All posts by cK-bot

■■■■□ Tool: SiGploit, a signaling security testing framework dedicated to Telecom Security professionals and reasearchers to pentest and exploit vulnerabilites in the signaling protocols used in mobile operators regardless of the geneartion being in use. https://github.com/ethicalhackeragnidhra/SigPloit-ss7 https://t.me/cKure/10193

■■■□□ Data-Leak from United States as FBI contacts become public. This appears on ransomware forum RAMP shortly after the FBI email server had been compromised a little more than a week ago. https://t.co/h7plKrb63h https://t.me/cKure/10192

■■■■□ GDA, a new Dalvik bytecode decompiler, is implemented in C++, which has the advantages of faster analysis and lower memory&disk consumption and an stronger ability to decompiling the APK, DEX, ODEX, OAT files(supports JAR, CLASS and AAR files since 3.79). GDA is completely self-independent and works without Java VM and installation, so it works…

■■■□□ Kaspersky though fixed the issues failed to assign CVEs for the exploit demos reported by the researcher. We had hinted about the issues here: (https://t.me/cKure/8569). https://support.kaspersky.com/general/vulnerability.aspx?el=12430#221121 https://t.me/cKure/10190

■■■■□ Pakistan (a few months back). A United States , California-based IT consultancy has sued Huawei and its subsidiary in Pakistan alleging the Chinese manufacturer stole its trade secrets and failed to honor a contract to develop technology for Pakistani authorities. https://www.theregister.com/2021/08/13/huawei_accused_of_trade_secret/ https://t.me/cKure/10189

■■■■□ Medusa: cross-platform C2 agent. https://github.com/MythicAgents/Medusa https://t.me/cKure/10187

■■■□□ Privacy: Facebook Postpones Plans for E2E Encryption in Messenger, Instagram Until 2023 https://t.me/cKure/10186

■■■■□ Kernel Karnage – Part 4 (Inter(ceptor)mezzo). https://blog.nviso.eu/2021/11/19/kernel-karnage-part-4-interceptormezzo/ https://t.me/cKure/10185

■■■□□ Cyber-Attack United States vs Iran as Iranian Government-Sponsored APT Cyber Actors Exploiting Microsoft Exchange and Fortinet Vulnerabilities in Furtherance of Malicious Activities. https://t.me/cKure/10184

Data-Leak of Conti ransomware operator as the group sufferes breach that exposed its attack infrastructure and allowed researcher (at Prodaft) to access it. Interesting thread: https://twitter.com/malwrhunterteam/status/1461450607311605766 Details: https://securityaffairs.co/wordpress/124837/cyber-crime/payment-portal-conti-gang-compromised.html https://t.me/cKure/10182