Android's CVE-2020-0401 (PackageManagerService) #AndroidCVE #PackageManagerService #Vulnerability #Exploitation #AndroidSecurity https://pwner.gg/blog/Android's-CVE-2020-0401
( ͡◕ _ ͡◕)👌
Android's CVE-2020-0401 (PackageManagerService)
Note This is another attempt in my Android Side Quest (the previous one was Android’s CVE-2020-0238). Intro While digging around through my old gadgets, I found my ancient OnePlus phone that had been gathering dust in a drawer.
🔥2
Azure CLI Token Leak #AzureCLI #TokenLeak #BinarySecurity #Vulnerability #CI/CD https://binsec.no/posts/2024/11/az-cli-acr-token-leak
Binary Security AS
Azure CLI Token Leak
Azure CLI was vulnerable to a registry server confusion attack in it’s Azure Container Registry (ACR) module. If an attacker controls the value of the registry name, they can leak the token of the principal, scoped to the ARM API at https://management.azure.com/…
Compromising OpenWrt Supply Chain via Truncated SHA-256 Collision and Command Injection #OpenWrtSupplyChainCompromised #TruncatedSHA256Collision #CommandInjection #FlattSecurityResearch #OpenWrtVulnerabilityBugFix https://flatt.tech/research/posts/compromising-openwrt-supply-chain-sha256-collision/
GMO Flatt Security Research
Compromising OpenWrt Supply Chain via Truncated SHA-256 Collision and Command Injection
Introduction
Hello, I’m RyotaK (@ryotkak
), a security engineer at Flatt Security Inc.
A few days ago, I was upgrading my home lab network, and I decided to upgrade the OpenWrt
on my router.1 After accessing the LuCI, which is the web interface of OpenWrt…
Hello, I’m RyotaK (@ryotkak
), a security engineer at Flatt Security Inc.
A few days ago, I was upgrading my home lab network, and I decided to upgrade the OpenWrt
on my router.1 After accessing the LuCI, which is the web interface of OpenWrt…
The Ruby on Rails _json Juggling Attack #RubyonRails #JSONJugglingAttack #Cybersecurity #Vulnerability #RailsParameterTestingSetup https://nastystereo.com/security/rails-_json-juggling-attack.html
Write, debug and execute BOFs using bof-launcher (part 1) #bofLauncher #writeDebugExecute #ZigCAssembly #buildSystem #debuggingBOFs https://blog.z-labs.eu/2024/12/02/write-debug-and-execute-bofs-part1.html
Performing Android Static Analysis 101-A Complete Guide for Beginners #AndroidStaticAnalysis #Laburity #Tools #Analysis #BeginnersGuide https://laburity.com/performing-android-static-analysis-101-a-complete-guide-for-beginners/
Laburity - Cyber Security Services
Performing Android Static Analysis 101-A Complete Guide for Beginners - Laburity
Android Static Analysis is a foundational approach to identifying vulnerabilities in applications without executing them. This blog provides insight into the tools and techniques required for effective analysis. What is Android Static Analysis: Android static…
Mastering Bug Bounty Recon: Essential Techniques for Ethical Hackers #BugBounty #EthicalHackers #Reconnaissance #BashScripts #CybersecurityExpert https://medium.verylazytech.com/mastering-bug-bounty-recon-essential-techniques-for-ethical-hackers-549c5b472975
Medium
Mastering Bug Bounty Recon: Essential Techniques for Ethical Hackers
The first step to attacking any target is conducting reconnaissance, or simply put, gathering information about the target. Reconnaissance…
Hacking AI Applications: From 3D Printing to Remote Code Execution #HackingAI #3DPrinting #RemoteCodeExecution #SystemPromptDisclosure #ExfiltrationTechniques https://www.securityrunners.io/post/hacking-ai-applications
www.securityrunners.io
Hacking AI Applications: From 3D Printing to Remote Code Execution
The blog post examines methods for hacking AI-native applications by detailing vulnerabilities discovered while building KachraCraft, a 3D design generation tool, including techniques for revealing system prompts, executing server-side request forgery (SSRF)…
Why Can't You Fix This Bug Faster? #BugReporting #DeveloperRelationships #VulnerabilityAssessment #BugFixing #SecurityResearcherPerspective https://maxwelldulin.com/BlogPost/Why-Can't-You-Fix-This-Bug-Faster
Strikeout Security Blog
Why Can't You Fix This Bug Faster?
Fixing security vulnerabilities in a timely manner is more complicated than you realize.
