CVE-2021-45467: CWP CentOS Web Panel – preauth RCE – Blog | Octagon Networks
https://octagon.net/blog/2022/01/22/cve-2021-45467-cwp-centos-web-panel-preauth-rce/
Sergio Caltagirone on Twitter: "EXCITING NEWS! We've launched the Journal of Threat Intelligence and Incident Response #JTIIR delivering peer-reviewed practical articles. Submissions are rolling but deadline is March 31 for the inaugural issue. https://t.co/xsJc8joZ9J #ThreatIntelligence #DFIR #threatintel https://t.co/VwaLByQViM" / Twitter
https://twitter.com/cnoanalysis/status/1484583836000399361
The Cyber Startup Observatory - The Global Cyber Innovation Network
https://cyberstartupobservatory.com
Hackers Planted Secret Backdoor in Dozens of WordPress Plugins and Themes
https://thehackernews.com/2022/01/hackers-planted-secret-backdoor-in.html
Merck wins cyber-insurance lawsuit related to NotPetya attack - The Record from Recorded Future News
https://therecord.media/merck-wins-cyber-insurance-lawsuit-related-to-notpetya-attack/
Molerats Hackers Hiding New Espionage Attacks Behind Public Cloud Infrastructure
https://thehackernews.com/2022/01/molerats-hackers-hiding-new-espionage.html
Source Incite on Twitter: "Zoho ManageEngine Desktop Central StateFilter Arbitrary Forward Authentication Bypass Vulnerability https://t.co/pHffCBLFA0" / Twitter
https://twitter.com/sourceincite/status/1484564168120360961
Hexacorn | Blog Beyond good ol’ Run key, Part 137
https://www.hexacorn.com/blog/2022/01/22/beyond-good-ol-run-key-part-137/
daniel:// stenberg:// on Twitter: "If you are a multi billion dollar company and are concerned about log4j, why not just email OSS authors you never paid anything and demand a response for free within 24 hours with lots of info? (company name redacted for *my* peace of mind) https://t.co/saumXAWPKO" / Twitter
https://twitter.com/bagder/status/1484672924036616195
Octagon Networks on Twitter: "Our first blog post is up! CVE-2021-45467: Preauth RCE in CentOS Web Panel affecting 200k+ web servers on Shodan (pls patch). We bypass strstr() based LFI protection and put a shell on the server. https://t.co/DvyakBkajj #bugbounty #bugbountytip https://t.co/0Z0cPU6HFl" / Twitter
https://twitter.com/OctagonNetworks/status/1484738862865739782
Experts Find Strategic Similarities b/w NotPetya and WhisperGate Attacks on Ukraine
https://thehackernews.com/2022/01/experts-find-strategic-similarities-bw.html
vx-underground
https://www.vx-underground.org/
404 Page not found | STAR Labs
https://starlabs.sg/blog/2022/01/the-cat-escaped-from-the-chrome-sandbox/
Tweet / Twitter
https://twitter.com/campuscodi/status/1484818570873917441
Lukasz Olejnik (@[email protected]) on Twitter: "First big case is in! Insurer lost a court battle: had to pay $1.4 billion to Merck, to cover the losses of the (allegedly) Russian NotPetya destructive wiper cyberattack, first released in Ukraine (2017). NotPetya was not "war". https://t.co/EkeRI7qOem https://t.co/QNldDrgQA7 https://t.co/Kyp4AP1roT" / Twitter
https://twitter.com/lukolejnik/status/1484897008209088522
Critical Bugs in Control Web Panel Expose Linux Servers to RCE Attacks
https://thehackernews.com/2022/01/critical-bugs-in-control-web-panel.html
starlabs on Twitter: "After Monday and Tuesday, it's WTF Our team member, @hungtt28 made this N-day exploit demo of CVE-2021-30632 & CVE-2021-30633 He is currently writing a blog post on the analysis of CVE-2021-30633 since no one written about it yet (or not that we know of) https://t.co/q8nNVV4djj" / Twitter
https://twitter.com/starlabs_sg/status/1483351226641428484
FSB detains administrator of UniCC carding forum - The Record from Recorded Future News
https://therecord.media/fsb-detains-administrator-of-unicc-carding-forum/