{"uuid": "7c54027d-cacf-4cce-a0ce-7e566090083c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-2602", "type": "published-proof-of-concept", "source": "https://t.me/dilagrafie/2194", "content": "#Cybersecurity news - \ud835\udddb\ud835\uddee\ud835\uddf0\ud835\uddf8\ud835\uddf2\ud835\uddff\ud835\ude00 \ud835\uddd9\ud835\uddee\ud835\uddf0\ud835\ude01\ud835\uddfc\ud835\uddff\ud835\ude06 #Pentesting \n\n\u200aOkta says its GitHub account hacked, source code stolen\n\nhttps://www.bleepingcomputer.com/news/security/okta-says-its-github-account-hacked-source-code-stolen/\n\n\u200aGodFather Android malware targets 400 banks, crypto exchanges\n\nhttps://www.bleepingcomputer.com/news/security/godfather-android-malware-targets-400-banks-crypto-exchanges/\n\n\u200aeviltree: searching for user provided keywords/regex in files\n\nhttps://securityonline.info/eviltree-searching-for-user-provided-keywords-regex-in-files/\n\n\u200aHackers Use New BrasDex Android Malware to Steal Users\u2019 Banking Details\n\nhttps://gbhackers.com/new-brasdex-android-malware/\n\n\u200aAre These 7 Security Gaps in Your APIs?\n\nhttps://latesthackingnews.com/2022/12/21/are-these-7-security-gaps-in-your-apis/\n\n\u200aBug Bytes #186 \u2013 Winter Festival Edition\n\nhttps://blog.intigriti.com/2022/12/21/bug-bytes-186-winter-festival-edition/\n\n\u200aSquarephish - An advanced phishing tool that uses a technique combining the OAuth Device code authentication flow and QR codes\n\nhttp://www.kitploit.com/2022/12/squarephish-advanced-phishing-tool-that.html\n\n\u200aHow to spy on people on iOS\n\nhttps://infosecwriteups.com/how-to-spy-on-people-on-ios-516651069844?source=rss----7b722bfd1b8d---4\n\n\u200aTryHackMe\u200a\u2014\u200aWarzone 2 Write-up with Answers\n\nhttps://infosecwriteups.com/tryhackme-warzone-2-write-up-with-answers-51030b8639d4?source=rss----7b722bfd1b8d---4\n\n\u200aAdvent of Cyber 2022 [Day 20] Firmware | Binwalkin\u2019 around the Christmas tree-Simple Write up\n\nhttps://infosecwriteups.com/advent-of-cyber-2022-day-20-firmware-binwalkin-around-the-christmas-tree-simple-write-up-345f9525d20c?source=rss----7b722bfd1b8d---4\n\n\u200aPoC Code for Linux Kernel Privilege Escalation Flaw (CVE-2022-2602) Published\n\nhttps://securityonline.info/poc-code-for-linux-kernel-privilege-escalation-flaw-cve-2022-2602-published/\n\n\u200aMulti-Cloud Architectures Driving Changes for Compliance and Audit Requirements\n\nhttps://latesthackingnews.com/2022/12/21/multi-cloud-architectures-driving-changes-for-compliance-and-audit-requirements/\n\n\u200aFBI warns of search engine ads pushing malware, phishing\n\nhttps://www.bleepingcomputer.com/news/security/fbi-warns-of-search-engine-ads-pushing-malware-phishing/\n\n\u200aData exfiltration using a COVID-bit attack | Kaspersky official blog\n\nhttps://www.kaspersky.com/blog/covid-bit-attack/46665/\n\n\u200aPassword theft bug chain patched in Passwordstate credential manager\n\nhttps://portswigger.net/daily-swig/password-theft-bug-chain-patched-in-passwordstate-credential-manager\n\n\u200aAndroid Parental Control Apps Riddled with Security and Privacy Risks\n\nhttps://restoreprivacy.com/android-parental-control-apps-security-and-privacy-risks/\n\n\u200aRussians hacked JFK airport\u2019s taxi dispatch system for profit\n\nhttps://www.bleepingcomputer.com/news/security/russians-hacked-jfk-airport-s-taxi-dispatch-system-for-profit/\n\n\u200aFCC proposes record $300 million fine against  auto warranty robocall campaign\n\nhttps://www.cyberscoop.com/fcc-robocall-fine-autowarranty/\n\n\u200aChris Inglis to resign as national cyber director\n\nhttps://www.cyberscoop.com/inglis-resign-national-cyber-director/\n\u200a\n\ud835\udddb\ud835\uddee\ud835\uddf0\ud835\uddf8\ud835\uddf2\ud835\uddff\ud835\ude00 \ud835\uddd9\ud835\uddee\ud835\uddf0\ud835\ude01\ud835\uddfc\ud835\uddff\ud835\ude06\nwww.ghostclan.org", "creation_timestamp": "2022-12-28T16:14:18.000000Z"}