Authenticating with certificates when PKINIT is not supported
https://ift.tt/bT03Vom
Submitted May 04, 2022 at 06:09PM by the-useless-one
via reddit https://ift.tt/xFN4InE
https://ift.tt/bT03Vom
Submitted May 04, 2022 at 06:09PM by the-useless-one
via reddit https://ift.tt/xFN4InE
reddit
Authenticating with certificates when PKINIT is not supported
Posted in r/netsec by u/the-useless-one • 74 points and 0 comments
Shady economics of proxy services
https://ift.tt/kWi2Vcm
Submitted May 04, 2022 at 07:00PM by rushter_
via reddit https://ift.tt/ulikPe0
https://ift.tt/kWi2Vcm
Submitted May 04, 2022 at 07:00PM by rushter_
via reddit https://ift.tt/ulikPe0
Artem Golubin
Shady economics of proxy services
This article explains shady economics of proxy services — its users and suppliers.
UNC3524: Eye Spy on Your Email
https://ift.tt/cv1ReOX
Submitted May 03, 2022 at 02:10AM by mattjayy
via reddit https://ift.tt/xWjV9Hy
https://ift.tt/cv1ReOX
Submitted May 03, 2022 at 02:10AM by mattjayy
via reddit https://ift.tt/xWjV9Hy
Mandiant
UNC3524: Eye Spy on Your Email | Mandiant
North Korea’s Lazarus: their initial access trade-craft using social media and social engineering
https://ift.tt/M1QkLpT
Submitted May 05, 2022 at 02:15PM by digicat
via reddit https://ift.tt/XzpujdS
https://ift.tt/M1QkLpT
Submitted May 05, 2022 at 02:15PM by digicat
via reddit https://ift.tt/XzpujdS
Nccgroup
Cyber Security Research
Cutting-edge cyber security research from NCC Group. Find public reports, technical advisories, analyses, & other novel insights from our global experts.
The curious case of mavinject.exe
https://ift.tt/QjFLvDA
Submitted May 05, 2022 at 08:27PM by sciencestudent99
via reddit https://ift.tt/xBVLbWI
https://ift.tt/QjFLvDA
Submitted May 05, 2022 at 08:27PM by sciencestudent99
via reddit https://ift.tt/xBVLbWI
FourCore
The curious case of mavinject.exe
Mavinject, described as Microsoft Application Visualisation Injector, is a signed Microsoft executable that can be abused to perform arbitrary code injections inside any running process.
A Deep Dive into AvosLocker Ransomware
https://ift.tt/gfaDJrY
Submitted May 05, 2022 at 08:16PM by CyberMasterV
via reddit https://ift.tt/FoLg7rH
https://ift.tt/gfaDJrY
Submitted May 05, 2022 at 08:16PM by CyberMasterV
via reddit https://ift.tt/FoLg7rH
An Easy Misconfiguration to Make: Hidden Dangers in the Cloud Control Plane
https://ift.tt/LNyrQug
Submitted May 05, 2022 at 11:24PM by ajohnston9
via reddit https://ift.tt/MtImjo3
https://ift.tt/LNyrQug
Submitted May 05, 2022 at 11:24PM by ajohnston9
via reddit https://ift.tt/MtImjo3
www.mitiga.io
An Easy Misconfiguration to Make: Hidden Dangers in the Cloud Control Plane
The biggest risk in cloud development is not recognizing the differences between cloud and traditional definitions of common architecture terms. For example, imagine a system that is completely “firewalled off”—a firewall prevents any inbound or outbound…
From KBs to CVEs: Understanding the Relationships Between Windows Security Updates and Vulnerabilities
https://ift.tt/Td64RkL
Submitted May 06, 2022 at 02:09AM by derp6996
via reddit https://ift.tt/T5Pls8N
https://ift.tt/Td64RkL
Submitted May 06, 2022 at 02:09AM by derp6996
via reddit https://ift.tt/T5Pls8N
Fuzzing ClamAV with real malware samples
https://ift.tt/WfzhX8p
Submitted May 06, 2022 at 11:14AM by mmmds
via reddit https://ift.tt/Fpi5cOu
https://ift.tt/WfzhX8p
Submitted May 06, 2022 at 11:14AM by mmmds
via reddit https://ift.tt/Fpi5cOu
reddit
Fuzzing ClamAV with real malware samples
Posted in r/netsec by u/mmmds • 67 points and 2 comments
A New Way To View Risk Assessment For Vulnerabilities Management
https://ift.tt/y0zU9SD
Submitted May 06, 2022 at 03:27PM by Devin_Devop
via reddit https://ift.tt/a7y6bBw
https://ift.tt/y0zU9SD
Submitted May 06, 2022 at 03:27PM by Devin_Devop
via reddit https://ift.tt/a7y6bBw
Otorio
OTORIO Blog Take OT Digital and Cyber Security Posture Assessment to the Next Level - Vulnerabilities Management and Scoring
Mitigating OT security risk is an ongoing process, so operational security teams need to automate vulnerability assessments and risk calculations.
