All posts in Uncategorized

■■■■■ For the second time in a week, a Chromium zero-day remote code execution exploit code has been released on Twitter, multiple browsers impacted. https://github.com/avboy1337/1195777-chrome0day https://securityaffairs.co/wordpress/116844/hacking/google-chromium-zero.html https://t.me/cKure/7614

■□□□□ Vulnerabilities in 17+ Elementor Add-on Plugins for WordPress. https://www.searchenginejournal.com/wordpress-elementor-plugin-vulnerabilities/402330/ https://t.me/cKure/7613

■■□□□ Security Bug Allows Attackers to Brick Kubernetes Clusters. The vulnerability is triggered when a cloud container pulls a malicious image from a registry. https://threatpost.com/security-bug-brick-kubernetes-clusters/165413/ https://t.me/cKure/7612

■■■■□ United States : Australia based Azimuth unlocked the iPhone at the center of an epic legal battle between the FBI and Apple. Now, Apple is suing the company co-founded by one of the hackers behind the unlock. https://www.washingtonpost.com/technology/2021/04/14/azimuth-san-bernardino-apple-iphone-fbi/ https://t.me/cKure/7611

■■■■■ WhatsApp addressed two security vulnerabilities in its app for Android that could have been exploited to remotely hack the victim’s device. https://securityaffairs.co/wordpress/116833/hacking/whatsapp-flaws-remote-hack.html https://t.me/cKure/7610

■□□□□ Sweden blames Russia for Swedish Sports Confederation hack in 2017-18. https://t.me/cKure/7609

■■■■□ Firefox ‘fully compromised’ in 15 minutes via SMASH attack. https://go.theregister.com/feed/www.theregister.com/2021/04/15/rowhammer_ddr4/ https://t.me/cKure/7608

■■■■□ Airstrike Attack – FDE bypass and EoP on domain joined Windows workstations (CVE-2021-28316). https://shenaniganslabs.io/2021/04/13/Airstrike.html https://t.me/cKure/7607

● Hacking forum rf.ws is down. Last HeartBeat by the bot I created shows 11 hours. https://t.me/cKure/7606

● Microsoft Mesh https://m.youtube.com/watch?v=Xa0H-oO1uCc https://t.me/cKure/7605