All posts by cK-bot

■■■□□ United States DOJ has announced it won’t charge security research under the country’s hacking law. Might end years of uncertainty about security research and the law. https://t.me/cKure/11362

■■■■□ Tool EV: IDS Evasion via TCP/IP Packet Manipulation. https://github.com/TomAPU/ev https://t.me/cKure/11361

“Masato Kinugawa vs Microsoft Teams” live from Pwn2Own Vancouver 2022. https://t.co/EeQLS2Sbwfhttps://youtu.be/3fWo0E6Pa34 https://t.me/cKure/11360

■■■■■ Pro-Iran Hacking Unit Claims “Second-Degree Cyber Attack” on Website of DC-based Think Tank. https://ent.siteintelgroup.com/Technology-Terrorism/pro-iran-hacking-unit-claims-second-degree-cyber-attack-on-website-of-dc-based-think-tank.html https://t.me/cKure/11359

■■□□□ Bypassing WAF to Weaponize a Stored XSS. https://infosecwriteups.com/bypassing-waf-to-weaponize-a-stored-xss-ff9963c421ee https://t.me/cKure/11358

■■■□□ When Your Smart ID Card Reader Comes With Malware. https://krebsonsecurity.com/2022/05/when-your-smart-id-card-reader-comes-with-malware/ https://t.me/cKure/11357

■■□□□ United States links Thanos and Jigsaw ransomware to 55-year-old doctor. https://www.bleepingcomputer.com/news/security/us-links-thanos-and-jigsaw-ransomware-to-55-year-old-doctor/ https://t.me/cKure/11356

■■■■□ BLE vulnerability may be exploited to unlock cars, smart locks, building doors, smartphones. https://www.helpnetsecurity.com/2022/05/17/ble-vulnerability/ https://t.me/cKure/11355

■■■■□ pocsploit: open source PoC verification framework (tool). https://github.com/cckuailong/pocsploit https://t.me/cKure/11354

■■■■■ Cyber-War: A custom PowerShell RAT uses to target German users using Ukraine crisis as bait. Custom PowerShell RAT targets Germans seeking information about the Ukraine crisis https://securityaffairs.co/wordpress/131353/intelligence/powershell-rat-targets-germany-ukraine-bait.html https://t.me/cKure/11353