■■■□□ Certify: Active Directory certificate abuse. https://github.com/GhostPack/Certify https://t.me/cKure/9487
All posts tagged cyber
September 25, 2021 at 03:39AM
■■■□□ CVE-2021-26084: Details on the recently exploited atlassian confluence OGNL injection bug. https://www.zerodayinitiative.com/blog/2021/9/21/cve-2021-26084-details-on-the-recently-exploited-atlassian-confluence-ognl-injection-bug https://t.me/cKure/9486
September 25, 2021 at 02:18AM
■■□□□ Declassified: The cyberattack on the largest bank in Venezuela, Banco de Venezuela, was carried out from the United States. This was announced on September 22 by the Executive Vice President of the Republic of South America Delsi Rodriguez on the air of the Venezolana de Television channel. https://cyberthreatintelligence.com/news/venezuela-reveals-the-origin-of-the-cyberattack-on-the-countrys-largest-bank/ https://t.me/cKure/9485
September 25, 2021 at 02:15AM
● Something I might have watched for hours; ‘pipes’. https://1j01.github.io/pipes/ https://t.me/cKure/9484
September 25, 2021 at 01:32AM
■□□□□ Cyberincidents in airports | Kaspersky official blog. https://www.kaspersky.com/blog/protecting-airports/42150/ https://t.me/cKure/9483
September 25, 2021 at 01:31AM
■■■□□ Tool: Haklistgen – Turns Any Junk Text Into A Usable Wordlist For Brute-Forcing. https://github.com/hakluke/haklistgen https://t.me/cKure/9482
September 25, 2021 at 01:30AM
■■■□□ SonicWall fixed a critical security flaw, tracked as CVE-2021-20034, that impacts some Secure Mobile Access (SMA) 100 series products that can allow device takeover. https://securityaffairs.co/wordpress/122547/security/cve-2021-20034-sonicwall-sma-100.html https://t.me/cKure/9481
September 25, 2021 at 01:30AM
■■■■□ CVE-2020-3187 – unauthenticated arbitrary file deletion in Cisco. https://hackerone.com/reports/944665 https://t.me/cKure/9480
September 24, 2021 at 11:35PM
■■□□□ Groove Ransomware Gang Tries New Tactic to Attract Affiliates. The threat group, which leaked some 500,000 credentials for Fortinet SSL VPN devices, views ransomware as just one way to profit from compromised networks, experts say. https://www.darkreading.com/attacks-breaches/groove-ransomware-gang-tries-new-tactic-to-attract-affiliates https://t.me/cKure/9479
September 24, 2021 at 11:34PM
■■■■■ Developers fix multitude of vulnerabilities in Apache HTTP Server. High-impact SSRF and request smuggling bugs among flaws addressed in bumper patch cycle. https://portswigger.net/daily-swig/developers-fix-multitude-of-vulnerabilities-in-apache-http-server https://t.me/cKure/9477