Hackers Abuse Zero-Day Exploit for CrushFTP

Рет қаралды 63,733

15 күн бұрын

jh.live/flare || You can track down shady sellers, hunt for cybercrime, or manage threat intelligence and your exposed attack surface with Flare! Try a free trial and see what info is out there: jh.live/flare
Learn Cybersecurity - Name Your Price Training with John Hammond: nameyourpricetraining.com
Read The Hacker Mindset by Garret Gee: jh.live/hackermindset
📧JOIN MY NEWSLETTER ➡ jh.live/email
🙏SUPPORT THE CHANNEL ➡ jh.live/patreon
🤝 SPONSOR THE CHANNEL ➡ jh.live/sponsor
🌎FOLLOW ME EVERYWHERE ➡ jh.live/twitter ↔ jh.live/linkedin ↔ jh.live/discord ↔ jh.live/instagram ↔ jh.live/tiktok
💥 SEND ME MALWARE ➡ jh.live/malware
🔥KZfaq ALGORITHM ➡ Like, Comment, & Subscribe!

Пікірлер: 80

@mu11668B 14 күн бұрын

I still find it funny that quite often people goes for paid products with fancy presentations and unnecessary black-box automations. We use OpenSSH sftp with Linux access control and rarely do we have to worry about random 10/10 RCEs.

@CZghost 14 күн бұрын

That's just Apple's ecosystem. All it is is just a shiny polished shit.

@mu11668B 14 күн бұрын

@@CZghost Microsoft has been doing it for years too.

@morgannelson5756 13 күн бұрын

Familiar with CVE-2024-33663?

@biigsmokee 13 күн бұрын

@@CZghost macos has ssh and built-in nfsd

@trisnguyen4625 13 күн бұрын

Thanks for the demonstration. Very helpful !!!

@Napert 14 күн бұрын

can we like calm the fuck down with all the vulnerabilities this year?

@fokyewtoob8835 13 күн бұрын

N O

@carsonjamesiv2512 13 күн бұрын

🤣😂

@BillAnt 13 күн бұрын

Exploits and vuln are found almost every day. What's different lately, which has nothing to do with April in particular, is that more of them are being published on KZfaq, so it seems like a whole lot of them all of a sudden. More and higher bug-bounties are also a factor. ;)

@deidara_8598 13 күн бұрын

April has been a crazy month, so many criticals

@BakersBuilds23 14 күн бұрын

Great Vid!

@hgvhjfcjdudrsxhxj 4 күн бұрын

hey i have a question Jhon, what virtual machine manager u use Vb or vmware?

@pixl_xip 14 күн бұрын

*another* vulnerability this april‽‽

@pepesreal 14 күн бұрын

i swear theres a vulnerability every day now XD

@xCheddarB0b42x 14 күн бұрын

A lot more than one!

@kintag4459 13 күн бұрын

Thank you

@Palmit_ 13 күн бұрын

Flare looks very interesting. however, the pricing is elite and well crafted 0-day. I ain't buyin to something even for a trial to find out it's extortionate pricing. the FREE trial is not free. They should be open with their pricing.

@kettlestew 13 күн бұрын

Nice "enterprise grade" software you got there.

@xenostim 13 күн бұрын

shodilly reinventing the wheel?

@juandig 13 күн бұрын

Flare doesn't show their pricing on their website... I hate that

@crashtfa 12 күн бұрын

They charge based on identifiers, we pay for flare and we get 1000 identifiers and pay 36k a year

@TheMAZZTer 14 күн бұрын

This is nuts. It seems like they don't have a proper security model in place if it's just that easy. Also the CrushFTP desktop UI doesn't instill me with confidence lol. At least the web UI looks decent.

@wildstorm74 14 күн бұрын

Buddy, you shouldn't be surprised.😒 All the (professionals) do is sit on their ass and enjoy getting paid for nothing... until their business that they just so happened gets hacked. Then they actually do something, only to realise that they got hacked by the simplest of exploit/s.🤦 Zero of them don't do extra research, until to fucking late.😑

@hamzarashid7579 13 күн бұрын

I'm surprised that you didn't talked about Linux XZ malware.

@akashaki11 10 күн бұрын

Hello @john hammond, recently my Discord was hacked by someone who used it to send phishing links in the NahamSec general discussion group. I’ve resolved the issue, but now I’m unable to rejoin your Discord. Could you please allow me back in?

