This is the weekly thread for career and education questions and advice. There are no stupid questions; so, what do you want to know about certs/degrees, job requirements, and any other general cybersecurity career questions? Ask away! Interested in what other people are asking, or think your question has been asked before? Have a look through prior weeks of content - though we're working on making this more easily searchable for the future. submitted by /u/AutoModerator [link] [comments]

Mandiant's new figure: attacks begin 7 days before the patch ships. Patch Tuesday is now exploit-last-Friday Supporting stats: 71% of known exploits hit same-day as disclosure (Zero Day Clock) 40% of breaches start with an unpatched flaw (IBM) +162% CVE volume since 2020 (Mondoo) 25,973 CVEs filed in 2026 already — heading towards 70k, FIRST.org forecasts up to 100k And we seem to be seeing a lot of Linux and other software critical vulnerabilities lately, all thanks to AI. Take a look at https://zerodayclock.com Is the AI exploit apocalypse here? Is this the end? submitted by /u/Mr_Prometius [link] [comments]

Does the CBP install spyware or “bug” phones that they inspect at the border? Is there anyway to know whether the phone is bugged? submitted by /u/Super-Distance-7717 [link] [comments]

submitted by /u/deadbeef0-0 [link] [comments]

AI transparency is often framed as a technical or ethical requirement. But it is also a political question — one that turns on power, incentives, and competing ideas of accountability. I explore that here. submitted by /u/Indie-Intervalist [link] [comments]

submitted by /u/julian88888888 [link] [comments]

submitted by /u/Cristiano1 [link] [comments]

Lately I’ve been feeling like attackers are targeting human behavior more than infrastructure itself. A lot of breaches don’t happen because security is completely missing.Usually it’s an employee mistake, rushed decision, reused password, ignored alert. Meanwhile most security discussions still focus heavily on tools, dashboards and AI detection. Feels like the human side of security is becoming more important than ever. Curious how people working in SOC/blue team environments see this. submitted by /u/Andrewpaul46 [link] [comments]

Hey There & Thank You in Advance For Sharing Your Thoughts/Ideas One of my clients is one of the sponsors of a rather elite cybersecurity conference and I want to ensure we provide promotional items that will actually be used and/or appreciated, i.e. won't end up in ad drawer or the trash. GOAL: Raise awareness and familiarity with our company, capabilities and solutions QUESTION: What branded promotional items have you really appreciated and used at a conference and/or after a conference? _______________________ I am not personally fond of "branded" promotional materials, but that defeats a promotional items' 'reason for being' -- so, I'm going for very subtle when it comes to branding the items we choose. WHAT I'M LOOKING AT: SAGA BOLT ACTION PENS: I've done considerable research and so far the SAGA brand seem to be really rugged, reliable and cost-effective enough such that everyone take 1-2 of these pens with them. The thought is go with a light gray with our typographic logo" in a silver so it barely stands out. TACTILETURN BOLT ACTION PENS These TactileTurn pens are for the key decision makers, those run about $100+ each. I'd like to personalize the clip with the name of the Person of Interest. They come in a box and I want to use these as a Post-Event gift, i.e. my client follows up after the've met and talked etc. SIGNATURE COIN MULTI-TOOL I like the signature coin multi-tools as a giftie/giveaway at the dinner we're hosting. The tools can be as simple as a bottle opener to a multi-tool that includes screwdriver tips or the hex bit of a socket wrench and honestly apparently any other kind of tool that someone might find useful. They're made in 3D relief, and again, I want to go subtle with the brand name. I envision our mascot (which is a super cool creature!) coming up and out and our name on the other side. I WELCOME YOUR FEEDBACK AND THANK YOU! submitted by /u/Jiminy_Cactus [link] [comments]

