All posts by cK-bot

■■■□□ Nespresso smart cards hacked to provide infinite coffee after someone wasn’t too perky about security. https://pollevanhoof.be/nuggets/smart_cards/nespresso https://t.me/cKure/6780

■■□□□ #DataLeak: Oxfam #Australia investigates data breach after database sold online. https://t.me/cKure/6779

■□□□□ Matryosh botnet is targeting Android systems that have left their ADB debug interface exposed on the internet. https://t.me/cKure/6778

■■□□□ #Myanmar / Interesting thread: https://mobile.twitter.com/netblocks/status/1357078197989474305 https://t.me/cKure/6777

■□□□□ Microsoft Defender ATP is detecting yesterday’s Chrome update as a backdoor. https://t.me/cKure/6776

■□□□□ Interview with a LockBit ransomware operator. https://blog.talosintelligence.com/2021/02/interview-with-lockbit-ransomware.html https://t.me/cKure/6775

■■■■■ Playing Fetch: New XS-Leak exploit abuses browser redirect limitations to break user privacy. https://portswigger.net/daily-swig/playing-fetch-new-xs-leak-exploit-abuses-browser-redirect-limitations-to-break-user-privacy https://t.me/cKure/6774

■■■□□ Facebook Messenger Desktop App Arbitrary File Read. https://medium.com/@renwa/facebook-messenger-desktop-app-arbitrary-file-read-db2374550f6d https://t.me/cKure/6773

■□□□□ AttackIQ and Exabeam combine forces to deliver a better business model. https://t.me/cKure/6772

■■■■■ 3 New Severe Security Vulnerabilities Found In SolarWinds Software. Two of the flaws (CVE-2021-25274 and CVE-2021-25275) were identified in the SolarWinds Orion Platform, while a third separate weakness (CVE-2021-25276) was found in the company’s Serv-U FTP server for Windows, said cybersecurity firm Trustwave in technical analysis. https://www.trustwave.com/en-us/resources/blogs/spiderlabs-blog/full-system-control-with-new-solarwinds-orion-based-and-serv-u-ftp-vulnerabilities/ https://thehackernews.com/2021/02/3-new-severe-security-vulnerabilities.html https://t.me/cKure/6771