■■■□□ Homeland Security demands a 911 for reporting security holes in federal networks: 'Vulns in internet systems cause real-world impacts'. https://go.theregister.com/feed/www.theregister.com/2020/09/03/us_bug_bounty/ https://t.me/cKure/5405
All posts by cK-bot
September 3, 2020 at 12:27AM
■■■■□ Pulse Secure Windows Client <9.1.6 (CVE-2020-13162) – exploit https://github.com/redtimmy/tu-TOCTOU-kaiu-TOCMEU-CVE-2020-13162- https://www.redtimmy.com/privilege-escalation/pulse-secure-windows-client/ https://t.me/cKure/5404
September 2, 2020 at 11:46PM
■■■■■ #Zeroday exploited in wild. Hackers actively exploiting a critical remote code execution vulnerability in the File Manager plugin, over 300,000 WordPress sites potentially exposed. https://securityaffairs.co/wordpress/107826/hacking/file-manager-wordpress-plugin-f#Zeroday exploited in wild. Hackers actively exploiting a critical remote code execution vulnerability in the File Manager plugin, over 300,000 WordPress sites potentially exposed. https://securityaffairs.co/wordpress/107826/hacking/file-manager-wordpress-plugFile Manager plugin, over 300,000 WordPress sites potentially exposed. https://securityaffairs.co/wordpress/107826/hacking/file-manager-wordpress-plugin-flaw.html https://t.me/cKure/5403
September 2, 2020 at 11:43PM
■□□□□ Anubis Malware that Attacks Windows Users. https://www.ehackingnews.com/2020/09/anubis-malware-that-attacks-windows.html https://t.me/cKure/5402
September 2, 2020 at 11:24PM
■■■□□ #UnitedStates military's cyber warfare unit focuses on state actors of #Iran . Very funny that entire election campaign data is in public domain including private conversations of officials. https://mobile.twitter.com/CNMF_CyberAlert/status/1301219076384198656 https://t.me/cKure/5401
September 2, 2020 at 07:20PM
■■□□□ Stealing local files with Safari, Prototype pollution vs HTML sanitizers. https://blog.intigriti.com/2020/09/02/bug-bytes-86-stealing-local-files-with-safari-prototype-pollution-vs-html-sanitizers-a-hackers-mom-learning-bug-bounty/ https://t.me/cKure/5400
September 2, 2020 at 07:15PM
■■■□□ XSS bypass in cloudflare. <svg onload=alert%26%230000000040"")> &# = %26%230000000040 = ( https://t.me/cKure/5399
September 2, 2020 at 07:04PM
■■□□□ #Privacy breach at Amazon. https://www.vice.com/amp/en_us/article/3azegw/amazon-is-spying-on-its-workers-in-closed-facebook-groups-internal-reports-show https://t.me/cKure/5398
September 2, 2020 at 06:32PM
■■□□□ Attackers abuse Google DNS over HTTPS to download malware. https://www.bleepingcomputer.com/news/security/attackers-abuse-google-dns-over-https-to-download-malware/ https://t.me/cKure/5397
September 2, 2020 at 03:11PM
■■■ Send this link in the footer of bug bounty email or tweet. Will scare the management a bit. https://www.infosecurity-magazine.com:443/news/ceos-face-jail-time-iot-attacks-by/ https://t.me/cKure/5396