■■■■□ Researchers Expose Passive Methods Allowing RSA Keys Extraction From SSH Connections. https://www.blackhatethicalhacking.com/news/researchers-expose-passive-methods-allowing-rsa-keys-extraction-from-ssh-connections/ https://t.me/cKure/13293
All posts in Uncategorized
December 1, 2023 at 11:48AM
■■□□□ Crypto Country: North Korea’s targeting of cryptocurrency. https://github.com/blackorbird/APT_REPORT/blob/master/International%20Strategic/Korea/Crypto%20Country%20North%20Korea%E2%80%99s%20Targeting%20of%20Cryptocurrency.pdf https://t.me/cKure/13292
December 1, 2023 at 11:38AM
■■■□□ Google has released an update to Chrome which includes seven security fixes including one for a vulnerability which is known to have already been exploited. https://chromereleases.googleblog.com/2023/11/stable-channel-update-for-desktop_28.html https://www.malwarebytes.com/blog/news/2023/11/update-now-chrome-fixes-actively-exploited-zero-day-vulnerability/amp https://t.me/cKure/13291
November 30, 2023 at 11:23AM
■■■■□ Delefriend: A proof-of-concept redteam tool to automatically find and abuse existing GCP service accounts with domain-wide delegation (DWD) on Google Workspace by smartly fuzzing all of the existing JWT combinations that are relevant to the initial GCP identity. A compromised GCP service account key with DWD enabled can be used to perform API calls…
November 30, 2023 at 02:26AM
■■■■■ CVE-2023-33466 – Exploiting Healthcare Servers with Polyglot Files. https://www.shielder.com/blog/2023/10/cve-2023-33466-exploiting-healthcare-servers-with-polyglot-files/ https://t.me/cKure/13289
November 29, 2023 at 10:35PM
Google Researchers’ Attack Prompts ChatGPT to Reveal Its Training Data. https://www.404media.co/google-researchers-attack-convinces-chatgpt-to-reveal-its-training-data/ https://t.me/cKure/13287
November 29, 2023 at 03:51PM
■■■□□ Researchers have studied the infrastructure of the ‘Comet’ and ‘Twelve crime’ syndicate. https://xakep.ru/2023/11/28/comet-twelve-infrastructure/ https://t.me/cKure/13285
November 28, 2023 at 05:41PM
■■■■□ Apple’s covert operation: task force goes to India to search for state sponsored hackers. https://exploit.in/2023/16818/ https://t.me/cKure/13284
November 28, 2023 at 05:26PM
Shadowy hacking group targeting Israel shows outsized capabilities. Islarel Palestine conflict. A sophisticated campaign that has targeted Israel for at least 8 years shows evidence of improving its capabilities. https://cyberscoop.com/hacking-israel-wild-card/ https://t.me/cKure/13282
November 28, 2023 at 05:24PM
■■■■□ PoC for Splunk Enterprise RCE flaw released (CVE-2023-46214). https://www.helpnetsecurity.com/2023/11/27/cve-2023-46214-poc/ https://t.me/cKure/13281