New PuTTY Vulnerability – ThreatWire

⬇️ OPEN FOR LINKS TO ARTICLES TO LEARN MORE ⬇️

@endingwithali →
Twitch: https://twitch.tv/endingwithali
Twitter: https://twitter.com/endingwithali
YouTube: https://youtube.com/@endingwithali
Everywhere else: https://links.ali.dev

[❗] Join the Patreon→ https://patreon.com/threatwire
0:00 Sophia d’Antoine
0:36 – Potential T-Mobile Directory Leak
2:32 – Palo Alto Networks Firewall Python Backdoor
4:20 – Twitter Hosted the Phishing Olympics
6:14 – PuTTY Project Vulnerable
7:28 – Outro

LINKS
🔗 Story 1: Potential T-Mobile Directory Leak
https://www.t-mobile.com/support/plans-features/sim-protection
https://www.sciencedaily.com/releases/2016/05/160512085123.htm
https://tmo.report/2024/04/t-mobile-employees-across-the-country-receive-cash-offers-to-illegally-swap-sims/
🔗 Story 2: Palo Alto Networks Firewall Python Backdoor
https://www.volexity.com/blog/2024/04/12/zero-day-exploitation-of-unauthenticated-remote-code-execution-vulnerability-in-globalprotect-cve-2024-3400/
https://unit42.paloaltonetworks.com/cve-2024-3400/
https://security.paloaltonetworks.com/CVE-2024-3400
https://labs.watchtowr.com/palo-alto-putting-the-protecc-in-globalprotect-cve-2024-3400/
https://twitter.com/HackingLZ/status/1780239802496864474
🔗 Story 3: Twitter Hosted the Phishing Olympics
https://krebsonsecurity.com/2024/04/twitters-clumsy-pivot-to-x-com-is-a-gift-to-phishers/
🔗 Story 4: PuTTY Project Vulnerable
https://www.chiark.greenend.org.uk/~sgtatham/putty/wishlist/vuln-p521-bias.html
https://thehackernews.com/2024/04/widely-used-putty-ssh-client-found.html
https://www.openwall.com/lists/oss-security/2024/04/15/6

____________________________________________

Founded in 2005, Hak5’s mission is to advance the InfoSec industry. We do this through our award winning educational podcasts, leading pentest gear, and inclusive community – where all hackers belong.Hak5Read More