All posts tagged hack

■■□□□ SSRF & LFI In Uploads Feature. https://medium.com/@raymond-lind/ssrf-lfi-in-uploads-feature-321d83b93ec0 https://t.me/cKure/10821

■■■■□ Russia vs Ukraine Cyber-War: Cyber-Attack targets 12 Russian and 1 Belarusian news sites were defaced with a matching anti-war message. It’s singed “your fellow journalists who care” and “Anonymous.” https://t.me/cKure/10818

■□□□□ Cyber-War: Cyber-Attack on Gas stations in the Moscow area are displaying “Glory to Ukraine! F”¤¤¤” Putin! Death to the enemy!”. https://t.me/cKure/10816

■■■□□ Ukraine : A member of the Conti ransomware group, believed to be Ukrainian of origin, has leaked the gang’s internal chats after the group’s leaders posted an aggressive pro-Russian message on Friday. https://therecord.media/conti-ransomware-gang-chats-leaked-by-pro-ukraine-member/ https://t.me/cKure/10815

■■■□□ SSRF(XSPA) in OpenNMS Horizon ver >= 27.0.3. Disclosure: https://github.com/viperbluff/OpenNMS-Grafana-SSRF-XSPA- Advisory: https://docs.opennms.com/horizon/29/releasenotes/changelog.html https://t.me/cKure/10814

■■■■■ Cyber-War: An Iran-linked threat actor, tracked as UNC3313, was observed using two custom backdoor against an unnamed Middle East government entity. https://securityaffairs.co/wordpress/128493/malware/unc3313-apt-two-backdoors.html https://t.me/cKure/10813

■■□□□ Iranian Hackers Using New Spying Malware That Abuses Telegram Messenger API. https://thehackernews.com/2022/02/iranian-hackers-using-new-spying.html https://t.me/cKure/10812

■■■■□ Data-Leak: Toyota suspends operations at all domestic plants in Japan citing cyberattack on parts producer (NIKKEI). https://t.me/cKure/10811

■■■■■ Tool: Jbin Website Secret Scraper V1.1 (Python). https://github.com/h33tlit/Jbin-website-secret-scraper https://t.me/cKure/10810

CVE-2022-21971: Uninitialized pointer free in prauthproviders. https://github.com/0vercl0k/CVE-2022-21971 https://t.me/cKure/10809