Unit42:
2024-05-14 (Tuesday): #DarkGate activity. HTML file asks victim to paste script into a run window. Indicators available at bit.ly/4bjvMAC
2024-05-14 (Tuesday): #DarkGate activity. HTML file asks victim to paste script into a run window. Indicators available at bit.ly/4bjvMAC
Forwarded from Peneter.com
Professional.Red.Teaming_Chapter_5.pdf
841.8 KB
کتاب: تیم قرمز حرفهای 📕
فصل پنجم: قوانین تعامل
فهرست مطالب
انواع فعالیتها 81
فیزیکی 82
مهندسی اجتماعی 84
شبکه خارجی 86
شبکه داخلی 87
حرکت در شبکه 88
شبکه بیسیم 90
دسته بندی 91
تقویت نیرو 92
مدیریت حادثه 92
ابزارها 93
الزامات مجوز 94
اطلاعات پرسنل 95
خلاصه فصل پنجم 95
فصل پنجم: قوانین تعامل
فهرست مطالب
انواع فعالیتها 81
فیزیکی 82
مهندسی اجتماعی 84
شبکه خارجی 86
شبکه داخلی 87
حرکت در شبکه 88
شبکه بیسیم 90
دسته بندی 91
تقویت نیرو 92
مدیریت حادثه 92
ابزارها 93
الزامات مجوز 94
اطلاعات پرسنل 95
خلاصه فصل پنجم 95
GlobalThreatReport2024.pdf
4.1 MB
Global Threat Report 2024 CROWDSTRIKE
2024 Cyber Threat Report Huntress.pdf
5.8 MB
2024 Cyber Threat Report Huntress
APT 29 🇷🇺 had security breaches the teamviewer company but according to their first report, hackers did not lateral movement to production segment.
https://www.teamviewer.com/en/resources/trust-center/statement/
source : https://x.com/cyb3rops/status/1806651893344563543?t=7QwPK6W9gSFznr4bAHATaQ&s=19
https://www.teamviewer.com/en/resources/trust-center/statement/
source : https://x.com/cyb3rops/status/1806651893344563543?t=7QwPK6W9gSFznr4bAHATaQ&s=19
⚠️⚠️ CVE-2024-6387: Critical OpenSSH Unauthenticated RCE Flaw ‘regreSSHion’ Exposes Millions of Linux Systems
https://en.fofa.info/result?qbase64=YXBwPSJPcGVuU1NIIg%3D%3D
poc:https://github.com/zgzhang/cve-2024-6387-poc
https://en.fofa.info/result?qbase64=YXBwPSJPcGVuU1NIIg%3D%3D
poc:https://github.com/zgzhang/cve-2024-6387-poc
FOFA
FOFA Search Engine
FOFA is a Cyberspace search engine. By conducting Cyberspace mapping, it can help researchers or enterprises quickly match network assets, such as vulnerability impact range analysis, application distribution statistics, and application popularity ranking…
👍1
9.4 GB Twitter Data Leaked – Over 200 Million Records Exposed Online 🤔
https://cyberpress.org/9-4gb-twitter-data-leaked-online/?amp=1
https://cyberpress.org/9-4gb-twitter-data-leaked-online/?amp=1
Cyber Security News
9.4 GB Twitter Data Leaked - Over 200 Million Records Exposed Online - Exclusive!
The Cyberpress Research Team made a significant discovery with the Massive 9.4 GB of X (Formerly the Twitter) Database.
⚠️⚠️The vulnerability, tracked as CVE-2024-6409 (CVSS score: 7.0), is distinct from CVE-2024-6387 (aka RegreSSHion) and relates to a case of code execution in the privsep child process due to a race condition in signal handling. It only impacts versions 8.7p1 and 8.8p1 shipped with Red Hat Enterprise Linux 9.
https://thehackernews.com/2024/07/new-openssh-vulnerability-discovered.html?m=1
https://thehackernews.com/2024/07/new-openssh-vulnerability-discovered.html?m=1
GitHub
openssh-portable/README.privsep at master · openssh/openssh-portable
Portable OpenSSH. Contribute to openssh/openssh-portable development by creating an account on GitHub.