CloudFlare Pages, part 1: The fellowship of the secret
https://ift.tt/mVqDzg9
Submitted May 06, 2022 at 07:01PM by albinowax
via reddit https://ift.tt/pTJNmLU
https://ift.tt/mVqDzg9
Submitted May 06, 2022 at 07:01PM by albinowax
via reddit https://ift.tt/pTJNmLU
Assetnote
Cloudflare Pages, part 1: The fellowship of the secret
Application security issues found by Assetnote
I started a newsletter and would love your feedback
https://ift.tt/7pEm8KZ
Submitted May 08, 2022 at 07:35PM by nunorbatista
via reddit https://ift.tt/apmeyb8
https://ift.tt/7pEm8KZ
Submitted May 08, 2022 at 07:35PM by nunorbatista
via reddit https://ift.tt/apmeyb8
cyb3rsecurity.tips
Cybersecurity Tips
A (best-effort) weekly newsletter that will make you understand Cybersecurity better. Click to read Cybersecurity Tips, by Nuno, a Substack publication with hundreds of readers.
Expanding on Existing IoCs to Leverage Immediate Threats Simulations
https://ift.tt/IjPGtbm
Submitted May 09, 2022 at 12:15PM by bayhitlaw
via reddit https://ift.tt/8RSETLP
https://ift.tt/IjPGtbm
Submitted May 09, 2022 at 12:15PM by bayhitlaw
via reddit https://ift.tt/8RSETLP
Cymulate
Expanding on Existing IoCs to Leverage Immediate Threats Simulations
Our latest Cymulate blog provides quick and easy ways to expand on your IoC list to leverage immediate threats simulations.
POC for CVE-2022-1388
https://ift.tt/ptedTUB
Submitted May 09, 2022 at 05:36PM by scopedsecurity
via reddit https://ift.tt/eskP4jM
https://ift.tt/ptedTUB
Submitted May 09, 2022 at 05:36PM by scopedsecurity
via reddit https://ift.tt/eskP4jM
GitHub
GitHub - horizon3ai/CVE-2022-1388: POC for CVE-2022-1388
POC for CVE-2022-1388. Contribute to horizon3ai/CVE-2022-1388 development by creating an account on GitHub.
Vulnerability Analysis - CVE-2022-1388 - Randori
https://ift.tt/5bYVxnO
Submitted May 09, 2022 at 09:24PM by zxcvqwerpl
via reddit https://ift.tt/juoWeTC
https://ift.tt/5bYVxnO
Submitted May 09, 2022 at 09:24PM by zxcvqwerpl
via reddit https://ift.tt/juoWeTC
Randori
Vulnerability Analysis - CVE-2022-1388 - Randori
CVE-2022-1388 is a critical vulnerability (CVSS 9.8) in the management interface of F5 Networks’ BIG-IP solution.
