■■■■□ Security experts spotted a new botnet, tracked as KashmirBlack botnet, that likely infected hundreds of thousands of websites since November 2019 by exploiting CMS vulns. https://securityaffairs.co/wordpress/110014/cyber-crime/kashmirblack-botnet.html https://t.me/cKure/5828
All posts in October 2020
October 26, 2020 at 09:20PM
■■■□□ Auth bypass via Brute Force. https://portswigger.net/daily-swig/tikiwiki-authentication-bypass-flaw-gives-attackers-full-control-of-websites-intranets https://t.me/cKure/5827
October 26, 2020 at 08:25PM
■□□□□ Vastaamo Breach: Hackers Blackmailing Psychotherapy Patients. https://threatpost.com/vastaamo-hackers-blackmailing-therapy-patients/160536/ https://t.me/cKure/5826
October 26, 2020 at 09:13AM
■■■■■ Pass-the-hash WiFi. https://sensepost.com/blog/2020/pass-the-hash-wifi/ | IoT https://t.me/cKure/5825
October 25, 2020 at 08:31PM
■■■□□ Abaddon is the first RAT that uses the freeware instant messaging and VoIP app and digital distribution platform Discord as a command & control server. https://securityaffairs.co/wordpress/109971/malware/abaddon-rat-discord-cc.html https://t.me/cKure/5824
October 25, 2020 at 07:55PM
■■■■■ #Zeroday: HPE addresses critical auth bypass issue in SSMC console. CVE-2020-7197 https://securityaffairs.co/wordpress/109962/security/ssmc-critical-auth-bypass-issue.html#Zeroday: HPE addresses critical auth bypass issue in SSMC console. https://securityaffairs.co/wordpress/109962/security/ssmc-critical-auth-bypass-issue.html | #0day https://t.me/cKure/5823
October 25, 2020 at 06:30PM
■■□□□ Unconfirmed / RCE: Someone claimed to have Code Execution in #Japan's Department of Ju#Japan's Department of Justice. https://t.me/cKure/5822
October 25, 2020 at 06:20PM
■□□□□ Deepfake Bots on Telegram, Italian Authorities Investigating. https://www.ehackingnews.com/2020/10/deepfake-bots-on-telegram-italian.html https://t.me/cKure/5821
October 24, 2020 at 08:08PM
■■■□□ CVE-2019-18277 (HAProxy HTTP Request Smuggling) explained: https://youtu.be/nq0ndhkfV_M https://t.me/cKure/5819
October 24, 2020 at 06:36PM
■□□□□ US Treasury sanctions Russian research institute behind Triton malware. https://www.zdnet.com/article/us-treasury-sanctions-russian-research-institute-behind-triton-malware | #UnitedStates, #Russia https://t.me/cKure/5818