2023-04-27 | Hacker Trends

04/26

04/27

04/28

18 Posts

Finding XSS in a million websites (cPanel CVE-2023-29489) – Assetnote

https://blog.assetnote.io/2023/04/26/xss-million-websites-cpanel/

Finding XSS in a million websites (cPanel CVE-2023-29489) – Assetnote

9 Posts

abuse.ch on Twitter: "SERVICE UPDATE | Today, Twitter has revoked our access to their authentication API. The impact is submissions to the https://t.co/b7WQ1Ihzpw platforms cannot be made. We are urgently working to find a different authentication method. Please bear with us - we'll update again…" / Twitter

https://twitter.com/i/web/status/1651535977368678401

abuse.ch on Twitter: "SERVICE UPDATE | Today, Twitter has revoked our access to their authentication API. The impact is submissions to the https://t.co/b7WQ1Ihzpw platforms cannot be made. We are urgently working to find a different authentication method. Please bear with us - we'll update again…" / Twitter

8 Posts

vx-underground on Twitter: "Today Lockbit ransomware group ransomed a day care center. When Lockbit ransomware group administration discovered the victim they issued an apology and claim to have fired the affiliate. "I am ashamed" - Lockbit administration https://t.co/n836hnDKwZ" / Twitter

https://twitter.com/vxunderground/status/1651384225692786689

vx-underground on Twitter: "Today Lockbit ransomware group ransomed a day care center. When Lockbit ransomware group administration discovered the victim they issued an apology and claim to have fired the affiliate. "I am ashamed" - Lockbit administration https://t.co/n836hnDKwZ" / Twitter

8 Posts

Qakbot/Qakbot_obama257_27.04.2023.txt at main · pr0xylife/Qakbot · GitHub

https://github.com/pr0xylife/Qakbot/blob/main/Qakbot_obama257_27.04.2023.txt

Qakbot/Qakbot_obama257_27.04.2023.txt at main · pr0xylife/Qakbot · GitHub

7 Posts

Evasive Panda APT group delivers malware via updates for popular Chinese software | WeLiveSecurity

https://www.welivesecurity.com/2023/04/26/evasive-panda-apt-group-malware-updates-popular-chinese-software/

Evasive Panda APT group delivers malware via updates for popular Chinese software | WeLiveSecurity

7 Posts

GitHub - TheD1rkMtr/BlockOpenHandle: Block any Process to open HANDLE to your process , only SYTEM is allowed to open handle to your process ,with that you can avoid remote memory scanners

https://github.com/TheD1rkMtr/BlockOpenHandle

GitHub - TheD1rkMtr/BlockOpenHandle: Block any Process to open HANDLE to your process , only SYTEM is allowed to open handle to your process ,with that you can avoid remote memory scanners

7 Posts

Unleashing the Power of Shimcache with Chainsaw | WithSecure™ Labs

https://withsecure.smh.re/19H

Unleashing the Power of Shimcache with Chainsaw | WithSecure™ Labs

7 Posts

ATTL4S

https://attl4s.github.io/

ATTL4S

6 Posts

Avast Anti-Virus privileged arbitrary file create on virus quarantine (CVE-2023-1585 and CVE-2023-1587) | the-deniss.github.io

https://the-deniss.github.io/posts/2023/04/26/avast-privileged-arbitrary-file-create-on-quarantine.html

Avast Anti-Virus privileged arbitrary file create on virus quarantine (CVE-2023-1585 and CVE-2023-1587) | the-deniss.github.io

6 Posts

Clop, LockBit ransomware gangs behind PaperCut server attacks

https://www.bleepingcomputer.com/news/security/clop-lockbit-ransomware-gangs-behind-papercut-server-attacks/

Clop, LockBit ransomware gangs behind PaperCut server attacks

6 Posts

S3cur3Th1sSh1t on Twitter: "You want to check all Processes for an AV/EDR DLL not being loaded? Maybe a good process to inject into or force Load your implant into? Maybe there are even exclusions for some Processes due to false positive rates? Here's a Script for it: https://t.co/2D8ikEkUZl https://t.co/XuMqz6SSRd" / Twitter

https://twitter.com/ShitSecure/status/1646431713227055105

S3cur3Th1sSh1t on Twitter: "You want to check all Processes for an AV/EDR DLL not being loaded? Maybe a good process to inject into or force Load your implant into? Maybe there are even exclusions for some Processes due to false positive rates? Here's a Script for it: https://t.co/2D8ikEkUZl https://t.co/XuMqz6SSRd" / Twitter

6 Posts

Procedural Detections to Uncover PsExec Style Lateral Movement | by Ankith Bharadwaj | Apr, 2023 | Medium

https://bherunda.medium.com/procedural-detections-to-uncover-psexec-style-lateral-movement-5e83932eeb7e

Procedural Detections to Uncover PsExec Style Lateral Movement | by Ankith Bharadwaj | Apr, 2023 | Medium

6 Posts

GitHub - Kudaes/Bin-Finder: Detect EDR's exceptions by inspecting processes' loaded modules

https://github.com/Kudaes/Bin-Finder

GitHub - Kudaes/Bin-Finder: Detect EDR's exceptions by inspecting processes' loaded modules