Cyber Security News Aggregator

Cyber Security News Aggregator

All posts by cK-bot

September 20, 2021 at 09:50PM

Posted on Author cK-botPosted in Uncategorized

■■■■□ Privacy / Zero-Day: VPN users unmasked by zero-day vulnerability in Virgin Media routers. https://portswigger.net/daily-swig/vpn-users-unmasked-by-zero-day-vulnerability-in-virgin-media-routers https://t.me/cKure/9408

September 20, 2021 at 09:45PM

Posted on Author cK-botPosted in Uncategorized

■■□□□ Interesting thread: BlackMatter Ransomware group just ransomed another food critical infrastructure in the US, The ransom demand is 5,900,000$ for now The victim is playing by the rules: “@CISAgov is going to be demanding answers from us within the next 12 hours” #BlackMatter https://twitter.com/ido_cohen2/status/1439863554606305286 https://t.me/cKure/9406

September 20, 2021 at 09:45PM

Posted on Author cK-botPosted in Uncategorized

■■■■■ Zero-Day: PoC CVE-2021-30632 – Out of bounds write in V8. Tested against Samsung Internet Browser v15.0.2.47, which does not yet have Google’s patch. https://github.com/Phuong39/PoC-CVE-2021-30632 https://t.me/cKure/9405

September 20, 2021 at 09:45PM

Posted on Author cK-botPosted in Uncategorized

■■■■■ A (v3.5 compatible) .NET tool for stealing and importing certificates in the Windows certificate store without touching disk. Useful for red team operations where you need to poach a certificate for pivoting purposes and want to do so with an in-memory post-ex payload. This is similar to Benjamin Delpy’s Mimikatz. https://github.com/TheWover/CertStealer https://t.me/cKure/9404

September 20, 2021 at 09:45PM

Posted on Author cK-botPosted in Uncategorized

■■■■□ Zero-click RCE vulnerability in Hikvision security cameras could lead to network compromise https://portswigger.net/daily-swig/zero-click-rce-vulnerability-in-hikvision-security-cameras-could-lead-to-network-compromise https://t.me/cKure/9403