Command Injection Vulnerability In Progress Flowmon #infosec #cybersecurity #ethicalhacking #news #privacy

Rhino Security Labs

CVE-2024-2389: Command Injection Vulnerability In Progress Flowmon

CVE-2024-2389 unauthenticated command injection vulnerability found in Progress Flowmon server.

Vulnerability on the official #Matrix client for #Android #element #infosec #cybersecurity #ethicalhacking #news #privacy #nostr

Shielder

Shielder - Element Android CVE-2024-26131, CVE-2024-26132 - Never Take Intents From Strangers

A writeup about two intent-based Android vulnerabilities CVE-2024-26131 and CVE-2024-26132 in Element (Matrix).

An Obscure Actions Workflow Vulnerability in Google’s Flank #infosec #cybersecurity #ethicalhacking #news #privacy #nostr

Adnan Khan - Security Research

An Obscure Actions Workflow Vulnerability in Google

An Obscure Actions Workflow Vulnerability in Google

LosdMaster csrf vulnerability #infosec #cybersecurity #ethicalhacking #news #privacy #nostr

Rhino Security Labs

CVE-2024-2448: Authenticated Command Injection In Progress Kemp LoadMaster

This blog covers 2 vulnerabilities discovered by Rhino Security Labs in Kemp LoadMaster load balancers: CVE-2024-2448 and CVE-2024-2449.

BatBadBut

GMO Flatt Security Research

BatBadBut: You can't securely execute commands on Windows

Introduction Hello, I’m RyotaK ( @ryotkak ), a security engineer at Flatt Security Inc. Recently, I reported multiple vulnerabilities to several ...

You can't securely execute commands on Windows

OpenSecurityTraining2

Architecture 1005: RISC-V Assembly

This class teaches RISC-V assembly language. It requires you know C programming.

Architecture 1005: RISC-V Assembly OpenSecurityTraining2 #infosec #cybersecurity #ethicalhacking #news #privacy

Architecture 1005: RISC-V Assembly OpenSecurityTraining2 #infosec #cybersecurity #ethicalhacking #news #privacy

Architecture 1005: RISC-V Assembly

This class teaches RISC-V assembly language. It requires you know C programming.

BatBadBut: You can't securely execute commands on Windows #infosec #cybersecurity #ethicalhacking #news #privacy #nostr

GMO Flatt Security Research

BatBadBut: You can't securely execute commands on Windows

Introduction Hello, I’m RyotaK ( @ryotkak ), a security engineer at Flatt Security Inc. Recently, I reported multiple vulnerabilities to several ...

The Ultimate Android Malware Reversing Tool

Boschko Security Blog

Incinerator: The Ultimate Android Malware Reversing Tool

Master Android malware reversal with ease using Incinerator, your trusted ally in the fight against threat actors for experts and novices alike.

#infosec #cybersecurity #ethicalhacking #news #privacy

Hide messages with invisible Unicode characters

GitHub

GitHub - dwisiswant0/unch: Hides message with invisible Unicode characters

Hides message with invisible Unicode characters. Contribute to dwisiswant0/unch development by creating an account on GitHub.

#infosec #cybersecurity #ethicalhacking #news #privacy

Universal local privilege escalation Proof-of-Concept exploit for CVE-2024-1086

GitHub

GitHub - Notselwyn/CVE-2024-1086: Universal local privilege escalation Proof-of-Concept exploit for CVE-2024-1086, working on most Linux kernels between v5.14 and v6.6, including Debian, Ubuntu, and KernelCTF. The success rate is 99.4% in KernelCTF images.

Universal local privilege escalation Proof-of-Concept exploit for CVE-2024-1086, working on most Linux kernels between v5.14 and v6.6, including De...

#infosec #cybersecurity #ethicalhacking #news #privacy

11 years old bug on linux leaks users passwords. https://people.rit.edu/sjf5462/6831711781/wall_2_27_2024.txt #infosec #cybersecurity #ethicalhacking #news #privacy

Good news after 7 years Drozer got a update and is alive again

GitHub

GitHub - ReversecLabs/drozer: The Leading Security Assessment Framework for Android.

The Leading Security Assessment Framework for Android. - ReversecLabs/drozer

#infosec #cybersecurity #ethicalhacking #news #privacy

Top #Phishing  URLS this week WalletConnect  Phishing Site hxxps://connectionsyncmanual[.]pages[.]dev     hxxps://ethpay[.]streamlink[.]tovehn DocuSign Phishing Site hxxps://pub-d36e877a26d14bf79275c71d5b61ff18[.]r2[.]dev/document[.]html Windows Defender Phishing Site hxxps://flavoredbychef[.]xyz/Wi0n0MrSh0Er00187/index[.]html LANDBANK Phishing Site hxxps://lbpiaccess[.]accountph[.]com/lbpiaccess[.]php Lloyds Bank Phishing Site hxxps://security-auth-device[.]firebaseapp[.]com Microsoft Phishing Site hxxps://worker-royal-sun-1090[.]nipocas604[.]workers[.]dev Netflix Phishing Site hxxp://artboxdigital[.]co[.]uk/wp-admin/login/login Instagram Phishing Site hxxp://stargirlonhvv[.]blogspot[.]al #infosec #cybersecurity #ethicalhacking #news #nostr #privacy

FBI using push notifications to track criminals: Here's how #infosec #privacy

NewsBytes

FBI using push notifications to track criminals: Here

The Federal Bureau of Investigation (FBI) is now using push notifications to help track down suspects involved in serious crimes like child abuse, ...

Chinese Hackers Exploiting Ivanti VPN Flaws to Deploy New Malware #cybersecurity #infosec #privacy

The Hacker News

Chinese Hackers Exploiting Ivanti VPN Flaws to Deploy New Malware

Two suspected China-linked cyber espionage clusters, UNC5325 and UNC3886, exploit Ivanti VPN flaws, deploying new malware.

Your fingerprints can be recreated from the sounds made when you swipe on a touchscreen.

Tom

Your fingerprints can be recreated from the sounds made when you swipe on a touchscreen — Chinese and US researchers show new side channel can reproduce fingerprints to enable attacks

Researchers claim they can successfully attack up to 27.9% of partial fingerprints.

Announcing cvemap

ProjectDiscovery

Announcing cvemap from ProjectDiscovery — ProjectDiscovery Blog

Security professionals are constantly on guard against cyber threats, especially given the rising number and sophistication of attacks. However, th...

#infosec #ethicalhacking #cybersecurity #nostr #zap

Nightshade, the free tool that poisons AI models, is now available for artists to use. https://venturebeat.com/ai/nightshade-the-free-tool-that-poisons-ai-models-is-now-available-for-artists-to-use/ #infosec #ethicalhacking #cybersecurity #nostr #zap

Bypassing Discord's marked links filter

GitHub

GitHub - Nickguitar/bypassing_discord_masked_links_filter: Bypassing Discord's masked links filter

Bypassing Discord's masked links filter. Contribute to Nickguitar/bypassing_discord_masked_links_filter development by creating an account on GitHub.

#infosec #ethicalhacking #cybersecurity #nostr #zap