Far From Random: Three Mistakes From Dart/Flutter's Weak PRNG #DartSDK #WeakPRNG #Vulnerabilities #ProtonWallet #SecurityFixes https://www.zellic.io/blog/proton-dart-flutter-csprng-prng/
www.zellic.io
Far From Random: Three Mistakes From Dart/Flutter's Weak PRNG | Zellic — Research
A look into how an unexpectedly weak PRNG in Dart led to Zellic's discovery of multiple vulnerabilities
Messenger Group Call DoS for iOS #MessengerGroupCall #DoS #iOS #Signal11 #SecurityResearch https://s11research.com/posts/Messenger-Group-Call-DoS-for-iOS/
Signal 11
Messenger Group Call DoS for iOS
Messenger is used by hundreds of millions of people globally, and as of December 2023, it has adopted end-to-end encryption (E2EE) by default for chats and calls. However, when a group chat is created, it initially does not use E2EE. Interestingly, non-E2EE…
Cleo Harmony, VLTrader, and LexiCom - RCE via Arbitrary File Write (CVE-2024-50623) #CleoHarmony #VLTrader #LexiCom #RCE #ArbitraryFileWrite https://labs.watchtowr.com/cleo-cve-2024-50623/
watchTowr Labs
Cleo Harmony, VLTrader, and LexiCom - RCE via Arbitrary File Write (CVE-2024-50623)
We were having a nice uneventful week at watchTowr, when we got news of some ransomware operators using a zero-day exploit in Cleo MFT software - namely, LexiCom, VLTransfer, and Harmony - applications that many large enterprises rely on to share files securely.…
Astalavista is back! ❤️ https://forum.astalavista.com/
🔥2
Android's CVE-2022-20201 (InstalldNativeService) #Android #InstalldNativeService #CVE-2022-20201 #PoC #VulnerabilityFix https://pwner.gg/blog/Android's-CVE-2022-20201
( ͡◕ _ ͡◕)👌
Android's CVE-2022-20201 (InstalldNativeService)
Intro This is another attempt as part of my @vr_progress to hack my old, unpatched OnePlus phone which didn’t get any updates for years. This time I chose CVE-2022-20201, a crafty little bug hiding in one of the subsystems used by Android’s package manager.
Careto is back: what’s new after 10 years of silence? #CaretoAPT #RecentAttacks #Kaspersky #SecuritySolutions #CyberEspionage https://securelist.com/careto-is-back/114942/
Securelist
Careto APT’s recent attacks discovered
Kaspersky researchers analyze 2019, 2022 and 2024 attacks attributed to Careto APT with medium to high confidence.
Scanners Beware: Welcome to the Network from Hell #NetworkSecurity #Innovation #DeceptionDefense #CybersecuritySolution #DisruptAttackers https://medium.com/sensorfu/scanners-beware-welcome-to-the-network-from-hell-86989f29f17b
Medium
Scanners Beware: Welcome to the Network from Hell
We’ve crafted a bold defense strategy that not only slows scans but actively disrupts and deceives attackers.
🤔2👍1
Finding Bugs in Chrome with CodeQL #ChromeBugs #CodeQL #SecurityFlaws #BugHunting #WebDevelopment https://bughunters.google.com/blog/5085111480877056/finding-bugs-in-chrome-with-codeql
Google
Blog: Finding Bugs in Chrome with CodeQL
Want to learn about using a static analysis tool called CodeQL to search for vulnerabilities in Google Chrome? Then this blog post is for you!
Security vulnerability uncovered and patched in the golang.org/x/crypto /ssh package #PlatformshSecurityVulnerability #GoSSHAuthBypass #GoCryptoSSHPackage #SecurityDisclosure #OpenSourceBugs https://platform.sh/blog/uncovered-and-patched-golang-vunerability/
platform.sh
Platform.sh team finds auth bypass in Go SSH package
Platform.sh team discovers misimplementation of PublicKeyCallback leading to authorization bypass in Go's x/crypto/ssh | Platform.sh
Hacking Kerio Control via CVE-2024-52875: from CRLF Injection to 1-click RCE #KerioControl #Vulnerabilities #CVE202452875 #1ClickRCE #XSS https://karmainsecurity.com/hacking-kerio-control-via-cve-2024-52875
Karmainsecurity
Hacking Kerio Control via CVE-2024-52875: from CRLF Injection to 1-click RCE | Karma(In)Security
This is the personal website of Egidio Romano, a very curious guy from Sicily, Italy. He's a computer security enthusiast, particularly addicted to webapp security.