2022-06-24 | Hacker Trends

06/23

06/24

06/25

14 Posts

Project Zero: The curious tale of a fake Carrier.app

https://googleprojectzero.blogspot.com/2022/06/curious-case-carrier-app.html

Project Zero: The curious tale of a fake Carrier.app

12 Posts

Spyware vendor targets users in Italy and Kazakhstan

https://blog.google/threat-analysis-group/italian-spyware-vendor-targets-users-in-italy-and-kazakhstan/

Spyware vendor targets users in Italy and Kazakhstan

12 Posts

From NtObjectManager to PetitPotam | clearbluejar

https://clearbluejar.github.io/posts/from-ntobjectmanager-to-petitpotam/

From NtObjectManager to PetitPotam | clearbluejar

11 Posts

HTML Sanitizer API

https://wicg.github.io/sanitizer-api/#dom-element-sethtml

HTML Sanitizer API

10 Posts

add WerFault Silent Process Exit: --werfault · helpsystems/nanodump@578116f · GitHub

https://github.com/helpsystems/nanodump/commit/578116faea3d278d53d70ea932e2bbfe42569507

add WerFault Silent Process Exit: --werfault · helpsystems/nanodump@578116f · GitHub

10 Posts

Miracle - One Vulnerability To Rule Them All | by Peterjson | Jun, 2022 | Medium

https://peterjson.medium.com/miracle-one-vulnerability-to-rule-them-all-c3aed9edeea2

Miracle - One Vulnerability To Rule Them All | by Peterjson | Jun, 2022 | Medium

9 Posts

19-1392_6j37.pdf

https://www.supremecourt.gov/opinions/21pdf/19-1392_6j37.pdf

19-1392_6j37.pdf

8 Posts

Ryan Naraine on Twitter: "This was exploited as 0day. Mitel's advisory neglects to say so (cc @maddiestone) https://t.co/osMz3xu3R8" / Twitter

https://twitter.com/ryanaraine/status/1540308437854199809

Ryan Naraine on Twitter: "This was exploited as 0day. Mitel's advisory neglects to say so (cc @maddiestone) https://t.co/osMz3xu3R8" / Twitter

8 Posts

Eva on Twitter: "The difference between now and the last time that abortion was illegal in the United States is that we live in an era of unprecedented digital surveillance." / Twitter

https://twitter.com/evacide/status/1540358180789620736

Eva on Twitter: "The difference between now and the last time that abortion was illegal in the United States is that we live in an era of unprecedented digital surveillance." / Twitter

8 Posts

Matt Ford on Twitter: "In a solo concurring opinion, Thomas says the court should reconsider rulings that protect contraception, same-sex relationships, and same-sex marriage. https://t.co/zcQNko6NVR" / Twitter

https://twitter.com/fordm/status/1540338064324698112

Matt Ford on Twitter: "In a solo concurring opinion, Thomas says the court should reconsider rulings that protect contraception, same-sex relationships, and same-sex marriage. https://t.co/zcQNko6NVR" / Twitter

7 Posts

Zed Attack Proxy on Twitter: "ZAP needs your help! https://t.co/2VJ7i64e9u" / Twitter

https://twitter.com/zaproxy/status/1537823718117888000

Zed Attack Proxy on Twitter: "ZAP needs your help! https://t.co/2VJ7i64e9u" / Twitter

7 Posts

Manu Raju on Twitter: "On way to the court https://t.co/XrE9ExAzhm" / Twitter

https://twitter.com/mkraju/status/1540362945921785856

Manu Raju on Twitter: "On way to the court https://t.co/XrE9ExAzhm" / Twitter

7 Posts

Novel Exploit in Mitel VOIP Appliance | CrowdStrike

https://www.crowdstrike.com/blog/novel-exploit-detected-in-mitel-voip-appliance/

Novel Exploit in Mitel VOIP Appliance | CrowdStrike

7 Posts

Kyle Griffin on Twitter: "Clarence Thomas writes, in a concurring opinion, that the Supreme Court should reconsider Griswold, Lawrence, and Obergefell — the rulings that now protect contraception, same-sex relationships, and same-sex marriage." / Twitter

https://twitter.com/kylegriffin1/status/1540339085230968834

Kyle Griffin on Twitter: "Clarence Thomas writes, in a concurring opinion, that the Supreme Court should reconsider Griswold, Lawrence, and Obergefell — the rulings that now protect contraception, same-sex relationships, and same-sex marriage." / Twitter

7 Posts

404 Page not found | STAR Labs

https://starlabs.sg/blog/2022/06/io_uring-new-code-new-bugs-and-a-new-exploit-technique/

