Cyber Security News Aggregator

Cyber Security News Aggregator

All posts by cK-bot

October 10, 2021 at 12:13AM

Posted on Author cK-botPosted in Uncategorized

■■■■■ Zero-Day: add. apache 2.4.49 CVE-2021-41773 – RCE Apache 2.4.49 CVE-2021-41773 and Apache 2.4.50 CVE-2021-42013 – SCANNER/TRAVERSAL/RCE. https://github.com/rapid7/metasploit-framework/pull/15754 https://t.me/cKure/9720

October 10, 2021 at 12:09AM

Posted on Author cK-botPosted in Uncategorized

■■■■□ According to ESET’s researchers, components of FontOnLake malware are divided into three groups: Trojamized app, Rootkit, and Backdoor. Avast, Tencent and Lacework Labs are also tracking the malware. https://www.welivesecurity.com/wp-content/uploads/2021/10/eset_fontonlake.pdf https://www.hackread.com/fontonlake-rootkit-malware-linux-systems/ https://t.me/cKure/9719

October 9, 2021 at 06:57PM

Posted on Author cK-botPosted in Uncategorized

■■■■■ CVE-2021-40870 Exploitation. An issue was discovered in Aviatrix Controller 6.x before 6.5-1804.1922. Unrestricted upload of a file with a dangerous type is possible, which allows an unauthenticated user to execute arbitrary code via directory traversal. https://github.com/0xAgun/CVE-2021-40870 https://t.me/cKure/9716

October 9, 2021 at 01:28PM

Posted on Author cK-botPosted in Uncategorized

■■□□□ Data-Leak from Israel 🇮🇱 as onlinr shop database with ~10K records is leaked online. Invitation Order date 13.07.2021 Order time 06:41 IP 80.179.152.137 Order status complete Payment details Payment date 13.07.2021 06:41 Price 159 NIS payment method shipping address Name Kfir **** 1st Coral Street City Ser Zip code 2280500 Cell phone 0504****** Delivery…

Read

October 9, 2021 at 01:21PM

Posted on Author cK-botPosted in Uncategorized

■■■■□ Multi-universe of adversary: multiple campaigns of the Lazarus group and their connections. https://vblocalhost.com/conference/presentations/multi-universe-of-adversary-multiple-campaigns-of-the-lazarus-group-and-their-connections/ https://t.me/cKure/9711