All posts tagged cyber

■■■■■ Hackers earn $1,132,500 for 29 zero-days at Pwn2Own Vancouver. https://www.bleepingcomputer.com/news/security/hackers-earn-1-132-500-for-29-zero-days-at-pwn2own-vancouver/ https://t.me/cKure/13708

■■■□□ Escalation of Privilege by Valentina Palmiotti, Marcin Wiązowski, and Gabriel Kirkpatrick at Vancouver, Canada https://youtube.com/shorts/vN01vr1FMts https://t.me/cKure/13707

■■■■□ Pwn²Own automotive 2024 wrap up. Over a million rewarded. https://youtu.be/uM384qFApic https://t.me/cKure/13706

■■□□□ DHCP Hacked to Escalate Privileges in Windows Domains. https://gbhackers.com/researched-hacked-dhcp/ https://t.me/cKure/13705

■■■■□ Representatives of the Russian domain registrar and hosting provider Reg.ru (provides services on 44% of domains in runet) report that the company was attacked by hackers. According to media reports, the UHG, a pro-Ukrainian group, compromised one of the virtual servers and attempted to exfiltrate the user database. https://xakep.ru/2024/03/22/reg-ru-uhg/ https://t.me/cKure/13704

■■■■■ LDAP Queries for Offensive and Defensive Operations. https://www.politoinc.com/post/ldap-queries-for-offensive-and-defensive-operations https://t.me/cKure/13703

■■■■■ BlueSpy – Spying on Bluetooth conversations. https://www.tarlogic.com/blog/bluespy-spying-on-bluetooth-conversations/ https://t.me/cKure/13699

■■■■■ BlueSpy – PoC to record audio from a Bluetooth device. https://github.com/TarlogicSecurity/BlueSpy https://t.me/cKure/13697

■■■■■ SMB Enumeration Cheatsheet. https://0xdf.gitlab.io/2024/03/21/smb-cheat-sheet.html https://t.me/cKure/13695

Chaining N-days to Compromise All: Part 1 — Chrome Renderer RCE. https://blog.theori.io/chaining-n-days-to-compromise-all-part-1-chrome-renderer-rce-1afccf56721b https://t.me/cKure/13693