37d ago Mini Shai-Hulud npm worm compromises 160+ packages, abuses GitHub Actions cache + Trusted Publishing. Full list of compromised packages 37d ago In Depth Guide To VM Based Obfuscation - What it is and how to handle it. 37d ago Lockbit Black Loader and Shellcode Analysis - Full Thought process, Technical Writeup and Blue Team perspective 37d ago Transitioned to GRC 37d ago Mass npm Supply Chain Attack Hits TanStack, Mistral AI, and 170+ Packages 37d ago German cybersecurity official warns China is close to developing AI superhacker 37d ago Google Detects First AI-Generated Zero-Day Exploit 37d ago “DCSA agent” calling IT Help Desk to be transferred to employees they are investigating for a clearance 37d ago Instructure/ canvas paid the ransom? 37d ago Troca emprego - big para consultoria ou fintech - Pentester/Red Team 37d ago Finally, texts between Android and iPhone users can be end-to-end encrypted 37d ago Official CheckMarx Jenkins package compromised with infostealer 37d ago IMF warns of the potential for AI attacks on global financial systems 37d ago 🕷️ NetCrawler v1.0.0 — AI Pentesting Agent | Open Source | Fully Offline 37d ago Cookie thieves caught stealing dev secrets via fake Claude Code installers 37d ago Pwn2Own 2026 Capacity Overflow, Hackers Drop 0-Days Solo 37d ago MS Defender on OT Network 37d ago A fateful question 37d ago SC-900 or SC-400 37d ago What are your security non-negotiables? 37d ago Losing my path 37d ago Axon-captcha 37d ago What makes companies trust small cybersecurity vendors? 37d ago Hathor Wallet Daemon (headless) Has Fail-Open Auth – Notified via Immunefi but Closed as “User Responsibility” 37d ago TeamPCP Compromises Checkmarx Jenkins AST Plugin Weeks After KICS Supply Chain Attack 37d ago Foxconn Wisconsin breach reportedly linked to Nitrogen ransomware, 8TB data theft claim 37d ago These Extensions are Scraping Your AI Chats, are you affected? 37d ago Be careful with your Git: Investigating malware spreading through Git repositories 37d ago Training and Phishing 37d ago Hackers Used AI to Develop First Known Zero-Day 2FA Bypass for Mass Exploitation 37d ago AI-powered hacking has exploded into industrial-scale threat, Google says 37d ago Apple closed my bug report 4 times. MITRE wouldn't let it die. 37d ago NASA Investigators Expose a Chinese National Phishing for Defense Software - NASA OIG 37d ago Google spotted an AI-developed zero-day before attackers could use it 38d ago beginner doubt 38d ago I got my CEH Certification. SO what now? 38d ago Construction to Cyber PM 38d ago [ Removed by Reddit ] 38d ago Something got downloaded on my phone and then dissappeared 38d ago Bleeding Llama 38d ago Do accountants even care about cybersecurityas much? 38d ago Where Have All the Complex Windows Malware and Their Analyses Gone? 38d ago Your Biggest Security Risk Isn’t Malware — It’s What You Already Trust 38d ago Was the reconnaissance in Bugbounty overrated? 38d ago Cybersecurity beginner building an experimental log analyzer — looking for advice 38d ago Anyone else worried about AI being a security nightmare? 38d ago Snyk not working 38d ago Malicious tenants paid us to abuse our RMM. We blocked them 38d ago Help reasuring parents with an email parsing tool (i will not promote) 38d ago DFIR practitioner thinking about starting my own LLC to subcontract IR services to MSPs. Is there actually demand for this? 38d ago cPanel & WHM Vulnerabilities Patched -DoS, Account Abuse & Security Risks Affect Hosting Servers 38d ago 5 years as a Level 1 Security Analyst and wanting to transition into consulting 38d ago GitHub - jesterfoidchopped/akamai-v3-sensor: akamai v3 sensor bypass 38d ago New into network pentesting. 38d ago Is it worth it to switching field to cybersecurity ? 38d ago Neeed help to get cybersecurity internship. 38d ago Mentorship Monday - Post All Career, Education and Job questions here! 38d ago Cybersecurity and ADHD 38d ago Anyone dealt with a VulDB submission rejection? Resubmit or reply? 