─────────────── ▀▀█▀▀ █ █ █ █ █▀▀▀ █▀▀▀ █▀▀▄ █▀▀█ █ █ █▀▄─────────────── ─────────────── █ █▀▀█ █ █ █ ▀█ █ █▄▄▀ █ █ █ ▄ █ █ █─────────────── ─────────────── █ █ █ █▄▄█ █▄▄█ █▄▄▄ █ █ █▄▄█ █ █ █▄▄█─────────────── ─── NEWS─────────────────────────────────────────────────────────────────────── > Criminals Steal $4.2m from State Troopers' Pension Fund > Experts Say Law Should Change to Stop DMVs From Selling Your Personal Data > Feds Demand Apple & Google Hand Over Names Of 10,000+ Users Of A Gun Scope App > A huge database of Facebook users phone numbers found online > Over 47,000 Supermicro servers are exposing BMC ports on the internet > 600,000 GPS trackers left exposed online with a default password of '123456' > Ransomware gang wanted $5.3 million from US city, but they only offered $400K > Hong Kong protestors again using mesh networks to preempt an internet shutdown > As protesters march on, Private Internet Access VPN has been blocked in HK > ESP8266 And ESP32 WiFi Hacked! > California Man Sentenced for Buying a Chemical Weapon on the Darkweb─── GOOD READS───────────────────────────────────────────────────────────────── > Accessing 2 million Verizon Pay Monthly contracts > Red Teamer's Guide to Pulse Secure SSL VPN > Abusing the CPU's adder circuits > Azeria Labs - Heap Overflows and the iOS Kernel Heap > MalwareTech - BlueKeep: A Journey from DoS to RCE (CVE-2019-0708) > Taviso - Down the Rabbit-Hole... > FOIA - y2k preparations (National Security Agency) > Clarifying ProtonMail and Huawei > Telegram addresses another privacy issue─── RESOURCES────────────────────────────────────────────────────────────────── > StringSifter - String ranking for malware analysis > North Korean Malware Samples > triw0lf - Hybrid Analysis Scripts─── CHEAT CODES──────────────────────────────────────────────────────────────── > KekSec reveals sign hacking 0day > From Quiz to Admin - Chaining Two 0-Days to Compromise An Uber Wordpress > Security analysis of <portal> element > Exploit for the Post-Auth RCE vulnerability in Pulse Secure Connect > Gaining Persistency on Vulnerable Lambdas > Mozilla Firefox sync Universal Cross-Site Scripting Sandbox Escape Vuln > CVE-2019-15718: Missing access controls on systemd-resolved's D-Bus interface > NtFileSins v2.1 / Windows NTFS Privileged File Access Enumeration Tool > Exim: local/remote attacker can execute programs with root privileges.─── Safari───────────────────────────────────────────────────────────────────── [aneilan] > Some device based ad/spam dropping [hermit] > Fake news sites for car accidents? 1 | 2 | 3 > A bizarre propaganda fever dream > Get an email service that doesn't offer anything [nux] > An upsurge in this telnet attack > Zyxel Router P660HN-T1A attacks [plazmaz] > Flash - Clean Them Cookies [xehle] > Get your free gift cards (totally legit) W E E K L Y M I X - 0katz