Thought I'd post what I've done so far in a hope to stop these from happening and get some insight from others as to what else could be done. Also, would be great to find out exactly why this has been happening. I have a Gmail address that I have set up on my Microsoft account to send these codes to; I receive the emails to my Gmail account, but it does not indicate which Microsoft account it is links to. You can use a Microsoft service to see which accounts your email (the one you received codes on) links to in some way on Microsoft. The details are obfuscated, but useful. https://account.live.com/username/recover I also use my Gmail address as my account for my windows laptop, so effectively I have another Microsoft account, but with my Gmail address. Perhaps this is something others have done and do not realise the linkage here. Microsoft have not said anything about this still (AFAIK), my guess is that it is a bug or some kind of cyber incident, perhaps probing for flaws in the service. As long as you don't use these codes you have not requested, it should be fine. There is a very small chance that the code could be guessed (1 in a million, maybe less if a guessed code can be entered a few times). I have checked aliases I have for my Microsoft accounts and removed them as options from sign in preferences, didn't know about this but found that on Microsoft forum. Unfortunately, I received a code after these changes, so didn't resolve my issue but still worthwhile checking. Last thing I've tried is to set my Microsoft account with my Gmail address to have an alias (made sure it was quite different to the Gmail address), I have then made this the primary address and removed the Gmail email address from being used as a sign in address option (it's still there, just disabled that feature for it). Unsure if this will impact my Windows laptop as will not have access to it until tomorrow, will update as soon as I find out. Since the above change, I have not received another email with a code that I have not initiated myself, but it has only been 1 day... The Microsoft security log is pretty useless as it doesn't log these code requests, only successful logins (makes me think these logs would show a disturbing number of events if it included even partial attempts to sign in with your email address). I would hope it would include unsuccessful attempts too (I don't see any of these), but really don't know. I have various things in place to help secure my accounts, such as authenticator, MFA, complex and unique passwords etc... I need to look into going password-less more, but unsure if this will help here at all. I have created recovery codes for all my accounts, in the event I could mess something up. Anyway, any other thoughts on what we can do? Hopefully some bits here will help others too. submitted by /u/lostinmygarden [link] [comments]

I launched my new startup today, and I wonder whether we are pushing for something relevant, or something that is too “different” to what customers are used to. We are betting that everything will eventually go agentic, what shape or form we don’t know. But, our bet is: humanity will want verification of AI output, using our own (human) standards / frameworks for a very long time, before we can trust and act on AI generated output in fields like security and compliance. So, our solution is to build an army of MCP servers that encompass laws, regulations, frameworks, standards etc. We serve this fleet through an MCP gateway, which helps agents find the right servers to be able to do work without relying on memory. Rather, we force the agents who connect, to receive citations from our MCP sources and through prompts we are able to get agents to honestly say whether they were able to “ground” answers through our sources. If they did, you can get verbatim citations, and if we don’t have the sources or there is a bug, they will report this honestly saying x and y answer could not be verified. Then we also expose big multi-step workflows like threat models, DPIA, Gap Analysis cross jurisdictions etc. Which combines into a deliverable that you can actually verify quite quickly, instead of wonder where it hallucinated heavily. I want this at my consulting jobs, but I worry most of our potential customers are not ready for this yet, even though they all have copilot and claude, and love getting unverified answers. So, do you guys think this would land at the companies you work for? Are we already in this way of working, or is it going to take months to years? Would love to hear some thoughts. We pitched to Masschallenge recently, and they could not understand we don’t ship any AI in our product, but still talk about AI in our pitch 🤣 so this worried me! submitted by /u/Beautiful-Training93 [link] [comments]

I got an Authenticator request from another country for my Microsoft account. I denied it and went in and changed my password, a day later I get another Authenticator request from a different country than the first. Again change password and again it happens. How can I secure my account how are they able to send these Authenticator requests? submitted by /u/birdsofjay [link] [comments]

Hey everyone, I aggregated and curated all public Grafana CVEs into a single, high-speed Python script to make testing mass targets easier for bug hunters and red teamers. Zero dependencies, clean terminal output, and ready for automation. submitted by /u/Decent-Assistance-50 [link] [comments]

Last article ended with “and now you don’t have to write a kernel module.” This is what you write instead.Continue reading on Medium »

Forensic examination of an active Lazarus Group operator machine: a target list of nearly 17,000 developers, six drained wallets, and a…Continue reading on Medium »

I reviewed 300 resumes for a single entry-level role. Two weeks later, I’d interviewed six people and hired one. Here’s what the “talent…Continue reading on Medium »

The API security flaw that gives away too much and accepts even more. The idea for this blog from APISec University.Continue reading on Medium »

iOS 26.5 brings encryption to iPhone-Android texts. It’s a bigger deal than it sounds.Continue reading on Mac O’Clock »

Bagaimana Mediscribe NG menerapkan keamanan berlapis dari frontend sampai backend dan bagaimana satu celah otorisasi ditemukan dan ditutup.Continue reading on Medium »