38d ago ISO 27001 certification: what auditors actually focus on versus what most teams spend time preparing 38d ago I have a malware and need help removing it. someone please help me 🙏 38d ago I'm starting to see a growth of apps in my org. I'd love to know how you defend against this/ secure it, and if it's happening to you too? 38d ago EasySec - Update 38d ago What is the cybersecurity equivalent of leaving your spare key under the doormat? 38d ago Ollama Out-of-Bounds Read Vulnerability Allows Remote Process Memory Leak 38d ago VICE: Cyberwar | Full Season 2 | Blueprint 38d ago Linux Kernel Killswitch Proposed After Recent Vulnerability Disclosures 38d ago Email OTP as default (often ONLY) password isn’t the solution 38d ago Soc analyse 38d ago Ollama Out-of-Bounds Read Vulnerability Allows Remote Process Memory Leak 39d ago Price rising 39d ago AI Can Boost Cyber Defence But Poor Governance and Overreliance May Create New Risks, Warns WEF-KPMG Report 39d ago Possible security incident against Arup Group 39d ago Can honeypots be used this way? 39d ago I think AI just quietly killed the 90-day disclosure window. 39d ago TCM and Educate 360 are bugged 39d ago Got an alert from google what should I do? 39d ago UK jobs 39d ago Need help debugging a school ZIP password-cracking lab setup pleaseeeee🙏 39d ago Worst company 39d ago Built a platform that combines phishing detection, encrypted file sharing, and cloud security scanning 39d ago Msc Cybersecurity - dissertation ideas ( something that can be done in 3 or less months) 39d ago ARGUS: 15 Production-Realistic Vulnerable AI Agent Targets for Red Teaming (Docker + Canary Scoring) 39d ago App Store Question - Darato Sport / Dofu Sport / Kofu 39d ago Help! - My Parents Computer is Hacked 39d ago Ran lumma stealer from a recaptcha scam 39d ago Port 5986 question 39d ago CVE-2026-44843: One Chat Message Steals Your Credentials. Then It Gets Worse! 39d ago cyber security/ segurança da informação 39d ago College student hacks Taiwan high-speed rail line with software defined radios, stopping four trains 39d ago Help with an Escalating Cyber-Stalker 39d ago RRW - Rick Roll WiFi 39d ago Best resources to start learning python for cybersecurity and automation 39d ago Mythos AI is a cybersecurity threat, but it doesn’t rewrite the rules of the game. 39d ago JDownloader site hacked to replace installers with Python RAT malware 39d ago How can I fix my browser remembering what he had open last 39d ago MS 360 CoPilot issues 39d ago I run a malware and was wondering if its a rat or rootkit or dangerous stuff and how do i fix my pc (my dad gave ts to me can't lose it) i can give out any specific details 39d ago ShinyHunters claims 275M records from Canvas LMS breach. 9,000 schools hit. Ransom deadline May 12. 39d ago eBPF LSM runtime security agent for synchronous file/network denial — looking for technical feedback 39d ago I keep seeing "what E8 maturity level should we target?" — here's the practical answer no one tells you 39d ago OWASP TOP 10 LLM 2026 Community voting 40d ago Second security incident at Instructure (Canvas) 40d ago UK Advice Needed - VA+ Training? 40d ago Gateweb - Secure Web Gateway 40d ago Those who are in Detection engineering 40d ago Can someone tell me of a trustable hacker? 40d ago MSPs, how are you handling AI usage across your customer environments today? 40d ago Shadow SSDT Hijacking: Achieving Kernel Code Execution via Read-Write 40d ago How do i protect confidential data from unrestricted AI usage as a bank- what are good tools out there? 40d ago ecpptv3 Exam in 3–4 Days — 40d ago AI SECURITY: THE DEFINITIVE GUIDE — PART III | THE FINAL CHAPTER | COMMUNITY CISO SERIES 40d ago Did CISA helped you land a job ? 40d ago CTO at NCSC Summary: week ending May 10th 40d ago pre pre junior needs help(guidance pls) 40d ago Trojan malware 40d ago SANs Courses: How do people get their employers to pay? 40d ago NIS2 Article 21: turning compliance controls into technical security evidence 40d ago This GBA Rom is making is having a weird behavior in the Sandbox, why? 40d ago Why AI agent governance feels harder than traditional security models 40d ago Confused about what certs are important 40d ago Would getting Security+ be worthless for me? 40d ago Submit probe test — shadow DOM click 40d ago Threat intelligence in OT (Power equipments) 40d ago SOC Analyst 40d ago PAWs, PAM and PIM..what is best practice? 