/r/netsec's Q4 2021 Information Security Hiring Thread Security News & Discussion

---

• /r/netsec's Q4 2021 Information Security Hiring Thread
• List of public BGP hijacking incidents
• Misconfigured Airflows Leak Credentials from Popular Services
• Creating an IoT botnet of IPTVs to rickroll 10,000+ students
• Atom Silo ransomware actors use Confluence exploit, DLL side-load for stealthy attack
• OnionShare 2.3 >= 2.3.3 Vulnerabilities (CVE-2021-41868 and CVE-2021-41867)
• Undectable backdooring of PE file using dual code caves & encoding
• An Intro to Fuzzing (AKA Fuzz Testing)
• Welcoming Dragonfly, a modern malware sandbox built on binary emulation tools
• BazarLoader and the Conti Leaks
• Implicit Overflow Considered Harmful

/r/netsec's Q4 2021 Information Security Hiring Thread Posted: 03 Oct 2021 02:09 PM PDT Overview If you have open positions at your company for information security professionals and would like to hire from the /r/netsec user base, please leave a comment detailing any open job listings at your company. We would also like to encourage you to post internship positions as well. Many of our readers are currently in school or are just finishing their education. Please reserve top level comments for those posting open positions. Rules & Guidelines Include the company name in the post. If you want to be topsykret, go recruit elsewhere. Include the geographic location of the position along with the availability of relocation assistance or remote work. If you are a third party recruiter, you must disclose this in your posting. Please be thorough and upfront with the position details. Use of non-hr'd (realistic) requirements is encouraged. While it's fine to link to the position on your companies website, provide the important details in the comment. Mention if applicants should apply officially through HR, or directly through you. Please clearly list citizenship, visa, and security clearance requirements. You can see an example of acceptable posts by perusing past hiring threads. Feedback Feedback and suggestions are welcome, but please don't hijack this thread (use moderator mail instead.) submitted by /u/ranok [link] [comments]

List of public BGP hijacking incidents Posted: 04 Oct 2021 09:46 AM PDT submitted by /u/dontbenebby [link] [comments]

Misconfigured Airflows Leak Credentials from Popular Services Posted: 04 Oct 2021 08:13 AM PDT submitted by /u/Milafasents [link] [comments]

Creating an IoT botnet of IPTVs to rickroll 10,000+ students Posted: 04 Oct 2021 02:11 PM PDT submitted by /u/WhiteHoodHacker [link] [comments]

Atom Silo ransomware actors use Confluence exploit, DLL side-load for stealthy attack Posted: 04 Oct 2021 01:19 PM PDT submitted by /u/ksr_malware [link] [comments]

OnionShare 2.3 >= 2.3.3 Vulnerabilities (CVE-2021-41868 and CVE-2021-41867) Posted: 04 Oct 2021 01:59 AM PDT submitted by /u/IHTeam [link] [comments]

Undectable backdooring of PE file using dual code caves & encoding Posted: 03 Oct 2021 02:16 PM PDT submitted by /u/InformationSecurity [link] [comments]

An Intro to Fuzzing (AKA Fuzz Testing) Posted: 04 Oct 2021 01:12 PM PDT submitted by /u/breach_house [link] [comments]

Welcoming Dragonfly, a modern malware sandbox built on binary emulation tools Posted: 04 Oct 2021 08:46 AM PDT submitted by /u/samaritan_o [link] [comments]

BazarLoader and the Conti Leaks Posted: 03 Oct 2021 06:37 PM PDT submitted by /u/TheDFIRReport [link] [comments]

Implicit Overflow Considered Harmful Posted: 04 Oct 2021 08:11 AM PDT submitted by /u/pimterry [link] [comments]

You are subscribed to email updates from /r/netsec - Information Security News & Discussion. To stop receiving these emails, you may unsubscribe now.	Email delivery powered by Google
Google, 1600 Amphitheatre Parkway, Mountain View, CA 94043, United States