[Description]
RansomLord is a proof-of-concept Anti-Ransomware exploitation tool that
generates PE files, used to exploit vulnerable Ransomware pre-encryption.

Lang: C

SHA256 : 8EA83752C4096C778709C14B60B9735CC68A5971DCDB0028A0BB167550554769

This version now intercepts and terminates malware tested from 43 different
threat groups.
Adding Wagner, Hakbit, Paradise, Jaff, DoubleZero, Blacksnake,…

Advisories

Windows PowerShell Single Quote Code Execution / Event Log Bypass

January 4, 2024

Read Time:19 Second

Posted by hyp3rlinx on Jan 04

[+] Credits: John Page (aka hyp3rlinx)
[+] Website: hyp3rlinx.altervista.org
[+] Source:
http://hyp3rlinx.altervista.org/advisories/WINDOWS_POWERSHELL_SINGLE_QUOTE_CODE_EXEC_EVENT_LOG_BYPASS.txt
[+] twitter.com/hyp3rlinx
[+] twitter.com/malvuln
[+] ISR: ApparitionSec

[Vendor]
www.microsoft.com

[Product]
Microsoft Windows PowerShell

Built on the . NET Framework, Windows PowerShell helps IT professionals and
power users control and automate the…

Advisories

ppp-2.4.9-10.fc38

January 4, 2024

Read Time:9 Second

FEDORA-2024-f0f2f19820

Packages in this update:

ppp-2.4.9-10.fc38

Update description:

Fixed improper validation of array index of the component pppdump (CVE-2022-4603).

Advisories

chromium-120.0.6099.199-1.fc39

January 4, 2024

Read Time:22 Second

FEDORA-2024-210776b8c7

Packages in this update:

chromium-120.0.6099.199-1.fc39

Update description:

update to 120.0.6099.199

CVE-2023-6879 aom: heap-buffer-overflow on frame size change
CVE-2023-7104 sqlite: heap-buffer-overflow at sessionfuzz
CVE-2024-0222: Use after free in ANGLE
CVE-2024-0223: Heap buffer overflow in ANGLE
CVE-2024-0224: Use after free in WebAudio
CVE-2024-0225: Use after free in WebGPU

News

Cybersecurity firm Mandiant has its Twitter account hacked to promote cryptocurrency scam

January 4, 2024

Read Time:9 Second

Google-owned cybersecurity company Mandiant has found itself in the awkward position of having to wrestle back control of its Twitter account, after it was hijacked by scammers yesterday.

News

Cryptocurrency wallet CEO loses $125,000 in wallet-draining scam

January 4, 2024

Read Time:11 Second

No one is too big, too clever, too security-savvy to avoid being duped – because it’s only human to make a mistake and screw up.

Read my article on the Tripwire State of Security blog.

News

LastPass Enforces 12-Character Master Passwords

January 4, 2024

Read Time:4 Second

Password manager provider LastPass has started implementing stricter password measures for its customers

Cyber Security News

Yearly Archives: 2024

GLSA 202401-05: RDoc: Command Injection

GLSA 202401-03: BlueZ: Privilege Escalation

GLSA 202401-02: c-ares: Multiple Vulnerabilities

RansomLord v2 – Anti-Ransomware Exploitation Tool / New Release

Windows PowerShell Single Quote Code Execution / Event Log Bypass

ppp-2.4.9-10.fc38

FEDORA-2024-f0f2f19820

Packages in this update:

Update description:

chromium-120.0.6099.199-1.fc39

FEDORA-2024-210776b8c7

Packages in this update:

Update description:

Cybersecurity firm Mandiant has its Twitter account hacked to promote cryptocurrency scam

Cryptocurrency wallet CEO loses $125,000 in wallet-draining scam

LastPass Enforces 12-Character Master Passwords

News, Advisories and much more