July 17, 2024 at 10:01AM

■■■■□ [ Tool ] RemoteSessionEnum: Remotely Enumerate sessions using undocumented Windows Station APIs. https://github.com/0xv1n/RemoteSessionEnum https://0xv1n.github.io/posts/sessionenumeration/ https://t.me/cKure/14418

July 17, 2024 at 12:15AM

VPN Zero-Day DYK most VPN services can actually make you less secure? Today x.com/PET_Symposium, Benjamin Mixon-Baca will present research done in collaboration with the Citizen Lab about how VPNs can enable an attacker to act as an in-path router between you and the VPN server. The study identifies a new vulnerability called a “port shadow”.…

July 16, 2024 at 11:38AM

■■■■□ United States The FBI just announced it had gained access to the password locked phone of Thomas Matthew Crooks, the suspected shooter in the assassination attempt of former President Trump. Shows how far we’ve come from the days of FBI v Apple. https://www.404media.co/fbi-gains-access-to-suspected-trump-shooters-password-locked-phone/ https://t.me/cKure/14414

July 15, 2024 at 01:26PM

■■■■■ Data-Leak at Google by Gemini Google’s Gemini AI caught scanning Google Drive hosted PDF files without permission. https://www.tomshardware.com/tech-industry/artificial-intelligence/gemini-ai-caught-scanning-google-drive-hosted-pdf-files-without-permission-user-complains-feature-cant-be-disabled https://t.me/cKure/14413

July 14, 2024 at 12:21AM

■■■■□ Hackers use PoC exploits in attacks 22 minutes after release. During the examined period, the most targeted flaws were CVE-2023-50164 and CVE-2022-33891 in Apache products, CVE-2023-29298, CVE-2023-38203 and CVE-2023-26360 in Coldfusion, and CVE-2023-35082 in MobileIron. A characteristic example of the rise in the speed of weaponization is CVE-2024-27198, an authentication bypass flaw in JetBrains…

July 13, 2024 at 08:50PM

■■■■□ Signal downplays encryption key flaw, fixes it after X drama. https://www.bleepingcomputer.com/news/security/signal-downplays-encryption-key-flaw-fixes-it-after-x-drama/ https://t.me/cKure/14410

July 12, 2024 at 08:01PM

■■■■□ 5 million Romanians’ Data is Allegedly Leaked. According to a threat actor on a dark web forum, data belonging to more than 5 million people is leaked, and the numbers are increasing every day. Threat actors state that data can be sold in smaller batches as well. The post indicates that the alleged leak…

July 12, 2024 at 07:58PM

■■■■□ Financial and Cyber-Crime by Europe (government) viz. Fraud. The European Commission offered 𝕏 an illegal secret deal: if we quietly censored speech without telling anyone, they would not fine us. The other platforms accepted that deal. 𝕏 did not. -Elon Musk https://x.com/elonmusk/status/1811783320839008381 https://t.me/cKure/14408