0 Persons are tagged with #exploit

#exploit

anonymiss@despora.de
anonymiss

Easy-to-exploit local privilege escalation vulnerabilities in #Ubuntu #Linux affect 40% of Ubuntu cloud workloads

source: https://www.wiz.io/blog/ubuntu-overlayfs-vulnerability

CVE-2023-2640 and CVE-2023-32629 were found in the #OverlayFS module in Ubuntu, which is a widely used Linux #filesystem that became highly popular with the rise of containers as its features enable the deployment of dynamic filesystems based on pre-built images. OverlayFS serves as an attractive attack surface as it has a history of numerous logical vulnerabilities that were easy to exploit. This makes the new discovered vulnerabilities especially risky given the exploits for the past OverlayFS vulnerabilities work out of the box without any changes.

#security #os #software #update #bug #problem #news #exploit #hack #hacker #server #vulnerability

GameOverlay Vulnerability Impacts 40% of Ubuntu Workloads | Wiz Blog

Wiz Research discovers CVE-2023-2640 & CVE-2023-32629, 2 privilege escalation vulnerabilities in Ubuntu's OverlayFS module impacting 40% of cloud workloads.

4 Likes
6 Comments
1 Shares
anonymiss@despora.de
anonymiss

This is what the #police think about our #children 😱

enter image description here

Some advice for the really cool kids:

  • install #Kali on your #computer - delete #Windows
  • encrypt your HD and have a kill switch.
  • don't use #Discord there are better #FLOSS alternatives like #xmpp with #Omemo, #matrix, #tox and others...
  • #Pineapple is too expensive. Build it on your own with a #RaspberryPi.
  • Hack the WiFi of authorities and leak the data anonymously on the darknet. Don't use this to stalk your ex girl friend! Public data should be public but respect the #privacy of normal people.
  • learn #Python and write your own scripts.
  • try to be a white hat. If you need money use bug bounty. Please don't sell exploits to our enemies like the secret service.
  • build a network. You don't have to be a lonely wolf. If things are to big for you send them with a good explanation to organisations like EFF, Wikileaks, CCC, cryptome.org, The Intercept, La Quadrature du Net (LQDN),...
  • Hack the planet and have fun. Teach others at your local hacker space.

#darknet #internet #wardriving #wifi #exploit #hack #hacker #fail #1312 #problem #technology #uk #security #scriptkiddy #linux #Kali #software

13 Likes
10 Comments
3 Shares
anonymiss@despora.de
anonymiss

The state can not #hack your #cash but your #cryoto #money

Source: https://blockworks.co/news/jump-crypto-wormhole-hack-recovery

Fast forward to 21st February, #Oasis received an order from the High #Court of #England and #Wales to take all necessary steps to retrieve assets involved with the wallet address associated with the #exploit.

According to a report, $140 million worth of assets were successfully recovered following a counter-exploit. The retrieval was initiated via the Oasis Multisig, and the funds were returned to a court-authorized third party. The counter exploit was only possible with the approval of the Oasis Multisig.

#justice #crime #cybercrime #finance #security #software #smartContract #news #btc #bitcoin #bitcoins #cryptocurrency #wormhole #Blockchain

Jump Crypto Just Counter-Exploited the Wormhole Hacker for $140 Million

The Wormhole hacker could have gotten away with it too, if it wasn't for that pesky upgradeable smart contract.

One person like that
7 Comments
anonymiss@despora.de
anonymiss

5.4 million #Twitter users' stolen #data leaked #online — more shared privately

source: https://www.bleepingcomputer.com/news/security/54-million-twitter-users-stolen-data-leaked-online-more-shared-privately/

While most of the data consisted of public information, such as Twitter IDs, names, login names, locations, and verified status, it also included private information, such as phone numbers and email addresses.

enter image description here

#privacy #cybercrime #exploit #leak #news #hack #security

5.4 million Twitter users' stolen data leaked online — more shared privately

Over 5.4 million Twitter user records containing non-public information stolen using an API vulnerability fixed in January have been shared for free on a hacker forum. Another massive, potentially more significant, data dump of millions of Twitter...

