Channel address:
Categories:
Technologies
Language: English
Subscribers:
12.29K
Description from channel
News of cybersecurity / information security, information technology, data leaks / breaches, cve, hacks, tools, trainings
* Multilingual (En, Ru).
* Forum - forum.sys-adm.in
* Chat - @sysadm_in
* Job - @sysadm_in_job
* ? - @sysadminkz
Ratings & Reviews
Reviews can be left only by registered users. All reviews are moderated by admins.
5 stars
2
4 stars
1
3 stars
0
2 stars
0
1 stars
0
The latest Messages 9
2022-02-21 03:29:01
/ ‘Ice phishing’ on the blockchain
There are multiple types of phishing attacks in the web3 world. The technology is still nascent, and new types of attacks may emerge. Some attacks look similar to traditional credential phishing attacks observed on web2, but some are unique to web3:
https://www.microsoft.com/security/blog/2022/02/16/ice-phishing-on-the-blockchain/
2.0K views00:29
2022-02-21 03:29:01
/ Expat 2.4.5 released, includes security fixes
Expat is one of the most widely used software libre XML parsers written in C, precisely C99. It is cross-platform and licensed under the MIT license:
https://blog.hartwork.org/posts/expat-2-4-5-released/
1.8K views00:29
2022-02-21 03:29:01
/ Steal Credentials & Bypass 2FA Using noVNC
Steal credentials and bypass 2FA by giving users remote access to your server via an HTML5 VNC client that has a browser running in kiosk mode:
https://mrd0x.com/bypass-2fa-using-novnc
1.8K views00:29
2022-02-20 14:00:40
/ Critical vulnerabilities in Zabbix Web Frontend allow authentication bypass, code execution on servers
https://portswigger.net/daily-swig/critical-vulnerabilities-in-zabbix-web-frontend-allow-authentication-bypass-code-execution-on-servers
2.3K views11:00
2022-02-19 08:41:51
/ A Modern Ninja: Evasive Trickbot Attacks Customers of 60 High-Profile Companies
Technical review:
https://research.checkpoint.com/2022/a-modern-ninja-evasive-trickbot-attacks-customers-of-60-high-profile-companies/
2.1K viewsedited 05:41
2022-02-18 17:45:53
/ Hackers Attach Malicious .exe Files to Teams Conversations
As this popularity grows, hackers will continue to increase how often they target it as a launchpad for phishing and malware attacks:
https://www.avanan.com/blog/hackers-attach-malicious-.exe-files-to-teams-conversations
2.1K viewsedited 14:45
2022-02-18 16:16:25
Tutorial: Kubernetes Vulnerability Scanning & Testing With Open Source
https://www.conjur.org/blog/tutorial-kubernetes-vulnerability-scanning-testing-with-open-source/
1.8K views13:16
2022-02-18 10:45:00
Открытые практикумы DevOps и Golang by Rebrain (22 и 24 Февраля)Подходы к автоматическому тестированию (АТ)• Какие виды автоматического тестирования бывают
• Что такое TestOps?
• Примерах встраивания АТ в pipeline
•
22 Февраля 19.00 МСК. Детали
• Александр Крылов - Lead DevOps В ПАО СК Росгосстрах. Опыт работы в DevOps более 5 лет. Спикер различных конференций.
Golang by Rebrain: Context в Go.• Изучим пакет context
• Поговорим о том когда и зачем его применять
• Напишем пару реализаций
•
24 Февраля 19.00 МСК. Детали
• Алексей Ларютин - Последние 3 года занимается микросервисной разработкой на Go. Работал в компаниях Wildberries и МТС Банк.
P.S. Запись “DevOps by Rebrain” в подарок за регистрацию
2.0K views07:45
2022-02-18 07:46:46
/ Oh Snap! More Lemmings: Local Privilege Escalation Vulnerability Discovered in snap-confine (CVE-2021-44731)
https://blog.qualys.com/vulnerabilities-threat-research/2022/02/17/oh-snap-more-lemmings-local-privilege-escalation-vulnerability-discovered-in-snap-confine-cve-2021-44731
1.9K views04:46
2022-02-18 07:44:34
/ Meet Kraken: A New Golang Botnet in Development
Though still under active development, Kraken already features the ability to download and execute secondary payloads, run shell commands, and take screenshots of the victim’s system
https://www.zerofox.com/blog/meet-kraken-a-new-golang-botnet-in-development/
1.9K views04:44