5️⃣ Information Gathering :
The Telegram Bot api key is plaintext hardcoded.
The bot sends all the informations through a private chat to a specific user.
Things to do next ?
#infosec#cybersec#phishing#security#securityawareness
My mom just send me a phishing email she received.
Could be a fun way of spending some time during my Sunday 🤖
Here’s a detailed breakdown of what I’ve discovered :
4️⃣ Nothing to hide ?
The site then redirects the user to Wetransfer : attachment expired.
Let’s take a look back to the first website
Examining the source code uncovered an interesting JS that sent entered data to a Telegram Chat 💣
🧵1/ 🛡️ CVE-2024-6387 alert! 🛡️ #regreSSHion
I took the time this weekend to dive into the beautiful technical details from Qualys researchers about RegreSSHion. Here's a little thread about it :
🧵8/ Mitigation:
🥇Upgrading your OpenSSH version to at least 9.8.p1.
🥈Set LoginGraceTime to 0 prevent SIGALRM from being called, though it introduces a DOS vulnerability. Balance this with the MaxStartup parameter for better mitigation.
1/7: 🌐 Ever heard of LLMNR Poisoning? 🚫 A simple but very powerfull attack targeting AD networks for initial compromission.
Let's dive into the details!
6/7: ⚠️ Stay vigilant! LLMNR Poisoning is an easy gateway for attackers, enabled by default on every Windows Machine 🚨 If your company has an internal DNS, disable it immediately.