All posts tagged cyber

■■■□□ PaperCut CVE-2023-27350 Deep Dive and Indicators of Compromise. https://www.horizon3.ai/papercut-cve-2023-27350-deep-dive-and-indicators-of-compromise/ https://t.me/cKure/12361

■■■□□ Critical vulnerability found in Inea RTU can be exploited to remotely hack devices and cause disruption in industrial organizations. https://www.securityweek.com/critical-flaw-in-inea-ics-product-exposes-industrial-organizations-to-remote-attacks/ https://t.me/cKure/12360

■■□□□ Israel is under attack by Sudanese hackers who are targeting then via DoS. https://t.me/cKure/12359

■■□□□ Ghosttoken – A Zero-Day Bug Let Hackers Create Invisible Google Accounts. Attackers can hide their malicious application from the victim’s Google account application management page by using the GhostToken vulnerability. https://gbhackers.com/ghosttoken-zero-day-flaw/amp/ https://t.me/cKure/12358

Double zero-day vulnerabilities in Chrome and Edge – check your versions now. CVE-2023-2033: Type confusion in V8 in Google Chrome prior to 112.0.5615.121. A remote attacker could potentially exploit heap corruption via a crafted HTML page. Chromium security severity: High. CVE-2023-2136: Integer overflow in Skia in Google Chrome prior to 112.0.5615.137. A remote attacker who…

■■■■■ A Hex Editor for Reverse Engineers, Programmers and people who value their retinas when working at 3 AM. https://github.com/WerWolv/ImHex https://t.me/cKure/12354

■■■■□ Exploiting Buffer Overflow vulnerability to do Privilege Escalation. https://blog.pentesteracademy.com/exploiting-buffer-overflow-vulnerability-to-do-privilege-escalation-4a1de492a8c5 https://t.me/cKure/12353

■■■□□ CVE-2023-20864: VMware fixes vRealize bug that let attackers run code as root. https://www.bleepingcomputer.com/news/security/vmware-fixes-vrealize-bug-that-let-attackers-run-code-as-root/ https://t.me/cKure/12352

■■■■□ Archive: Israel tries to install human assets as spies in Turkiye to degrade Palestine based activists and their cause. Israel paid hundreds of thousands of US dollars in this operation to the recruits. The plan however, fails as Turkish authorities arrest the recruits around 5 dozen people, continue to garner more evidence by giving…

■■■■■ CVE-2022-29844: A CLASSIC BUFFER OVERFLOW ON THE WESTERN DIGITAL MY CLOUD PRO SERIES PR4100. https://www.zerodayinitiative.com/blog/2023/4/19/cve-2022-29844-a-classic-buffer-overflow-on-the-western-digital-my-cloud-pro-series-pr4100 https://t.me/cKure/12349