40d ago This is the most in-depth analysis I have found on the Instructure/Canvas breach so far. 40d ago Poland says hackers breached water treatment plants, and the U.S. is facing the same threat 40d ago Millions of students are locked out. Canvas is down. And the notorious hacker group ShinyHunters has given Instructure a terrifying ultimatum: Pay the ransom by May 12, 2026, or the private data of potentially millions of users will be leaked to the dark web. 40d ago Quacc++: Automated Open Source Vulnerability Discovery 40d ago 60% of MD5 password hashes are crackable in under an hour 40d ago Built a correlation engine that chains AD findings into attack paths automatically. 40d ago Dirty Frag in Kubernetes: unset seccomp behaved like Unconfined in our EKS/GKE tests 41d ago JDownloader's official website delivered Python RAT 41d ago Remote Code Execution in GitHub.com and GitHub Enterprise Server (CVE-2026-3854) 41d ago ShinyHunters Stole 275 Million Student Records. The Ransom Deadline Is May 12. 41d ago Note taking apps and advice 41d ago IMF Warns AI Could Trigger Global Financial Cyber Crisis 41d ago New Linux 'Dirty Frag' zero-day gives root on all major distros 41d ago Is the ISC2 Cybersecurity program still worth it? 41d ago Canvas getting hit during finals week shows how fragile “critical SaaS” has become 41d ago Are websites exposed to the internet under attack almost every hour, even if they're small? 41d ago Devastating 'Dirty Frag' exploit leaks out, gives immediate root access on most Linux machines since 2017, no patches available, no warning given — Copy Fail-like vulnerability had its embargo broken 41d ago What the **** is happening in cybersecurity space ? 41d ago Canvas is back up, but now what? 41d ago Instagram is getting rid of end to end encryption, what now? 41d ago New “Dirty Frag” Linux Kernel Vulnerability Could Lead to Root Escalation 41d ago Reported a Broken Access Control bug to Instructure via bugcrowd 11 months ago, and also sent directly to canvas and instructure since I didn’t really care about the bounty. It was deemed "not applicable". 41d ago Did I fu by opening an (archived) Onion .txt link posted by the cybercriminal group? 41d ago Cushman and Wakefield confirms cyberattack 41d ago Egnyte potential ransomware attack 41d ago So canvas is down, what'll happen if they can't come to an argreement? 41d ago Canvas (used by 275M students) was just hacked. Here's exactly what was stolen and what you need to do right now. 41d ago /Why/ is Shinyhunters targeting Canvas? 41d ago Canvas Hack - Any Guesses How? 41d ago Should I build a virtual or physical lab? 41d ago Instructure (Canvas) Breached by Shiny Hunters — 275M Records from ~9,000 Schools/Universities, Ransom Deadline May 12 41d ago Engineering a Zero-Trust Kubernetes SIEM: Bypassing NAT Blindness with eBPF, TC, and Suricata 41d ago Audit/Cybersecurity 41d ago Issues removing Trellix (and specifically solidifier) 41d ago Pentagon eyes 3-year cyber training requirement, overriding new Army policy 41d ago How much personal info will be leaked by the recent Canvas hack?? 41d ago Dirty Frag and canvas 41d ago Hackers deface school login pages after claiming another Instructure hack 41d ago Did I destroy my career by being loyal to an arguably good company? 41d ago V4bel/dirtyfrag - Universal Linux Local Privilege Escalation 41d ago What is CYBERRANT? 41d ago Canvas is down as ShinyHunters hack forces outage 41d ago New Dirty Frag Linux Bug Emerges in Wake of Copy Fail 41d ago Heads up: AWS Educate Canvas login page may be compromised. Saw what looks like a ShinyHunters defacement page today. 41d ago How is GRC work in a MSSP? 41d ago SH and BF phishing console 41d ago Finally switching over from Authy 2FA. What is the better alternative, 2FAS or Ente Auth? 41d ago Socure authenticating AI identity as real. 41d ago Automated SSL Certificate Renewals - What is your setup? 41d ago Shinyhunters and Canvas 41d ago What Cli execution do you use for a script file? 41d ago Fiserv security incident - data breach notice 41d ago Linux attacks seem to be shifting from “servers” to DevOps and supply chain environments 41d ago I graduate next year with a Cybersecurity degree. 