All posts by cK-bot

■■■■□ Hackers use PoC exploits in attacks 22 minutes after release. During the examined period, the most targeted flaws were CVE-2023-50164 and CVE-2022-33891 in Apache products, CVE-2023-29298, CVE-2023-38203 and CVE-2023-26360 in Coldfusion, and CVE-2023-35082 in MobileIron. A characteristic example of the rise in the speed of weaponization is CVE-2024-27198, an authentication bypass flaw in JetBrains…

■■■■□ Signal downplays encryption key flaw, fixes it after X drama. https://www.bleepingcomputer.com/news/security/signal-downplays-encryption-key-flaw-fixes-it-after-x-drama/ https://t.me/cKure/14410

■■■■□ 5 million Romanians’ Data is Allegedly Leaked. According to a threat actor on a dark web forum, data belonging to more than 5 million people is leaked, and the numbers are increasing every day. Threat actors state that data can be sold in smaller batches as well. The post indicates that the alleged leak…

■■■■□ Financial and Cyber-Crime by Europe (government) viz. Fraud. The European Commission offered 𝕏 an illegal secret deal: if we quietly censored speech without telling anyone, they would not fine us. The other platforms accepted that deal. 𝕏 did not. -Elon Musk https://x.com/elonmusk/status/1811783320839008381 https://t.me/cKure/14408

■■■□□ How YouTube acts a tool of indirect source of active disinformation in wars. https://t.me/geopolitics_live/28627 https://t.me/cKure/14407

■■■□□ United States | Data-Leak: AT&T’s 8-K announcement of the breach. The U.S. DOJ told AT&T that the delay of the public disclosure of the breach was warranted a couple of times. Authorities later apprehended someone. https://www.sec.gov/ix?doc=/Archives/edgar/data/0000732717/000073271724000046/t-20240506.htm Thread: https://x.com/josephfcox/status/1811709707674955928 https://t.me/cKure/14406

■■□□□ A hacker group called RipperSec, identifying themselves as ‘Muslim Hacktivists,’ has claimed responsibility for leaking data from two companies in Singapore. https://t.me/cKure/14405

■■■□□ PoC for CVE-2024-36991: This exploit will attempt to read Splunk /etc/passwd file. https://github.com/bigb0x/CVE-2024-36991 https://t.me/cKure/14403

■■■■□ PoC Exploit Released for VMware vCenter Server RCE Vulnerability. https://cybersecuritynews.com/vmware-vcenter-server-poc-exploit/ https://t.me/cKure/14402

■□□□□ Facebook sets a new policy in violation of the United Nations General Assembly Resolution 3379, Determining that Zionism is a form of racism and racial discrimination. The criminal act will be now supported by Meta and all their subsidiaries, and any negative mention this racism (Zionism) will be against Meta and Meta shall support…