All posts tagged cyber

■■■□□ IBM QRadar – When The Attacker Controls Your Security Stack (CVE-2022-26377). https://labs.watchtowr.com/ibm-qradar-when-the-attacker-controls-your-security-stack/ https://t.me/cKure/13855

■■□□□ MasterParser: A powerful DFIR tool designed for analyzing and parsing Linux logs. https://github.com/securityjoes/MasterParser https://t.me/cKure/13854

■■■□□ Yubico Issues YubiKey Security Alert For Windows Users. Yubico security advisory YSA-2024-01 concerns the YubiKey Manager software which has a vulnerability that could lead to an escalation of privileges attack for Windows users. The vulnerability is listed as CVE-2024-31498 and has a Common Vulnerability Scoring System rating of 7.7 which means this is a…

Telegram fixes Windows app zero-day used to launch Python scripts. Filing link from XSS.is forum. http://xssforumv3isucukbxhdhwz67hoa5e2voakcfkuieq4ch257vsburuid.onion/ PoC video: https://player.vimeo.com/video/932147196 https://www.bleepingcomputer.com/news/security/telegram-fixes-windows-app-zero-day-used-to-launch-python-scripts/ https://t.me/cKure/13851

■■□□□ Critical Bitdefender Vulnerabilities Let Attackers Gain Control Over System. Bitdefender GravityZone Update Server (versions 6.36.1, Endpoint Security for Linux 7.0.5.200089, and Endpoint Security for Windows 7.9.9.380) is vulnerable to server-side request forgery (SSRF) due to an incorrect regular expression. https://cybersecuritynews.com/bitdefender-vulnerabilities-attack-control/ https://t.me/cKure/13849

■■■■□ Gmail And YouTube Hackers Bypass Google’s 2FA Account Security. https://www.forbes.com/sites/daveywinder/2024/04/12/gmail-and-youtube-hackers-bypass-googles-2fa-account-security/ https://t.me/cKure/13848

■■□□□ Cyber-Attack on Israel Pro Iranian hacker groups have started waves of attacks. In the following attack, they claim to send SMS to multiple zionist entities. ضمن عملياتنا المستمره على الاحتلال الصهيوني وبعد اخترق اجهزة توجية رسائل SMS ، تم إرسال الآف الرسائل النصية إلى المغتصبين الصهاينه تتضمن تهديدات باللغة العبرية وبلاغات مزيفة بوجود متفجرات…

■■■■■ Iran 🇮🇷 Attacks Israel 🇮🇱 Amid Ongoing Genocide Against Gaza, Palestine 🇵🇸 Iran launched attacks (under code name: ‘True Promise’) on Israel in retaliation for an earlier attack by Israel on its consulate (embassy) in Syria, which resulted in 7 IRGC members’ casualties. Electronic Warfare 1. GPS The United States and Israel employed GPS…

BREAKING: IRANIAN CYBER ATTACK SHUTS DOWN ISRAEL’S ELECTRIC GRID. Iranian-linked “Cyber Avengers” hacker group has claimed they orchestrated widespread blackouts in Israel, impacting cities like Tel Aviv, Netanya, and more. The group accused Israeli authorities of dismissing these incidents as mere technical glitches while secretly losing control over their electrical systems. Asserting dominance, the group…

■■■■□ Bypassing UAC using App Paths. https://posts.specterops.io/bypassing-uac-using-app-paths-9249d8cbe9c9 https://t.me/cKure/13840