■■■■□ CVE-2024-20132: Out of Bounds Write Escalates Privileges in Modem. There is a possible out-of-bounds write in Modem. This happens because of a missing bounds check. It could lead to local privilege escalation. No extra execution privileges are required. User interaction is not needed to exploit this vulnerability. https://vulmon.com/vulnerabilitydetails?qid=CVE-2024-20132 https://t.me/cKure/14975
All posts tagged hack
December 3, 2024 at 01:40AM
■■■□□ Korea arrests CEO for adding DDoS feature to satellite receivers. South Korean police have arrested a CEO and five employees for manufacturing over 240,000 satellite receivers pre-loaded or later updated to include DDoS attack functionality at a purchaser’s request. https://www.bleepingcomputer.com/news/security/korea-arrests-ceo-for-adding-ddos-feature-to-satellite-receivers/ https://t.me/cKure/14974
December 3, 2024 at 01:40AM
■■□□□ Russia sentences Hydra dark web market leader to life in prison. Russian authorities have sentenced the leader of the criminal group behind the now-closed dark web platform Hydra Market to life in prison. https://www.bleepingcomputer.com/news/security/russia-sentences-hydra-dark-web-market-leader-to-life-in-prison/ https://t.me/cKure/14973
December 2, 2024 at 09:25AM
■■■■□ Linux >=6.6: race between mremap (move_normal_pmd) and MADVISE_COLLAPSE (retract_page_tables). https://project-zero.issues.chromium.org/issues/371047675 https://t.me/cKure/14972
December 1, 2024 at 11:21AM
■■■■□ Phishing-as-a-Service “Rockstar 2FA” Targets Microsoft 365 Users with AiTM Attacks. https://thehackernews.com/2024/11/phishing-as-service-rockstar-2fa.html https://t.me/cKure/14970
December 1, 2024 at 01:22AM
■■■■□ Zero-Day: Windows Warning As New 0-Click Backdoor Russian Cyber Attack Confirmed. https://www.forbes.com/sites/daveywinder/2024/11/29/windows-warning-as-new-0-click-backdoor-russian-cyber-attack-confirmed/ https://t.me/cKure/14968
December 1, 2024 at 01:12AM
■■□□□ The logical corelation attack in the real world. A story of self-hack. A prominent hacker, suspected to be behind the Snowflake (Ticketmaster) hack earlier this year, somehow got himself identified by the misinformation he posted on Telegram after threatening the chief research officer at a US cybersecurity firm. Little more information is available at…
December 1, 2024 at 01:01AM
■■□□□ New Windows Server 2012 zero-day gets free, unofficial patches. https://www.bleepingcomputer.com/news/security/new-windows-server-2012-zero-day-gets-free-unofficial-patches/ https://t.me/cKure/14966
December 1, 2024 at 12:37AM
■■□□□ Ransomware Gangs Seek Pen Testers to Boost Quality. https://www.darkreading.com/threat-intelligence/ransomware-gangs-seek-pen-testers-boost-professionalism https://t.me/cKure/14965
November 30, 2024 at 07:17PM
Tying Cobalt Strike’s UDRL, SleepMask, and BeaconGate together for your syscall and call stack spoofing needs. https://rastamouse.me/udrl-sleepmask-and-beacongate/ https://t.me/cKure/14963