submitted by /u/CYRISMA_Buddy [link] [comments]

Quick question. I have done CRTP previously and it was moderately hard for me. I want to take up the CRTO exam next and just wanted to know what to expect. What is the difficulty level of the exam compared to CRTP? Is it harder, easier or almost the same? ​ Thanks submitted by /u/PBBG12000 [link] [comments]

Hi all! I'm an intern(service desk tech) in the IT department of a midsized healthcare/EMS corporation, and as the title suggests I get the chance to meet with the supervisor of our company's security team. I'm only just starting out in IT so my knowledge level is pretty basic across the board, so I don't want to waste this opportunity to learn about cybersecurity from someone experienced in the field. If anyone has any advice here I would be very grateful! submitted by /u/FortunateOne123 [link] [comments]

Hello I'm close to finishing the google cybersecurity certificate and on the website I was told they give exclusive access to job searching website that they also have companies that are committed to hiring people with the certificate. I'm looking to see if anyone has seen this and how good is it. submitted by /u/Rough_Ad_7760 [link] [comments]

Please give some insight on the different job responsibilities within the GRC realm. Which job is most difficult? Easiest? What are some tips to jump into the field and to move up the ranks? Thanks. submitted by /u/anon67- [link] [comments]

submitted by /u/TypeAskee [link] [comments]

My Comptia certs (A+,Network+,Sec+) are about to expire and not sure what to do. Dont really feel like paying for a cert above these that I dont really care about just to renew these but also I am worried that in future interviews they might pick on me for not disclosing they have expired. How do you guys approach this situation? I think if I get confronted about them I will just explain how I think its a ripoff and I dont want to pay for a renewal. submitted by /u/crablemet111 [link] [comments]

There seems to be some confusion over Certificate and Certification - They are not the same thing and they are not interchangeable This training from Google through coursera - https://www.coursera.org/professional-certificates/google-cybersecurity - is just that online training - you get a training certificate at the end of the training It is not an industry Certification CompTia - Security+ AWS - Cloud Practitioner ISC2 - CISSP SANs - GIAC these are industry certifications - you take the same exam everyone else is taking and if you pass you are awarded the certification - certifications must be maintained and have annual CEUs/CPEs - basically continuing education credits you get through more training, webinars, conferences and Certifications do expire That google course is just online training, no different that you would find on sites like Pluralsight, Udemy, Udacity, Cybrary, etc submitted by /u/DeezSaltyNuts69 [link] [comments]

Howdy! Its not that much of a tool than wrappers of few awesome tools that most of you probably know and use today - sqlmap, bbot and nikto. I'm excited to share with you my latest contributions to the GitHub community: a collection of free GitHub Actions designed to streamline and enhance security practices utilizing DAST and OSINT. There were no GH Actions that I could find, so I made them for my use case, but figured everyone can benefit from those awesome tools. Action - 🗺️ - sqlmap The famous sqmap - perform automated (or semi-automated) penetration testing on your releases: https://github.com/marketplace/actions/thereisnotime-action-sqlmap Action - 🤖 - bbot One of the newer OSINT automation tools on the block, I personally love it so here it is: https://github.com/marketplace/actions/thereisnotime-action-bbot Action - 🎯 - nikto A stable and tested tool that can easily scan a ton of endpoints for security issues: https://github.com/marketplace/actions/thereisnotime-action-nikto WIP: Currently I am working on a nice workaround to generate outputs from the actions and not directly from the tools (but you can still use the tool outputs in your job steps) and after that I will add more examples (the way I use it for regular security compliance reports etc.). Because those amazing tools have a ton of parameters, one of my main goals was to provide an easy option to provide custom arguments instead of wrapping each one and also re-use as much as possible from the official or at least most supported Dockerfiles where available. Feel free to try them out, provide feedback, or even contribute to their development. The actions are under active development but they are working. Your input is valuable in making these actions even more robust and effective. If you find them useful, please leave a ⭐ in GitHub. submitted by /u/bilporti [link] [comments]

submitted by /u/justinp205970 [link] [comments]

Did anyone implemented wazuh (server, dashboard and agent) full setup? I am facing issues with agent and server communication, where agent is not able to connect with server. submitted by /u/Kmk00009 [link] [comments]

