■■□□□ Zero-Day: SA44784 – 2021-04: Out-of-Cycle Advisory: Pulse Connect Secure RCE Vulnerability (CVE-2021-22893) https://kb.pulsesecure.net/pkb_mobile#article/l:en_US/SA44784/s https://www.fireeye.com/blog/threat-research/2021/04/suspected-apt-actors-leverage-bypass-techniques-pulse-secure-zero-day.html https://t.me/cKure/7692
All posts tagged telegram
April 21, 2021 at 05:43AM
■■■■■ Data-Leak of Apple via Quanta (supplier). REvil ransomware group hits Apple supplier Quanta; warns of data leak. REvil ransomware gang hits Apple supplier Quanta; warns of data leak ● The information about this leak was shared initially at https://t.me/cKure/7679 and data was checked by us for authenticity. https://t.me/cKure/7691
April 21, 2021 at 05:43AM
■■■■■ Data-Leak of Apple via Quanta (supplier). REvil ransomware group hits Apple supplier Quanta; warns of data leak. REvil ransomware gang hits Apple supplier Quanta; warns of data leak ● The information about this leak was shared initially at https://t.me/cKure/7679 and data was checked by us for authenticity. https://t.me/cKure/7691
April 21, 2021 at 05:35AM
■■■■■ Mozilla Fixes Firefox Flaw That Allowed Spoofing of HTTPS Browser Padlock. https://www.mozilla.org/en-US/security/advisories/mfsa2021-16/#CVE-2021-23998 https://threatpost.com/mozilla-fixes-firefox-flaw/165501/ https://t.me/cKure/7690
April 21, 2021 at 05:33AM
■■□□□ Data-Leak: Men’s social networking website and online dating application Manhunt has suffered a data breach. According to a security notice filed with the office of the Washington attorney general on April 1, the 20-year-old site was compromised in a cyber-attack that took place in February 2021. https://www.documentcloud.org/documents/20615089-mhnextllc2021-04-01 https://t.me/cKure/7689
April 21, 2021 at 05:32AM
■■■■□ Zero-Day Exploits in SonicWall Email Security Lead to Enterprise Compromise. http://www.fireeye.com/blog/threat-research/2021/04/zero-day-exploits-in-sonicwall-email-security-lead-to-compromise.html CVE-2021-20021 CVSS: 9.4 Unauthorized administrative account creation CVE-2021-20022 CVSS: 6.7 Post-authentication arbitrary file upload CVE-2021-20023 CVSS: 6.7 Post-authentication arbitrary file read https://t.me/cKure/7688
April 21, 2021 at 03:01AM
■■■□□ BetterXencrypt – A Better Version Of Xencrypt – Xencrypt It Self Is A Powershell Runtime Crypter Designed To Evade AVs. https://github.com/GetRektBoy724/BetterXencrypt https://t.me/cKure/7687
April 20, 2021 at 10:36PM
■■■■■ Hacker (Unkn0wX) hacks a live website and posts his name in a text file as proof. Asks hackers / pentesters to try to hack as he did. PoC for hack: http://www.supply.su.ac.th/notice/log.txt The website hacked belongs to Silpakorn University, Thailand 🇹🇭: https://wikipedia.org/wiki/Silpakorn_University https://t.me/cKure/7684
April 20, 2021 at 10:27PM
■□□□□ Attackers Test Weak Passwords in Purple Fox Malware Attacks. https://t.me/cKure/7683
April 20, 2021 at 10:25PM
■□□□□ Over 750,000 Users Downloaded New Billing Fraud Apps From Google Play Store. https://thehackernews.com/2021/04/over-750000-users-download-new-billing.html https://t.me/cKure/7682