The security of Bitcoin has rested on a strong foundation deemed practically unhackable. It is a decentralized network based on computer…Continue reading on The Bitcoinist »

Before installing most streaming apps, up to millions of users who roam around on Android and iOS come across ONE common question: “Is…Continue reading on Medium »

The structural analysis of the digital Social Discovery and online interaction sector reveals an increasingly specialized international…Continue reading on Medium »

TheHarvester is especially useful during the reconnaissance phase of an ethical hacking engagement.Continue reading on Medium »

The FTP exfiltration sink was port 21. The rest of the host told a larger story.Continue reading on Medium »

The TanStack attack wasn’t a stolen password. It was a structural failure in GitHub Actions that no rotated token can patch.Continue reading on Medium »

Continue reading on Medium »

Continue reading on Medium »

Crypto wallets have changed a lot over the last few years.Continue reading on Medium »

Currently only have Sec+ and just started as a SOC Analyst, wondering what certs to get next and someone told me after sec+ to get a cert focusing on your specific path you want. Did some research but figured to get more advice directly. submitted by /u/Interesting-Skill-70 [link] [comments]

Hey everyone, I've been working as a penetration tester for eight years now. I'm about to transition from traditional pentesting to a more interesting field. Right now, there is huge potential (and hype) in AI and AI security as a whole, and I think in the near future there will be an emerging need for AI security engineers and professionals who understand the different system components around it. Do you think it's worth it in the long run? To prepare, I've already subscribed to some courses that focus on AI security and AI basics. Right now I feel that what I regularly do is ticket grinding in a senior role (however my projects are way more complex). The business doesn't really care how professional you are, they just want to clear the backlog and save some serious $$$ for the company. I'm a bit frustrated and bored in this role. I think I don't get recognition anymore, and I need to bring something new to the table to get promoted or rewarded. Earlier, I did a lot for the team to help with everyone's work, but I think I was exploited, and now I'm planning to adopt a gatekeeping mentality. submitted by /u/Horror_Problem9618 [link] [comments]

Hey everyone. First time making a post on here. I’m looking for some advice. So for some background: my current company is a pretty good size GovTech company with a very immature security department. This is my first security job and I’ve been with the company for 3 years now. We recently went through a merger (and acquisition simultaneously) which caused a lot of turnover and some security folks have left the company. At this point I have the longest amount of time with the company of anyone on the security team. Anyway, new leadership for the security team has come in and I’ve been told they plan to promote me and that if everything goes as planned I’ll sort of be allowed to determine the direction I want to go going forward. There’s a lot of major security projects coming up (vulnerability/patch management overhaul, IAM overhaul, etc.). I’m currently a security analyst. I like the sound of cybersecurity engineer because I want to get into cloud security and maybe security architecture a little further along in my career. The other option would be moving up to a higher tier analyst position. TLDR: I’m a security analyst with three years experience at a company with a small security department. There are a lot of major projects coming up. It’s been floated out there that I’ll likely be getting a promotion and my current team lead has stated I’ll have the ability to sort of pick my title and the trajectory I take with the company (high tier analyst or security engineer role). So my question(s): of the two paths (tier2/3 sec analyst or cybersecurity engineer) which one has the most growth potential? Which one would be more in-demand in the future and look better on a resume? For anyone who has experience in higher tier security analyst roles, what’s your career path looked like so far and what opportunities have you been presented? This post ended up being longer than I thought it would be so thanks for reading. If you have any advice at all I’d really like to hear it. I feel like I’ve been presented with a unique opportunity (if everything goes as planned) and I really want to capitalize on it and make the most of it. submitted by /u/Dapper-Ad4488 [link] [comments]

After doom scrolling on this sub, it doesn’t give me any hope to pursue my goal of becoming an SOC Analyst. I’ve had this goal for a while. While completing my degree. But reading how companies have started to phase out the juniors to Claude and other ai, how are we supposed to make an entry? Should I even pursue CySa+ and CCDL1? submitted by /u/RAM-I-T [link] [comments]

