Cybercriminal Extradited to US for Multi-Million Dollar BEC Scams

https://undercodenews.com/cybercriminal-extradited-to-us-for-multi-million-dollar-bec-scams/

@Undercode_News

⚡️ #Android XR: A New Immersive Computing

https://undercodenews.com/android-xr-a-new-immersive-computing/

@Undercode_News

🦑Smtp server and mail list system for sending unlimited emails and text messages:

Mail Demon is a robust and efficient tool for sending bulk emails and text messages. Its design focuses on high performance, simplicity, and secure delivery, leveraging .NET 6.0+ and integration with frameworks like MimeKit and MailKit. It includes built-in security features such as SPF validation and integrates seamlessly with IPBan for added protection against brute force attacks.

>> Features
- High Performance: Optimized for low memory and CPU usage, capable of sending thousands of messages per second.
- Security: Supports SPF, DKIM, and DMARC records for secure email delivery.
- SMTP Features: Includes support for extensions like STARTTLS, AUTH PLAIN, and SMTPUTF8.
- Mail List Management: Integrated website for managing mailing lists, templates, and subscriber interactions.
- Database Support: SQLite by default, with SQL Server support as an option.
- Cross-platform Compatibility: Runs on Linux and Windows servers.

>> Setup Instructions

>> General Prerequisites
1. Install .NET 6.0+ runtime or publish as a self-contained executable.
2. Update `appsettings.json` with your configurations:
- SMTP settings.
- User credentials (avoid default settings).
- SSL certificates (recommended: Let’s Encrypt).

>># Building Mail Demon
1. Download and open the project in Visual Studio/VS Code.
2. Set the release configuration.
3. Publish the project.
4. Transfer the binaries to your server.

>> Linux Service Configuration
1. Place binaries in /opt/MailDemon.
2. Create a service file (/lib/systemd/system/MailDemon.service):

   [Unit]
   Description=Mail Demon Service
   After=network.target

   [Service]
   WorkingDirectory=/opt/MailDemon
   ExecStart=/usr/bin/dotnet /opt/MailDemon/MailDemon.dll
   Restart=on-failure

   [Install]
   WantedBy=multi-user.target
   

3. Enable and start the service:

   sudo systemctl daemon-reload
   sudo systemctl enable MailDemon
   sudo systemctl start MailDemon
   systemctl status MailDemon
   

>># DNS Configuration
1. SPF Record: v=spf1 mx -all
2. MX Record: Point to your domain's email server.
3. A/AAAA Record: Map to your server's IP address.
4. DMARC Record: Refer to [DMARC wiki](https://en.wikipedia.org/wiki/DMARC).
5. DKIM: Set up DKIM keys for email authentication.
6. Reverse DNS: Ensure your IP address resolves to your mail server domain.

>> Mail List Management
1. Enable Web Interface:
- Set enableWeb to true in appsettings.json.
- Configure authority, admin credentials, and reCAPTCHA keys.
2. Create and Manage Lists:
- Log in at /MailDemonLogin.
- Define lists and templates.
- Customize templates using Razor syntax.

3. Sending Emails:
- Assign a subject using <!-- Subject: ... --> in templates.
- Send bulk emails using the integrated mail list interface.

4. Magic Templates for Default Behaviors:
- SubscribeInitial: Sign-up form.
- SubscribeConfirm: Confirmation email.
- SubscribeWelcome: Welcome email.

>> Database Management
- Default: SQLite (MailDemon.db).
- Optional: SQL Server (configure in appsettings.json).

>> Known Issues
- Hotmail and Outlook Certificates: Add problematic domains to appsettings.json if invalid SSL certificates are encountered.

This streamlined tool is ideal for managing notifications, announcements, and bulk messaging tasks with ease.

@UndercodeCommunity
▁ ▂ ▄ U𝕟𝔻Ⓔ𝐫Ć𝔬𝓓ⓔ ▄ ▂ ▁

🦑is your windows slow ?
Free Optimizer apps:

https://github.com/hellzerg/optimizer

https://github.com/Threelon/Windows-Optimizer

https://github.com/azurejoga/Aurora-Windows-Optimizer

https://www.iolo.com

https://www.glarysoft.com

https://www.ccleaner.com

https://www.tweaking.com/content/page/windows_repair_all_in_one.html

https://www.defencebyte.com

https://macpaw.com/cleanmypc

🦑Exploit: index : ghostpdl.git
CVE-2024-46951

See bug report for details.