2 Likes
3 Comments
eileen@despora.de
Eileen Brophy

Assimilate & Destroy: The Rockefeller Foundation’s Role in Exploiting Then Suppressing Natural Medicine
Despite Rockefeller’s private belief in homeopathy, one of the effects of his Foundation’s work in medicine was to undermine natural alternatives to chemical prescriptions. The formalisation of GP training led to monopolies. Most medical courses were offered by just three universities: Dartmouth, Harvard, and Pennsylvania.8 As late as the early-20th century, US doctors typically trained in Europe. Rockefeller’s agenda was to bring the US medical profession up to Europe’s standards.9 Rockefeller modelled his health foundation on Berlin’s Koch Institute (founded 1891) and Paris’s Pasteur Institute (1887).
https://www.wakingtimes.com/assimilate-destroy-the-rockefeller-foundations-role-in-exploiting-then-suppressing-natural-medicine/

#Rockefeller #Foundation #Exploit #Destroy #Natural-Medicine

Assimilate & Destroy: The Rockefeller Foundation’s Role in Exploiting Then Suppressing Natural Medicine

Dr. Timothy Coles - Rockefeller’s profit-making agenda included the promotion of so-called “scientific medicine,” which has now become the norm.

4 Likes
2 Comments
2 Shares
anonymiss@despora.de
anonymiss

#Hacking the #PS4 / #PS5 through the #PS2 #Emulator

source: https://cturt.github.io/mast1c0re.html

Having #JIT privilege means that fully compromising the emulator, including the #compiler co-process, would grant the ability to run fully arbitrary native code (not just ROP) on the PS4/PS5 without the need for a kernel exploit. This would be especially convenient on the PS5 because the newly introduced hypervisor enforces that code pages (both userland and kernel) are not readable, and I don't have the patience to try to write a blind kernel #exploit again as I did when I ported BadIRET to the PS4 without a #kernel dump.

#news #hack #hacker #sony #PlayStation #software #security

5 Likes
3 Likes
2 Likes
5 Comments
1 Shares
anonymiss@despora.de
anonymiss

#Security Breach in #Strava Exercise #App Used to #Spy on Israeli Officials, Reveals #Army Bases

source: https://www.haaretz.com/israel-news/2022-06-21/ty-article/.premium/mossad-hq-and-army-sites-exercise-app-reveals-israeli-bases-officials/00000181-82c3-ddb4-a3ab-d2df702c0000

The #exploit in the app Strava, which was revealed by the Israeli open source investigative group FakeReporter, also exposed the locations of a number of highly sensitive sites in #Israel, including the precise location of army and air force bases, #Mossad headquarters and Military #Intelligence bases.

#fail #privacy #gps #sports #tracking #cloud #technology #online #news #surveillance

Security breach in Strava exercise app used to spy on Israeli officials, reveals bases

***

2 Likes
One person like that
anonymiss@despora.de
anonymiss

Newly found zero-click #iPhone #exploit used in #NSO #spyware #attacks

source: https://www.bleepingcomputer.com/news/security/newly-found-zero-click-iphone-exploit-used-in-nso-spyware-attacks/

Among the victims of these attacks, Citizen Lab mentioned Catalan Members of the European #Parliament (MEPs), every Catalan president since 2010, as well as Catalan legislators, jurists, journalists, and members of civil #society organizations and their families.

...

According to Citizen Lab Director Ron Deibert, multiple suspected #infections with #Pegasus spyware within official #UK networks were also reported by Citizen Lab to the #government of the United Kingdom.

#Trojan #news #hack #hacker #cyberwar #problem #surveillance #spy #attack #EU #Catalonia #humanRights

Newly found zero-click iPhone exploit used in NSO spyware attacks

Digital threat researchers at Citizen Lab have discovered a new zero-click iMessage exploit used to install NSO Group spyware on devices belonging to Catalan politicians, journalists, and activists.

3 Likes
anonymiss@despora.de
anonymiss

How an 8 year old exploited #Zoom to get a time off from home schooling

source: https://twitter.com/mfpiccolo/status/1360685864100237318

After hours on the phone with Zoom tech support the techs are completely stumped. They say that the account was locked at some point but my sister knows there has been hundreds of login attempts from multiple locations so that makes sense.

...

The more times you do this, the longer the wait period for you to get back into Zoom. She also noticed that the error that is presented to a user when they are locked is “Incorrect password” and not “your account has been locked”. My niece found the #exploit and combined it with her cute 8 year old face, a face that never could tell a lie much less pull off an elaborate scheme to trick no less that 8 adults for 3 weeks straight.

#school #education #technology #internet #support #children #hacker #news #password #login #error

7 Likes
2 Comments
3 Shares
One person like that
1 Comments