All posts in Uncategorized

Zero-Day: Universal MXSS. Works in all browsers and is likely to bypass lots of filters because title is both an SVG and HTML tag. Briefly checked DOM Purify and it looked okay.

■■■□□ ICBC bank hot by ransomware. https://economictimes.indiatimes.com/news/international/business/worlds-largest-bank-hit-by-ransomware-gang-linked-to-boeing-ion-attacks/articleshow/105108137.cms https://t.me/cKure/13213

■■■■□ Palestine-Israel Cyber-War update! Iranian nation-state actors have been observed using a previously undocumented command-and-control (C2) framework called MuddyC2Go as part of attacks targeting Israel. https://thehackernews.com/2023/11/muddyc2go-new-c2-framework-iranian.html https://t.me/cKure/13212

■■■■□ Cloudflare goes down as their website is downed by a DDoS attack claimed by Anonymous Sudan. https://www.bleepingcomputer.com/news/technology/cloudflare-website-downed-by-ddos-attack-claimed-by-anonymous-sudan/ https://t.me/cKure/13211

■■■■□ Signal tests usernames that keep your phone number private. https://www.bleepingcomputer.com/news/software/signal-tests-usernames-that-keep-your-phone-number-private/ https://t.me/cKure/13210

■■□□□ Russian hackers switch to LOTL technique to cause power outages. https://www.bleepingcomputer.com/news/security/russian-hackers-switch-to-lotl-technique-to-cause-power-outage/ https://t.me/cKure/13209

■■■■■ ProxyHub: An advanced [Finder | Checker | Server] tool for proxy servers, supporting both HTTP(S) and SOCKS protocols. https://github.com/ForceFledgling/proxyhub https://t.me/cKure/13207

■■■■■ Nuclei AI Browser Extension, built on top of cloud.projectdiscovery.io, simplifies the creation of vulnerability templates, by enabling users to extract vulnerability information from any webpages to quickly and efficiently create #nuclei templates, saving valuable time and effort. Features: • Context Menu Option to Generate Template • HackerOne Report to Nuclei Template Generation • ExploitDB…

■■■□□ Hackers exploit Looney Tunables Linux bug, steal cloud creds. https://www.bleepingcomputer.com/news/security/hackers-exploit-looney-tunables-linux-bug-steal-cloud-creds/ https://t.me/cKure/13205

■■■□□ Bobber [tool]: Bobber monitors a given Evilginx database file for changes, and if a valid Evilginx session complete with a captured Microsoft Office 365 cookie is found, Bobber will utilize the RoadTools RoadTX library to retrieve the access and refresh tokens for the user, then optionally trigger TeamFiltration to exfiltrate all the sweet, sweet…