Etherhiding is so hot right now. When your malware sample contains blockchain artifacts, learn how to pivot on them and get all the indicators from the campaign.
Fortinet customers: please take note of this massive breach of SSL VPN credentials. The scale of attacker infrastructure and list of impacted organizations commands attention.
discourse.ifin.netwo...
#ThreatIntel #ThreatIntelligence #IFIN
This report from GTIG is worth a moment's consideration. Research institutions with public-facing assets should take this opportunity to harden their external posture.
discourse.ifin.netwo...
#ThreatInte #ThreatIntelligence #IFIN
Trusted sites are favorites for the baddies as command-and-control and exfiltration destinations, because they think you can't block them or observe them. That's exactly what this attack expects.
discourse.ifin.netwo...
#ThreatIntel #ThreatIntelligence #IFIN
I guess Anthropic wanted to avoid the 1-2 punch of losing Fable *and* getting the customer outrage of usage-based billing like Copilot 🙃
This is widespread enough that it's almost certain an organization that impacts you locally was involved. And it's no sure thing they'll notice this report. A moment to send an email to their security team, if you can find it, would be a kindness.
My body
is a machine
that turns
links on a website
into
links on another website
My body
is a machine
that turns
links on a website
into
links on another website
Who else had weird issues today with Google auth-using sites requesting certificates?
Seems like it was this:
www.reddit.com/r/tec...