yaracroft @venom@nanao.cybtex.fr
- mnt-by
- @socat
Robot
sc(r)apy | full metal packets
> We Are the Borg
> You Will be Assimilated
> Resistance is Futile
Inscrit·e en mar. 2021
Gardaí have seized cyber infrastructure used by the gang involved in the HSE #cyber attack earlier this year #ransomware
(CVE-2021-26084) X-Confluence-Request-Time #vuln #informatique
La NSA sélectionne Hewlett Packard Enterprise (HPE) pour traiter ses gros volumes de données (#bigdata) #usa #cyber #surveillance #renseignement
https://www.fedscoop.com/nsa-awards-2b-greenlake-contract-to-hewlett-packard-enterprise/
The company Autodesk confirmed that it was hit by the same #malware as the large-scale #cyber scam that attacked SolarWinds servers from Orion Network Management #software. The company is one of the most renowned in the field of #digital creation and #design software, including programs such as AutoCAD #architects #blueprints #architecture #plans #threats #informatique
https://www.somagnews.com/autodesk-was-victim-of-hacker-attack-by-solarwinds/
Indonesian authorities have admitted that the #COVID-19 vaccination certificate of the nation's President (Joko Widodo aka Jokowi) has circulated #online and tried to explain that it's an indication of admirable transparency, rather than lamentable security #indonesia #health #covid #informatique
https://www.theregister.com/2021/09/06/joko_widodo_vaccination_certificate_leak/
BrakTooth : commercial Bluetooth stacks used in billions of devices are vulnerables #bluetooth #threats #informatique
BrakTooth RCE on ESP32 #bluetooth #threats
Backdoor #Microsoft Office365 and Microsoft #Azure AD by stealing AD FS certificate/key pair. Golden SAML attack will allow an attacker to:
- Bypass MFA to Azure / Office365
- Logon as any AD user regardless of password resets
- Method is usually valid for a year
https://www.inversecos.com/2021/09/backdooring-office-365-and-active.html
John Donovan, CISO at Malwarebytes (malwarebytes.com) about the impact stress has on information security teams
Investigation into recent attacks by a #Conti affiliate reveals that that the attackers initially accessed targeted organizations' networks with ProxyShell, an exploit of vulnerabilities in #Microsoft Exchange that have been the subject of multiple critical updates over the past several months. #ransomware
Rapidly Search & Hunt through #Microsoft #Windows Event Logs #rust
This PoC in #Python generates payload when exploited for a 0-day of GhostScript 9.50. This exploit affect to ImageMagick with the default settings from #Linux Ubuntu repository #vuln #informatique #
Anatomy & Disruption of Metasploit Shellcode #informatique
https://blog.nviso.eu/2021/09/02/anatomy-and-disruption-of-metasploit-shellcode/
JetBrains Datalore - An attacker could take over a user's JWT token & gain access to its Datalore account. #vuln
https://infosecwriteups.com/eye-for-an-eye-unusual-single-click-jwt-token-takeover-2e58f88cf44d
Meterpreter Reverse shell over TOR network using hidden services
Les systèmes informatiques de la Société de transport de l'Outaouais (sto.ca) paralysés suite à une attaque #informatique #canada #ransomware
https://ottawa.ctvnews.ca/sto-targeted-by-cyberattack-1.5574455
- mnt-by
- @socat
Robot
sc(r)apy | full metal packets
> We Are the Borg
> You Will be Assimilated
> Resistance is Futile
Inscrit·e en mar. 2021
yaracroft recommande :
