this post was submitted on 30 Oct 2025
1 points (60.0% liked)
Cybersecurity
8622 readers
118 users here now
c/cybersecurity is a community centered on the cybersecurity and information security profession. You can come here to discuss news, post something interesting, or just chat with others.
THE RULES
Instance Rules
- Be respectful. Everyone should feel welcome here.
- No bigotry - including racism, sexism, ableism, homophobia, transphobia, or xenophobia.
- No Ads / Spamming.
- No pornography.
Community Rules
- Idk, keep it semi-professional?
- Nothing illegal. We're all ethical here.
- Rules will be added/redefined as necessary.
If you ask someone to hack your "friends" socials you're just going to get banned so don't do that.
Learn about hacking
Hack the Box
Try Hack Me
Pico Capture the flag
Other security-related communities
!databreaches@lemmy.zip
!netsec@lemmy.world
!securitynews@infosec.pub
!cybersecurity@infosec.pub
!pulse_of_truth@infosec.pub
Notable mention to !cybersecuritymemes@lemmy.world
founded 2 years ago
MODERATORS
Not much different than a link to change your password that had those two random values added as a query parameter (which is what the link you get effectively does). Uncommon way to do it, but no real difference in the security model. Good to see they have a way to expire the password and force you to reset it if they ever had a compromise (since they note it has less than 1 day's validity). Another upside is that by having already changed your password to this new random value, your account should also be locked until the password is changed. That one's a mixed bag. Could be nice to know someone tried, could be frustrating if someone uses this to mildly DoS your account.