09/11

TikTok - Make Your Day

http://tiktok.com
TikTok - Make Your Day

We Spent $20 To Achieve RCE And Accidentally Became The Admins Of .MOBI

https://labs.watchtowr.com/we-spent-20-to-achieve-rce-and-accidentally-became-the-admins-of-mobi/
We Spent $20 To Achieve RCE And Accidentally Became The Admins Of .MOBI

Developers Beware: Lazarus Group Uses Fake Coding Tests to Spread Malware

https://thehackernews.com/2024/09/developers-beware-lazarus-group-uses.html
Developers Beware: Lazarus Group Uses Fake Coding Tests to Spread Malware

Decrypting and Replaying VPN Cookies | by James H | Sep, 2024 | Medium

https://rotarydrone.medium.com/decrypting-and-replaying-vpn-cookies-4a1d8fc7773e
Decrypting and Replaying VPN Cookies | by James H | Sep, 2024 | Medium

Ivanti fixed a maximum severity flaw in its EPM software

https://securityaffairs.com/168286/uncategorized/ivanti-epm-critical-flaws.html
Ivanti fixed a maximum severity flaw in its EPM software

Browser Stored Credentials – Purple Team

https://ipurple.team/2024/09/10/browser-stored-credentials/
Browser Stored Credentials – Purple Team

DockerSpy: Search for images on Docker Hub, extract sensitive information - Help Net Security

https://www.helpnetsecurity.com/2024/09/11/dockerspy-extract-sensitive-information-docker-hub-images/
DockerSpy: Search for images on Docker Hub, extract sensitive information - Help Net Security

RansomHub ransomware gang relies on TDSKiller to disable EDR

https://securityaffairs.com/168296/malware/ransomhub-ransomware-tdskiller-disable-edr.html
RansomHub ransomware gang relies on TDSKiller to disable EDR

Data Breach at Golf Course Management Firm KemperSports Impacts 62,000 - SecurityWeek

https://www.securityweek.com/data-breach-at-golf-course-management-firm-kempersports-impacts-62000/
Data Breach at Golf Course Management Firm KemperSports Impacts 62,000 - SecurityWeek

Microsoft September 2024 Patch Tuesday fixes 4 zero-days, 79 flaws

https://www.bleepingcomputer.com/news/microsoft/microsoft-september-2024-patch-tuesday-fixes-4-zero-days-79-flaws/
Microsoft September 2024 Patch Tuesday fixes 4 zero-days, 79 flaws

Windows Security Function Bypassed By New 0-Day Threat, Microsoft Says

https://www.forbes.com/sites/daveywinder/2024/09/11/windows-security-function-bypassed-by-new-0-day-threat-microsoft-says/
Windows Security Function Bypassed By New 0-Day Threat, Microsoft Says

New RansomHub attack uses TDSKiller and LaZagne, disables EDR - ThreatDown by Malwarebytes

https://www.threatdown.com/blog/new-ransomhub-attack-uses-tdskiller-and-lazagne-disables-edr/
New RansomHub attack uses TDSKiller and LaZagne, disables EDR - ThreatDown by Malwarebytes

Chinese hackers linked to cybercrime syndicate arrested in Singapore

https://www.bleepingcomputer.com/news/legal/chinese-hackers-linked-to-PlugX-malware-arrested-in-singapore/
Chinese hackers linked to cybercrime syndicate arrested in Singapore

CVR: The Mines of Kakadûm - Google Bug Hunters

https://bughunters.google.com/blog/6220757425586176/cvr-the-mines-of-kakad-m
CVR: The Mines of Kakadûm - Google Bug Hunters