All posts tagged hacker

■■■■□ LSA Whisperer – Getting credentials from LSASS without accessing its memory. https://posts.specterops.io/lsa-whisperer-20874277ea3b https://t.me/cKure/13880

■■■■□ ZIP embedding attack on Google Chrome extensions. https://readme.synack.com/exploits-explained-zip-embedding-attack-on-google-chrome-extensions https://t.me/cKure/13879

■■■□□ Hackers can read your encrypted AI-assistant chats. For ‘OpenAI’, chats are readable for to flawed encryption and passive sniffing of the network traffic should be enough to compromise the confidentiality. https://www.linkedin.com/pulse/hackers-can-read-your-encrypted-ai-assistant-chats-narendra-sahoo-72daf https://t.me/cKure/13878

■■■□□ Remediation for Zero-Day, CVE-2024-3149. Update the following softwares to the mentioned version or above and change existing (NIST P521) private keys ● WinSCP 6.3.3 ● FileZilla 3.67.0 ● PuTTY 0.80 NIST P521 private keys are exposed due to biased signature generation. Details: https://www.openwall.com/lists/oss-security/2024/04/15/6 https://t.me/cKure/13876

■■■■□ Update to WinSCP 6.3.3 as older versions are vulnerable to NIST P521 private keys 🔑 biased signature generation. https://winscp.net/tracker/2285 as part of Zero-Day CVE-2024-31497. https://winscp.net/eng/docs/history#6.3.3 https://t.me/cKure/13875

■■■■□ Update to FileZilla 3.67.0: FileZilla impacted due to PuTTY ECDSA NIST P-521 private key recovery vulnerability (CVE-2024-31497). https://filezilla-project.org/versions.php https://t.me/cKure/13874

■■■■□ Zero-Day | CVE-2024-31497 (affecting PuTTY). Research by researchers at Ruhr University. https://www.openwall.com/lists/oss-security/2024/04/15/6 https://t.me/cKure/13873

Zero-Day in SSH client ‘PuTTY’ assigned CVE-2024-31497 (account takeover via key guessing). Widely-Used PuTTY SSH Client Found Vulnerable to Key Recovery Attack The maintainers of the PuTTY Secure Shell (SSH) and Telnet client are alerting users of a critical vulnerability impacting versions from 0.68 through 0.80 that could be exploited to achieve full recovery of…

■■■■□ Electronic Warfare: Jam-Resistant American Radio Keeps Ukraine’s Long-Range Drones Flying. https://www.forbes.com/sites/davidhambling/2024/04/17/jam-resistant-american-radio-keeps-ukraines-long-range-drones-flying/ https://t.me/cKure/13870

■■■□□ Google supplied and is still supporting, through its AI software tools, the Zionist regime of Israel in exterminating the local Muslim population of Palestine in an ongoing genocide of the natives. Al Jazeera, The Intercept, and multiple reputable news agencies contacted Google for comment. They declined to comment, citing compliance with international laws, humanitarian…