Ransomware-as-a-service: Understanding the cybercrime gig economy and how to protect yourself
https://ift.tt/qJzh2wt
Submitted May 09, 2022 at 09:51PM by SCI_Rusher
via reddit https://ift.tt/nVMpHIm
https://ift.tt/qJzh2wt
Submitted May 09, 2022 at 09:51PM by SCI_Rusher
via reddit https://ift.tt/nVMpHIm
Microsoft News
Ransomware as a service: Understanding the cybercrime gig economy and how to protect yourself
Microsoft coined the term “human-operated ransomware” to clearly define a class of attack driven by expert human intelligence at every step of the attack chain and culminate in intentional business disruption and extortion. In this blog, we explain the ransomware…
Diving into Pre-Created computer accounts in Active Directory
https://ift.tt/R51IZdm
Submitted May 10, 2022 at 06:42PM by oddvarmoe
via reddit https://ift.tt/Zl02wfI
https://ift.tt/R51IZdm
Submitted May 10, 2022 at 06:42PM by oddvarmoe
via reddit https://ift.tt/Zl02wfI
TrustedSec
Diving into Pre-Created Computer Accounts - TrustedSec
Go on a journey with Oddvar Moe as he uses his legacy knowledge to abuse pre-created computer accounts that could potentially let you escalate privileges.
Learning Linux kernel exploitation - Part 2 - CVE-2022-0847 (DirtyPipe)
https://ift.tt/tyYKXHR
Submitted May 10, 2022 at 07:54PM by 0x00rick
via reddit https://ift.tt/Nk8s9Ld
https://ift.tt/tyYKXHR
Submitted May 10, 2022 at 07:54PM by 0x00rick
via reddit https://ift.tt/Nk8s9Ld
Low-level adventures
Learning Linux kernel exploitation - Part 2 - CVE-2022-0847
Continuing to walk down Linux Kernel exploitation lane. This time around with an unanticipated topic: DirtyPipe as it actually nicely fits the series as an example.
Certifried: Active Directory Domain Privilege Escalation (CVE-2022–26923)
https://ift.tt/eBnU4X2
Submitted May 11, 2022 at 02:16AM by ly4k_
via reddit https://ift.tt/TAFGSWH
https://ift.tt/eBnU4X2
Submitted May 11, 2022 at 02:16AM by ly4k_
via reddit https://ift.tt/TAFGSWH
Medium
Certifried: Active Directory Domain Privilege Escalation (CVE-2022–26923)
In this blog post, we’ll dive into a recently patched Active Directory Domain Privilege Escalation vulnerability that I reported through…
The new PaaS "Frappo" was detected on the dark web by researchers Resecurity Hunter. It is technically a browser extension on Chrome's Store and provides creating high-quality phishing pages.
https://ift.tt/jlwbSXC
Submitted May 11, 2022 at 07:28PM by mstfknn
via reddit https://ift.tt/AOYI7fa
https://ift.tt/jlwbSXC
Submitted May 11, 2022 at 07:28PM by mstfknn
via reddit https://ift.tt/AOYI7fa
BRANDEFENSE
Frappo: A New "Phishing-as-a-Service" On The Dark Web - BRANDEFENSE
A new underground phishing-as-a-service (PaaS) called "Frappo" has been detected on the dark web by security researchers at Resecurity Hunter.
URL spoofing in Box, Google, and Zoom
https://ift.tt/iQOEBgF
Submitted May 12, 2022 at 01:55AM by rsobers
via reddit https://ift.tt/O9v7lN5
https://ift.tt/iQOEBgF
Submitted May 12, 2022 at 01:55AM by rsobers
via reddit https://ift.tt/O9v7lN5
Varonis
Spoofing SaaS Vanity URLs for Social Engineering Attacks
SaaS vanity URLs can be spoofed and used for phishing campaigns and other attacks. In this article, we’ll showcase two Box link types, two Zoom link types, and two Google Docs link type that we were able to spoof.