Hot Topics

powershell

Beneath the Shadows: DarkGate

| | AttackIQ Flex, AutoIT, DanaBot, DarkGate, Malware, Malware-as-a-Service (MaaS), powershell
Join us as we uncover DarkGate, a malevolent force that strikes fear into the hearts of organizations worldwide. DarkGate has morphed into a sophisticated adversary, utilizing Drive-by Downloads and DanaBot deployment to ...
AttackIQ
Threat Bulletin

BianLian GOs for PowerShell After TeamCity Exploitation

| | BianLian, Blog, Cybersecurity, GRIT, GRIT Blog, Incident Response & Threat Intelligence, powershell, Ransomware, SBN News, Threat Advisory, vulnerability
Contributors: Justin Timothy, Threat Intelligence Consultant, Gabe Renfro, DFIR Advisory Consultant, Keven Murphy, DFIR Principal Consultant Introduction Ever since Avast […] ...
The Guiding Point | GuidePoint Security

CACTUS Qlik Ransomware: Vulnerabilities Exploited

| | Analytics Software, Arctic Wolf, BI Systems, BITS, CACTUS Qlik Ransomware, CVEs, Cyberattack Campaign, Cybersecurity, Cybersecurity News, Data Visualization, Double Extortion, Exploits, HTTP Tunneling, Incident Response, ManageEngine UMES, patching, path traversal, powershell, Qlik Sense, ransomware tactics, Rclone, RDP, Remote Code Execution, Security Vulnerabilities, Sophos Endpoint Security, threat actors, VPN Appliance Flaws, WizTree
A cyberattack campaign dubbed the CACTUS Qlik Ransomware has become prominent in ransomware attacks on BI systems. Researchers have warned of threat actors exploiting three Qlik security vulnerabilities to target different organizations ...
TuxCare

Lace Tempest Exploits SysAid Zero-Day Flaw

| | clop-ransomware, CVE-2023-47246, Cybersecurity News, DEV-0950, Lace Tempest, Microsoft, MOVEit Transfer, Path traversal vulnerability, powershell, security update, SysAid, Tomcat web service, WebShell, zero-day flaw
In a recent revelation, SysAid, a leading IT management software provider, has unveiled a critical security threat affecting its on-premises software. The threat actor, identified as DEV-0950 or Lace Tempest by Microsoft, ...
TuxCare

Comply with NIS2 Directive MFA Requirements with Silverfort

| | Compliance, legacy apps, MFA, NIS2, powershell, privileged access, psexec
In article 21, the NIS2 Directive defines the minimum set of security measures regulated entities must implement to comply with its requirements. Section 2(j) relates directly to Multi-Factor Authentication (MFA), stating that ...
Blog - Silverfort

Critical Kubernetes Vulnerabilities: Stay Informed

| | Cluster Security, Container Security, Cybersecurity, Cybersecurity News, DevSecOps, Kubernetes Best Practices, Kubernetes Security, powershell, Security Patching, Windows Nodes, YAML Vulnerability
In the ever-changing landscape of cybersecurity, vigilance is crucial, especially when it comes to complicated and frequently used systems like Kubernetes. A trio of high-severity security flaws have just been discovered, posing ...
TuxCare
Microsoft Patch Tuesday, December 2022 Edition

Microsoft Patch Tuesday, December 2022 Edition

| | Apple zero-day, CVE-2022-41076, CVE-2022-44698, CVE-2022-44710, CVE-2022-44713, Greg Wiseman, Immersive Labs, Kevin Breen, Latest Warnings, Microsoft Patch Tuesday December 2022, powershell, rapid7, Security Tools, sophos, Time to Patch, Trend Micro's Zero Day Initiative, Will Dormann, Windows
Microsoft has released its final monthly batch of security updates for 2022, fixing more than four dozen security holes in its various Windows operating systems and related software. The most pressing patches ...
Krebs on Security
What are Passkeys, PowerPoint Mouseover Attack, 2K Games Support Hacked

What are Passkeys, PowerPoint Mouseover Attack, 2K Games Support Hacked

| | 2K Games, Apple, Cybersecurity, Data Privacy, Digital Privacy, help desk, Information Security, Infosec, iOS 16, iPhone 14, Malware, Microsoft, Passkeys, passwords, Podcast, powerpoint, powershell, Privacy, security, technology, Weekly Edition
Passkeys are coming soon to Apple iOS 16 so what are passkeys and why are they an eventual replacement for passwords? Researchers have discovered a new attack that uses mouse movement in ...
The Shared Security Show
NSA Wants To Help you Lock Down MS Windows in PowerShell

NSA Wants To Help you Lock Down MS Windows in PowerShell

| | Best command to secure Windows machines? FORMAT C:, cisa, gchq, GCSB, NCSC, New Zealand, nsa, powershell, SB Blogwatch, uk, Windows
A new cheatsheet from four infosec agencies tells us how to use PowerShell for good, rather than let scrotes misuse it to “live off the land.” ...
Security Boulevard
"Adversarial Machine Learning" with Ian Goodfellow

Learning Machine Learning Part 3: Attacking Black Box Models

| | adversarial-ml, Evasion, Information Security, machine learning, powershell
In the first post in this series we covered a brief background on machine learning, the Revoke-Obfuscation approach for detecting obfuscated PowerShell scripts, and my efforts to improve the dataset and models ...
Posts By SpecterOps Team Members - Medium
Load more