Cyber Security News Aggregator

Cyber Security News Aggregator

All posts by cK-bot

November 23, 2021 at 03:27PM

Posted on Author cK-botPosted in Uncategorized

■■■■■ Can you trust a file’s digital signature? A new #Zloader campaign abuses CVE-2013-3900 for defense evasion. HTA content appended to a signed Microsoft DLL, without breaking trust MSHTA used to execute the appended script CVE-2013-3900 still unpatched by default https://t.co/5n1AoS6hsl https://t.me/cKure/10214

November 23, 2021 at 03:37AM

Posted on Author cK-botPosted in Uncategorized

Another Microsoft Zero-Day exploit pertaining to bad fix of CVE-2021-41379. https://github.com/klinix5/InstallerFileTakeOver Details: https://www.bleepingcomputer.com/news/microsoft/new-windows-zero-day-with-public-exploit-lets-you-become-an-admin/ https://t.me/cKure/10212

November 23, 2021 at 03:29AM

Posted on Author cK-botPosted in Uncategorized

■□□□□ In August, KrebsOnSecurity warned that scammers were contacting people and asking them to unleash ransomware inside their employer’s network, in exchange for a percentage of any ransom amount paid by the victim company. This week, authorities in Nigeria arrested a suspect in connection with the scheme – a young man who said he was…

Read

November 23, 2021 at 03:01AM

Posted on Author cK-botPosted in Uncategorized

CVE-2021-42321: Proof-of-concept exploit code has been released online over the weekend for an actively exploited high severity vulnerability impacting Microsoft Exchange servers. https://gist.github.com/testanull/0188c1ae847f37a70fe536123d14f398 https://t.me/cKure/10207

November 23, 2021 at 02:54AM

Posted on Author cK-botPosted in Uncategorized

■□□□□ Fake website for renting a hit-man has been up for over 16 years and is used as a honeypot for potential crimes. https://rentahitman.com/ Details: https://www.washingtonpost.com/nation/2021/11/22/rent-a-hitman-website/ https://t.me/cKure/10205