Are you a baseball fan? MLB has a Jr. Identity Security Analyst (Seasonal) position if you're into IAM.
#cybersecurity #entrylevel #jobs
https://www.mlb.com/careers/opportunities?gh_jid=6692356
Recent searches
Search options
#Cybersecurity
469 posts237 participants63 posts today
Spyware added during manufacturing: Cheap Android phones come preloaded with malware stealing crypto via fake #WhatsApp and other apps.
Read: https://hackread.com/pre-installed-malware-cheap-android-phones-crypto-fake-whatsapp/
Hackread - Latest Cybersecurity, Hacking News, Tech, AI & Crypto · Pre-Installed Malware on Cheap Android Phones Steals Crypto via Fake WhatsAppFollow us on Bluesky, Twitter (X), Mastodon and Facebook at @Hackread
State of (in)security - Week 15, 2025
#cybersecurity #infosec #knowledge #weeklyreport
https://beyondmachines.net/event_details/state-of-in-security-week-15-2025-g-h-k-o-o/gD2P6Ple2L
BeyondMachinesState of (in)security - Week 15, 2025During April 7-14, 2025, there was a significant increase in cybersecurity advisories (from 12 to 21) compared to the previous week, while incident/data breach events remained steady at 26, affecting 10.4 million individuals across various sectors including government, healthcare, and IT with ransomware and malware being the leading causes of incidents.
New supply chain attacks called "slopsquatting" in AI coding attempts to leverage AI models tendency to hallucinate non-existent package names.
Research indicates roughly 20% of the sampled Python and JavaScript code samples recommended packages didn't exist.
https://www.bleepingcomputer.com/news/security/ai-hallucinated-code-dependencies-become-new-supply-chain-risk/ #slopsquatting #hallucinations #AI #coding #supplychain #python #javascript #cybersecurity
Old-School Cypherpunk - the Cypherpunk Archives fill in a lot of institutional knowledge on 'why the Internet is the way that it is.'
https://inkican.com/sci-friday-222-old-school-cypherpunk/
Palo Alto Online: Silicon Valley crosswalk buttons apparently hacked to imitate Musk, Zuckerberg voices. “In one video, taken on Saturday morning at the corner of Arguello Street, Broadway and Marshall Street in Redwood City, a voice claiming to be Zuckerberg says that ‘it’s normal to feel uncomfortable or even violated as we forcefully insert AI into every facet of your conscious […]
ResearchBuzz: Firehose | Individual posts from ResearchBuzz · Palo Alto Online: Silicon Valley crosswalk buttons apparently hacked to imitate Musk, Zuckerberg voices | ResearchBuzz: Firehose
More from 
ResearchBuzz: Firehose
#Chile NightSpire Ransomware Active in Latin America: Emo Trans Chile S.A.
https://www.security-chu.com/2025/04/Emo-trans-Chile-atacado-por-NightSpire-ransomware.html
www.security-chu.comRansomware NightSpire Activo en América Latina: Publica a Emo Trans Chile S.ACiberseguridad-Noticias- Latinoamérica:
Emo Trans Chile S.A Atacado por NightSpire Ransomware
Atomic and Exodus crypto wallets targeted in malicious npm campaign
A malicious npm package named pdf-to-office was discovered targeting cryptocurrency wallets. The package, posing as a PDF to Office converter, injects malicious code into locally installed Atomic and Exodus wallets. This attack modifies legitimate files to redirect crypto funds to the attacker's wallet. The campaign shows persistence, as removing the malicious package doesn't remove the injected code from the wallets. Multiple versions of both wallets were targeted, with the attackers adapting their code accordingly. This incident highlights the growing scope of software supply chain risks, particularly in the cryptocurrency industry, and emphasizes the need for improved monitoring of both source code repositories and locally deployed applications.
Pulse ID: 67fd41f7af4b02a0fd75fb69
Pulse Link: https://otx.alienvault.com/pulse/67fd41f7af4b02a0fd75fb69
Pulse Author: AlienVault
Created: 2025-04-14 17:12:23
Be advised, this data is unverified and should be considered preliminary. Always do further verification.
LevelBlue Open Threat ExchangeLevelBlue - Open Threat ExchangeLearn about the latest cyber threats. Research, collaborate, and share threat intelligence in real time. Protect yourself and the community against today's emerging threats.