I’m 17 and planning on going into cybersecurity, but I’m having trouble deciding between different military paths and how they’ll affect my future career. At first, I wanted to do Air Force cyber (17C), but I missed the ASVAB requirement by 12 points (I still have all my senior year aswell to try to get a higher score). I’ve also I’ve been considering joining the Army National Guard as a 25B so I can have my college tuition paid for while still starting my civilian career earlier instead of spending too much extra time waiting around. I’m mainly trying to figure out: Which path would help me more long-term for cybersecurity? How can I start learning coding and cyber skills now before college? What certifications, programming languages, or projects should I focus on as a beginner? How do people transition military cyber/IT experience into civilian jobs? What degree would be best for this field (Cybersecurity, Computer Science, IT, etc.)? Would going for a master’s degree eventually be worth it in cybersecurity? I’d appreciate any advice from people in cybersecurity, the military, or anyone who started learning young. submitted by /u/Rare-Rain-7013 [link] [comments]

A DevOps Team Lead managing FDA/MDR-compliant infrastructure for hospital patient monitoring systems breaks down why the industry’s most…Continue reading on That Infrastructure Guy »

No CVE. No patch. No explanation from Microsoft. Just a folder, a reboot, and a shell on your encrypted drive.Continue reading on MeetCyber »

A Short Dive into How State Actors Use ‘Terrorism’ to Let Slip Their Dogs of WarContinue reading on Medium »

Kubernetes security is often implemented manually and differently from one environment to another, which can quickly become difficult to…Continue reading on Medium »

Hi everyone! I'm interested in learning the basics of cybersecurity, but strictly for personal use. I'm not looking to make a career switch, get professional certifications, or learn advanced pentesting. My main goal is simply to learn how to better protect my personal data, secure my devices and home network, understand common threats (like phishing or malware), and improve my overall digital hygiene. Since I'm starting from zero, the highly technical resources are a bit overwhelming. What are some good, easy-to-digest resources (YouTube channels, blogs, free basic courses, or podcasts) geared towards an everyday user? What fundamental topics should I focus on first? Any advice is really appreciated. Thanks in advance! submitted by /u/InternalRazzmatazz92 [link] [comments]

Maybe I'm being paranoid but Claude Code running on dev machines with access to our codebase and network... that seems like a pretty big deal from a security perspective. Like if it got compromised somehow, it would have direct access to everything. Am I the only one thinking about this? Or are companies actually locking this down? How are you all handling AI tools like Claude Code? submitted by /u/Sweaty-Career330 [link] [comments]

Regarding ISO 27701 controls, I would like a simple clarification on when each control should be marked as Applicable and when it should be marked as Not Applicable (N/A). Please note that I act as a PII Controller for employee data and client contract data. I also act as a PII Processor for my solution, which is hosted on a cloud infrastructure. Please provide a simple and clear explanation of when each control should be applied and when it should be marked as “Not Applicable,” from the list below. Thank you. A.1 - Control objectives and controls for PII controllers (Employees Data and ) A.1.2.4 Determine when and how consent is to be obtained A.1.2.5 Obtain and record consent A.1.2.7 Contracts with PII processors A.1.2.8 Joint PII controller A.1.3.5 Providing mechanism to modify or withdraw consent A.1.3.11 Automated decision making ---- A.2 - Control objectives and controls for PII processors A.2.2.4 Marketing and advertising use A.2.2.5 Infringing instruction submitted by /u/Anas5667 [link] [comments]

Take a look, for example, at the section "3 ways AI hallucinations are impacting cybersecurity": https://thehackernews.com/2026/05/how-ai-hallucinations-are-creating-real.html?m=1#3-ways-ai-hallucinations-are-impacting-cybersecurity It feels verbose without saying much of value. Using reliable services that usually (I know they are not perfect) get detection right, such as "gptzero.me", it turns out that it was indeed written by AI. Where will we end up if even articles discussing the risks of AI are written by AI? We need to introduce some regulations and require that a specific pattern or signature be included in some way within the text, images or videos generated, so that we can determine whether or not the content is of human origin. Is there a study or discussion underway somewhere in a law firm or research centre looking into this? submitted by /u/allexj [link] [comments]

Managers and hiring panel in cyber. Do you conduct practical assessments when hiring for a role. What do your assessments look like, what are you looking for beyond assessment completion? submitted by /u/ButterscotchBandiit [link] [comments]

submitted by /u/rkhunter_ [link] [comments]

This is the weekly thread for career and education questions and advice. There are no stupid questions; so, what do you want to know about certs/degrees, job requirements, and any other general cybersecurity career questions? Ask away! Interested in what other people are asking, or think your question has been asked before? Have a look through prior weeks of content - though we're working on making this more easily searchable for the future. submitted by /u/AutoModerator [link] [comments]