■■■□□ PKfail Secure Boot bypass lets attackers install UEFI malware. https://www.bleepingcomputer.com/news/security/pkfail-secure-boot-bypass-lets-attackers-install-uefi-malware/ https://t.me/cKure/14463
All posts in Uncategorized
July 27, 2024 at 10:02AM
■■■□□ Secure Boot BIOS security has been compromised on hundreds of PC models from big brands because firmware engineers used four-letter passwords. https://www.pcgamer.com/hardware/hard-to-believe-but-secure-boot-bios-security-has-been-compromised-on-hundreds-of-pc-models-from-big-brands-because-firmware-engineers-used-four-letter-passwords/ https://t.me/cKure/14462
July 26, 2024 at 09:29PM
■■■■□ Privacy: Apple giving governments access to your camera and photo album is certain to end well. https://www.theverge.com/2024/7/24/24205177/apple-iphone-ios-18-emergency-sos-live-video-chat-911 https://t.me/cKure/14461
July 26, 2024 at 04:02PM
■□□□□ Cyber Security Job Application for Indian Army in offensive security. Applicable for Indian citizens. Applications are open. https://defencedirecteducation.com/2024/07/24/territorial-army-notification-2024-cyber-tasks/ https://t.me/cKure/14460
July 26, 2024 at 01:26PM
■□□□□ Noida doctor duped of INR 5.9 million after being put under 2-day ‘digital arrest’. https://www.indiatoday.in/india/story/noida-doctor-duped-digital-arrest-scam-cyber-crime-telecom-officials-2571781-2024-07-25 https://t.me/cKure/14459
July 26, 2024 at 06:00AM
■■■■■ Injecting Malicious Code into PDF Files and PDF Dropper Creation. https://cti.monster/blog/2024/07/25/pdfdropper.html#title https://t.me/cKure/14457
July 26, 2024 at 01:27AM
■■■□□ A member of BreachForums has posted about a significant data breach involving CrowdStrike. The compromised data includes aliases, last active dates, status, origin, target industries, target countries, actor types, and motivations. Additionally, their entire IOC list, comprising more than 250 million data points, has been scraped and will be released soon. https://t.me/cKure/14456
July 25, 2024 at 11:54PM
■■■■□ Microsoft Defender Flaw Exploited to Deliver ACR, Lumma, and Meduza Stealers. https://thehackernews.com/2024/07/microsoft-defender-flaw-exploited-to.html https://t.me/cKure/14454
July 25, 2024 at 10:25PM
■□□□□ EDR Telemetry Blocking via Person-in-the-Middle Attacks. https://tierzerosecurity.co.nz/2024/07/23/edr-telemetry-blocker.html https://t.me/cKure/14453
July 25, 2024 at 07:12PM
■□□□□ Cyber-Crime by the nation state (Ukraine): Major Russian banks hit with DDoS attacks as Ukraine claims responsibility. https://therecord.media/major-russian-banks-ddos-attack-ukraine https://t.me/cKure/14451