All posts in Uncategorized

■■■■□ VLC Media Player Vulnerabilities Allow Remote Code Execution. https://cybersecuritynews.com/vlc-media-player-vulnerabilities/ https://t.me/cKure/14291

■■■■□ Data-Leak of military documents from China China says 2 military employees sold 60 pounds of secret documents to a recycling plant, allowing a shopper to bag 4 volumes for under $1. https://www.businessinsider.com/china-military-secrets-60-pounds-sold-4-volumes-six-yuan-2024-6 https://t.me/cKure/14290

■■■■□ IDA plugin for UEFI firmware analysis and reverse engineering automation. https://github.com/binarly-io/efiXplorer https://t.me/cKure/14289

■■■■□ Bypassing 2FA with phishing and OTP bots. https://securelist.com/2fa-phishing/112805/ https://t.me/cKure/14288

■□□□□ Mozilla defies Kremlin, restores banned Firefox add-ons in Russia https://www.theregister.com/2024/06/14/mozilla_firefox_russia/ https://t.me/cKure/14287

■■■■□ Critical MSMQ RCE Bug Opens Microsoft Servers to Complete Takeover. https://www.darkreading.com/vulnerabilities-threats/critical-msmq-rce-bug-microsoft-servers-complete-takeover https://t.me/cKure/14286

■■■■■ CVE-2024-30103: Critical Microsoft Outlook Zero-Click RCE Flaw Executes as Email is Opened. https://cybersecuritynews.com/microsoft-outlook-zero-click-rce-flaw/ https://t.me/cKure/14285

■■■■□ Google warns of actively exploited Pixel firmware zero-day. https://www.bleepingcomputer.com/news/security/google-warns-of-actively-exploited-pixel-firmware-zero-day/ https://t.me/cKure/14284

■■□□□ Ransomware crew may have exploited Windows make-me-admin bug as a zero-day. https://www.theregister.com/2024/06/12/black_basta_ransomware_windows/ https://t.me/cKure/14283

■□□□□ OSINT investigation by BBC. Evidence of Iran and UAE drones used in Sudan war. https://www.bbc.com/news/articles/c2vvjz652j1o https://t.me/cKure/14282