Geekmaster 👽:system76: · @Geekmaster
166 followers · 1245 posts · Server ioc.exchangeIf you use #RDP, make sure it's strictly internal, and limited only to specific #admin accounts, and that you *DO NOT* have any #3389 open publicly. That IP will be found (quickly), and your #endpoint will be attacked, if not #breached. #BianLian has shifted their attack model. @cisacyber dropped an advisory this week, here's a decent summary of what's up: https://www.darkreading.com/threat-intelligence/bianlian-cybercrime-group-changes-attack-methods-cisa-advisory-notes?_mc=NL_DR_EDT_DR_weekly_20230518&cid=NL_DR_EDT_DR_weekly_20230518&sp_aid=116563&elq_cid=38046155&sp_eh=144c4ccfdc4bcabeefa4110f1ea26cecf2a866a1c04b99a946a3df0524ced34c&sp_eh=144c4ccfdc4bcabeefa4110f1ea26cecf2a866a1c04b99a946a3df0524ced34c&utm_source=eloqua&utm_medium=email&utm_campaign=DR_NL_Dark%20Reading%20Weekly_05.18.23&sp_cid=48613&utm_content=DR_NL_Dark%20Reading%20Weekly_05.18.23
#Hacking #ThreatIntelligence #Cloud #CloudAttackSurface #DataExfiltration #Exfil #AttackSurfaceReduction #Ransomware
#rdp #admin #endpoint #breached #bianlian #hacking #threatintelligence #cloud #cloudattacksurface #dataexfiltration #exfil #attacksurfacereduction #ransomware
Geekmaster 👽:system76: · @Geekmaster
166 followers · 1244 posts · Server ioc.exchange#Infostealers are a growing threat. Sure, they've been around for decades, but now it's becoming a much larger market on the #Darkweb. “What we are seeing is an entire #underground #economy and #supporting #infrastructure built around #infostealers, making it not only possible but also potentially #lucrative for relatively #lowskilled #threatactors to get involved,”
https://www.scmagazine.com/news/threat-intelligence/data-log-thefts-explode-as-infostealers-gain-popularity-with-cybercriminals?external_id=HBwZ-n4B490LDY0Z-dKj&external_id_source=mrkto&mkt_tok=MTg4LVVOWi02NjAAAAGLzUgAldBXEeVNitVuN5rpvANUjNCaIIBnTmArpblpBWE5hgFJSS9PoGhu7RxEp5cWxLUDxbLdJ7juuAc83cEfRAyiFxOpe18Kant7MXUMhA
#Hacking #ThreatIntelligence #Cloud #CloudAttackSurface #TOR #DataExfiltration #Exfil #RussianMarket #Cyberespionage #RussiaAPT #ChinaAPT #APT #UseMFA #AttackSurfaceReduction
#infostealers #darkweb #underground #economy #supporting #infrastructure #lucrative #lowskilled #threatactors #hacking #threatintelligence #cloud #cloudattacksurface #tor #dataexfiltration #exfil #russianmarket #cyberespionage #russiaapt #chinaapt #apt #usemfa #attacksurfacereduction
zizak · @zizak
0 followers · 60 posts · Server techhub.social
Bob Carver · @cybersecboardrm
83 followers · 96 posts · Server infosec.exchange
Malicious actors can take advantage of "insufficient" forensic visibility into Google Cloud Platform (GCP) to exfiltrate sensitive data, a new research has found.
“Unfortunately, GCP does not provide the level of visibility in its storage logs that is needed to allow any effective forensic investigation, making organizations blind to potential data exfiltration attacks," cloud incident response firm Mitiga said in a report. https://amp.thehackernews.com/thn/2023/03/experts-reveal-google-cloud-platforms.html #CyberSecurity #Google #Cloud #DataExfiltration
#cybersecurity #google #cloud #dataexfiltration
pablolarah · @pablolarah
166 followers · 1270 posts · Server mastodon.social
🚨 Let's build a Chrome extension that steals everything
by Matt Frisbie
@mattfriz
#browser #browserExtension #dataexfiltration
#browser #browserextension #dataexfiltration
Gareth Emslie 🇿🇦 🇪🇦 🇨🇭 · @keyoke_za
37 followers · 200 posts · Server hachyderm.ioMicrosoft Sentinel's solution for SAP has been made generally available, and five new data exfiltration rules have been released as part of the solution. These rules cover activities such as file downloads from malicious IP addresses, and saving sensitive data to USB drives. https://techcommunity.microsoft.com/t5/microsoft-sentinel-blog/microsoft-sentinel-solution-for-sap-new-data-exfiltration/ba-p/3716881 #MicrosoftSentinel #SAP #DataExfiltration
#MicrosoftSentinel #sap #dataexfiltration
Kevin Karhan :verified: · @kkarhan
350 followers · 6196 posts · Server mstdn.social@jessdkant Such #airgap-hopping is nothing new.
