LateralMovement
Russia Hacked Microsoft Execs — SolarWinds Hackers at it Again
Richi Jennings | | APT29, azure, Azure cloud, Cozy Bear, lateral attack, lateral movement, LateralMovement, Microsoft, Microsoft 365, Midnight Blizzard, password spraying, Russia, Russian Cyber War, Russian cybercrime, Russian FSB, Russian hacker, Russian hackers, Russian hacking, Russian Threat Actors, SB Blogwatch
AKA APT29: Midnight Blizzard / Cozy Bear makes it look easy (and makes Microsoft look insecure) ...
Security Boulevard
Detecting Zerologon (CVE-2020-1472) with Zeek
Yacin Nadji | | ciphertext, Corelight Labs, CVE-2020-1472, CVSS10, LateralMovement, Microsoft, Netlogon, Open Source Community, python, Secura, Sigma, Splunk, vulnerability, Windows Server, Zeek, ZeroLogon
By Yacin Nadji, Corelight Security Researcher CVE-2020-1472 aka Zerologon, disclosed by Tom Tervoort of Secura, is an illustrative case study of how a small implementation mistake in cryptographic routines cascades into a ...