Found 5 bookmarks
Custom sorting
Analysis of a Remote Code Execution (RCE) Vulnerability in Cobalt Strike 4.7.1
Analysis of a Remote Code Execution (RCE) Vulnerability in Cobalt Strike 4.7.1
Command & Control (C2) frameworks are a very sensitive component of Red Team operations. Often, a Red Team will be in a highly privileged position on a target’s network, and a compromise of the C2 framework could lead to a compromise of both the red team operator’s system and control over beacons established on a target’s systems. As such, vulnerabilities in C2 frameworks are high priority targets for threat actors and Counterintelligence (CI) operations. On September 20, 2022, HelpSystems published an out-of-band patch for Cobalt Strike which stated that there was potential for Remote Code Execution (RCE).
#securityintelligence#EN#2022#RCE#Cobalt-Strike#HelpSystems#Vulnerability#Analysis
·securityintelligence.com·
Analysis of a Remote Code Execution (RCE) Vulnerability in Cobalt Strike 4.7.1
Unprecedented Shift: The Trickbot Group is Systematically Attacking Ukraine
Unprecedented Shift: The Trickbot Group is Systematically Attacking Ukraine
Following ongoing research our team, IBM Security X-Force has uncovered evidence indicating that the Russia-based cybercriminal syndicate “Trickbot group” has been systematically attacking Ukraine since the Russian invasion — an unprecedented shift as the group had not previously targeted Ukraine
#Securityintelligence#EN#2022#cyberwar#Russia-Ukraine-war#trickbot#Ukraine
·securityintelligence.com·
Unprecedented Shift: The Trickbot Group is Systematically Attacking Ukraine
Analysis of a Remote Code Execution (RCE) Vulnerability in Cobalt Strike 4.7.1
Analysis of a Remote Code Execution (RCE) Vulnerability in Cobalt Strike 4.7.1
Command & Control (C2) frameworks are a very sensitive component of Red Team operations. Often, a Red Team will be in a highly privileged position on a target’s network, and a compromise of the C2 framework could lead to a compromise of both the red team operator’s system and control over beacons established on a target’s systems. As such, vulnerabilities in C2 frameworks are high priority targets for threat actors and Counterintelligence (CI) operations. On September 20, 2022, HelpSystems published an out-of-band patch for Cobalt Strike which stated that there was potential for Remote Code Execution (RCE).
#securityintelligence#EN#2022#RCE#Cobalt-Strike#HelpSystems#Vulnerability#Analysis
·securityintelligence.com·
Analysis of a Remote Code Execution (RCE) Vulnerability in Cobalt Strike 4.7.1
Unprecedented Shift: The Trickbot Group is Systematically Attacking Ukraine
Unprecedented Shift: The Trickbot Group is Systematically Attacking Ukraine
Following ongoing research our team, IBM Security X-Force has uncovered evidence indicating that the Russia-based cybercriminal syndicate “Trickbot group” has been systematically attacking Ukraine since the Russian invasion — an unprecedented shift as the group had not previously targeted Ukraine
#Securityintelligence#EN#2022#cyberwar#Russia-Ukraine-war#trickbot#Ukraine
·securityintelligence.com·
Unprecedented Shift: The Trickbot Group is Systematically Attacking Ukraine
Unprecedented Shift: The Trickbot Group is Systematically Attacking Ukraine
Unprecedented Shift: The Trickbot Group is Systematically Attacking Ukraine
Following ongoing research our team, IBM Security X-Force has uncovered evidence indicating that the Russia-based cybercriminal syndicate “Trickbot group” has been systematically attacking Ukraine since the Russian invasion — an unprecedented shift as the group had not previously targeted Ukraine
#Securityintelligence#EN#2022#cyberwar#Russia-Ukraine-war#trickbot#Ukraine
·securityintelligence.com·
Unprecedented Shift: The Trickbot Group is Systematically Attacking Ukraine