Hackercool Magazine February 2025

Microsoft Threat Intelligence center discovered and reported zero-day vulnerabilities that affect VMware ESXi, Workstation and Fusion products of Broadcom. VMware ESXi also known VSphere Hypervisor is a Type 1 hypervisor that allows users to run multiple virtual machines on a single server. It directly runs on hardware. While VMware workstation and Fusion are Type 2 hypervisors that run on the software. All of them are useful in running multiple virtual machines on a single system. About the vulnerabilities There is a total of 3 vulnerabilities discovered in these products. CVE-2025-22226: They are CVE-2025-22226 (CVSS score of 7.1). It’s an information disclosure vulnerability that occurs due to an out-of-bound read in HGFS. This vulnerability allows any malicious user with administrative privileges to a virtual machine to leak memory from the VMware’s…

Imagine you are on a red team engagement or penetration testing campaign. After performing footprinting, you got some IP addresses that belong to your target organization. Next, you scanned for any vulnerable services that are exposed to internet. You found some exposed services like SSH, VPN etc but none of them are vulnerable and require authentication. You tried most common credentials used but that did not work. Next, you decided to try password cracking, but for this you require usernames before trying to crack the password. So, the choices before you are to guess usernames and passwords both or get the most common usernames and then try password cracking. Most organizations use the name of the employee or a combination or variation of that as username. So, we need to…

A zero-day vulnerability has been disclosed recently in the Kiibana software for Elastic Search. This vulnerability can result in remote code execution. Ongoing cyberattacks have been observed exploiting critical vulnerabilities in Cisco Smart Licensing Utility that were disclosed and patched already. Kibana is a data visualization dashboard software that is used by Elastic Search. Elastic Search is an open-source search and analytics engine used for searching large volumes of data with near real-time search captures. It is used by organizations for searching through large number of blogposts, logs, server logs, product documentation, system monitoring etc. It is estimated that Elastic Search is used by at least 58,220 companies around the world. About the vulnerability The vulnerability tracked as CVE-2025-25015, has a CVSS Score of 9.9 out of 1 0. This…

Qubes OS is a security focused desktop operating system that provides security through isolation. Qubes OS does this by segmenting applications into secure virtual machines called qubes that are enabled by Xen hypervisor. The makers of Qubes have released the latest release of the operating system, 4.2.4 has been released. Latest features to be excited about Qubes OS 4.2.4 got many updates and new features since their previous release, 4.1. For example, there is a new Qubes OS updates tool. There is also a new global configuration tool where you can configure settings that work all around the operating system This release also has a new policy editor to edit policies system wide. Apart from the above updates, there are other updates like Xen upgraded to 4.17, default Debian template…

Apple has recently released patches for yet another zero-day vulnerability that has been exploited in extremely sophisticated attacks. The vulnerability affects Apple’s Safari web browser and many other apps on Apple. This web browser is available for in macOS, iOS, Linux and Windows. Apple has addressed a total of three actively exploited zero-days in its software since the start of the year 2025. About the vulnerability The vulnerability tracked as CVE-2025-24201 is present in Apple’s WebKit. Apple’s webkit is a cross platform web browser engine used by Apple’s Safari web browser and many other apps. The vulnerability is an out-of-bounds write issue that allows hackers to break out of the web content sand box. This zero-day vulnerability affects many Apple models including iPhone XS and later, iPad Pro 13-inch, iPad…

In the “Hacking Tool” feature of this months, you will learn about The FatRat tool. FatRat, not to be confused with a German DJ of the same name is a massive exploiting tool that can generate Fully Undetectable (FUD) payloads for Windows, Linux, Android and Mac. Its features include, 1. Fully automating MSFvenom & Metasploit. 2. Local or remote listener generation. 3. Easily create backdoors by category operating system. 4. Generating payloads in various formats. 5. Backdoors that bypass antivirus. 6. File pumping that you can use for increasing the size of your files. 7. Ability to detect external IP, internal IP & Interface addresses. 8. Automatic creation of AutoRun files for USB/CDROM exploitation. In this Issue, you will see how to install and setup FatRat in Kali Linux. Then…