cKure Red
@ckuRED
2.33K subscribers
69 photos
31 videos
21 files
444 links
The director's cut on critical feeds from InfoSec world ๐ŸŒŽ

Main Channel: @cKure

โ˜•๏ธ or queries email us
๐Ÿ“จ i@ckure.org
Download Telegram
About
Blog
Apps
Platform
Join
cKure Red
2.33K subscribers
cKure Red
๐Ÿ’ป Zero-Day MSR Kernel Exploit for Windows 11 25H2.
Juan Sacco


https://www.exploitpack.com/blogs/news/0-day-msr-kernel-exploit-for-windows-11-25h2
Please open Telegram to view this post
VIEW IN TELEGRAM
Exploit Pack
0-Day MSR Kernel Exploit for Windows 11 25H2
New 0-day Windows Kernel Exploit, working in Windows 11 25h2 fully patched.It took me 2 weeks of endless coffee cups! MSRs control where the CPU jumps for privileged transitions, they are a sensitive part of system state. Operating systems carefully  themโ€ฆ
๐Ÿ‘1๐Ÿ”ฅ1๐Ÿ‘1
1.93K views
cKure Red
A Major Leak Spills a Chinese Hacking Contractorโ€™s Tools and Targets.

https://www.wired.com/story/major-leak-spills-chinese-hacking-contractor-tools-targets/
WIRED
A Major Leak Spills a Chinese Hacking Contractorโ€™s Tools and Targets
Plus: State-sponsored AI hacking is here, Google hosts a CBP face recognition app, and more of the weekโ€™s top security news.
๐Ÿ™‰21
1.78K views
cKure Red
๐Ÿ—œ๐Ÿ“‚ CVE-2025-11001: Hackers Actively Exploiting 7-Zip RCE Vulnerability in the Wild.

https://cybersecuritynews.com/7-zip-rce-vulnerability-exploited/
Please open Telegram to view this post
VIEW IN TELEGRAM
Cyber Security News
Hackers Actively Exploiting 7-Zip RCE Vulnerability in the Wild
Hackers have begun actively exploiting a critical remote code execution (RCE) vulnerability in the popular file archiver 7-Zip, putting millions of users at risk of malware infection and system compromise.
โคโ€๐Ÿ”ฅ1๐Ÿ‘1๐Ÿ”ฅ1
1.59K views
cKure Red
๐Ÿท๏ธ Critical Windows Graphics Vulnerability Lets Hackers Seize Control with a Single Image.

https://cybersecuritynews.com/critical-windows-graphics-vulnerability/
Please open Telegram to view this post
VIEW IN TELEGRAM
Cyber Security News
Critical Windows Graphics Vulnerability Lets Hackers Seize Control with a Single Image
A critical remote code execution flaw in Microsoft's Windows Graphics Component allows attackers to seize control of systems using specially crafted JPEG images.
โ˜ƒ2๐Ÿ‘1๐Ÿ‘Œ11
1.89K views
cKure Red
WhatsApp ๐Ÿ“ฑ and Signal ๐Ÿ“ฑ suffer from metadata leakage.

๐Ÿ“ฑhttps://youtu.be/B9Syj555RQc
Please open Telegram to view this post
VIEW IN TELEGRAM
๐Ÿ‘4๐Ÿค”1
1.61K viewsedited  
cKure Red
cKure Red
๐Ÿ“ฑ Samsung shares surveillance software under the control of the Israeli firm [IronSource]. ๐Ÿ“Œ A class of Samsung devices are vulnerable. ๐Ÿ“ŒLegally, Samsung can not install the third-partyware. ๐Ÿ“ŒApp cloud โ˜๏ธ can not be removed unless the device is rooted.
๐Ÿ‡ฎ๐Ÿ‡ฑJew Supply-Chain Attack [last week]: New Samsung Galaxy A and M series phones that have entered Gaza via checkpoints (post official but not-working ceasefire) have malfunctioned and one exploded in the hands of Gaza resident. This is second such incident in two days.

โžฟThis could be the Israeli supply chain attack as A and M series device by Samsung has a built-in zionist signal intelligence app that collects user telemetric and metadata.

โžฟBased on a source around 5K to 10K such devices have entered Gaza.

โžฟThe app is from Iron Source.
The zionist entity (Israel) has โ€œIronโ€ in the name of many ๐Ÿช– technologies (defense-related):

Iron Beam โ€“ Israel. High-energy laser air-defense system.

Iron Fist โ€“ Israel. Active protection system for vehicles.

Iron Curtain โ€“ US. APS for close-range RPG/missile interception.

Iron Wolf โ€“ Lithuania. Mechanized infantry brigade (NATO).

Iron Dome โ€“ Missile Defense system of Israel.

Iron Sting โ€“ Israel. Precision 120mm mortar-guided munition.