Copied from a Linkedin post A threat actor that goes by the moniker "spyboy" claims to have devised a method to terminate all AVs/EDRs/XDRs. The software has allegedly been tested on most AVs/EDRs/XDRs that exist in the market. This evening, the threat actor made a video of terminating CrowdStrike EDR. Ref: https://lnkd.in/gzDAMRcH The all-in-one version that bypasses most renowned EDRs is currently being sold for $1,500 (early bird perks for the first five buyers)- but will soon be sold for $3,000. Below is the complete list of EDRs that can be allegedly terminated using the program: https://media.licdn.com/dms/image/D5622AQHzhwkOagEK9g/feedshare-shrink_2048_1536/0/1685293180140?e=1687996800&v=beta&t=BkFlsoTi-fHw5zRC3IHQl00XPs9ujxj04gDLM1HNwH0 submitted by /u/ThePrestigiousRide [link] [comments]

Does anyone have an incident response playbook they can share? I understand that companies don’t generally share these (for a good reason) and the vendor specific ones are more geared to SIEM implementation…. Can anyone point me in the right direction? submitted by /u/RearAdmiral5 [link] [comments]

Hello! FIM v0.4.7 was just released. FIM is an open-source endpoint cybersecurity tool to monitor files of your system. We may ask all of you if you can take a look at our project. If you want to know more about FIM, come at our website. https://achiefs.com/ https://documentation.achiefs.com https://github.com/Achiefs/fim Any feedback or questions will be appreciated. If you like the project give us a star 😀 Thanks! submitted by /u/okynos [link] [comments]

Hey why is it bad to click a malicious link, like from a spam mail? The worst thing that could happen, is that a malicious file will be downloaded. But what happens after this step? The file lies somewhere within a directory, but an user interaction is required to execute the file (e.g. double-clicking, loading a dll, executing a script etc.) Is it possible, to execute a downloaded file automatically just by clicking a malicious link (not via Script!)? Thanks in advance submitted by /u/ugonikon [link] [comments]

But is anyone surprised? submitted by /u/Casseiopei [link] [comments]

Building out internal training programs and looking for any recommendations Cyber Threat Intelligence training, asides SANS? Any recommendations welcome! submitted by /u/thehelmet92 [link] [comments]

https://thehackernews.com/2023/05/dont-click-that-zip-file-phishers.html submitted by /u/computerchipsanddip [link] [comments]

Each week I post a summary of the top stories in cybersecurity to help members of this subreddit keep up with the industry. Hopefully this helps! Edition: 29/05/2023 🔓 Cyber Attacks Emby shuts down user media servers hacked in recent attack Media server company Emby remotely shut down an undisclosed number of user-hosted servers following a hack that exploited a known vulnerability and insecure admin configurations. Emby plans a security update soon. US govt contractor ABB confirms ransomware attack, data theft Swiss tech multinational and U.S. government contractor ABB has confirmed that some of its systems were impacted by a ransomware attack, previously described by the company as "an IT security incident." 💀 Threat Actors Lazarus Group Striking Vulnerable Windows IIS Web Servers North Korea's Lazarus Group is exploiting vulnerabilities in unpatched Windows IIS Web servers to launch cyber espionage campaigns, using known exploits like Log4Shell and the 3CX supply chain attack. 'Volt Typhoon' Breaks Fresh Ground for China-Backed Cyber Campaigns A China-backed cyberattack campaign, dubbed "Volt Typhoon," is targeting critical infrastructure organizations in Guam. The actor is believed to be preparing for potentially disruptive attacks in the future, indicating a shift from their traditional focus on cyber espionage. 🛡️ Malware / Threats / Vulnerabilities Hot Pixels attack checks CPU temp, power changes to steal data Researchers have developed a "Hot Pixels" attack that can steal data by monitoring CPU temperature and power changes. The attack retrieves pixel information from the content displayed in the browser and infers navigation history. CosmicEnergy Malware Emerges, Capable of Electric Grid Shutdown Russian code that could tamper with industrial machines and toggle RTUs on and off was floating around VirusTotal for years before being noticed. It raises new questions about the state of OT security. QBot malware abuses Windows WordPad EXE to infect devices QBot malware is abusing a DLL hijacking flaw in Windows 10's WordPad to infect computers, using the legitimate program to evade security software detection. This method primarily affects Windows 10 and later versions. CISA warns govt agencies of recently patched Barracuda zero-day CISA warned government agencies about a recently patched zero-day vulnerability in Barracuda Email Security Gateway appliances, urging them to ensure their networks haven't been breached. Clever ‘File Archiver In The Browser’ phishing trick uses ZIP domains Security researcher mr.d0x has developed a phishing toolkit exploiting the new ZIP top-level domain. This toolkit creates fake in-browser WinRar and Windows File Explorer interfaces on ZIP domains, fooling users into interacting with malicious files. 💹 Trends / Events / Other News PyPI announces mandatory use of 2FA for all software publishers PyPI has decided to enforce two-factor authentication for all project management accounts by the end of 2023. This move is aimed at enhancing platform security and reducing the risk of supply chain attacks. Tesla Whistleblower Leaks 100GB of Data, Revealing Safety Complaints Tesla whistleblowers have leaked 100GB of data including thousands of safety complaints regarding the Autopilot feature and personal information of over 100,000 current and former employees. Tesla hasn't made public statements yet. Netflix's Password-Sharing Ban Offers Security Upsides Netflix's new password-sharing restriction is not just about boosting profits, but also enhancing account security. Experts highlight the potential risks of password-sharing, including unauthorized access and increased phishing susceptibility. I write these summaries as part of weekly newsletter I send out, so any feedback on the length/content/style is also appreciated. submitted by /u/MenuParking7693 [link] [comments]