It doesn't take experts like @stman to turn this into a crude narrowband modem...
And yes, there has been #malware in the wild that does #DataExfiltration by modulating the speed of fans - just in case someone things unplugging or desoldering a speaker works...
IMHO people owning or having said #Govware - #Appliances in their homes are either dangerously incompetent #TechIlliterates or dangerous #ignorants for not banning this shit from prems.
#ignorants #TechIlliterates #appliances #govware #dataexfiltration #Malware #airgap
Xavier «X» Santolaria :donor: :verified_paw: · @0x58
547 followers · 692 posts · Server infosec.exchange
Security researchers have noticed a spike in devices infected with the #TrueBot #malware downloader created by a Russian-speaking hacking group known as Silence.
The threat actor is also using a new custom #dataexfiltration tool called #Teleport. Analysis of Silence's attacks over the past months revealed that the gang delivered Clop #ransomware typically deployed by TA505 hackers, which are associated with the FIN11 group.
#truebot #malware #dataexfiltration #teleport #ransomware #cybersecurity #infosec
Mufasa :paw: · @ne1for23
345 followers · 141 posts · Server betweenthelions.linkA Republican poll worker charged with violating election law admitted he used a personal flash drive to export the electronic poll book at a Michigan precinct
#Michigan #Republican #PollWorker #DataExfiltration #USBFlashDrive #ElectionLaw
https://www.woodtv.com/news/kent-county/testimony-poll-worker-admitted-to-using-usb-drive/
#michigan #republican #pollworker #dataexfiltration #usbflashdrive #electionlaw
Bob Carver · @cybersecboardrm
36 followers · 35 posts · Server infosec.exchange
The mechanism, dubbed COVID-bit, leverages malware planted on the machine to generate electromagnetic radiation in the 0-60 kHz frequency band that's subsequently transmitted and picked up by a stealthy receiving device in close physical proximity. #CyberSecurity #AirGap #COVert #DataExfiltration
https://thehackernews.com/2022/12/covid-bit-new-covert-channel-to.html
#cybersecurity #airgap #covert #dataexfiltration
Mufasa · @ne1for23
399 followers · 3723 posts · Server mastodon.sdf.orgA Republican poll worker charged with violating election law admitted he used a personal flash drive to export the electronic poll book at a Michigan precinct
#Michigan #Republican #PollWorker #DataExfiltration #USBFlashDrive #ElectionLaw
https://www.woodtv.com/news/kent-county/testimony-poll-worker-admitted-to-using-usb-drive/
#michigan #republican #PollWorker #dataexfiltration #usbflashdrive #electionlaw
The Hacker News · @hackernews_bot
612 followers · 780 posts · Server social.platypush.techReferenced link: https://thehackernews.com/2022/08/the-rise-of-data-exfiltration-and-why.html
Discuss on https://discu.eu/q/https://thehackernews.com/2022/08/the-rise-of-data-exfiltration-and-why.html
Originally posted by The Hacker News / @TheHackersNews@twitter.com: https://twitter.com/TheHackersNews/status/1562047270643965952#m
Businesses have mounted formidable defenses against ransomware in recent years. Threat actors have been searching for another opportunity and found one with data exfiltration.
Read: https://thehackernews.com/2022/08/the-rise-of-data-exfiltration-and-why.html
#TuxCare #Ransomware #dataexfiltration
The Hacker News · @hackernews_bot
613 followers · 780 posts · Server social.platypush.techReferenced link: https://thehackernews.com/2022/07/security-experts-warn-of-two-primary.html
Discuss on https://discu.eu/q/https://thehackernews.com/2022/07/security-experts-warn-of-two-primary.html
Originally posted by The Hacker News / @TheHackersNews@twitter.com: https://twitter.com/TheHackersNews/status/1549698612690829312#m
Security experts are warning that two primary client-side risks are driving #dataloss #dataexfiltration.