41d ago Asking about Cortex 41d ago Apache Caldera 41d ago What’s the “unsexy” problem in cyber that’s actually a total disaster? 41d ago Critical vm2 Sandbox Escape Vulnerabilities Expose Node.js Apps to Full Host RCE 41d ago As a developer, should I use AI to improve security? 41d ago My company has an MSP that manages our employee endpoints but we cant access the software they use to manage 41d ago Americans sentenced for running 'laptop farms' for North Korea 41d ago Is my laptop hijacked ? 42d ago claude ai gave security beta to Enterprise plans only what can we do as pentesters? 42d ago Massive .de DNSSEC Failure Took Large Parts of Germany’s Web Offline 42d ago Advice for path to land job SOC in France 42d ago Possible Major Vulnerability: Chromium used by current version of PRTG 42d ago Mythos AI may be a cybersecurity threat, but it follows the rules of the game 42d ago Control Checks using AI. 42d ago How do native password managers clear the clipboard? 42d ago Graduating CS Student but Wanna Start my Career in Cybersecurity 42d ago Claude-Themed Malware Campaigns 42d ago DeepFake it till you make it. 42d ago The 12 ways AI agents fail in production. A taxonomy for security teams reviewing agent deployments 42d ago What niche in cybersecurity should I go for, with my background in Angular & .NET ? 42d ago Successor for Kaspersky Endpoint Security 42d ago Romanian Man Extradited to US for Role in Hacking Scheme 17 Years Ago 42d ago SOC Analyst tier 1 (Entry Level) ?? 42d ago Cyber insurance renewal questionnaire had 14 identity-specific questions this year. Three years ago it had two. I was not ready for this. 42d ago Made cybersecurity merch as an infosec practitioner — honest feedback welcome 42d ago As AI agents become users of company data - what is needed to keep data secure? 42d ago Wrote an extremely detailed 11-article series on attacking and defending APIs - top 10 vulnerabilities. 42d ago AI inference is quietly becoming a security problem 42d ago is winrar 7.13 vulnerable to extraction exploits? 42d ago Tried explaining internet encryption in a beginner-friendly but accurate way, feedback? 42d ago Is the EC-Council CTIA Certification Worth It for Career Growth? 42d ago POC Android vuln 2026 42d ago Credential caching is an unsolved architectural tradeoff, and we should stop pretending otherwise 42d ago Opinions on Mimecast 42d ago What's going on in the field of Cybersecurity 🫣. 42d ago How do teams preserve institutional pentest knowledge when senior testers leave? 42d ago CVE-2026-32710 MariaDB JSON_SCHEMA_VALID heap buffer overflow leading to RCE 42d ago Sophos NDR on Proxmox 42d ago On today's earnings call, IONQ just said they expect to meet Q-Day requirements by 2028-2029. 42d ago DOJ says ransomware gang tapped into Russian government databases 42d ago DAEMON Tools devs confirm breach, release malware-free version 42d ago Have there been instances where your SOC has suffered a cybersecurity attack? 42d ago OpenCTI founder, Samuel Hassine, arrested and charged with CSAM 42d ago Deepfake Platform 42d ago Trellix Licence Query 42d ago Instructure hacker claims data theft from 8,800 schools, universities 42d ago Is AI generated code creating a non-linear security problem for AppSec teams? 42d ago D.H.S. Intelligence Office Did Not Properly Secure Smartphones, Watchdog Says 42d ago Evaluating Microsoft 365 vs Third‑Party Tools for Email and Endpoint Security 42d ago Norton Antivirus and Other Norton Software 42d ago Would you take a promotion to work 100% in office that you’ve been working towards or same pay but work from home? 42d ago We scanned 200 high-star MCP servers. 205 critical findings. Here are 4 novel attack classes. 42d ago Download a malware a while ago, someone trying to log into my ios account 42d ago Org Restructure 42d ago Does SOC 2 actually reduce questionnaires, or just change them? 43d ago Google VRP dismissed a systemic Play Store bypass as "Intended Behavior" after 24 internal views 43d ago How do investigators or cybersecurity researchers correlate online accounts (like Instagram profiles) with IP/network information legally and ethically? 