Diffstat
-rw-r--r--  psi/zcolor.c  3  
1 files changed, 3 insertions, 0 deletions
diff --git a/psi/zcolor.c b/psi/zcolor.c
index d4e7a4438..d3384d75d 100644
--- a/psi/zcolor.c
+++ b/psi/zcolor.c
@@ -5276,6 +5276,9 @@ static int patterncomponent(i_ctx_t * i_ctx_p, ref *space, int *n)
             code = array_get(imemory, pImpl, 0, &pPatInst);
             if (code < 0)
                 return code;
+
+            if (!r_is_struct(&pPatInst) || (!r_has_stype(&pPatInst, imemory, st_pattern1_instance) && !r_has_stype(&pPatInst, imemory, st_pattern2_instance)))
+                return_error(gs_error_typecheck);
             cc.pattern = r_ptr(&pPatInst, gs_pattern_instance_t);
             if (pattern_instance_uses_base_space(cc.pattern))
                 *n = n_comps;

@UndercodeCommunity
▁ ▂ ▄ U𝕟𝔻Ⓔ𝐫Ć𝔬𝓓ⓔ ▄ ▂ ▁

⚡️ #Google and #Samsung are Teaming Up for a New XR

https://undercodenews.com/google-and-samsung-are-teaming-up-for-a-new-xr/

@Undercode_News

🔍 Chat Control: A Controversial EU Plan to Scan Your Encrypted Chats

https://undercodenews.com/chat-control-a-controversial-eu-plan-to-scan-your-encrypted-chats/

@Undercode_News

🔴 #Qualcomm #Windows WLAN Host Improper Restriction of Operations within the Bounds of a Memory Buffer (#CVE-2024-43053) - High

https://dailycve.com/qualcomm-windows-wlan-host-improper-restriction-of-operations-within-the-bounds-of-a-memory-buffer-cve-2024-43053-high/

@DailyCVE

🔴 #Apple #iOS, Unexpected App Termination Vulnerability, #CVE-2024-27879 (Critical)

https://dailycve.com/apple-ios-unexpected-app-termination-vulnerability-cve-2024-27879-critical/

@Daily_CVE

🔴 #macOS, Out-of-Bounds Write Vulnerability, #CVE-2024-40841 (Critical)

https://dailycve.com/macos-out-of-bounds-write-vulnerability-cve-2024-40841-critical/

@Daily_CVE

🔴 #macOS, #iOS, iPadOS Vulnerability: Race Condition in Archive Unpacking (#CVE-2024-27876 - Critical)

https://dailycve.com/macos-ios-ipados-vulnerability-race-condition-in-archive-unpacking-cve-2024-27876-critical/

@Daily_CVE

🔵 #Linux Kernel Out-of-Bounds Memory Access Vulnerability (#CVE-2024-53108)

https://dailycve.com/linux-kernel-out-of-bounds-memory-access-vulnerability-cve-2024-53108/

@Daily_CVE

🟠 #Linux Kernel, Integer Overflow, #CVE-2024-53107 (Moderate)

https://dailycve.com/linux-kernel-integer-overflow-cve-2024-53107-moderate/

@Daily_CVE

🟠 #Apple Xcode (Updated) Privacy Issue (#CVE-2024-40862) Medium

https://dailycve.com/apple-xcode-updated-privacy-issue-cve-2024-40862-medium/

@Daily_CVE

#Samsung's Project Moohan: A Glimpse into the Future of XR

https://undercodenews.com/samsungs-project-moohan-a-glimpse-into-the-future-of-xr/

@Undercode_News

📱 #Apple's M4 MacBook Air: A Closer Look

https://undercodenews.com/apples-m4-macbook-air-a-closer-look/

@Undercode_News

🔋 Supercharge Your Workflow: Latest Enhancements to #GitHub #Copilot in VS Code

https://undercodenews.com/supercharge-your-workflow-latest-enhancements-to-github-copilot-in-vs-code/

@Undercode_News

📱 Convincing Billions to Embrace Passkeys: #Microsoft's UX-Driven Approach

https://undercodenews.com/convincing-billions-to-embrace-passkeys-microsofts-ux-driven-approach/

@Undercode_News

Spanish Police Bust Large-Scale Vishing Scam Ring

https://undercodenews.com/spanish-police-bust-large-scale-vishing-scam-ring/

@Undercode_News

ARK Invest Trims #Tesla Holdings Despite Bullish Outlook

https://undercodenews.com/ark-invest-trims-tesla-holdings-despite-bullish-outlook/

@Undercode_News

🦑Simulate Attack with Atomic Red Team:

What is Atomic Red Teams?
According to their Github pages, Atomic Red Team is a library of tests mapped to the MITRE ATT&CK framework. Security teams can use Atomic Red Team to quickly, portably, and reproducibly test their environments.

Prerequisites

>Virtual Machine with NAT Connection (Dont Use your Real Own PC).

>Windows Operating System (in this tutorial we are using Win10 Pro).

>Disabled Antivirus and Exclusion The

>EDR Script Onboarding
(If you want to deploy with local script deployment)

🦑Powershell to execute the command
Step-By-Step:

Login to your VM. Prepare the Environment first with disabling the Antivirus. Right Click Windows PowerShell > Run As Admin PowerShell