hey all , hope you are doing well, in this write up we will cover the fifth room on the SIEM Triage for soc module in the soc level 1 path…Continue reading on Medium »

Or, why your smart doorbell, work Slack, and government facial recognition all share a Dark Lord’s blind spot and what a hairy-footed…Continue reading on ILLUMINATION Scholar »

The rapid integration of Large Language Models (LLMs) has left a massive gap in traditional security frameworks. To better understand this…Continue reading on Medium »

In the business world, we are used to worrying about competitors or market shifts. But in 2025–26, a different kind of threat hit the…Continue reading on Medium »

In an era where digital connectivity drives physical production, the line between the virtual and the material has vanished. While IT…Continue reading on Medium »

I’m a sophomore Cybersecurity student currently stuck with three different machines that all overlap in weird ways. I’m trying to figure out what to sell, what to return, and what to upgrade to have devices that best suit my use case. My Current Lineup: MacBook Pro M5 (16GB/512GB): Just got this a month ago for $1400. Already in the ecosystem but not forced to stay in it (iPhone, Watch, iPad, AirPods). I’ve already used 350gb of storage and I’m worried about the 16gb ram for cyber labs/VMs. Lenovo Legion Slim 5 (14.5" OLED): r7 7840hs, 16gb (soldered), RTX 4060. This was supposed to be my "everything" machine originally but was allowed to bring my pc. The chassis is annoying (creaky), the glossy screen is a nightmare in bright rooms, and the battery only lasts 3-4 hours at the brightness I need. I end up constantly worrying about closing any apps that might drain battery and kind of acts as a distraction. Custom Desktop: i5-12400 (have a 13600kf waiting to be tested), 32gb RAM ddr4, RX 6650xt. Running CachyOS. I recently moved to 1440p/165hz, and this build is struggling with Wuthering Waves and The Finals at that resolution. The Dilemma: The Mac Problem: I’m not sure if macOS is the right move for my major. It’s also annoying that I can’t play lighter games (like Ember Knights) on the go due to compatability. If I keep a Mac, I’m considering returning this one for a higher spec (24gb RAM/1tb) or maybe even the nano-texture display for the glare. I could help fund this by selling my lenovo laptop too. The Laptop Problem: My Lenovo actually runs games better than my desktop right now in some situations (likely the DLSS), but the 16gb soldered ram is a constant bottleneck. I’m considering selling it (and the mac) and getting a more "work-focused" Windows laptop (maybe Panther Lake?) that has similar battery to my macbook but better compatibility for the indie games I play on the go and future work. The PC Problem: I need to upgrade the GPU for 1440p gaming. If my 13600kf actually works, the 6650xt isn't cutting it anymore. What I need advice on: Cybersecurity majors: How is the macOS experience? Did you regret not having a native Windows/Linux environment for certain tools/VMs? The "One Laptop" Dream: Should I sell the Legion AND return the Mac to buy one high-end Windows ultrabook/workstation? Or keep the Mac (getting higher spec) for school/battery and just beef up the desktop? The Desktop: If I keep the Mac, what GPU should I pair with a 13600kf for smooth 1440p gaming in WuWa and The Finals? Budget/Context: Already in the Apple ecosystem. I live in a dorm, but I have my PC with me. If I were to return the mac and sell my laptop, my total budget for a new computer would be about $1500-1700 for a new laptop. Im open to openbox and refurbished, not used. On the laptop I only want to be able to run light games on battery like btd6, hollow knight, ember knights etc, but I do need it to be good enough for cybersecurity for 2 years. If I were to get a new laptop, I want it to have a decent build and a screen with 90hz+ and good enough brightness for outdoor use (preferably mini-led or oled). Some other things that are nice to haves are haptic trackpad and upward firing speakers. No screen size or thickness preferences What would you do in my shoes? submitted by /u/SpeedzMC [link] [comments]

“This article will discuss the importance of Two-Factor Authentication (2FA) in protecting online accounts.”Continue reading on Medium »

“This article will discuss the importance of Two-Factor Authentication (2FA) in protecting online accounts.”Continue reading on Medium »

submitted by /u/donutloop [link] [comments]

A veteran transitioning into cybersecurity shares what to expect from the SANS Introductory Python course — projects, lessons, and honest…Continue reading on Medium »

So I wanted to automate something that I was doing manually for way too long. Every day I would open TweetFeed, look at the latest IoCs…Continue reading on Medium »

They’re basically used to connect older machines (like industrial or medical equipment) to modern networks… and they sit right in between digital systems and physical processes. Turns out 22 vulnerabilities were found in some of these devices, and thousands are still exposed online. Some of the flaws even allow unauthenticated access or full device takeover. What’s interesting is that these aren’t the kind of devices most people think about when it comes to security… but they can directly affect real-world systems. Feels like another example of how the biggest risks aren’t always the obvious ones. (linking the article for anyone interested) Let me know what ya'll think about this. submitted by /u/PlaneTension1579 [link] [comments]

ChallengeContinue reading on Medium »

