All posts by cK-bot

■■■□□ Shepard – In Progress Persistent Download/Upload/Execution Tool Using Windows BITS. https://github.com/d3adzo/shepard https://t.me/cKure/8292

■□□□□ HTTP 101 / research on a few fundamental concepts. https://youtu.be/msdymgkhePo https://t.me/cKure/8291

■■■□□ Mass scanning activity detected from 104.40.252.159 checking for VMware vSphere hosts vulnerable to remote code execution exploit. The IP is owned by Microsoft and is its hosting service. https://t.me/cKure/8290

■■■□□ The US Department of Justice (DOJ) announced the arrest of a Latvian woman for her alleged role in the development of the Trickbot malware. United States Latvia https://t.me/cKure/8289

■■■■■ https://zer1t0.gitlab.io/posts/attacking_ad/ https://t.me/cKure/8288

■■□□□ Necro Python Malware Upgrades With New Exploits and Crypto Mining Capabilities. https://thehackernews.com/2021/06/necro-python-malware-upgrades-with-new.html https://t.me/cKure/8287

■■■■■ Check Out This Great RCE PoC Walkthrough For The VMware ESXi OpenSLP Heap Overflow Vulnerability. https://packetstormsecurity.com/news/view/32346/Check-Out-This-Great-RCE-PoC-Walkthrough-For-The-VMware-ESXi-OpenSLP-Heap-Overflow-Vulnerability.html https://t.me/cKure/8285

■□□□□ Cox Media Group tv, radio station streams affected by a reported ransomware attack. https://threatpost.com/cyberattack-cox-outage-tv-radio/166680/ https://t.me/cKure/8284

■■□□□ Attackers scan for unpatched VMware vCenter servers, PoC exploit available. https://www.bleepingcomputer.com/news/security/attackers-scan-for-unpatched-vmware-vcenter-servers-poc-exploit-available/ https://t.me/cKure/8283

■■■■□ Chinese Actors Reportedly Breached America’s Largest Transport MTA’s Network. The attackers reportedly exploited a zero-day vulnerability in the Pulse Connect Secure remote access product to penetrate the IT systems of New York’s Metropolitan Transportation Authority (MTA) in April. Although they achieved persistence for several days and compromised three of the transit authority’s 18 computer…