#2024 #En #exploit

stardom dreams, stalking devices and the secret conglomerate selling both

people frequently reach out to me with companies to look into. usually it takes me about 10 minutes before i move on for one reason or another—it's not interesting for a story or has good security, for example. i didnt expect anything different when an acquaintance told me about Tracki, a self-proclaimed "world leader in GPS tracking" that they suspected could be used nefariously. at first glance, Tracki appeared to be a serious company, maybe even one that cared about security. we could never have guessed what was about to unfold before us. half a year into our investigation, we'd found it all: a hidden conglomerate posing as five independent companies, masked from governments and customers alike through the use of dozens of false identities, US letterbox companies, and an undeclared owner. a 90s phone sex scheme that, through targeting by one of hollywood's most notorious fixers, spiraled into a collection of almost a hundred domains advertising everything from online dating to sore throat remedies. a slew of device-assisted murder cases, on top of potential data breaches affecting almost 12 million users, ranging from federal government officials to literal infants. and most importantly, a little-known Snoop Dogg song. how in the world did we get here? starting our descent

#maia.crimew.gay #EN #2024 #Tracki #shady #business #investigation #stalkerware #security #analysis #sqli #leak #exploit #nyancrimew #maia-arson-crimew #switzerland #hacktivism #developer

·maia.crimew.gay·Aug 19, 2024

stardom dreams, stalking devices and the secret conglomerate selling both

Exploitable PoC Released for CVE-2024-38077: 0-Click RCE Threatens All Windows Servers

Security researchers have detailed and published a PoC exploit code for a critical vulnerability, designated as CVE-2024-38077 (CVSS 9.8)

#securityonline #EN #2024 #CVE-2024-38077 #RCE #PoC #exploit #code

·securityonline.info·Aug 13, 2024

Exploitable PoC Released for CVE-2024-38077: 0-Click RCE Threatens All Windows Servers

Technical Exploits of HID's iClass SE Discovered, To Be Revealed at DEF CON 32

Researchers have "reverse-engineered" HID's iCLASS SE platform and will be "revealing some cryptographic keys to the kingdom."

#ipvm.com #EN #2024 #defcon2024 #iclass-se #HID #exploit

·ipvm.com·Aug 13, 2024

Technical Exploits of HID's iClass SE Discovered, To Be Revealed at DEF CON 32

PoC Exploit Released For macOS Privilege Escalation Vulnerability

A new vulnerability has been discovered in macOS Sonoma that is associated with privilege escalation. This vulnerability has been assigned

#gbhackers #EN #2024 #CVE-2024-27842 #PoC #Exploit #Released #macOS

·gbhackers.com·May 30, 2024

PoC Exploit Released For macOS Privilege Escalation Vulnerability

PoC exploit released for RCE zero-day in D-Link EXO AX4800 routers

The D-Link EXO AX4800 (DIR-X4860) router is vulnerable to remote unauthenticated command execution that could lead to complete device takeovers by attackers with access to the HNAP port.

#bleepingcomputer #EN #2024 #Authentication-Bypass #D-Link #Exploit #Proof-of-Concept #Remote-Command-Execution #Router #Vulnerability #Zero-Day #Security #InfoSec #Computer-Security

·bleepingcomputer.com·May 14, 2024

PoC exploit released for RCE zero-day in D-Link EXO AX4800 routers

Microsoft: APT28 hackers exploit Windows flaw reported by NSA

Microsoft warns that the Russian APT28 threat group exploits a Windows Print Spooler vulnerability to escalate privileges and steal credentials and data using a previously unknown hacking tool called GooseEgg. #APT28 #Computer #Credential #Escalation #Exploit #GooseEgg #InfoSec #NSA #Print #Privilege #Security #Spooler #Theft #Windows

#bleepingcomputer #EN #2024 #NSA #Spooler #Print #Theft #Escalation #Credential #Windows #Privilege #GooseEgg #Exploit #APT28

·bleepingcomputer.com·Apr 22, 2024

Microsoft: APT28 hackers exploit Windows flaw reported by NSA

Bringing process injection into view(s): exploiting all macOS apps using nib files · Sector 7

In a previous blog post we described a process injection vulnerability affecting all AppKit-based macOS applications. This research was presented at Black Hat USA 2022, DEF CON 30 and Objective by the Sea v5. This vulnerability was actually the second universal process injection vulnerability we reported to Apple, but it was fixed earlier than the first. Because it shared some parts of the exploit chain with the first one, there were a few steps we had to skip in the earlier post and the presentations. Now that the first vulnerability has been fixed in macOS 13.0 (Ventura) and improved in macOS 14.0 (Sonoma), we can detail the first one and thereby fill in the blanks of the previous post. This vulnerability was independently found by Adam Chester and written up here under the name “DirtyNIB”. While the exploit chain demonstrated by Adam shares a lot of similarity to ours, our attacks trigger automatically and do not require a user to click a button, making them a lot more stealthy. Therefore we decided to publish our own version of this write-up as well.

#sector7 #EN #2024 #macos #nib #exploit #research #vulnerability #DirtyNIB

·sector7.computest.nl·Apr 5, 2024

Bringing process injection into view(s): exploiting all macOS apps using nib files · Sector 7

Release: VM Escape Exploit for Parallels Desktop Hypervisor (Pwn2Own 2021)

In April 2021 I participated in Pwn2Own Vancouvver competition as a single player, and successfully demonstrated a 0-day virtual machine escape exploit with code execution on Parallels hypervisor. Today I am finally releasing the exploit source code together with a technical walkthrough video talk that I gave on Zero Day Engineering livestream in November 2021.

#zerodayengineering #EN #2024 #exploit #2021 #0-day #Parallels #Pwn2Own #VM #escape

·zerodayengineering.com·Mar 25, 2024

Release: VM Escape Exploit for Parallels Desktop Hypervisor (Pwn2Own 2021)

Exploit released for Fortinet RCE bug used in attacks, patch now

Security researchers have released a proof-of-concept (PoC) exploit for a critical vulnerability in Fortinet's FortiClient Enterprise Management Server (EMS) software, which is now actively exploited in attacks.

#bleepingcomputer #EN #2024 #Actively-Exploited #Exploit #Fortinet #PoC #Proof-of-Concept #RCE #Remote-Code-Execution #SQL-Injection #CVE-2023-48788

·bleepingcomputer.com·Mar 21, 2024

Exploit released for Fortinet RCE bug used in attacks, patch now

Windows 11, Tesla, and Ubuntu Linux hacked at Pwn2Own Vancouver

On the first day of Pwn2Own Vancouver 2024, contestants demoed Windows 11, Tesla, and Ubuntu Linux zero-day vulnerabilities and exploit chains to win $732,500 and a Tesla Model 3 car.

#bleepingcomputer #EN #2024 #Competition #Exploit #Hacking #Linux #Pwn2Own #Tesla #Windows #Windows-11 #Zero-Day

·bleepingcomputer.com·Mar 21, 2024

Windows 11, Tesla, and Ubuntu Linux hacked at Pwn2Own Vancouver

Apple fixes zero-day bug in Apple Vision Pro that 'may have been exploited'

Apple said the vulnerability, which is being exploited in the wild, allows malicious code to run on an affected device.

#techcrunch #EN #2024 #security #apple-vision-pro #cybersecurity #exploit #vulnerability

·techcrunch.com·Feb 1, 2024

Apple fixes zero-day bug in Apple Vision Pro that 'may have been exploited'