Supply chain attacks are having a moment. The postinstall script is a 41KB credential stealer. What's interesting is there's no obfuscation at all. No eval, no atob, no curl piped to shell. Just well written javascript using standard node APIs. require('https'), execSync, fs.readFileSync, crypto.publicEncrypt. It grabs ~/.npmrc, ~/.aws/credentials, ~/.ssh/, chrome login databases, crypto wallets. Encrypts with a bundled public key and sends it to an ICP canister so you can't take it down with a domain seizure. Most tooling that flags postinstall scripts looks for obfuscation patterns. This wouldn't trigger any of them. The actual red flags are behavioral, a postinstall that reads credential files and makes network calls on a package with no native build dependencies. 1.1.14 is clean. The three bad versions are still on the registry. submitted by /u/-Devlin- [link] [comments]

With the rapid advancement of technology, businesses worldwide have to rely on applications to work, scale, and serve customers. From the…Continue reading on Medium »

IP-pakket ingekapseld in een Ethernet-frame In most situations we want our devices to able to connect beyond our local network: out to…Continue reading on Medium »

Choosing the right Facility Management Services in Bangalore is very important for both homes and businesses. A clean and organized…Continue reading on Medium »

submitted by /u/Indie-Intervalist [link] [comments]

Being broke doesn’t necessarily lead to security compromisesContinue reading on Medium »

1. دورة حياة الطلب والاستجابة (HTTP Request/Response)Continue reading on Medium »

A step-by-step guide to diagnosing mDNS storms, closing security holes, hardening a Linux home server, and designing a network that…Continue reading on Medium »

Why losing your TOTP device reveals your security architecture and how Laravel developers should build recovery systems that truly protect…Continue reading on Nerd For Tech »

The tradeoffs nobody warned me about before I went all-in on OPAContinue reading on Medium »

So our CISO came back from a conference about six months ago fully locked in on CTEM and I've been tasked with figuring out how we actually do it. And I get the concept, I really do. Continuous exposure management, prioritize what's actually exploitable, close the loop with remediation, great. Love it. Very cool framework. But like... what does day one actually look like? Because right now our stack is Tenable for VM, we've got some cloud stuff in Wiz, and honestly our external attack surface is kind of a mystery to us. We grew through a few acquisitions and I'm not even 100% sure we know everything that's out there with our name on it. Shadow IT is real and it haunts me. The way I see it, our problem isn't that we don't have data. We have too much data and none of it talks to each other. Tenable gives us one list, Wiz gives us another, and then someone finds something via a pen test that wasn't in either. It's a mess. And our IT team is already drowning so when we send them a remediation list, realistically maybe 20% of it gets touched. I've been reading about CTEM and every vendor deck makes it sound super clean and linear (discover, assess, prioritize, validate, mobilize, okay sure) but I feel like in the real world you'd just immediately get stuck at step one because you don't even have a complete picture of your external surface. So I guess my actual questions are: Did you start with getting your external attack surface nailed down first, or did you try to tackle everything at once? How do you handle the asset inventory problem if you're a mid-size org with some M&A baggage? Is there a realistic way to do this without hiring three more people? Would love to hear what actually worked vs. what sounded good in a vendor presentation. Especially if you've been through this at an org with 5-10k employees, that's roughly our size. submitted by /u/theavailablejuror [link] [comments]

How Uniworth Security delivers licensed, 24/7 armed and unarmed security guard services across Davis — from UC Davis campus areas and…Continue reading on Medium »

Looking for advice in order to land first job in cybersecurity. Little about me … military veteran, currently working armed security for the federal government with a high risk security clearance (hopefully this plays in my favor) I’m also about halfway through my masters degree in cybersecurity but took a break due to personal issues. I recently got back into studying for the security plus exam and plan to take that next month but would love some advice by people in the industry to land a first job. I know how difficult it is currently and want to make sure I’m making the best use of my time. Should I finish my masters? Just get security + and start applying? Other suggestions? submitted by /u/No-Kaleidoscope-8925 [link] [comments]

For consultants / auditors / advisors: How often do you see companies decide "we need SOC 2 now" when the real issue is something else first (questionnaires, one enterprise prospect, immature ops, investor pressure, unclear scope, etc.)? Curious how common premature SOC 2 really is. submitted by /u/VerifAITrust [link] [comments]

submitted by /u/Neymar11rose [link] [comments]

submitted by /u/Fcking_Chuck [link] [comments]

Hey everyone, just wanted to see if I could get another set of eyes on a lab that I've been trying to build for a few months. There is a few bugs out there. Still trying to get most of the llm vulnerabilities and build out the labs for half of them. One man team so bear with me. DM me if you have any questions. Concerns do you want to report a bug? Just press the button on the bottom of each lab https://www.aipwn.me/ submitted by /u/chrisbliss13 [link] [comments]

Going through the recruiting process right now, super nervous, Anyone in here got any experience? submitted by /u/Nz_Kasadiya [link] [comments]

Iranian media is claiming that the US used backdoors and/or botnets to disable networking equipment during the current war, and Chinese state media is dining out on the allegations. submitted by /u/rkhunter_ [link] [comments]