Iron Vision โ€“ Elbit helmet-mounted 360ยฐ situational awareness for tanks.
Please open Telegram to view this post
VIEW IN TELEGRAM
๐Ÿคฏ3๐Ÿคฎ2๐Ÿค”1
1.76K viewsedited  
cKure Red
๐Ÿ”„Tomiris wreaks Havoc: New tools and techniques of the APT group.

https://securelist.com/tomiris-new-tools/118143/
Please open Telegram to view this post
VIEW IN TELEGRAM
๐Ÿ”ฅ1
1.65K viewsedited  
cKure Red
๐ŸŸฅCVE-2024-21413: PoC Exploit Released for Critical Outlook 0-Click Remote Code Execution Vulnerability.

https://github.com/mmathivanan17/CVE-2024-21413

https://cybersecuritynews.com/outlook-remote-code-execution-vulnerability-2/
Please open Telegram to view this post
VIEW IN TELEGRAM
GitHub
GitHub - mmathivanan17/CVE-2024-21413: Outlook exploitation
Outlook exploitation. Contribute to mmathivanan17/CVE-2024-21413 development by creating an account on GitHub.
๐Ÿ”ฅ5๐Ÿ†’11
1.91K views
cKure Red
๐Ÿ“ฑ React2Shell Ultimate - CVE-2025-66478 Scanner.

https://github.com/hackersatyamrastogi/react2shell-ultimate
Please open Telegram to view this post
VIEW IN TELEGRAM
๐Ÿ”ฅ3๐Ÿ‘Œ11
1.88K views
cKure Red
cKure Red pinned a photo
cKure Red
๐Ÿคฉ๐Ÿคฉ Jewish โœก๏ธ state's another cyber crime unmasked.

Hacked in Pakistan: Israeli Spyware Firm Intellexa, Owned by Ex-intel Officer, Still Active Amid ๐Ÿคฉ๐Ÿคฉ United States' Sanctions.

Spyware targets in Pakistan ๐Ÿคฉ๐Ÿคฉ and Iraq ๐Ÿ‡ฎ๐Ÿ‡ถ and a new infection method. The sanctions aren't deterring Intellexa ๐Ÿ’ป

https://www.haaretz.com/israel-news/security-aviation/2025-12-04/ty-article-magazine/.premium/israeli-spyware-firm-intellexa-owned-by-ex-intel-officer-still-active-amid-us-sanctions/0000019a-e3e8-db35-afbf-ebfcb8bb0000
Please open Telegram to view this post
VIEW IN TELEGRAM
โค1
1.93K views
cKure Red
๐Ÿ’ปBug Bounty: Iran-linked hacker group offers $30,000 bounty for Israel's military info.

https://www.iranintl.com/en/202512164597
Please open Telegram to view this post
VIEW IN TELEGRAM
Iranintl
Iran-linked hacker group offers $30,000 bounty for Israel's military info
An Iran-linked hacker group said it was offering a $30,000 reward for information related to Israelโ€™s military sector after releasing material it said identified people involved in designing Israeli missile defense systems.
โค1
1.66K views
cKure Red
This media is not supported in your browser
VIEW IN TELEGRAM
OSINT via Google ๐Ÿ”
Please open Telegram to view this post
VIEW IN TELEGRAM
๐Ÿค”1
1.55K views
cKure Red
cKure Red pinned Deleted message
cKure Red
This media is not supported in your browser
VIEW IN TELEGRAM
๐Ÿ‡ฎ๐Ÿ‡ฑ jmail.world
Please open Telegram to view this post
VIEW IN TELEGRAM
โค4
1.41K viewsedited  
cKure Red
๐Ÿฒ GhidraGPT: A powerful Ghidra plugin that integrates Large Language Models (LLMs) directly into Ghidra to enhance reverse engineering workflows with code analysis and enhancement capabilities.

https://github.com/weirdmachine64/GhidraGPT
Please open Telegram to view this post
VIEW IN TELEGRAM
GitHub
GitHub - weirdmachine64/GhidraGPT: Integrate LLM models directly into Ghidra for automated code rewrite and analysis.
Integrate LLM models directly into Ghidra for automated code rewrite and analysis. - weirdmachine64/GhidraGPT
๐Ÿ‘1
1.82K views
cKure Red
Zero-Day: Zero-Click RCE on๐ŸApple iOS viz. decoding logic vulnerability in Apple's image parser.

๐Ÿ“น https://youtu.be/jJ2QwvMDf7k
Please open Telegram to view this post
VIEW IN TELEGRAM
YouTube
Reverse Engineering a WhatsApp 0-click Vulnerability
Are you a security researcher or reverse engineer?

For 50% off IDA Products use promo code BILLY50, https://hex-rays.com/pricing *
For 30% off IDA Training use promo code BILLY30, https://hex-rays.com/training **

*License discounts are only valid for individualsโ€ฆ
1.16K views
cKure Red
cKure Red pinned ยซZero-Day: Zero-Click RCE on๐ŸApple iOS viz. decoding logic vulnerability in Apple's image parser. ๐Ÿ“น https://youtu.be/jJ2QwvMDf7kยป
cKure Red
๐Ÿฆ Kaspersky researchers discovered preinstalled malware on certain models of tablets running Android โ€“ calling it Keenadu.

It's a backdoor in ๐˜ญ๐˜ช๐˜ฃ๐˜ข๐˜ฏ๐˜ฅ๐˜ณ๐˜ฐ๐˜ช๐˜ฅ_๐˜ณ๐˜ถ๐˜ฏ๐˜ต๐˜ช๐˜ฎ๐˜ฆ.๐˜ด๐˜ฐ
Please open Telegram to view this post
VIEW IN TELEGRAM
Please open Telegram to view this post
VIEW IN TELEGRAM
1.22K views