43d ago Ran phishing awareness training for 200+ non-tech employees 43d ago Proprietary Software, Hardware and Protocols Face AI-Driven Security Risk 43d ago Vulnerability Garden 43d ago Palo Alto Firewall Zero-Day Under Active Exploitation 43d ago Cyber Security Militias 43d ago Hidden domain dependencies in AI stacks: expired domains, dangling DNS, and takeover risk 43d ago CyberSecurity Nightmares 43d ago Can I use NanoKVM if it's just to turn on pc? 43d ago got listbombed on my waitlist with 1000 fake adresses, i tried to make some security changes maybe i missed something? 43d ago How to learn tools for cybersecurity? 43d ago 'CopyFail' attackers start cashing in on Linux flaw 43d ago Anybodybodybdown for a team/studygroup? 43d ago I was hacked due to sim card spoofing 43d ago Chrome is quietly installing a 4GB AI model on your device 43d ago Dev vs Security role 43d ago Critical Bug Could Expose 300,000 Ollama Deployments to Information Theft 43d ago Oracle Debuts Monthly Critical Security Patch Updates 43d ago Sec engineer / developer? 43d ago When doing bug bounty, do you usually immerse yourself in 2 or 3 specific domains (ones where vulnerabilities are likely to exist) and focus all your testing efforts on them? 43d ago Are we actually seeing more vulnerabilities or just more noise? 43d ago Cybersecurity jobs in red team 43d ago Question 43d ago What’s the biggest mistake people make even after installing antivirus? 43d ago New dashboard tracks ransomware groups by their reliance on Infostealer credentials 43d ago What would you say if your security lead said this... 43d ago What would be the goto setup in AWS for security purposes? 43d ago CREST CRT Exam 2025/2026 Experiences 43d ago Microsoft Edge stores your passwords in plaintext RAM... on purpose 43d ago Como começar? 43d ago Possible Password Leak? Curious if Anyone Has Seen This Before 43d ago Not a Hack. A Handout. Inside the GTFOice.org Data Exposure 43d ago Besoin de conseils sur une DMZ automatisée 43d ago Microsoft, Google and xAI will let the government test their AI models before launch 43d ago Android ADB Auth Bypass Proof-of-Concept: CVE-2026-0073 43d ago SMB Header Signature for Tagging in Firewall 43d ago Question regarding VDP 43d ago Working on what i should do for the next 3 years 43d ago Question for Security Professionals 43d ago Do tech companies lifecycle-manage public DNS records to prevent dangling DNS? 43d ago Vulnerability Summary for the Week of April 27, 2026 43d ago Cisco releases open-source ‘DNA test for AI models’ 43d ago Cybersecurity is becoming too AI dependent is that a problem 43d ago Foxconn Wisconsin outage raises cyber questions 43d ago How stressful is GRC? 43d ago Anyone remember areyoufearless.com / “Free Gobo”? Early 2000s hacker forum nostalgia 43d ago Have CEH certification – looking for free cybersecurity bootcamps or resources to land a job in India 43d ago Archer for a non-regulated medium sized company? 43d ago Cybersecurity statistics of the week (April 27th - May 3rd) 43d ago Well, I'm wondering about working on a RAG pentesting bot. Comment down the best data source to feed LLM. 43d ago Where to find reliable vendors? 43d ago Just got into cybersecurity with no prior experience and feeling intimidated. Thoughts? 43d ago We wrote a guide on securing Claude across the enterprise — here's the core framework (with download) 43d ago Over 5 months: Payment bypass marked OOS, moved to VDP, and downgraded to Medium. 43d ago Hardware reverse enginnering first project. Love some advice 43d ago Microsoft Edge Stores Passwords in Process Memory, Posing Risk 43d ago Currently working on cybersecurity, looking for advice 43d ago Open-source scanner for MCP servers and skill files : attack chain detection and server-card scanning 43d ago CISO course valuation 43d ago GRC Path to CISO (Certifications) 43d ago CISOs and pentest buyers, what's the worst thing you've seen in a pentest report? 43d ago How to enforce M365 Sign-in frequency on corporate laptops? 43d ago CloudZ malware abuses Microsoft Phone Link to steal SMS and OTPs 43d ago Built an independent directory of AI Act / AI governance tools, feedback? 44d ago ScarCruft APT group compromises gaming platform in a supply-chain attack 44d ago Just curious 44d ago 'Copy Fail' is a real Linux security crisis wrapped in AI slop 44d ago Analysis malicious DLL 44d ago Cyber security free course 44d ago Does certification expires? 44d ago We get paid to break into buildings for a living. Ask us anything! 44d ago Pay2Key ransomware — any recovery path that’s actually worked? 44d ago Karakurt extortion gang ‘cold case’ negotiator gets 8.5 years in prison 44d ago Microsoft just documented an AiTM phishing campaign that hit 35,000 users across 13,000 orgs in 3 days, the lure was a fake "code of conduct review" PDF 44d ago How have you kept growing your knowledge in security when the job stops pushing you? 44d ago The UK’s Age Verification Law Is Producing Compliance Theater 44d ago Microsoft Edge: Passwords end up in memory as plaintext 44d ago Do people still get viruses in 2026, or is that mostly a myth now? 44d ago Mitigation script for Copy Fail vulnerability CVE-2026-31431 44d ago Popular DAEMON Tools software infected – supply chain attack ongoing since April 8, 2026 44d ago Critical Apache HTTP Server RCE (CVE-2026-23918) - Millions of Servers Potentially Exposed. Patches released 44d ago DigiCert breached via malicious screensaver file 44d ago Caido Payloads and Scanner of Endpoints 44d ago CISO Security Mind Map 2026 44d ago Interview with Chris Kubecka, Cybersecurity Expert, Journalist and Volunteer Rescue Worker 44d ago Amazon SES increasingly abused in phishing to evade detection 44d ago AI Security Trainings 44d ago Ai help 44d ago ByDesign: observed behavior where file URLs remain accessible after unshare/delete 44d ago Can Kali Linux still compete in cyber security or is it outdated? 44d ago Who are your favorite cybersecurity YouTubers? 44d ago CISOs, how are you balancing AI adoption with security risks these days? 44d ago San Diego Community College District fighting major cyberattack 44d ago After 5 months of mental hell and ghosting, today I finally landed a role. To those struggling: Don't give up 44d ago Free resource: searchable archive of every BSides conference talk 44d ago Lightning PyPI Compromise: Bun-Based Stealer 44d ago Too much mother instinct? 44d ago L1 SOC Analyst for ~2 years - Should I still get the Security + Certification? 44d ago Do CTFs help real world security skills, or just teach patterns? 44d ago Compré una cuenta rusa en g2a pensando que era una ley, se hizo administradora de mi ordenador, he cambiado todas las contraseñas y estoy haciendo un reset del ordenador pero sigo estando inseguro, muchísimo miedo me atraviesa ahora mismo 44d ago Should I do Security + or Network + or A+? For CompTia 44d ago Bug bounty is ruining how people learn exploitation 44d ago ‏ISO/IEC 27701:2025 Scope and Location 44d ago Cybersecurity's 2026 Wild Ride 44d ago We built a free multiplayer game that scores prompts on AI code security. 44d ago Production Usecases 44d ago How does vCISO work? 44d ago Trellix discloses data breach after source code repository hack 44d ago CyberDefenders SOC L1 Track vs HackTheBox SOC Analyst Path 44d ago Trellix confirms source code repo access incident 44d ago Employer Offering to Pay for my Certification test - Which one do I choose? 44d ago John Strand Pay What You Can Information Security Core Skills live starting May 11th 44d ago Canvas Breach May Put 275M Users, 9,000 Schools at Risk 44d ago Is this not such a big deal 44d ago Do email link checkers need to be 100%? 44d ago Cybersecurity M&A Roundup: 33 Deals Announced in April 2026 44d ago Recs for pen testing and vulnerability solutions 44d ago Identify telegram account holders 44d ago AI Code Security Study: 6 LLMs vs OWASP Top 10 44d ago BAT: VPS-based C2 with .ko/.sys rootkits compilation against target kernel headers 44d ago We are insider risk researchers focused on agentic AI, endpoint activity, and emerging threats. AMA 44d ago Cortex XDR Cloud Compromise Alerting 44d ago Norton.com Verification Email out of the blue 44d ago Atomic Red Team is now aligned with MITRE ATT&CK v19! 44d ago Claude Security is in beta for Enterprise users — is this a real AppSec shift or just AI wrapper + UX? 44d ago Who are you guys using for your PCI ASV Scanning? 44d ago Just passed my Security+ exam. Now what? 44d ago I am so sick of being hired to do Info Sec work just to do basic IT and Engineering work. 44d ago Cyber insurance renewal questionnaire had 14 identity-specific questions this year. Three years ago it had two. I was not ready for this. 44d ago [PoC] Defeating Behavioral Biometric WAFs using "Entropy Cloning" (Local LLMs + OS-Level Injection) 44d ago Analysis of CVE-2026-1995: Linking a Privilege Escalation Vulnerability to IP Theft (RCMP #CT-2026-335350) 44d ago An another open door to IoT devices 44d ago Ideas on how to have personal google-like account synchronization system 44d ago Lateral Movement - Cross-Session Activation 44d ago What MCP servers have actually made it into your day-to-day toolkit? 45d ago Cyber Security Education as Self-Defence classes 45d ago OSS2Falco: Falco rules converted from LinPEAS, Sigma and Splunk 45d ago Use.ai 45d ago Educational tech giant Instructure confirms data breach, ShinyHunters claims attack 45d ago CISA says ‘Copy Fail’ flaw now exploited to root Linux systems 45d ago Browsers making connection on port 3389 from loopback 45d ago Defender Flagged DigiCert Root Certs as Malware 45d ago Another breach just hit Canvas (Instructure), and this one is worth a closer look. 45d ago Over 40% of UK firms suffered cyber attack last year, survey finds 45d ago EU should seek access to Anthropic's Mythos, Bundesbank says 45d ago Microsoft Defender wrongly flags DigiCert certs as Trojan:Win32/Cerdigent.A!dha 45d ago IBM subsidiary managing Italy's PA infrastructure breached and attackers were inside for 2 weeks 45d ago People in cybersecurity, tell us what was the most epic moment in your career? 45d ago Prerequisites for CARTP 45d ago Claude Mythos Cyber Wake Up 45d ago [ Removed by Reddit ] 45d ago is trellix from mcafee good to use in 2026? 45d ago Linux has had a silent root exploit hiding in it since 2017 and it just hit CISA's must-patch list 45d ago Paypal Accesed by malware me being Stupid 45d ago How was someone in another country able to read all my private messages without my password or clicking a link? 45d ago Career Transition Help 45d ago Alguien para hablar de cyberseguridad 45d ago What is this 45d ago Feeling lost and disappointed about finding a job just venting 45d ago Slow at Learning/Cyber Security? 45d ago Suspicious traffic from web server 45d ago Cyber security internship 45d ago Mentorship Monday - Post All Career, Education and Job questions here! 45d ago Isn't Windows Defender a crap anymore? 45d ago Learning Cyber 45d ago Vishing simulator 45d ago Copy Fail Linux Kernel Vulnerability Now Patched in Debian, Ubuntu, and Others 45d ago Worried about being tracked/banned for using an educational app on MuMu Player - Need advice 45d ago Critrical cPanel flaw mass-exploited in "Sorry" ransomware attacks 45d ago Banking-Style Model Risk Management Is Becoming a Practical Template for AI Governance 45d ago Prompt Injection in 2026: The Five Attack Patterns That Actually Matter 45d ago I did a scan on windows bc I accidentally downloaded something weird then removed it and now I keep getting Trojan:Win32/Cerdigent.Alpha even after I quarantine 45d ago Random trojan detected? 45d ago CRTA second attempt 45d ago What’s the hardest thing to learn in cybersecurity? 45d ago What MCP servers are you integrating into your workflow (not exclusive to security)? 45d ago WhatsApp malware campaign delivers VBScript and MSI backdoors | Microsoft Security Blog 45d ago What are like the top but unknown Cybersecurity firms? 45d ago Need professionals or expert on cybersecurity related to dark web for interview 45d ago A new and super fast CVE Lite CLI Vulnerability Scanner (OWASP) 45d ago North Korea calls US cyber threat claims a fabrication, warns of countermeasures Worldcategory 45d ago Acoustic Keystroke Recovery: Reconstructing Typed Text from a Laptop Microphone (85% success rate) 46d ago Credential Dumping: Local Security Authority (LSA|LSASS.EXE) 46d ago Trojan:Win32/Cerdigent.A!dha 46d ago MDE flagging digi cert certificate as malicious everywhere ? 46d ago