■□□□□ The new veneration of programmers. https://youtube.com/shorts/HraxciwOYKQ https://t.me/cKure/13812
All posts tagged cyber
April 8, 2024 at 03:52AM
A new class of vulnerability (on a lighter note). An interesting thread on watching police body cam footages. https://twitter.com/vxunderground/status/1777121604574560462 https://t.me/cKure/13811
April 8, 2024 at 03:29AM
■□□□□ Raw email thread of xz-utils as part of supply chain attack on open source software. https://www.mail-archive.com/search?l=xz-devel%40tukaani.org&q=subject:%22%5C%5Bxz%5C-devel%5C%5D+xz%5C-java+and+newer+java%22&o=newest https://t.me/cKure/13810
April 8, 2024 at 02:36AM
■■■■■ What we know about the xz Utils backdoor that almost infected the world. https://arstechnica.com/security/2024/04/what-we-know-about-the-xz-utils-backdoor-that-almost-infected-the-world/ https://t.me/cKure/13809
April 8, 2024 at 02:31AM
■■■□□ Why a near-miss cyberattack put US officials and the tech industry on edge. https://www.reuters.com/technology/cybersecurity/why-near-miss-cyberattack-put-us-officials-tech-industry-edge-2024-04-05/ https://t.me/cKure/13808
April 7, 2024 at 10:48PM
■■■■■ Magento Zero-Day abusing XML for persistence. Threat actors are exploiting critical Magento vulnerability CVE-2024-20720 to install a persistent backdoor on e-stores. Sansec researchers observed threat actors are exploiting the recently disclosed Magento vulnerability CVE-2024-20720 to deploy a persistent backdoor on e-stores. https://securityaffairs.com/161534/hacking/magento-vulnerability-actively-exploited.html https://t.me/cKure/13807
April 7, 2024 at 01:20PM
■■■■□ Initial Access and Post-Exploitation Tool for AAD and O365 with a browser-based GUI. https://github.com/RedByte1337/GraphSpy https://t.me/cKure/13806
April 7, 2024 at 02:39AM
■■■■■ Privilege escalation using the XAML diagnostics API (CVE-2023-36003). https://m417z.com/Privilege-escalation-using-the-XAML-diagnostics-API-CVE-2023-36003/ https://t.me/cKure/13805
April 6, 2024 at 02:54PM
■■■■■ Web Cache Entanglement; Novel Pathways to Poisoning https://portswigger.net/research/web-cache-entanglement https://t.me/cKure/13803
April 6, 2024 at 02:53PM
■■■■□ Exposing Web Cache Poisoning and Deception vulnerabilities. https://anasbetis023.medium.com/dont-trust-the-cache-exposing-web-cache-poisoning-and-deception-vulnerabilities-3a829f221f52 https://t.me/cKure/13802