All posts in Uncategorized

■■■■□ Manfred Paul breaks into Apple’s Safari browser with a combination of integer underflow bug and PAC bypass. https://youtube.com/shorts/LiFyV-3550E https://t.me/cKure/13713

■■■■□ VMware Workstation exploit by researchers of ‘STAR Labs SG’. https://youtube.com/shorts/b6bLRuzWTnl https://t.me/cKure/13712

■■■■□ Researchers from ‘Cold Eye’ perform guest-to-host escape in Virtual Box. https://youtube.com/shorts/UNBER3Xu4d4 https://t.me/cKure/13711

■■■■□ Seungnyun Lee from ‘Kaist hacking lab’ pawns Microsoft Edge and Chrome browsers using double-tap exploit. https://youtube.com/shorts/QX8pB7dYfJs https://t.me/cKure/13710

■■■□□ Docker Sandbox Escape by ‘STAR Labs SG’ at pwn²own Vancouver. https://youtube.com/shorts/Zc6fnZrJwT0 https://t.me/cKure/13709

■■■■■ Hackers earn $1,132,500 for 29 zero-days at Pwn2Own Vancouver. https://www.bleepingcomputer.com/news/security/hackers-earn-1-132-500-for-29-zero-days-at-pwn2own-vancouver/ https://t.me/cKure/13708

■■■□□ Escalation of Privilege by Valentina Palmiotti, Marcin Wiązowski, and Gabriel Kirkpatrick at Vancouver, Canada https://youtube.com/shorts/vN01vr1FMts https://t.me/cKure/13707

■■■■□ Pwn²Own automotive 2024 wrap up. Over a million rewarded. https://youtu.be/uM384qFApic https://t.me/cKure/13706

■■□□□ DHCP Hacked to Escalate Privileges in Windows Domains. https://gbhackers.com/researched-hacked-dhcp/ https://t.me/cKure/13705

■■■■□ Representatives of the Russian domain registrar and hosting provider Reg.ru (provides services on 44% of domains in runet) report that the company was attacked by hackers. According to media reports, the UHG, a pro-Ukrainian group, compromised one of the virtual servers and attempted to exfiltrate the user database. https://xakep.ru/2024/03/22/reg-ru-uhg/ https://t.me/cKure/13704