this post was submitted on 09 May 2025
181 points (97.9% liked)

Cybersecurity

7161 readers
321 users here now

c/cybersecurity is a community centered on the cybersecurity and information security profession. You can come here to discuss news, post something interesting, or just chat with others.

THE RULES

Instance Rules

Community Rules

If you ask someone to hack your "friends" socials you're just going to get banned so don't do that.

Learn about hacking

Hack the Box

Try Hack Me

Pico Capture the flag

Other security-related communities !databreaches@lemmy.zip !netsec@lemmy.world !securitynews@infosec.pub !cybersecurity@infosec.pub !pulse_of_truth@infosec.pub

Notable mention to !cybersecuritymemes@lemmy.world

founded 2 years ago
MODERATORS
kid@sh.itjust.works
Lanky_Pomegranate530@midwest.social
181
DOGE software engineer’s computer infected by info-stealing malware (arstechnica.com)
submitted 13 hours ago by kid@sh.itjust.works to c/cybersecurity@sh.itjust.works
18 comments fedilink hide all child comments
you are viewing a single comment's thread
view the rest of the comments
[–] can@sh.itjust.works 8 points 10 hours ago (1 children)

In the event, however, that Schutt used the same or similar credentials in systems or machines during his work at CISA and DOGE, attackers may already have been able to access sensitive information he’s privy to. And as Lee noted, the four dumps from stealer logs show that at least one of his devices was hacked at some point.

I don't trust that they have as good password practices as you.

[–] sylver_dragon@lemmy.world 2 points 6 hours ago

Fair enough, but absent any evidence that password reuse is leading to a problem, the article is trying to claim that him being the victim of previous breaches is somehow a failure of security on his part. That's just dumb. Maye he did reuse passwords and that's going to cause problems. But, absent any evidence of it, the whole article just comes off as yellow journalism, at best.