CVE-2023-38600: Story of an innocent Apple Safari copyWithin gone (way) outside https://www.zerodayinitiative.com/blog/2023/10/17/cve-2023-38600-story-of-an-innocent-apple-safari-copywithin-gone-way-outside
Zero Day Initiative
Zero Day Initiative — CVE-2023-38600: Story of an innocent Apple Safari copyWithin gone (way) outside
In May 2023, we received a vulnerability report from an anonymous researcher regarding a vulnerability in Apple Safari. It turned out to be an interesting classic integer underflow vulnerability. Apple assigned CVE-2023-38600 to this issue and fixed it in…
MATA malware framework exploits EDR in attacks on defense firms https://www.bleepingcomputer.com/news/security/mata-malware-framework-exploits-edr-in-attacks-on-defense-firms/
BleepingComputer
MATA malware framework exploits EDR in attacks on defense firms
An updated version of the MATA backdoor framework was spotted in attacks between August 2022 and May 2023, targeting oil and gas firms and the defense industry in Eastern Europe.
Uncovering RPC Servers through Windows API Analysis https://posts.specterops.io/uncovering-rpc-servers-through-windows-api-analysis-5d23c0459db6
SpecterOps
Uncovering RPC Servers through Windows API Analysis - SpecterOps
This article serves as a hand-holding walkthrough and documents how I analyzed a simple Win32 API: LogonUserA. Learn how to use some of IDA’s most common features.
👍1
Getting RCE in Chrome with incomplete object initialization in the Maglev compiler https://github.blog/2023-10-17-getting-rce-in-chrome-with-incomplete-object-initialization-in-the-maglev-compiler/
The GitHub Blog
Getting RCE in Chrome with incomplete object initialization in the Maglev compiler
In this post, I'll exploit CVE-2023-4069, a type confusion in Chrome that allows remote code execution (RCE) in the renderer sandbox of Chrome by a single visit to a malicious site.
Malicious “RedAlert - Rocket Alerts” Application Targets Israeli Phone Calls, SMS, and User Information https://blog.cloudflare.com/malicious-redalert-rocket-alerts-application-targets-israeli-phone-calls-sms-and-user-information/
The Cloudflare Blog
Malicious “RedAlert - Rocket Alerts” application targets Israeli phone calls, SMS, and user information
On October 13, 2023, Cloudflare’s Cloudforce One Threat Operations Team became aware of a malicious Google Android application impersonating the real-time rocket alert app, Red Alert, which provides real-time rocket alerts for Israeli citizens
CVE-2023-45727: Proself Zero-Day Security Vulnerability https://securityonline.info/cve-2023-45727-proself-zero-day-security-vulnerability/
Cybersecurity News
CVE-2023-45727: Proself Zero-Day Security Vulnerability
attackers can exploit CVE-2023-45727 to transmit Proself account data externally, potentially enabling unauthorized access to Proself.
TetrisPhantom: Cyber Espionage via Secure USBs Targets APAC Governments https://thehackernews.com/2023/10/tetrisphantom-cyber-espionage-via.html
Detecting and preventing LSASS credential dumping attacks https://www.microsoft.com/en-us/security/blog/2022/10/05/detecting-and-preventing-lsass-credential-dumping-attacks/
Microsoft News
Detecting and preventing LSASS credential dumping attacks
LSASS credential dumping is becoming prevalent, especially with the rise of human-operated ransomware. In May 2022, Microsoft participated in an evaluation conducted by AV-Comparatives specifically on detecting and blocking this attack technique and we’re…
Breaking Fortinet Firmware Encryption https://bishopfox.com/blog/breaking-fortinet-firmware-encryption
Bishop Fox
Breaking Fortinet Firmware Encryption
Review our latest Fortinet analysis that breaks encryption on firmware images, leading to improved detection, fingerprinting, and exploit development.
Directory Listing to RCE https://blog.hks.ec/posts/directory-listing-to-rce/
Hakisec
Directory Listing to RCE | Hakisec
Beyond Quantum: MemComputing ASICs Could Shatter 2048-bit RSA Encryption https://www.securityweek.com/beyond-quantum-memcomputing-asics-could-shatter-2048-bit-rsa-encryption/
SecurityWeek
Beyond Quantum: MemComputing ASICs Could Shatter 2048-bit RSA Encryption
The feared ‘cryptopocalypse’ (the death of current encryption) might be sooner than expected – caused by in-memory computing ASICs rather than quantum computers.
vmlinux-to-elf: A tool to recover a fully analyzable .ELF from a raw kernel, through extracting the kernel symbol table (kallsyms) https://github.com/marin-m/vmlinux-to-elf
GitHub
GitHub - marin-m/vmlinux-to-elf: A tool to recover a fully analyzable .ELF from a raw kernel, through extracting the kernel symbol…
A tool to recover a fully analyzable .ELF from a raw kernel, through extracting the kernel symbol table (kallsyms) - marin-m/vmlinux-to-elf
Protobuf Magic: extension for Burp Suite designed to intuitively handle Protobuf (Protocol Buffers) messages, even in the absence of complete .proto definitions https://github.com/DeiteriyLab/protobuf-magic
GitHub
GitHub - DeiteriyLab/protobuf-magic
Contribute to DeiteriyLab/protobuf-magic development by creating an account on GitHub.
Exploiting Zenbleed from Chrome https://vu.ls/blog/exploiting-zenbleed-from-chrome/
👌1
Lazarus Group Targeting Defense Experts with Fake Interviews via Trojanized VNC Apps https://thehackernews.com/2023/10/lazarus-group-targeting-defense-experts.html
Hackers Exploit QR Codes with QRLJacking for Malware Distribution https://www.hackread.com/hackers-exploit-qr-codes-qrljacking-malware/
Hackread
Hackers Exploit QR Codes with QRLJacking for Malware Distribution
Follow us on Twitter @Hackread - Facebook @ /Hackread.
Lord Of The Ring0 - Part 1 | Introduction https://idov31.github.io/2022/07/14/lord-of-the-ring0-p1.html
VMware Aria Operations for Logs CVE-2023-34051 Technical Deep Dive and IOCs https://www.horizon3.ai/vmware-aria-operations-for-logs-cve-2023-34051-technical-deep-dive-and-iocs/
Horizon3.ai
VMware Aria Operations for Logs CVE-2023-34051 Technical Deep Dive and IOCs
Technical deep-dive, indicators of compromise, and exploit POC for CVE-2023-34051 which affects VMware vRealize Log Insight RCE as reported in VMSA-2023-0021. This vulnerability leads to remote code execution and full system compromise.
Lord Of The Ring0 - Part 2 | A tale of routines, IOCTLs and IRPs https://idov31.github.io/2022/08/04/lord-of-the-ring0-p2.html