NEW BETA RELEASES
macOS 15.5 beta 2 (24F5053f)
tvOS 18.5 beta 2 (22L5553d)
visionOS 2.5 beta 2 (22O5453e)
watchOS 11.5 beta 2 (22T5553d)
Comprehensive review on machine learning and deep learning techniques for malware detection in android and IoT devices https://link.springer.com/article/10.1007/s10207-025-01027-x #cybersecurity #infosec
"When Let’s Encrypt, a free certificate authority, started issuing 90 day TLS certificates for websites, it was considered a bold move that helped push the ecosystem towards shorter certificate life times. Beforehand, certificate authorities normally issued certificate lifetimes lasting a year or more. With 4.0, Certbot is now supporting Let’s Encrypt’s new capability for six day certificates through ACME profiles and dynamic renewal at:
- 1/3rd of lifetime left
- 1/2 of lifetime left, if the lifetime is shorter than 10 days"
https://www.eff.org/deeplinks/2025/04/certbot-40-long-live-short-lived-certs
Electronic Frontier Foundation · Certbot 4.0: Long Live Short-Lived Certs!When Let’s Encrypt, a free certificate authority, started issuing 90 day TLS certificates for websites, it was considered a bold move that helped push the ecosystem towards shorter certificate life times. Beforehand, certificate authorities normally issued certificate lifetimes lasting a year or...
Ready to Master Wireshark? Join Chris Greer & Ross Bagurdes for their 2 day Pre‑conference class I: Essential Wireshark Skills: Practical Packet Analysis at SharkFest’25 US & EUROPE!
Dive into hands‑on labs covering ARP, TCP, HTTP, TLS & more—perfect for beginners and seasoned pros alike. Don’t miss this chance to learn from the experts!
Secure your spot today: https://sharkfest.wireshark.org
China confesses to Volt Typhoon role in U.S. infrastructure cyberattacks: Chinese officials admitted responsibility for escalating cyberattacks against U.S. infrastructure in secret talks held in Beijing in December 2024. https://cybr.ws/3XY3aIs #cybersecurity #security #news
-- Draw the Circle or Be Consumed --
>OPSEC isn’t what happens before the real work. It is the real work that determines whether anything else becomes possible.<
The universe doesn’t give a fuck about your intentions. Neither does any state’s surveillance apparatus. Both operate on cold deterministic principles that render your revolutionary potential to ash the moment you treat OPSEC as optional.
Let me be painfully clear: your movement will collapse with mathematical certainty unless security is the foundation, not the afterthought.
...
Read More:
https://pixelnull.substack.com/p/draw-the-circle-or-be-consumed
Recursive Blasphemy · Draw the Circle or Be Consumed
In Secret Meeting, #China Acknowledged Role in U.S. #Infrastructure Hacks
www.msn.comMSN
#Chrome to patch decades-old flaw that let sites peek at your history
https://www.theregister.com/2025/04/07/chrome_135_history_sniffing/
The Register · Chrome to patch decades-old flaw that let sites peek at your history
"Much of the #IT and #cybersecurity infrastructure underpinning the US #health system is in danger of a possible collapse following a purge of IT staff and leadership at the Department of Health and Human Services (HHS), four current and former agency workers tell WIRED." 
https://www.wired.com/story/department-health-human-services-possible-collapse/
WIRED · Health and Human Services Systems Are in Danger of Collapsing, Workers Say
Qilin and Devman hacking groups claim ransomware Attack on Feel Four S.L. Retailer
#cybersecurity #infosec #incident #ransomware
https://beyondmachines.net/event_details/qilin-and-devman-hacking-groups-claim-ransomware-attack-on-feel-four-s-l-retailer-d-z-w-y-i/gD2P6Ple2L
BeyondMachinesQilin and Devman hacking groups claim ransomware Attack on Feel Four S.L. RetailerA collaborative ransomware attack allegedly carried out by the Qilin and Devman hacking groups has targeted Feel Four S.L., a clothing and footwear retailer. The attackers claim to have compromised servers, select user PCs, and internal databases containing customer and employee information while demanding a $60,000 ransom to prevent public release of the stolen data.
AI-Generated Voices Hack Silicon Valley's Traffic Control System
In a bizarre twist, audio-enabled traffic control crosswalk buttons in Silicon Valley were hacked to play AI-generated snippets mimicking the voices of tech titans Mark Zuckerberg and Elon Musk. This ...
https://news.lavx.hu/article/ai-generated-voices-hack-silicon-valley-s-traffic-control-system