404 Page not found | STAR Labs

7 Posts

AWS Misconfigurations – Geek Freak

https://dhiyaneshgeek.github.io/cloud/security/2022/06/23/aws-misconfigurations/

AWS Misconfigurations – Geek Freak

6 Posts

BBC News (World) on Twitter: "Japanese man loses USB stick with entire city's personal details https://t.co/EEb4Sq5E20" / Twitter

https://twitter.com/bbcworld/status/1540284171381313539

BBC News (World) on Twitter: "Japanese man loses USB stick with entire city's personal details https://t.co/EEb4Sq5E20" / Twitter

6 Posts

Looming abortion law changes prompt digital privacy worries for clinics

https://www.nbcnews.com/tech/security/abortion-clinics-providers-digital-privacy-roe-overturn-rcna30654

Looming abortion law changes prompt digital privacy worries for clinics

6 Posts

IcedID/icedID_23.06.2022.txt at main · pr0xylife/IcedID · GitHub

https://github.com/pr0xylife/IcedID/blob/main/icedID_23.06.2022.txt

IcedID/icedID_23.06.2022.txt at main · pr0xylife/IcedID · GitHub

6 Posts

Log4Shell Still Being Exploited to Hack VMWare Servers to Exfiltrate Sensitive Data

https://thehackernews.com/2022/06/log4shell-still-being-exploited-to-hack.html

Log4Shell Still Being Exploited to Hack VMWare Servers to Exfiltrate Sensitive Data

6 Posts

Farnoush Amiri on Twitter: "As protesters can be heard in the back chanting outside SCOTUS, House Democrats sing “God Bless America.” https://t.co/MjW0cSZ6nY" / Twitter

https://twitter.com/FarnoushAmiri/status/1540370901803433984

Farnoush Amiri on Twitter: "As protesters can be heard in the back chanting outside SCOTUS, House Democrats sing “God Bless America.” https://t.co/MjW0cSZ6nY" / Twitter

6 Posts

Jessica Khoury on Twitter: "Delete your period tracking apps today." / Twitter

https://twitter.com/jkbibliophile/status/1540345161955385345

Jessica Khoury on Twitter: "Delete your period tracking apps today." / Twitter

6 Posts

GitHub - BC-SECURITY/Empire: Empire is a PowerShell and Python 3.x post-exploitation framework.

https://github.com/BC-SECURITY/Empire

GitHub - BC-SECURITY/Empire: Empire is a PowerShell and Python 3.x post-exploitation framework.

6 Posts

The hateful eight: Kaspersky’s guide to modern ransomware groups’ TTPs | Securelist

https://securelist.com/modern-ransomware-groups-ttps/106824/

The hateful eight: Kaspersky’s guide to modern ransomware groups’ TTPs | Securelist

6 Posts

6a540c56ddd2715f68bb87455cc894ec5d314d4dca97013e83d7fd9fc47302b8 (MD5: 5AEDEA35488B7786FE31B7E8BA029A76) - Interactive analysis - ANY.RUN

http://app.any.run/tasks/b9fee773-bad0-49f5-ae92-eba86d2194d4/

6a540c56ddd2715f68bb87455cc894ec5d314d4dca97013e83d7fd9fc47302b8 (MD5: 5AEDEA35488B7786FE31B7E8BA029A76) - Interactive analysis - ANY.RUN

6 Posts

New 'Quantum' Builder Lets Attackers Easily Create Malicious Windows Shortcuts

https://thehackernews.com/2022/06/new-quantum-builder-lets-attackers.html

New 'Quantum' Builder Lets Attackers Easily Create Malicious Windows Shortcuts

6 Posts

404 Not Found

http://verified.international/showthread.php?p=636832

404 Not Found

6 Posts

MalwareBazaar | Browse malware samples

https://bazaar.abuse.ch/sample/6593092dd29831d80d5fff05c7807fc3f327b62340560f55df53d115656a0aad/

MalwareBazaar | Browse malware samples

6 Posts

MalwareBazaar | SHA256 83402accb7cacbb3d6f6cc570ae9f1668b650324ad3c2489452e4378e9141012 (Heodo)

https://bazaar.abuse.ch/sample/83402accb7cacbb3d6f6cc570ae9f1668b650324ad3c2489452e4378e9141012/

MalwareBazaar | SHA256 83402accb7cacbb3d6f6cc570ae9f1668b650324ad3c2489452e4378e9141012 (Heodo)

6 Posts

MalwareBazaar | Browse malware samples

https://bazaar.abuse.ch/sample/00dcc4642d488643856259cd3c576d9e24045b48783fc21ebdccd5fb4de66f8c/

MalwareBazaar | Browse malware samples

6 Posts

Multiple Backdoored Python Libraries Caught Stealing AWS Secrets and Keys

https://thehackernews.com/2022/06/multiple-backdoored-python-libraries.html

Multiple Backdoored Python Libraries Caught Stealing AWS Secrets and Keys