Jump to content
OpenSecurity.global

All Activity

This stream auto-updates     

  1. Earlier
  2. Mason Toups Mason Toups joined the community
  3. Andy Carpendale Andy Carpendale joined the community
  4. Tim Casey started following The cup overfloweth with Apple iOS 13 zero days
  5. Tim Casey
    I meant to post this earlier, but just now re-ran across a video with the source info. It may be old news to some of you but Zerodium, which pays researchers for zero days, had to halt their Apple iOS program because they just had too many submissions.
  6. John Fokker John Fokker joined the community
  7. Timothy Hux Timothy Hux joined the community
  8. Rose McRobbie Rose McRobbie joined the community
  9. Trey Blalock
    https://www.defcon.org/html/defcon-safemode/dc-safemode-index.html
  10. Arslan Masood Arslan Masood changed their profile photo
  11. Alex Vasiliu Alex Vasiliu joined the community
  12. Tim Casey
    HBO Westworld (has a simulation in the plot, but does not suggest we are living in one) FX HULU series Devs Netflix Series The Midnight Gospel with comedian Duncan Trussell https://www.youtube.com/watch?v=0kQWAqjFJS0
  13. Steven Wright Steven Wright joined the community
  14. Hannan Pervez Hannan Pervez joined the community
  15. Kevin Beaumont
    Nobody tell them very few people run this version of Windows, nor are still vulnerable.
  16. james mckinlay
  17. james mckinlay
    today starts with
  18. james mckinlay
    today finishes with
  19. james mckinlay
    https://havoc.hackersacademy.com/
  20. james mckinlay
    Today starts with
  21. Nicholas L
    SoFi forces password resets after claiming a small set of passwords were leaked to a third party....haven't seen this in the news yet.
  22. Brad Woodcock started following Remote Security Work
  23. Brad Woodcock
    Greetings all. I've been a unix/linux sysadmin since 1998 and working in IT security since 2007 or so. I just finished the first Splunk class and passed my Splunk Certified Core User certification. I decided that was a good path to choose when my contract was pulled in January. Now I'm looking for a remote security position where I can use my experience to help a company with their projects and switch my career path finally entirely into security. I've attached my resume for your perusal. This is a very trying time for all of us, and being unemployed makes it more complex and difficult. I'd appreciate any help I can get with finding a position. Thanks! Be safe and well out there. resume_brad_woodcock_2020-NoContactInfo.pdf
  24. Kevin Beaumont
    Didn't atmfd.dll get removed from Windows 10? I cannae remember.
  25. Nicholas L
    They updated the advisory https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/ADV200006, and
  26. james mckinlay
    Today starts with
  27. james mckinlay
    today starts with
  28. james mckinlay
    https://www-zdnet-com.cdn.ampproject.org/c/s/www.zdnet.com/google-amp/article/microsoft-warns-of-windows-zero-day-exploited-in-the-wild/ not checked personally
  29. james mckinlay
    today starts with this bleepy gem from 1988
  30. Mehmet Leblebici started following Cyber Security Awareness for General Pubic
  31. Mehmet Leblebici
    Hello all, Do you know any orgazation, platform or web site where articles for increasing public awareness on cyber security are published? The articles should not be so technical that general public can also understand the contents.
  32. Dragan Stevanovic Dragan Stevanovic joined the community
  33. james mckinlay
    today starts with
  34. Kevin Beaumont
    The documentation is in line now and up to date:
  35. Zolton Williams Zolton Williams joined the community
  36. Chris Wheeler started following Pulse Secure SSL VPN vulnerability being exploited in wild
  37. Lizzy Higgins started following Dean O'Neill
  38. james mckinlay
    today starts with
  39. Tim Wilkes started following Lizzy Higgins
  40. james mckinlay
    today starts with -
  41. Kevin Beaumont
    Seeing some minor variation of BlueKeep attack behaviour (maybe attackers updated Metasploit finally), I'm seeing some stable'ish exploitation of Windows 7 this week however they're failing to run commands properly. Example commands; Additional IoCs. Application event 1000, spawning Powershell.exe: This event spawns from C:\Windows\system32\UI0Detect.exe and UI0Detect.exe 224 (224 is the parameter). spoolsv.exe crash: They check the device has more than 3.5gb of RAM, and is 64 bit, then try running a payload. Network IOC 78.46.124.69 port 10095
  42. Kevin Beaumont
    So I saw some exploitation of this in wild yesterday, looks like: Obviously the POST statements aren't there. Triggers code execution like this:
  43. Kevin Beaumont
    There’s a public write up for triggering this vulnerability now (not RCE). https://www.coresecurity.com/blog/dejablue-vulnerabilities-windows-7-windows-10-cve-2019-1181-and-cve-2019-1182 @MalwareTech
  1. Load more activity
×
×
  • Create New...

Important Information

We use cookies as we're cookie monsters. Privacy Policy

  I accept