■■■■□ New Wave of Malware: ChromeLoader and AI-Generated Code. https://securityexpress.info/new-wave-of-malware-chromeloader-and-ai-generated-code/ https://t.me/cKure/14762
All posts by cK-bot
September 28, 2024 at 09:21PM
■□□□□ Meta pays the price for storing hundreds of millions of passwords in plaintext. https://arstechnica.com/security/2024/09/meta-slapped-with-101-million-fine-for-storing-passwords-in-plaintext/ https://t.me/cKure/14761
September 28, 2024 at 09:21PM
■■□□□ Tosint: Open-source Telegram OSINT tool. https://www.helpnetsecurity.com/2024/09/27/tosint-open-source-telegram-osint-tool/ https://t.me/cKure/14760
September 28, 2024 at 06:15PM
■■□□□ Critical Nvidia bug allows container escape, complete host takeover. https://www.theregister.com/2024/09/26/critical_nvidia_bug_container_escape/ https://t.me/cKure/14759
September 26, 2024 at 11:45PM
■■■■□ Privacy: Tails OS merges with Tor Project for better privacy, security. The Tor Project and Tails OS are merging operations to better collaborate for a free internet by protecting users from surveillance and censorship. https://www.bleepingcomputer.com/news/software/tails-os-merges-with-tor-project-for-better-privacy-security/ https://t.me/cKure/14758
September 26, 2024 at 03:19AM
■■■■□ Privilege Escalation in Google Cloud Platform – Part 1 (IAM). https://rhinosecuritylabs.com/gcp/privilege-escalation-google-cloud-platform-part-1/ https://t.me/cKure/14757
September 25, 2024 at 04:41PM
■■■■□ A Big company Admin Panel takeover $4500. Exploit (uses just a semi-colon): example.com/;/admin https://medium.com/@nanwinata/a-big-company-admin-panel-takeover-4500-9520a6c83430 https://t.me/cKure/14756
September 25, 2024 at 03:50PM
■■□□□ Gaining access to anyones browser without them even visiting a website. The blog post discusses a vulnerability in Arc Browser involving Firebase Firestore, which could allow an attacker to manipulate Arc “boosts” (custom JavaScript and CSS modifications) by changing their creatorID. This exploit can potentially compromise the victim’s browser when visiting certain websites. The…
September 25, 2024 at 02:53PM
■□□□□ ‘Harvest now, decrypt later’: Why hackers are waiting for quantum computing. https://venturebeat.com/security/harvest-now-decrypt-later-why-hackers-are-waiting-for-quantum-computing/ https://t.me/cKure/14754
September 25, 2024 at 02:52PM
■■□□□ Hacker plants false memories in ChatGPT to steal user data in perpetuity. https://arstechnica.com/security/2024/09/false-memories-planted-in-chatgpt-give-hacker-persistent-exfiltration-channel/ https://t.me/cKure/14753