■■■□□ Discord.io suffers massive data breach, announces closure
Hackers stole the data of 760,000 users.
https://mashable.com/article/discord-io-data-breach
Hackers stole the data of 760,000 users.
https://mashable.com/article/discord-io-data-breach
Mashable
Discord.io suffers massive data breach, announces closure
Discord.io, a service that allows people to create custom Discord channel invites, has been hacked.
Forwarded from cKure Red
Cyber-War by Russia: SandWorm group's latest Operation
Android malware + Tor + Mirai +dropbear = Anonymous attack exploit chain.
https://github.com/blackorbird/APT_REPORT/blob/master/Sandworm/SBU%20exposes%20russian%20intelligence%20attempts%20to%20penetrate%20Armed%20Forces'%20planning%20operations%20system.pdf
Android malware + Tor + Mirai +dropbear = Anonymous attack exploit chain.
https://github.com/blackorbird/APT_REPORT/blob/master/Sandworm/SBU%20exposes%20russian%20intelligence%20attempts%20to%20penetrate%20Armed%20Forces'%20planning%20operations%20system.pdf
GitHub
APT_REPORT/Sandworm/SBU exposes russian intelligence attempts to penetrate Armed Forces' planning operations system.pdf at master…
Interesting APT Report Collection And Some Special IOC - blackorbird/APT_REPORT
■■□□□ Trawler - PowerShell Script To Help Incident Responders Discover Adversary Persistence Mechanisms.
https://github.com/joeavanzato/Trawler
https://github.com/joeavanzato/Trawler
GitHub
GitHub - joeavanzato/Trawler: PowerShell script helping Incident Responders discover potential adversary persistence mechanisms.
PowerShell script helping Incident Responders discover potential adversary persistence mechanisms. - joeavanzato/Trawler
Forwarded from cKure Red
Sundown: anonfiles.com for sale.
AnonFiles, the anonymous file upload and sharing website, has decided to call it a quits today. When attempting to visit their website you are greeted with a farewell message.
AnonFiles, the anonymous file upload and sharing website, has decided to call it a quits today. When attempting to visit their website you are greeted with a farewell message.
■■□□□ PowerHell: Active Flaws in PowerShell Gallery Expose Users to Attacks.
https://blog.aquasec.com/powerhell-active-flaws-in-powershell-gallery-expose-users-to-attacks
https://blog.aquasec.com/powerhell-active-flaws-in-powershell-gallery-expose-users-to-attacks
Aqua
PowerHell: Active Flaws in PowerShell Gallery Expose Users to Attacks
We expose significant flaws in PowerShell Gallery's policy package names and owners, that open potential supply chain attacks on the registry's user base.
■■■□□ How A Small Device Can Hack Into Mobile Phones Through WiFi.
https://www.therakyatpost.com/news/malaysia/2023/08/11/watch-man-demonstrates-how-a-small-device-can-hack-into-mobile-phones-through-wifi/
https://www.therakyatpost.com/news/malaysia/2023/08/11/watch-man-demonstrates-how-a-small-device-can-hack-into-mobile-phones-through-wifi/
TRP
[Watch] Man Demonstrates How A Small Device Can Hack Into Mobile Phones Through WiFi | TRP
Once the password is entered, the hacker can steal it, hack into the user's phone, and do whatever they want with the personal information they obtain.
■■□□□ Cyber-Crime: Hackers ask $120,000 for access to multi-billion auction house.
https://www.bleepingcomputer.com/news/security/hackers-ask-120-000-for-access-to-multi-billion-auction-house/
https://www.bleepingcomputer.com/news/security/hackers-ask-120-000-for-access-to-multi-billion-auction-house/
BleepingComputer
Hackers ask $120,000 for access to multi-billion auction house
Hackers have breached the network of a major auction house and offered access to whoever was willing to pay $120,000.
■■■■□ Hackers figured out 3 separate ways to break into US Air Force satellites, and won up to $50K for doing it.
https://www.businessinsider.in/science/news/hackers-figured-out-3-separate-ways-to-break-into-us-air-force-satellites-and-won-up-to-50k-for-doing-it/articleshow/102804642.cms
https://www.businessinsider.in/science/news/hackers-figured-out-3-separate-ways-to-break-into-us-air-force-satellites-and-won-up-to-50k-for-doing-it/articleshow/102804642.cms
Business Insider India
Hackers figured out 3 separate ways to break into US Air Force satellites, and won up to $50K for doing it
The US military gathered hackers to test the defenses of a real orbiting satellite at its "Hack-A-Sat" event. A team of Italians took the grand prize.