Discover the two prominent risks and learn more about #ClientSideSecurity in our latest post: https://thehackernews.com/2022/07/security-experts-warn-of-two-primary.html
#dataloss #dataexfiltration #ClientSideSecurity #infosec #cybersecurity
ITSEC News · @itsecbot
687 followers · 32461 posts · Server schleuss.online
Ransomware Gang Collects Data from Blood Testing Lab - Apex Laboratory patient data was lifted and posted on a leak site. https://threatpost.com/ransomware-gang-data-blood-testing-lab/162721/ #dataexfiltration #doubleextortion #apexlaboratory #bloodtesting #patientdata #healthcare #ransomware #datatheft #malware #breach
#breach #malware #datatheft #ransomware #healthcare #patientdata #bloodtesting #apexlaboratory #doubleextortion #dataexfiltration
ITSEC News · @itsecbot
687 followers · 32461 posts · Server schleuss.online
Agent Tesla Keylogger Gets Data Theft and Targeting Update - The infamous keylogger has shifted its targeting tactics and now collects stored credentials for l... https://threatpost.com/agent-tesla-targeting-data-tactics/162268/ #dataexfiltration #emailcredentials #microsoftwindows #thebatemail #agenttesla #webbrowser #keylogger #microsoft #palemoon #malware #windows #india #linux #rat
#rat #linux #india #windows #malware #palemoon #microsoft #keylogger #webbrowser #agenttesla #thebatemail #microsoftwindows #emailcredentials #dataexfiltration
ITSEC News · @itsecbot
687 followers · 32461 posts · Server schleuss.online
Think-Tanks Under Attack by APTs, CISA Warns - The feds have seen ongoing cyberattacks on think-tanks (bent on espionage, malware delivery and mo... https://threatpost.com/think-tanks-attack-apts-cisa/161807/ #advancedpersistentthreat #covid-19.remoteaccess #dataexfiltration #vulnerabilities #remoteworking #spearphishing #cyberattacks #nationstates #websecurity #government #thinktanks #cisaalert #espionage #exploits #phishing #malware #breach #hacks #apt #vpn
#vpn #apt #hacks #breach #malware #phishing #exploits #espionage #cisaalert #thinktanks #government #websecurity #nationstates #cyberattacks #spearphishing #remoteworking #vulnerabilities #dataexfiltration #covid #advancedpersistentthreat
ITSEC News · @itsecbot
687 followers · 32461 posts · Server schleuss.online
Feds Hit with Successful Cyberattack, Data Stolen - The attack featured a unique, multistage malware and a likely PulseSecure VPN exploit. https://threatpost.com/feds-cyberattack-data-stolen/159541/ #microsoftoffice365credentials #dataexfiltration #federalagency #inetinfo.exe #cyberattack #pulsesecure #spycampaign #government #cisaalert #espionage #malware #exploit #hacks
#hacks #exploit #malware #espionage #cisaalert #government #spycampaign #pulsesecure #cyberattack #inetinfo #federalagency #dataexfiltration #microsoftoffice365credentials
ITSEC News · @itsecbot
687 followers · 32461 posts · Server schleuss.online
Triple-Threat Cryptocurrency RAT Mines, Steals and Harvests - KryptoCibule spreads via pirated software and game torrents. https://threatpost.com/triple-threat-cryptocurrency-rat-mines-steals-harvests/158906/ #remoteaccesstrojan #dataexfiltration #malwareanalysis #piratedsoftware #cryptocurrency #cryptojacking #czechrepublic #cryptography #kryptocibule #piratedgames #websecurity #wallettheft #bittorrent #backdoor #ethereum #slovakia #malware #monero #eset #rat #tor
#tor #rat #eset #monero #malware #slovakia #ethereum #backdoor #bittorrent #wallettheft #websecurity #piratedgames #kryptocibule #cryptography #czechrepublic #cryptojacking #cryptocurrency #piratedsoftware #malwareanalysis #dataexfiltration #remoteaccesstrojan
ITSEC News · @itsecbot
687 followers · 32461 posts · Server schleuss.online
CWT Travel Agency Faces $4.5M Ransom in Cyberattack, Report - The corporate-travel leader has confirmed an attack that knocked systems offline. https://threatpost.com/cwt-travel-agency-ransom-cyberattack-report/157911/ #officialstatement #dataexfiltration #corporatetravel #carsonwagonlit #customerdata #ragnarlocker #travelagency #$4.5million #cyberattack #databreach #ransomware #extortion #malware #breach #ransom #cwt
#cwt #ransom #breach #malware #extortion #ransomware #databreach #cyberattack #travelagency #ragnarlocker #customerdata #carsonwagonlit #corporatetravel #dataexfiltration #officialstatement
ITSEC News · @itsecbot
687 followers · 32461 posts · Server schleuss.online
Android Spyware Tools Emerge in Widespread Surveillance Campaign - Four Android spyware tools have been used in a widespread APT campaign to spy on the Uyghur ethnic... more: https://threatpost.com/four-android-spyware-tools-surveillance-campaign/157063/ #dataexfiltration #surveillanceware #websecurity #carbonsteal #doubleagent #goldeneagle #silkbean #malware #android #spyware #uyghur #hacks #apt15 #mapt #apt
#apt #mapt #apt15 #hacks #uyghur #spyware #android #malware #silkbean #goldeneagle #doubleagent #carbonsteal #websecurity #surveillanceware #dataexfiltration