■■■□□ $6,5k + $5k HTTP Request Smuggling mass account takeover – Slack + Zomato. https://www.youtube.com/watch?v=gzM4wWA7RFo https://t.me/cKure/5382
All posts in August 2020
August 31, 2020 at 12:52AM
■■□□□ US DoJ wants the funds stored by North Korea in 280 BTC and ETH. https://securityaffairs.co/wordpress/107716/digital-id/doj-vs-north-korea.html https://t.me/cKure/5381
August 31, 2020 at 12:36AM
■■■■□ #India‘s one of the famous online shopping service PayTm Mall suffers #DataLeak. https://www.hackread.com/paytm-mall-data-breach-hackers-selling-database/ https://t.me/cKure/5380
August 30, 2020 at 07:26PM
■■■■□ Tool: iblessing is an iOS security exploiting toolkit. https://github.com/Soulghost/iblessing https://t.me/cKure/5379
August 30, 2020 at 07:19PM
■■■□□ Google releases report on exploited #Oday vulnerabilities in the wild. https://docs.google.com/spreadsheets/d/1lkNJ0uQwbeC1ZTRrxdtuPLCIl7mlUreoKfSIgajnSyY/edit#gid=8521108 |#ze#Oday vulnerabilities in the wild. https://docs.google.com/spreadsheets/d/1lkNJ0uQwbeC1ZTRrxdtuPLCIl7mlUreoKfSIgajnSyY/edit#gid=8521108 |#zeroday https://t.me/cKure/5378
August 30, 2020 at 07:19PM
■■■□□ Google releases report on exploited #Oday vulnerabilities in the wild. https://docs.google.com/spreadsheets/d/1lkNJ0uQwbeC1ZTRrxdtuPLCIl7mlUreoKfSIgajnSyY/edit#gid=8521108 |#ze#Oday vulnerabilities in the wild. https://docs.google.com/spreadsheets/d/1lkNJ0uQwbeC1ZTRrxdtuPLCIl7mlUreoKfSIgajnSyY/edit#gid=8521108 |#zeroday https://t.me/cKure/5378
August 30, 2020 at 12:30PM
■■■□□ How to spot and exploit postMessage vulnerablities? https://medium.com/@bamalkaranbamal/how-to-spot-and-exploit-postmessage-vulnerablities-329079d307cc https://t.me/cKure/5377
August 29, 2020 at 08:40PM
■■■■■ Interesting thread: #0day disclosed publicly. #Sandvine #zeroday https://mobile.twitter.com/UnderTheBreach/status/12997480743955#0day disclosed publicly. #Sandvine #zeroday https://mobile.twitter.com/UnderTheBreach/status/1299748074395512834 https://t.me/cKure/5375
August 29, 2020 at 04:06PM
■■□□□ Malicious npm package caught trying to steal sensitive Discord and browser files. https://www.zdnet.com/article/malicious-npm-package-caught-trying-to-steal-sensitive-discord-and-browser-files/ https://t.me/cKure/5374
August 29, 2020 at 02:56PM
■■■■■ Forget Your Perimeter: RCE in Pulse Connect Secure (CVE-2020-8218) https://www.gosecure.net/blog/2020/08/26/forget-your-perimeter-rce-in-pulse-connect-secure/ https://t.me/cKure/5373