■■□□□ Nearly three-quarters (72%) of cybersecurity professionals are concerned about supply chain risks to their organization following high-profile incidents like the SolarWinds campaign, according to a new poll. https://www.infosecurity-magazine.com:443/news/threequarters-infosec-pros/ https://t.me/cKure/8207
All posts in May 2021
May 28, 2021 at 12:47PM
■□□□□ Cybersecurity researchers from FireEye unmasked additional tactics, techniques, and procedures (TTPs) adopted by Chinese threat actors who were recently found abusing Pulse Secure VPN devices to drop malicious web shells and exfiltrate sensitive information from enterprise networks. https://t.me/cKure/8206
May 28, 2021 at 12:47PM
■■□□□ United States : Microsoft says Nobelium scored access to Constant Contact email marketing tool. Russian gang behind SolarWinds hack returns with phishing attack disguised as mail from US aid agency. Russia https://go.theregister.com/feed/www.theregister.com/2021/05/28/solar_winds_attacker_nobelium_returns/ https://t.me/cKure/8205
May 28, 2021 at 12:46PM
■■□□□ Data-Leak | The state-owned postal service, Canada Post has reported that a cyber-attack on a third-party provider resulted in a data breach affecting 950,000 parcel recipients. Canada Post Corporation, also known as Canada Post, is a Crown corporation that serves as the country’s major postal operator. https://www.ehackingnews.com/2021/05/canada-posts-data-breach-affected-950k.html https://t.me/cKure/8204
May 28, 2021 at 12:44PM
■□□□□ Trixbox 2.8.0.4 – ‘lang’ Path Traversal | Web-App. https://www.exploit-db.com/exploits/49914 https://t.me/cKure/8203
May 28, 2021 at 12:43PM
■■■■□ Selenium 3.141.59 – Remote Code Execution (Firefox/geckodriver) Web-App https://www.exploit-db.com/exploits/49915 https://t.me/cKure/8202
May 28, 2021 at 12:43PM
■■□□□ [VK Android] Access to app protected components leads to arbitrary code execution https://hackerone.com/reports/1095633 Severity: No Rating | 1,000 USD Reported To: VK.com Reported By: #bagipro State: Resolved Disclosed: May 27, 2021, 9:40pm (UTC) https://t.me/cKure/8201
May 27, 2021 at 10:30PM
■□□□□ MoCA https://lifehacker.com/how-moca-made-my-home-network-faster-than-mesh-wifi-1846927535 https://t.me/cKure/8200
May 27, 2021 at 05:44PM
■■■■□ IDOR on Twitter. https://m.youtube.com/watch?v=rFKuy8G1nJg https://t.me/cKure/8199
May 27, 2021 at 05:36PM
■■□□□ Privacy | Britain : The court ruling against GCHQ is just the latest battle in the fight for privacy. https://www.theguardian.com/commentisfree/2021/may/27/court-ruling-british-state-surveillance-methods-unlawful https://t.me/cKure/8198