All posts in Uncategorized

■■■■■ Airstrike Attack – FDE bypass and EoP on domain joined Windows workstations (CVE-2021-28316). https://shenaniganslabs.io/2021/04/13/Airstrike.html https://t.me/cKure/12836

■■■□□ 2023 OWASP Top-10 Series: API6:2023 Unrestricted Access to Sensitive Business Flows. https://lab.wallarm.com/api62023-unrestricted-access-to-sensitive-business-flows/ https://t.me/cKure/12834

■■□□□ China’s Baidu Introduces ChatGPT Rival Ernie Bot. https://www.hackread.com/chinas-baidu-chatgpt-rival-ernie-bot/ https://t.me/cKure/12833

■■■■■ Zero-Day exploit code | noCVE-2023-34039: Proof-of-concept (PoC) exploit code has been made available for a recently disclosed and patched critical flaw impacting VMware Aria Operations for Networks (formerly vRealize Network Insight). https://thehackernews.com/2023/09/poc-exploit-released-for-critical.html https://t.me/cKure/12830

■■■□□ Exclusive! WhatsApp fixes bug without rewarding the researcher. The issue was considered, not a bug by Facebook (was not Meta when reported) and called the attack ‘theoretical’. Skype had the exact same bug registered under CVE-2019-0622. ● The researcher (Asim K) shared evidences including the video and comments from now Meta team and we…

■■■□□ How did Clop get its hands on the MOVEit zero-day? https://therecord.media/clop-moveit-zero-day-dustin-childs-interview https://t.me/cKure/12827

■■■■□ Malicious actors could leverage a sneaky malware detection evasion technique and bypass endpoint security solutions by manipulating the Windows Container Isolation Framework. https://thehackernews.com/2023/08/hackers-can-exploit-windows-container.html https://t.me/cKure/12826

■■■□□ Data-Leak: Forever 21 has about 500 retail locations and an online store. It’s the second data breach in recent years after a massive theft of credit card numbers from its store point-of-sale machines in 2017. https://techcrunch.com/2023/08/31/forever-21-data-breach-half-million/ https://t.me/cKure/12825

■■■■□ CVE-2023–28072: Local Privilege Escalation in Alienware Command Center. https://medium.com/@matterpreter/cve-2023-28072-local-privilege-escalation-in-alienware-command-center-a836607762ba https://t.me/cKure/12824

■■□□□ CVE-2023-36250: CSV Injection vulnerability in GNOME time tracker version 3.0.2, allows local attackers to execute arbitrary code via crafted .tsv file when creating a new record. https://github.com/BrunoTeixeira1996/CVE-2023-36250 https://t.me/cKure/12823