■■■■□ DLL side-loading.
https://www.politoinc.com/post/playing-with-bubbles-an-introduction-to-dll-sideloading
https://www.politoinc.com/post/playing-with-bubbles-an-introduction-to-dll-sideloading
Polito, Inc.
Playing with Bubbles: An Introduction to DLL-Sideloading
DLL Side-Loading is a pervasive technique partially because its behavior is difficult to detect. As a sub-technique of DLL Hijacking, it ta
■■■□□ [Tool] headerpwn: A fuzzer for finding anomalies and analyzing how servers respond to different HTTP headers
Useful for uncovering the following behaviors:
- Header based access control issues
- 403/401 Bypasses
- Detecting anomalies when certain special headers are present
- Header based cache poisoning denial of service issues
- Debug information disclosure when certain headers are present
- etc.
https://github.com/devanshbatham/headerpwn
Useful for uncovering the following behaviors:
- Header based access control issues
- 403/401 Bypasses
- Detecting anomalies when certain special headers are present
- Header based cache poisoning denial of service issues
- Debug information disclosure when certain headers are present
- etc.
https://github.com/devanshbatham/headerpwn
GitHub
GitHub - devanshbatham/headerpwn: A fuzzer for finding anomalies and analyzing how servers respond to different HTTP headers
A fuzzer for finding anomalies and analyzing how servers respond to different HTTP headers - devanshbatham/headerpwn
■■■■■ Fuzzing IoT binaries with AFL++ - Part II.
https://blog.attify.com/fuzzing-iot-binaries-with-afl-part-ii/
https://blog.attify.com/fuzzing-iot-binaries-with-afl-part-ii/
Attify Blog - IoT Security, Pentesting and Exploitation
Fuzzing IoT binaries with AFL++ - Part II
Fuzzing closed source IoT firmware binaries with AFL++ in Qemu mode. Fuzzing networked apps often requires desocketing and patching the binary.
■■■■□ Journey into Windows Kernel Exploitation: The Basics.
https://blog.neuvik.com/journey-into-windows-kernel-exploitation-the-basics-fff72116ca33
https://blog.neuvik.com/journey-into-windows-kernel-exploitation-the-basics-fff72116ca33
Medium
Journey into Windows Kernel Exploitation: The Basics
This blogpost embarks on the initial stages of kernel exploitation. The content serves as an introduction, leading to an imminent and…
■■■□□ Emulating the Iranian State-Sponsored Adversary APT35.
https://www.attackiq.com/2023/08/18/emulating-apt35/
https://www.attackiq.com/2023/08/18/emulating-apt35/
AttackIQ
Emulating the Iranian State-Sponsored Adversary APT35 - AttackIQ
AttackIQ has released a new attack graph that emulates activities observed by the state-sponsored Iranian-based adversary APT35.
■□□□□ Funny: Cyber security researchers become target of criminal hackers.
● The victim apparently was a war veteran.
https://www.ft.com/content/88560ffa-bb5f-428a-894e-d791a0ee342c
● The victim apparently was a war veteran.
https://www.ft.com/content/88560ffa-bb5f-428a-894e-d791a0ee342c
■■■■■ Tool: BurpSuite Extension (plugin).
InQL, an open-source Burp Suite extension for advanced GraphQL testing, offering intuitive vulnerability detection, customizable scans, and seamless Burp integration.
https://github.com/doyensec/inql
InQL, an open-source Burp Suite extension for advanced GraphQL testing, offering intuitive vulnerability detection, customizable scans, and seamless Burp integration.
https://github.com/doyensec/inql
GitHub
GitHub - doyensec/inql: InQL is a robust, open-source Burp Suite extension for advanced GraphQL testing, offering intuitive vulnerability…
InQL is a robust, open-source Burp Suite extension for advanced GraphQL testing, offering intuitive vulnerability detection, customizable scans, and seamless Burp integration. - doyensec/inql