📢📢📢Update your Roxy-WI asap now! 📢📢📢
CVSS : 10.0 🔥
Our beloved researcher @ncilengir from @PRODAFT found an authentication bypass and multiple RCEs.
Here is the @pentestblog technical write-up👇
https://t.co/O2iriYRJXM
PS: Metasploit module merged to the master 😇
PRODAFT Threat Intelligence (PTI) team has issued a new report on the inner workings of the notorious #Conti ransomware group which is currently recognized as the most dangerous #ransomware operation in terms of its revenue and target selection.
https://t.co/EcqR8sgCxX
Amber v3.0 is out !! 🎉🥳 Here is the changelog;
- Entire codebase rewritten from scratch
- No external dependency O_O
- Much more evasive PE loader
- New generation SGN encoder
- New CRC32 based API resolvers
- Much smaller C++ stub
- Simplified usage
https://t.co/dGusahoExU
The second part of our Article Series: "OpBlueRaven: Unveiling Fin7/Carbanak" has just been published! In the second article; we are deailing with BadUSB attacks carried out by these threat actors!
https://t.co/eftajqcfzb
The second part of our Article Series: "OpBlueRaven: Unveiling Fin7/Carbanak" has just been published! In the second article; we are deailing with BadUSB attacks carried out by these threat actors!
https://t.co/eftajqcfzb
Take a deep dive into command injection vulns with @mdisec's talk at the GitHub Security meetup. Tune in Wednesday July 15, 2020, at 5pm CET (Central Europe) - 8am PDT (Pacific Time) https://t.co/hoxPRJu3uc
[EN] - https://t.co/TyID03JGL9 is a live cyber security conference, which is going to be free for everyone, at 22nd of May 2020, 9:59 GTM+3 !
CFP is open 🤘🏻
[PoC] Seagate Central Storage Remote Code Execution 0day
#NAS#Seagate
no longer 0-day, But Seagate NAS not safety
./cirrus/application/core/MV_BaseController.php -> set_start_info function -> sets the device state -> open the service of ssh
https://t.co/G0bazifBFs
So Seagate mark this persons finding (preauth RCE) as a WONTFIX, EOL and then ask them to STFU about it (after denying the issue a bit).
"Lastly, Seagate asks the submitter, EgeBalci, to abide by the Bugcrowd Nondisclosure policy"
Fuck that noise.
https://t.co/lWE1q9YRSj