All posts tagged hack

CVE-2021-44228 aka Log4shell summarized. https://m.youtube.com/watch?v=w2F67LbEtnk https://t.me/cKure/10439

■■■■□ Interesting thread on Emotet hack aka EmoCrash. In 2020 individuals developed EmoCrash, an exploit for Emotet. We were able to successfully get EmoCrash lowered from TLP:GREEN to TLP:WHITE. We have added it to the vx-underground GitHub repository under the "Other" category. You can check it out here:https://t.co/348nuoXObz pic.twitter.com/Q2bKHF2uWM — vx-underground (@vxunderground) December 16, 2021…

■■■□□ Archive: Log4Shell was originally posted on twitter. https://web.archive.org/web/20211209230040/https://twitter.com/P0rZ9/status/1468949890571337731 https://t.me/cKure/10437

■□□□□ Interesting thread https://twitter.com/sirifu4k1/status/1470946544908185603 https://t.me/cKure/10433

Pegasus vs. Predator as Dissident’s Doubly-Infected iPhone Reveals Cytrox Mercenary Spyware from a startup in Macedonia an apparent competition with the state sponsored crimeware (lets call it so) of Israel A citizen-lab report. https://citizenlab.ca/2021/12/pegasus-vs-predator-dissidents-doubly-infected-iphone-reveals-cytrox-mercenary-spyware/ https://t.me/cKure/10431

■■■□□ Analysis of attack samples using similar obfuscation techniques as OceanLotus https://mp-weixin-qq-com.translate.goog/s/ZpU27cCSKa14aupNcCHcug?_x_tr_sl=zh-CN&_x_tr_tl=en&_x_tr_hl=zh-CN&s=09 https://t.me/cKure/10429

Trend Micro’s Web Based scanner for CVE-2021-44228 aka Log4Shell. log4j-tester.trendmicro.com https://t.me/cKure/10428

■□□□□ Interesting thread on network based zero-day. https://twitter.com/lcamtuf/status/1471172581696753668 https://t.me/cKure/10427

■■■■□ CVE-2021-23758 AjaxPro.NET deserialization. https://mp.weixin.qq.com/s/7y-iyMMZAoN4B2dGvCFvXg https://t.me/cKure/10426

■■■■□ Log4Shell Update: Second log4j Vulnerability Published (CVE-2021-44228 + CVE-2021-45046) https://www.lunasec.io/docs/blog/log4j-zero-day-update-on-cve-2021-45046/ https://t.me/cKure/10424