WPSteam

@WPSteam@lemmy.world

This is a remote user, information on this page may be incomplete. View at Source ↗

Technical breakdown: stored XSS, session abuse, CSP failures behind the Massive Instructure Canvas Data Breachthecybersecguru.com ↗
Submitted ⁨⁨4⁩ ⁨hours⁩ ago⁩ to ⁨cybersecurity@infosec.pub⁩ | ⁨0⁩ ⁨comments⁩
⁨Comment⁩ on ⁨New wave of malware in the aur⁩ ⁨⁨10⁩ ⁨hours⁩ ago⁩:
md.archlinux.org/s/SxbqukK6IA

This is a community edited list of packages that are affected
CVE-2026-20253: Splunk Pre-Auth RCE via PostgreSQL Sidecarthecybersecguru.com ↗
Submitted ⁨⁨1⁩ ⁨day⁩ ago⁩ to ⁨cybersecurity@infosec.pub⁩ | ⁨1⁩ ⁨comment⁩
Atomic Arch: 900+ AUR Packages Backdoored with eBPF RootkitCopythecybersecguru.com ↗
Submitted ⁨⁨2⁩ ⁨days⁩ ago⁩ to ⁨cybersecurity@infosec.pub⁩ | ⁨1⁩ ⁨comment⁩
⁨Comment⁩ on ⁨AMD changes rules, denies researcher $10,000 bounty after taking 124 days to patch security flaw⁩ ⁨⁨2⁩ ⁨days⁩ ago⁩:
Nightmare Eclipse 2.0 incoming. 10K for such a thing is absolutely nothing for companies like AMD. Why promise rewards if at the end, you don’t intend to pay? This has been a growing trend in the bug bounty space. Many times a bug is marked as duplicate and is fixed secretly. Other times, they’re straightaway rejected…
University of Nottingham Data Breach: 454,600 Students affected by the ShinyHunters Breachthecybersecguru.com ↗
Submitted ⁨⁨4⁩ ⁨days⁩ ago⁩ to ⁨cybersecurity@infosec.pub⁩ | ⁨0⁩ ⁨comments⁩
Miasma Worm Goes Open Source: What's Actually Inside It. Complete Analysisthecybersecguru.com ↗
Submitted ⁨⁨6⁩ ⁨days⁩ ago⁩ to ⁨cybersecurity@infosec.pub⁩ | ⁨1⁩ ⁨comment⁩
CVE-2026-23111: One Bad Character Gives Attackers Linux Rootthecybersecguru.com ↗
Submitted ⁨⁨6⁩ ⁨days⁩ ago⁩ to ⁨cybersecurity@infosec.pub⁩ | ⁨2⁩ ⁨comments⁩