All posts in May 2021

■■■■■ Kiterunner – Contextual Content Discovery Tool. https://github.com/assetnote/kiterunner https://t.me/cKure/7875

■■■■■ Bypassing LSA Protection in Userland. https://blog.scrt.ch/2021/04/22/bypassing-lsa-protection-in-userland https://t.me/cKure/7873

■■■■□ bbscope: ultimate scope gathering tool for HackerOne, Bugcrowd, and Intigriti. https://github.com/sw33tLie/bbscope https://t.me/cKure/7872

■■■■□ Data-Leak: Microsoft detected a large-scale business email compromise (BEC) campaign that targeted more than 120 organization using typo-squatted domains registered days before the attacks began. https://www.bleepingcomputer.com/news/security/microsoft-business-email-compromise-attack-targeted-dozens-of-orgs/ https://t.me/cKure/7871

■■■■■ WordPress-Brute-Force – Super Fast Login WordPress Brute Force. https://github.com/22XploiterCrew-Team/WordPress-Brute-Force https://t.me/cKure/7870

■■□□□ Data-Leak: ShinyHunters is Leaking Data of all the Big Conglomerates. https://t.me/cKure/7869

■■■■□ One of China’s elite hacked an iPhone…. Virtually overnight, Chinese intelligence used it as a weapon against a besieged a Muslim minority ethnic group; Uyghurs, striking before Apple could fix the problem. It was a brazen act performed in broad daylight. https://www.technologyreview.com/2021/05/06/1024621/china-apple-spy-uyghur-hacker-tianfu/ https://t.me/cKure/7868

■□□□□ Misconfigured Database Exposes 200K Fake Amazon Reviewers. https://www.infosecurity-magazine.com:443/news/database-exposes-200k-fake-amazon/ https://t.me/cKure/7867

■■■□□ Biggest ISPs Paid For 8.5 Million Fake FCC Comments Opposing Net Neutrality. https://packetstormsecurity.com/news/view/32269/Biggest-ISPs-Paid-For-8.5-Million-Fake-FCC-Comments-Opposing-Net-Neutrality.html https://t.me/cKure/7866

■■□□□ Researcher calls out privacy flaw in Twitter’s new ‘Tip Jar’ donation feature. https://portswigger.net/daily-swig/researcher-calls-out-privacy-flaw-in-twitters-new-tip-jar-donation-feature https://t.me/cKure/7865