@Rachaelshaw7 9 күн бұрын

Hi! If you can please create a video on the brokewell malware thx 😊

@dukeofwelington 4 күн бұрын

John are you going to be in the people's call center this year?

@userou-ig1ze 13 күн бұрын

So why would anyone use crushFTP?

@CesSanchez 2 күн бұрын

Hi, I don't know how to send this to you, but are you aware of the Sabrent situation? They're apparently hosting malware as legitimate firmware updates in their web. Maybe a video could help people not to fall on this and make the company finally solve the issue. Thanks a lot, and please excuse me if this is not the right way to reach you.

@SpectralAI 14 күн бұрын

Having inside information on this one I can only laugh, and laugh, and laugh. There are more vulnerabilities. You just haven't found them yet. 😂

@mangodude-nq6su 14 күн бұрын

Classic closed-source tomfoolery

@skellybin 14 күн бұрын

Chill, I was expecting you wise ahh comment

@SpectralAI 13 күн бұрын

@@mangodude-nq6su well having seen that source, trust me, you’re better off.

@Daveychief23 13 күн бұрын

Sec researcher here - any info you can drop without breaching NDAs?

@SpectralAI 13 күн бұрын

@@Daveychief23 No NDA but common decency prevents me from trashing a former colleague. Plus I have a competing product that makes his look like a child’s toy.

@carsonjamesiv2512 13 күн бұрын

COOL!

@Lino1259 13 күн бұрын

Servers will get crushed, get it?

@RichardinSA 14 күн бұрын

Can we all agree that JH is the goat?

@thahrimdon 14 күн бұрын

Dang right! Such a genuine dude.

@IlIIllIlIlIIlIlIlIlIIl 13 күн бұрын

i agree.

@FCNaeCh 8 күн бұрын

He even clone dinosaur

@FCNaeCh 8 күн бұрын

I mean hire Dr. Wu to clone dinosaur

@xTwistCinema 14 күн бұрын

hell yea

@nickcarnevalino7462 13 күн бұрын

cant stand places that have a "start free trial" button with no price given for full ver

@HwSystems 14 күн бұрын

I do not understand enterprise using app developed in Java. It is like using an NES emulator to do your presentation.

@Oliver-df4zl 13 күн бұрын

Bruh 💀

@BurkenProductions 13 күн бұрын

But no one is using crushftp whats wrong with people

@0x32_l3git 13 күн бұрын

another zero day.... im not even surprised at this point

@goodthingforall8973 13 күн бұрын

April and its vulnerabilities 😂

@harald4game 14 күн бұрын

Die sitzen in ihrer Ideologieblase und sind anderem gegenüber Beratungsresistent. Selbst wenn der jemand gefragt hätte aus seiner Umgebung hätte er keine Kritik bekommenm

@WakiwakiJayson-rw4lc 13 күн бұрын

should i be worried haha i dont even know that software lolz

@technicalkalilinux 3 күн бұрын

make video on CVE-2023-24059 sir if its exploit is free

@ExplosiveAnyThing 13 күн бұрын

Can somebody explain? I dont really understand how it can read a file outside of the virtual machine?

@wafinashwan8242 14 күн бұрын

15 min gang

@TituDas-pl2ch Күн бұрын

help me sir

@dirkthomas1042 11 күн бұрын

There is no cloud. It's just someone else's computer.

@SuperWabo 13 күн бұрын

08:53

@dyna. 13 күн бұрын

Never heard of this software before... Enterprise ready? The vulnerability info on the download page looks like it's written by a kid and the linux installation instructions are just a joke. Custom start scripts? Then scrolling down i see a systemd service file and at first i thought like oh maybe it's not that bad, but then i look at the actual content and they are not just wrapping their script in a systemd service, no it's wrapped in rc.local and the systemd service is to call rc.local...with a "start" argument that is not used, and without a shebang while it's called directly??? Suprised that even works tbh. I was gonna say, what is this 1995? But heck even in 1995 things weren't this amateuristic.

@LazyPlays_ 12 күн бұрын

am i dumb or did you just not realize that u were able to pretty much do %hostname% which is effectively a command execution? lol

@_JohnHammond 11 күн бұрын

%hostname% isn't getting passed to cmd.exe as if it were an environment variable, it is being specifically handled within the application with their custom processing-- so per your question, no, it isn't command execution, and you are dumb. (You said it, not me)