October 11, 2022

                October 11, 2022

            October 11, 2022

            Tears @SecuriTears
According to @AhnLab_SecuInfo, there is a new Exchange 0day.
Different from GTSC’s CVE-2022-41040, CVE-2022-41082.

asec.ahnlab.comExchange Server 취약점부터 랜섬웨어 감염까지 단 7일 - ASEC BLOG분석 개요 2022년 7월 한 고객사에서 랜섬웨어에 감염되는 피해가 발생해, 안랩에서는 피해 서버 2대를 점검한 결과 LockBit 3.0 랜섬웨어에 감염된 것으로 확인됐으며, AD 관리자 계정이 탈취된 것으로 파악돼 명확한 침해원인 파악을 위해 안랩 A-FIRST에서 포렌식 분석을 진행했다. 사건 개요 구분 내용 사건 발생 2022년 7월 피해 시스템 유형 Windows Server 2016 Standard 피해 현황 – WebShell 업로드– SSH Tunneling을 통한 RDP 연결– AD 정보 유출 (BloodHound)…11:32 AM ∙ Oct 11, 2022
2Likes1Retweet
Paul Bronks @SlenderSherbet
Day 4. They suspect nothing. 
6:15 AM ∙ Oct 10, 2022
116,373Likes9,350Retweets
-
The Info Op is a reader-supported publication. To receive new posts and support my work, consider becoming a free or paid subscriber.

Greg Linares @Laughing_Mantis
This will be a thread discussing  a real world breach involving a drone delivered exploit system that occurred this summer

Some details I am not able to discuss, however for the blue teams & red teams out there I hope this provides a good measure of capability.

🧵🚁 🎮🖥️🦠7:11 PM ∙ Oct 10, 2022
1,344Likes501Retweets
-
0xor0ne @0xor0neLinux kernel exploitation series.
A must read!
Credits @_lkmidas 

Part 1: buff.ly/3dxVic7 
Part 2: buff.ly/3w7jjxo 
Part 3: buff.ly/3w4gsVT 

#Linux #kernel #exploit #informationsecurity #cybersecurity 
6:30 PM ∙ Oct 9, 2022
702Likes257Retweets
-
Dave Kennedy @HackingDave
😂 
1:55 AM ∙ Oct 11, 2022
1,095Likes188Retweets
-
weird medieval guys @WeirdMedieval
no thanks i already have a rock 
4:37 PM ∙ Oct 2, 2022
22,761Likes2,264Retweets
-
Dare Obasanjo @Carnage4Life
So many body blows in the EU crypto regulation

• NFTs to be treated as securities
• stablecoin companies will have capital requirements & limits on how much they can mint
• large miners need to disclose energy consumption

Tough days ahead for crypto.

decrypt.coEU Lawmakers Pass Landmark Crypto Assets Regulation Bill - DecryptEuropean Union lawmakers have approved the Markets in Crypto Assets Regulation (MiCA) bill that hopes to regulate the digital asset space.3:26 AM ∙ Oct 11, 2022
317Likes60Retweets
-
Ariel Bogle @arielbogle🚨The OAIC has just opened an investigation into "the personal information handling practices" of Optus companies following the data breach. They'll be working alongside ACMA, which regulates the telcos. oaic.gov.au/updates/news-a… 
11:07 PM ∙ Oct 10, 2022
32Likes15Retweets
-
POPULAR FRONT @PopularFront_
#Iran: Oil workers in Asaluyeh have reportedly begun a strike in support of the nationwide protests throughout Iran. Asaluyeh is home to one of the world’s biggest natural gas field, making a strike a major escalation in the protest movement. 

(via @Seamus_Malek) 
3:30 AM ∙ Oct 11, 2022
168Likes40Retweets
-
argp @_argp
Happy Malloc Maleficarum anniversary; still inspires all us designers with its sheer brilliance: seclists.orgBugtraq: The Malloc Maleficarum6:03 AM ∙ Oct 11, 2022
35Likes10Retweets
-
Kate Starbird @katestarbird
Today we conducted a 1st analysis of an emerging narrative that false frames a mistake by CO election officials (sending voting registration information to non-citizens) as intentional and fraudulent. 
Election Integrity Partnership @EI_Partnership
🧵... There is substantial and increasing discourse around a recent error in Colorado where non-citizens were mistakenly sent instructions on how to register, on a postcard that wrongly suggested they might be eligible. https://t.co/T1TQp7rJ832:50 AM ∙ Oct 11, 2022
70Likes29Retweets
-
ESET research @ESETresearch#ESETresearch reveals new findings about POLONIUM, an APT group that has targeted more than a dozen organizations in Israel 🇮🇱 since at least September 2021, using at least seven different custom backdoors.
welivesecurity.com/2022/10/11/pol…
1/6
welivesecurity.comPOLONIUM targets Israel with Creepy malware | WeLiveSecurityESET researchers analyzed previously undocumented custom backdoors and cyberespionage tools deployed in Israel by the POLONIUM APT group.9:37 AM ∙ Oct 11, 2022
51Likes31Retweets
-
Kevin Beaumont @GossiTheDog
How the public knows cyber, sadly. 
9:31 AM ∙ Oct 11, 2022
34Likes4Retweets
-
Ulrike Franke @RikeFrankeWooow. This morning @JosepBorrellF held a speech addressing the EU ambassadors. And it’s quite something. 😳

eeas.europa.eu/eeas/eu-ambass…
eeas.europa.euEU Ambassadors Annual Conference 2022: Opening speech by High Representative Josep Borrell | EEAS Website9:22 AM ∙ Oct 11, 2022
2,995Likes1,158Retweets
Ulrike Franke @RikeFranke
It’s very self-critical 
9:22 AM ∙ Oct 11, 2022
829Likes123Retweets
-
"This Ain't No Rodeo Bro Dad!" @chadstanton
Stereos. They used to have big cabinet sized sets with wood paneling and the two speakers that looked like they were stolen from a dance hall. We got an egg that’s recording our conversations for the police. 
tobi @0luwat0bi
What’s something that you think our parents generation got right but we’re failing at?3:47 AM ∙ Oct 11, 2022
11,041Likes2,454Retweets
-
This is an incredibly raw interview with a fighter who returned from serving in Ukraine. It’s brutal, but worth watching the entire thing. Very hard to stop watching as Justin, the subject, tells such a compelling story about his experiences. Which were horrible. I honestly debated about including this because it is so raw. 

The Info Op is a reader-supported publication. To receive new posts and support my work, consider becoming a free or paid subscriber.

Don't miss what's next. Subscribe to the grugq's newsletter: