Community icon

Cybersecurity

!cybersecurity@sh.itjust.works

Hot
New Old Active
Hot
New Old Active
Posts Comments
List Tile Wide tile

Don’t use ‘admin’: UK’s top 20 most-used passwords revealed as scams soar

by

It is a hacker’s dream. Even in the face of repeated warnings to protect online accounts, a new study reveals that “admin” is the most commonly used password in the UK.

7
23
1

How bad is this?

by

On a job application site for my local government it reveals if a specific social security has been used or not on that site. The site is very outdated.

26
94

Talk: AI Coding & Cybersecurity — Why AI coding tools aren’t ready for production yet | Michele Magri

by
Video Thumbnail
1
22

2025 ISC2 Cybersecurity Workforce Study

by
0
3

Canada, US warn of China’s BRICKSTORM malware after incident response efforts

by

Archived version

0
24
2

GoldFactory Hits Southeast Asia with Modified Banking Apps Driving 11,000+ Infections

by
0
12

Cloudflare blames today's outage on emergency React2Shell patch

by

This was not an attack; the change was deployed by our team to help mitigate the industry-wide vulnerability disclosed this week in React Server Components. We will share more information as we have it today.

0
20

WebXR Flaw Hits 4 Billion Chromium Users, Update Your Browser Now – Hackread

by
1
16

Microsoft ignores LNK vulnerability, 0patch steps in​ | Cybernews

by
1
6

To Catch a Predator: Leak exposes the internal operations of Intellexa’s mercenary spyware - Amnesty International Security Lab

by
0
11
3

700Credit Reveals Data Breach - TechRepublic

by
0
8

Cloudflare down, websites offline with 500 Internal Server Error

by

Seems to be over now.

1
41

New GhostFrame Phishing Framework Hits Over One Million Attacks - Infosecurity Magazine

by
0
2

Hackers are exploiting ArrayOS AG VPN flaw to plant webshells

by
0
4

Splunk Enterprise Vulnerabilities Allows Privileges Escalation Via Incorrect File Permissions

by
0
5

29.7 Tbps DDoS Attack Via Aisuru botnet Breaks Internet With New World Record

by
1
32

LummaC2 Infects North Korean Hacker Device Linked to Bybit Heist – Hackread – Cybersecurity News, Data Breaches, Tech, AI, Crypto and More

by
0
2

CISA warns of Chinese "BrickStorm" malware attacks on VMware servers

by
0
9

Malicious Rust packages targeted Web3 developers - Help Net Security

by
0
9

ValleyRAT Campaign Targets Job Seekers, Abuses Foxit PDF Reader for DLL Side-loading | Trend Micro (US)

by
0
9

Fake ChatGPT Atlas Browser Used in ClickFix Attack to Steal Passwords – Hackread – Cybersecurity News, Data Breaches, Tech, AI, Crypto and More

by
0
8

Microsoft "mitigates" Windows LNK flaw exploited as zero-day

by
0
5

Google fixes two Android zero days exploited in attacks, 107 flaws

by
0
6

India Orders Messaging Apps to Work Only With Active SIM Cards to Prevent Fraud and Misuse

by
2
22

Penn and Phoenix Universities Disclose Data Breach After Oracle Hack - SecurityWeek

by
0
13

Critical React and Next.js Flaw Lets Remote Attackers Run Malicious Code

by
0
10

Insuretech firm leaks millions of personal records, future travel data | Cybernews

by
0
4

Critical RSC Bugs in React and Next.js Allow Unauthenticated Remote Code Execution

by
0
6

Critical flaw in WordPress add-on for Elementor exploited in attacks

by
0
6

CISOs are questioning what a crisis framework should look like - Help Net Security

by
0
4

French DIY retail giant Leroy Merlin discloses a data breach

by
0
4
1

Freedom Mobile discloses data breach exposing customer data

by
0
17
1

Marquis data breach impacts over 74 US banks, credit unions

by
0
8
2

UK Ransomware Payment Ban to Come with Exemptions - Infosecurity Magazine

by
0
11

Yearn Finance yETH Pool Hit by $9M Exploit - Infosecurity Magazine

by
0
7

AI Bolsters Python Variant of Brazilian WhatsApp Attack

by
0
4

Deep dive into DragonForce ransomware and its Scattered Spider connection

by
0
4

Admins and defenders gird themselves against maximum-severity server vuln

by

Open source React executes malicious code with malformed HTML—no authentication needed.

0
9
2

Beware of the New 'Executive Award' Campaign That Uses ClickFix to Deliver Stealerium Malware

by
0
11

OBR WordPress plugin blunder caused UK budget leak| Cybernews

by
0
4

Fake Calendly invites spoof top brands to hijack ad manager accounts

by
2
13

Critical PickleScan Vulnerabilities Expose AI Model Supply Chains - Infosecurity Magazine

by
0
8

Two Android 0-day bugs patched, plus 105 more fixes • The Register

by
5
23
1

Researchers Capture Lazarus APT's Remote-Worker Scheme Live on Camera

by
0
6

Everest Ransomware Claims ASUS Breach and 1TB Data Theft – Hackread – Cybersecurity News, Data Breaches, Tech, AI, Crypto and More

by
0
5

MuddyWater: Snakes by the riverbank

by

MuddyWater targets critical infrastructure in Israel and Egypt, relying on custom malware, improved tactics, and a predictable playbook

0
6
1

University of Pennsylvania confirms new data breach after Oracle hack

by
0
13
1

SmartTube's signature has been compromised, possible injected malicious library found by some users

by

Slightly more detail in this GitHub issue, however much is still unknown, even after three or so days. The dev hasn’t revealed any further details. Some articles on this incident:

0
13
3

Ireland: 'Aggressive response' needed as cyber threats aligned to states like China and Russia pose “significant threat” to national security, cyber agency says

by

Web archive link

0
15
3

Belgium bans China's DeepSeek from government devices

by

Web archive link

0
10
2

Sorbonne Université staff data on dark web: hackers claim major breach

by
0
5

Canada flags urgent threat from nation-state and criminal groups to critical infrastructure - Industrial Cyber

by
1
11

Police takes down Cryptomixer cryptocurrency mixing service

by
1
14
1

Glassworm malware returns in third wave of malicious VS Code packages

by
1
21

Malware Manipulates AI Detection in Latest npm Package Breach - Infosecurity Magazine

by
0
6

SmartTube YouTube app for Android TV breached to push malicious update

by
3
36

ShadyPanda browser extensions amass 4.3M installs in malicious campaign

by
1
16

Wireshark Vulnerabilities Let Attackers Crash by Injecting a Malformed Packet

by
0
33

South Korea's Coupang Confirms 34 Million Customer Data Leak

by
0
12

Contagious Interview campaign expands with 197 npm Ppackages spreading new OtterCookie malware

by
0
18

Leak confirms OpenAI is preparing ads on ChatGPT for public roll out

by
2
47
8

Albiriox Exposed: A New RAT Mobile Malware Targeting Global Finance and Crypto Wallets

by
0
3

Critical Apache bRPC Framework Vulnerability Let Attackers Crash the Server

by
0
5

Data copied in Kensington and Chelsea council cyber attack

by
0
12

Shai-hulud 2.0 Campaign Targets Cloud and Developer Ecosystems

by
0
14

Security researchers caution app developers about risks in using Google Antigravity

by
0
15

CISA Adds Actively Exploited XSS Bug CVE-2021-26829 in OpenPLC ScadaBR to KEV

by
0
5

Public GitLab repositories exposed more than 17,000 secrets

by
0
19
2

Scattered Lapsus$ Hunters target Zendesk users with fake domains

by
0
4

Brsk confirms breach as bidding begins for 230K+ records

by
0
12
1

WebRTC and Onion Routing Question

by

I wanted to investigate about onion routing when using WebRTC.

2
10

TryHackMe races to add women to Christmas cyber challenge roster after backlash

by

Training outfit scrambles to fix all-male lineup before December kickoff

1
12

French Football Federation Suffers Data Breach

by
0
9

MS Teams Guest Access Can Remove Defender Protection When Users Join External Tenants

by
0
34

Asahi Confirms 1.5 Million Customers Affected in Major Cyber-Attack - Infosecurity Magazine

by
2
22

Malicious LLMs empower inexperienced hackers with advanced tools

by
1
21

Gamayun APT Exploits MSC EvilTwin Flaw to Deploy Malicious Code

by
0
5

Over 390 Abandoned iCalendar Sync Domains Could Expose ~4 Million Devices to Security Risks

by
0
17

Dead Man's Switch - Widespread npm Supply Chain Attack Driving Malware Attacks

by
0
16

OpenAI User Data Exposed in Mixpanel Hack

by
0
23

Comcast to pay $1.5M fine for vendor breach affecting 270K customers

by
1
32
1

How Malware Authors Incorporate LLMs to Evade Detection

by
0
12

Bloody Wolf: A Blunt Crowbar Threat To Justice

by
2
2

New ShadowV2 botnet malware used AWS outage as a test opportunity

by
0
8

What is Cyber Resilience Act, and what cybersecurity requirements does it impose?

by
0
11
1

FCC says hackers hijack US radio gear to send fake alerts, obscenities

by
3
25

Gainsight Cyber-Attack Affect More Salesforce Customers

by
0
8

New Matrix Push C2 Abuses Push Notifications to Deliver Malware

by
0
12

Malicious Chrome Extension Injects Hidden SOL Fees Into Solana Swaps

by
0
9

FBI: Cybercriminals stole $262M by impersonating bank support teams

by
0
18

Years of JSONFormatter and CodeBeautify Leaks Expose Thousands of Passwords and API Keys

by
4
24

CVE-2025-50165: This Windows JPEG Vulnerability Proves Detection Isn’t Enough

by
0
14

Several London councils thought be affected by cyber-attacks

by
0
10

HashJack attack shows AI browsers can be fooled with '#' • The Register

by
2
23

KawaiiGPT - New Black-Hat AI Tool Used by Hackers to Launch Cyberattacks

by
2
13

Update Firefox to Patch CVE-2025-13016 Vulnerability Affecting 180 Million Users – Hackread – Cybersecurity News, Data Breaches, Tech, AI, Crypto and More

by
0
7

OnSolve CodeRED cyberattack disrupts emergency alert systems nationwide

by
0
2

Russian RomCom Utilizing SocGholish to Deliver Mythic Agent to U.S. Companies Supporting Ukraine - Arctic Wolf

by
0
8

Hackers knock out systems at Moscow-run postal operator in occupied Ukraine

by
0
33

'JackFix' Attack Circumvents ClickFix Mitigations

by
0
4