All posts by cK-bot

■■■■□ Airstrike Attack – FDE bypass and EoP on domain joined Windows workstations (CVE-2021-28316). https://shenaniganslabs.io/2021/04/13/Airstrike.html https://t.me/cKure/7643

■■■■□ India : A large BGP routing leak that occurred last night disrupted the connectivity for thousands of major networks and websites around the world. Although the BGP routing leak occurred in Vodafone’s autonomous network (AS55410) based in India, it has impacted U.S. companies, including Google, according to sources. https://www.bleepingcomputer.com/news/security/major-bgp-leak-disrupts-thousands-of-networks-globally/ https://t.me/cKure/7642

■■□□□ IRTriage – Incident Response Triage – Windows Evidence Collection For Forensic Analysis. https://github.com/AJMartel/IRTriage https://t.me/cKure/7641

■□□□□ A hacker claims to be selling sensitive data from OTP generating firm. The OTP-generating firm has some of the top giants as clients including Google, Facebook, Amazon, Apple, Microsoft, Signal, Telegram and Twitter, etc. https://www.hackread.com/hacker-selling-data-from-otp-generating-firm/ https://t.me/cKure/7640

■■■□□ SolarWinds supply chain attack also impacted six European Union institutions, European Commissioner for Budget and Administration confirmed. https://securityaffairs.co/wordpress/116914/hacking/solarwinds-eu-agencies-hacked.html https://t.me/cKure/7639

■□□□□ Indonesia : Hackers arrested over $60 million US Covid-19 scam. https://www.msn.com/en-xl/news/world/indonesian-hackers-arrested-over–million-us-covid-scam/ar-BB1fIjeS https://t.me/cKure/7638

■■□□□ GetSimple CMS My SMTP Contact Plugin 1.1.1 – CSRF to RCE. https://www.exploit-db.com/exploits/49774 https://t.me/cKure/7637

■■■□□ Cockpit CMS flaws exposed web servers to NoSQL injection exploits. https://portswigger.net/daily-swig/cockpit-cms-flaws-exposed-web-servers-to-nosql-injection-exploits https://t.me/cKure/7636

■□□□□ Facebook Faces Mass Legal Action Over Data Leak. https://packetstormsecurity.com/news/view/32204/Facebook-Faces-Mass-Legal-Action-Over-Data-Leak.html https://t.me/cKure/7635

■□□□□ #Exclusive | Data-Leak: Asus Middle East leaks 14K records due to Broken Authentication. Note: This data has not been leaked and is under responsible disclosure for Asus to fix. The data includes: Email, Bill, Serial No. of device. The bill has variety of informatiom like transaction IDs card details and other details what a…