All posts in Uncategorized

■■■■□ New AMSI Bypass Using CLR Hooking. https://practicalsecurityanalytics.com/new-amsi-bypass-using-clr-hooking/ https://t.me/cKure/14714

■■■■□ Unconfirmed: New wave of device explosions in Lebanon by Israel using Power-Gate (likely supply chain) attack. https://t.me/cKure/14713

■■■□□ Tools for searching emails for a specific domain: snov.io/email-finder experte.com/email-finder github.com/Josue87/EmailFinder github.com/GiJ03/Infoga infoga.io findemail.io hunter.io/domain-search anymailfinder.com/email-finder-by-domain minelead.io #osint https://t.me/cKure/14712

■■□□□ Power-Gate Cyber-Attack (mass causality event) update. United States’ (State Dept.) disavows their involvement in the zionist crime by the state of Israel However, circumstantial evidence suggests otherwise. In the picture: American University of Beirut Medical Center replaced the pagers of their doctors and staff two weeks ago. https://t.me/cKure/14709

■■■□□ Cyber-War: Unclassified zero-day Power-Gate exploit by the Zionist entity (Israel ) likely involved the following steps. 1. Pager firmware 0-day (for custom firmware update) or Kernel 0-day for the OS through the network or by the supply chain attack. 2. Payload would likely bypass auto-cut for exceeding voltage , overcharging, temperature (thermal runaway), or…

Zero-Day: Israel 🇮🇱 conducted a kinetic cyberattack using power surge to target handheld pager systems used by Lebabnon’s resistance members (aka Hizbollah) in Beirut’s southern suburbs leading to dozens of injuries in Lebanon 🇱🇧 The attack was executed in civilian areas of a sovereign nation. Around 1K cases have been reported. https://t.me/cKure/14701

■□□□□ North Korean hackers are using LinkedIn to spread RustDoor malware, posing as crypto recruiters to target professionals. They trick victims into downloading booby-trapped coding tests, with macOS backdoor. https://thehackernews.com/2024/09/north-korean-hackers-target.html https://t.me/cKure/14697

■■□□□ Exploiting Microsoft Kernel Applocker Driver (CVE-2024-38041). https://csa.limited/blog/20240916-Exploiting-Microsoft-Kernel-Applocker-Driver.html https://t.me/cKure/14696

■■■□□  United States cracks down on spyware vendor Intellexa with more sanctions Today, the U.S. Department of the Treasury has sanctioned five executives and one entity linked to the Intellexa Consortium for developing and distributing Predator commercial spyware. https://www.bleepingcomputer.com/news/security/us-cracks-down-on-spyware-vendor-intellexa-with-more-sanctions/ https://t.me/cKure/14695

■■■□□ Cybersecurity experts have flagged a new phishing method that manipulates HTTP refresh headers to deliver spoofed login pages and steal credentials. https://thehackernews.com/2024/09/cybercriminals-exploit-http-headers-for.html https://t.me/cKure/14694