This new Windows RCE (#CVE-2022-37958) appears to affect SMB auth. This could be a #RedTeams easy win exploit for years.

FYI: the Sept 2022 patch mitigates this.
https://www.tenable.com/blog/cve-2022-37958-faq-for-critical-microsoft-spnego-negoex-vulnerability

#BlueTeamtoot of the day: Search for AKIA*, ASIA* and ABIA* in your slack/teams/jira/confluence etc, you might be surprised. #Redteams do the same, you might get lucky 😅
#DetectionEngineering teams drop some #AWS API key #CanaryTokens in your chatops tooling, when it triggers an alert you know you have a problem

RT @alejandrolmeida@twitter.com

Muchas gracias a todos los #hackers que vinisteis ayer al evento para #RedTeams organizado por @azurebrains@twitter.com no me lo pude pasar mejor, gracias @FMSepulveda@twitter.com y @robtejero@twitter.com por dedicar vuestro preciado tiempo a compartir vuestros conocimientos 👏👏 https://twitter.com/jracabrera/status/1227658363988795393

🐦🔗: https://twitter.com/alejandrolmeida/status/1227856134893195264