Soirée autour d'#akropolis. Un jeu de construction de cité rapide, simple et parfait à deux 😍 #boardgame
New reporting on #ProxyNotShell by Palo Alto's Unit42!
🔗https://unit42.paloaltonetworks.com/threat-brief-owassrf/
Key points:
🗓️ Threat activity starting in late November
➡️ Download of renamed Putty
➡️ Anydesk execution from `C:\ProgramData\`
➡️ Account creation (`admon`)
➡️ Credential Dumping via Task Manager
🛡️ Detection/Hunting Op: `w3wp` process abuse
Nombreuses nouvelles manières d'exploiter #proxynotshell en cours d'utilisation par des groupes de ransom. Patchez vos Exchange si ce n'est pas déjà fait. Mettez à jour vos WAF si vous n'avez pas le temps.
https://thehackernews.com/2022/12/ransomware-hackers-using-new-way-to.html
Une vulnérabilité critique identifiée dans le jeu de survie Raft permet d'exécuter des commandes sur les postes des joueurs connectés - https://www.synacktiv.com/sites/default/files/2022-12/Raft_RCE.pdf #infosec #exploit
#LastPass posted an updated Notice of Recent Security Incident today.
"We have determined that an unauthorized party, using information obtained in the August 2022 incident, was able to gain access to certain elements of our customers’ information."
They go on to say that "Our customers’ passwords remain safely encrypted due to LastPass’s Zero Knowledge architecture."
https://blog.lastpass.com/2022/11/notice-of-recent-security-incident/
Echoes - Le cocktail
Un super jeu d'enquête basé sur de l'audio et des cartes. Pas prise de tête et super immersif. Je recommande si vous êtes déjà convaincu par les jeux Unlock ou Exit. #boardgame
RT @joinmastodon@twitter.com
Mastodon has just passed over 2 million active monthly users, a new record! People are voting with their feet. The future of social media doesn't have to belong to a billionaire, it can be in the hands of its users.
🐦🔗: https://twitter.com/joinmastodon/status/1594121627083493378
Buckle up. 🔥 4 in-the-wild 0-days in today's Patch Tuesday:
* CVE-2022-41128 in JScript9 discovered by Clem of Google TAG
* CVE-2022-41091 MotW bypass
* CVE-2022-41073 in Print Spooler discovered by MSTIC
* CVE-2022-41125 in Windows CNG Key Isolation Service EoP discovered by MSTIC & MSRC
#InfoSec
> #SpyGuard is a forked and enhanced version of #TinyCheck. #SpyGuard's main objective is to detect signs of compromise by #monitoring network flows transmitted by a device.
https://github.com/SpyGuard/SpyGuard
Hey! Welcome #infosec community, we were waiting for you 😁
RT @GMeurice@twitter.com
Quand on fait des erreurs, il faut savoir le reconnaître… (via @sinemensuel@twitter.com)
RT @MarjolaineKoch@twitter.com
Je rêve de lire un article qui serait intitulé "Métavers, c'est quoi cette merde ?"
Et pour le sous-titre : "Comment l'humanité préfère inventer des concepts à la con plutôt que de consacrer ces sommes folles à la sauvegarde de la planète."
🐦🔗: https://twitter.com/MarjolaineKoch/status/1549762096841252866
Ça fait vraiment plaisir d'avoir backé le #flipperzero et de ne toujours pas le recevoir alors qu'il est en vente chez @Lab_401@twitter.com et dispo de suite ... -_-
RT @cyb3rops@twitter.com
Can we get a Kitchen Nightmares but with IT departments and a cyber Gordon Ramsey that shouts at people for not having an asset inventory, log or vulnerability management?
I would love that 🖤
RT @Tadzam@twitter.com
Merci à toi anon 🙏 tu as unlock une nouvelle occasion de se foutre de la gueule de damien rieu
RT @NoxDawn@twitter.com
In a now deleted tweet, French far-right politician Damien Rieu accused the far-left of murdering Japanese prime minister Shinzo Abe and used photos of game developer Hideo Kojima instead of pictures of the current suspect Tetsuya Yamagami
RT @4n6lady@twitter.com
Does your domain admin account have access to your company's backups? If so, your backups will become worthless during an incident.