The Hacker News

Wormable XMRig Campaign Uses BYOVD Exploit and Time-Based Logic Bomb

Cybersecurity researchers have disclosed details of a new cryptojacking campaign that uses pirated software bundles as lures to deploy a bespoke XMRig miner program on compromised hosts. "Analysis of ...
Bleeping Computer

Telegram channels expose rapid weaponization of SmarterMail flaws

Flare researchers monitoring underground Telegram channels and cybercrime forums have observed threat actors rapidly sharing proof-of-concept exploits, offensive tools, and stolen administrator ...
GitHub

cerberussolution/facts-htb-writeup

This write-up details the exploitation of the Facts machine. The journey begins with web fuzzing, leads to exploiting two critical vulnerabilities in the Camaleon CMS for LFI and privilege escalation, ...