Hackearon a la NASA.
Entraron a través de una raspberry pi conectada a su red (sin autorización)
Se movieron lateralmente a otros sistemas críticos
La NASA decidió desconectar varias operaciones del internet hasta resolver el problema
https://www.forbes.com/sites/daveywinder/2019/06/20/confirmed-nasa-has-been-hacked/
Entraron a través de una raspberry pi conectada a su red (sin autorización)
Se movieron lateralmente a otros sistemas críticos
La NASA decidió desconectar varias operaciones del internet hasta resolver el problema
https://www.forbes.com/sites/daveywinder/2019/06/20/confirmed-nasa-has-been-hacked/
Forbes
Confirmed: NASA Has Been Hacked
Following an audit by the U.S. Office of the Inspector General, it has been confirmed that the Jet Propulsion Laboratory (JPL) network, part of NASA, has been hacked and the Johnson Space Center has yet to restore all communications data because of continuing…
Raspberry Pi 4 is here! A tiny, dual-display desktop computer, with three RAM variants to choose from, and all the hackability you know and love. On sale now from the familiar price of $35: https://www.raspberrypi.org/blog/raspberry-pi-4-on-sale-now-from-35/ #RaspberryPi4
Forwarded from Israel Garcia
0-Day en Zoom!
Desactiven el acceso a la cámara al entrar a una videoconferencia https://medium.com/@jonathan.leitschuh/zoom-zero-day-4-million-webcams-maybe-an-rce-just-get-them-to-visit-your-website-ac75c83f4ef5
Desactiven el acceso a la cámara al entrar a una videoconferencia https://medium.com/@jonathan.leitschuh/zoom-zero-day-4-million-webcams-maybe-an-rce-just-get-them-to-visit-your-website-ac75c83f4ef5
Medium
Zoom Zero Day: 4+ Million Webcams & maybe an RCE? Just get them to visit your website!
Vulnerability in the Mac Zoom Client allows any malicious website to enable your camera without your permission. The flaw potentially…
Se abre el entrenamiento: Web Penetration Tester en Linea 🌐 los días 18,19,20 de Septiembre 2019 !
🚨 Más información en https://tpx.mx/cursos/web-penetration-tester/en-linea !
🚨 Más información en https://tpx.mx/cursos/web-penetration-tester/en-linea !
"Big announcement: after some months of continuing work, it is a pleasure to announce the Hunter Cat pre-sale. Hunter Cat is a portable skimmer detector for magnetic stripe readers."
https://twitter.com/Netxing/status/1153356128471801857
https://twitter.com/Netxing/status/1153356128471801857
Twitter
Salvador Mendoza
Big announcement: after some months of continuing work, it is a pleasure to announce the Hunter Cat pre-sale. Hunter Cat is a portable skimmer detector for magnetic stripe readers. More details: https://t.co/U3oyKpv8dW #payments #skimmer #huntercat #infosec…
Pwning child company to get access to ParentCompany's Slack Team
https://blog.parthmalhotra.com/pwning-child-company-to-get-access-to-parentcompanys-slack-team/
https://blog.parthmalhotra.com/pwning-child-company-to-get-access-to-parentcompanys-slack-team/
Parth Malhotra
Pwning child company to get access to ParentCompany's Slack Team
> Disclaimer : Prior permissions were taken before performing heavy attacks on the
targets below, you should not try this without taking prior permission.
The following was reported to a program on HackerOne, I have redacted the
company name, lets call it…
targets below, you should not try this without taking prior permission.
The following was reported to a program on HackerOne, I have redacted the
company name, lets call it…
How I found the most critical bug in live bug bounty event?
https://medium.com/@innocenthacker/how-i-found-the-most-critical-bug-in-live-bug-bounty-event-7a88b3aa97b3
https://medium.com/@innocenthacker/how-i-found-the-most-critical-bug-in-live-bug-bounty-event-7a88b3aa97b3
Medium
How I found the most critical bug in live bug bounty event?
Hey Folks! Hope you guys are doing great.