All posts by cK-bot

Rockyou-2024 has been released on July 4, 2024, in a 45 GB zip file. Previous Rockyou-2021 had 8.4 billion passwords, and the new version has 1.5 billion (added by hacker ‘ObamaCare’), making it a 10 billion word-list. https://t.me/cKure/14362

■■■■□ CVE-2024-37726 MSI Center Local Privilege Escalation – Arbitrary File Overwrite Vulnerability. https://github.com/carsonchan12345/CVE-2024-37726-MSI-Center-Local-Privilege-Escalation https://t.me/cKure/14361

■■■■■ Zero-Day: Breaking BitLocker via MitM between CPU and TPM chip. https://t.me/cKure/14358 https://t.me/cKure/14360

■■■■■ GHSL-2024-071: Memory corruption in Chromium – CVE-2024-3832. https://securitylab.github.com/advisories/GHSL-2024-071_Chromium/ https://t.me/cKure/14357

■■□□□ Operation “Morpheus” – Law enforcement agencies team up to take down 593 Cobalt Strike servers. https://www.europol.europa.eu/media-press/newsroom/news/europol-coordinates-global-action-against-criminal-abuse-of-cobalt-strike https://t.me/cKure/14356

■■■■■ Wi-Fi Exploitation Framework. https://github.com/D3Ext/WEF https://t.me/cKure/14355

■■□□□ Indian Software Firm’s Products Hacked to Spread Data-Stealing Malware. https://thehackernews.com/2024/07/indian-software-firms-products-hacked.html https://t.me/cKure/14354

■■■■□ regreSSHion: Unauthentic Remote Code Execution Vulnerability in OpenSSH server. https://blog.qualys.com/vulnerabilities-threat-research/2024/07/01/regresshion-remote-unauthenticated-code-execution-vulnerability-in-openssh-server https://t.me/cKure/14353

■■■□□ Threat actors actively exploit D-Link DIR-859 router flaw CVE-2024-0769. https://securityaffairs.com/165045/hacking/d-link-dir-859-actively-exploited.html https://t.me/cKure/14352

■■■■□ Address Sanitizer Internals. https://blog.gistre.epita.fr/posts/benjamin.peter-2022-10-28-address_sanitizer_internals/ https://t.me/cKure/14351