Today I secured a job interview for an installation technician position, and I am wondering if anyone within any field relative to this has any insight on what I might expect in the interview process. I understand, and am comfortable explaining networking concepts. I can explain them both technically and simply, but is there any certain thing I should be preparing for? I tend to overthink and like to look for every sort of situation I might get hit with (I know this is nearly impossible). I feel I have enough base knowledge of the entire field, but welcome any input/suggestions. submitted by /u/Far_Indication_1682 [link] [comments]

How to build a fast, secure, and reliable OTP verification system for Salesforce Experience Cloud using Platform Cache, SHA-256 hashing…Continue reading on Medium »

Hello, I have been working as an analyst for about a year, and I have recently made it to the last round for a position. I am aware that the person I am going against has more experience, better certs, and just better overall imo. I'm very enthusiastic about this type of work, and that's what I'm leaning on going into this final interview. I really want this gig, and I feel that it's a great opportunity for me to grow. I guess I am asking for advice on how I should approach this final interview and what the hiring team values over just experience. submitted by /u/IllDuty1690 [link] [comments]

I'm curious to get everyone's take on this. The U.S. Bureau of Labor Statistics has a projection of 29% growth for Information Security Analysts in the next decade. From my research, it seems that the BLS statistics tend to be fairly accurate. They have a low margin of error, but they tend to be fairly on point, and this projection is one of their highest, which I feel shows a level of confidence in its accuracy. https://www.bls.gov/ooh/computer-and-information-technology/information-security-analysts.htm#tab-1 However, everything I've seen in the field and from talking to others indicates the opposite. It seems that AI has already culled a large number of SOC positions and will likely continue to do so. Are these jobs indicative of a shift towards AI compliance? How do you see the market shifting? Personally, I see it leaning more towards what cybersecurity used to be as a mid-late career transition for existing IT professionals. Although now it's hard to say what mid-late IT looks like for people in the future, since I feel most traditional sys admin roles will shrink. submitted by /u/YourSexyStepSis [link] [comments]

The hotel management is cooperative and denies any involvement, and there is no CCTV footage available. Given that I have access to the hotel’s network, what would be the most effective approach to identify the individual responsible for placing and operating this device? even if the operator used VPNs for watching live video submitted by /u/Gautam7009376762 [link] [comments]

Hi, I have been in the field for a while, and when I started my journey I saw and used paul Jerimy cert which really help me view all my options and plan ahead. After couple of years I also started teaching cybersecurity on the side. Now I always use Paul Jerimy roadmap to show my students the size of the industry and help them plan but the last update was in 2024 and I did not find any alternative which felt quite right. So I decided to build my own and also make it publicly in the end in case it helps others the same way Paul's map helped me and also get some feedback. Now about the current features - 385 certs across 15 domains, each with actual data (each has a profile) and difficulty, practical weight(debatable), cost, DoD 8140 status and what roles it opens(there are also role possible paths). features sum: Cert view with filters by domain, level, cost, DoD 8140, and practical % Skills view: find certs by their need/giving skills Role paths for 40+ careers with estimated times Would love feedback and opinions from the community and I will note that its still in early days and there is more planned. Here it is - ebcertmap.com submitted by /u/Soft-Ad3507 [link] [comments]

submitted by /u/danielminds [link] [comments]

Hello Does anyone have any advice on how to get a webpage taken down? Ive found a few webpage with non consensual explicit content uploaded, they have no DMCA or report pages and the ones that did lead to a 404 page. Ive emailed the hosting providers multiple times and even the police department of the country that the IP addresses are in yet ive recieved no response from any of them. Ive also reported the IP addresses multiple times to cybercrime sites etc Is there any other route i can go? submitted by /u/DanyaDramaLlama97 [link] [comments]

submitted by /u/MiKeMcDnet [link] [comments]

submitted by /u/Doug24 [link] [comments]

Hi everyone, I have been working as a pentester at one company for the last 4 years or so, and have recently started looking at other job openings. So far I had interviews for 3 different places. The first one, I was told that at the second stage I will be doing a simulated web app assessment + report writing, which they would give me a week to complete. Although I didn't get through to the second stage for that place. The most recent one I did, had a nice chat on the initial interview call, they have now asked me if I could spend a full day at the weekend (or 2 sessions on weekday evenings) to complete a test + reporting. I know I probably sound lazy, but it's a significant amount of time to spend, unpaid, and potentially just for them to say that they will not hire me. Should I even bother? Or is this very normal part of the process? Any advice is appreciated. Thanks all. submitted by /u/thicchkd [link] [comments]

submitted by /u/drewchainzz [link] [comments]

This is the weekly thread for career and education questions and advice. There are no stupid questions; so, what do you want to know about certs/degrees, job requirements, and any other general cybersecurity career questions? Ask away! Interested in what other people are asking, or think your question has been asked before? Have a look through prior weeks of content - though we're working on making this more easily searchable for the future. submitted by /u/AutoModerator [link] [comments]