submitted by /u/segtekdev [link] [comments]

Hey all, Off the back of my last post that got some awesome discussion another controversial topic. Should analysts and engineers know how to fix what they found (or the best practices around the issues they found) is it good enough that they found the problem in the first place ? Discussion only there is absolutely no right or wrong here to many situations and contexts to have a black and white answer. Edit: hey guys just a quick one. Although sometimes the answer seems obvious to you or black and white there are many people out in the world that honestly do believe they need to know and fix everything in every role discussions like this help shed some light. Also sorry for those that caught the “!” Instead of the “?” In the title. submitted by /u/xathious [link] [comments]

Just wondering because this was one of the jobs I thought was really cool. submitted by /u/fastercheif [link] [comments]

This is the weekly thread for career and education questions and advice. There are no stupid questions; so, what do you want to know about certs/degrees, job requirements, and any other general cybersecurity career questions? Ask away! Interested in what other people are asking, or think your question has been asked before? Have a look through prior weeks of content - though we're working on making this more easily searchable for the future. submitted by /u/AutoModerator [link] [comments]

submitted by /u/_DiscoInferno_ [link] [comments]

I want to download a program which no longer exists on the official website of the program author. But someone uploaded it somewhere and he claims it's untouched. But that's exactly what someone who has embedded keyloggers in the program would say. I downloaded the program and calculated its SHA-1 using 7-zip. It matches the SHA-1 of the untouched program. Does this mean the program that I downloaded is 100% untouched, or SHA-1 can be faked? submitted by /u/Budget_Register662 [link] [comments]

Feels like I wasted a couple years of my life going to college for this only to be met with no results. I've submitted over 125 applications at minimum just since graduation with one interview and it's been over a month since I heard anything. Really don't know what to do at this point, but I sure as hell feel like I threw all of my money down the drain. I was gonna get my sec+ now that I'm done college but it feels completely pointless. I'm honestly just losing hope and drive for this field. Even when the job is marked as "entry level" they usually want years of experience, which by definition isn't entry level. Sorry for the rant but I'm ultimately very frustrated. I have bills to pay and I need a job soon, and it just feels almost impossible to get a job unless you know somebody already, and I'm very much wishing I picked an easier field to get an entry level job in because this diploma feels completely pointless. I'm not alone in this frustration either, other classmates of mine are feeling the same way. My college held job fairs but they didn't do too much besides expand my network a tiny tiny bit. I just feel like now that I'm out of college especially I'm up the creek without a paddle. Absolutely no further help from anyone or any resources I may have used from the school. Edit: thanks for all the great responses. It'll take me some time to read through them all because I was taking a little break from all the stress and applications. But again, thank you all! submitted by /u/Weary_Education_2704 [link] [comments]