my tweets are severely limited by my lack of understanding of what I am doing.
This only spreads via SMB over local network, which to me suggests the initial vector was something more effective than EthernalBlue.
-
The simultaneous volume to me suggests more than just so mails, but idk yet.
Yeah. I've not seen any evidence of email yet. Maybe Malvertising, something like that. Also the lateral movement spread is big issue.
-
-
@TalosSecurity has some leads on a potential vector via Tax Software Update in Ukraine but nobody has any intel on mail as a vector TMK. -
We have not confirmed any email vector at this time.
Koniec rozmowy
Nowa rozmowa -
-
-
Agreed. Too many monitors on spam campaigns, we'd see confirmation by now from @dvk01uk etc. if it was regular spam. Maybe targeted emails?
-
it is confirmed by a Dutch company APM, that the vector was a Phishing mail. APM was targeted by
#Petya http://www.telegraaf.nl/binnenland/28489263/___Cyberaanval_gevolg_van_klikken_op_phishing_e-mail___.html?utm_source=t.co&utm_medium=referral&utm_campaign=twitter&apw_campaign=9974328a28ad0fdbd055fe5cb86b1051 … - Pokaż odpowiedzi
Nowa rozmowa -
-
-
Can you explain that in layman's terms, lateral movement?
Dziękujemy. Twitter skorzysta z tych informacji, aby Twoja oś czasu bardziej Ci odpowiadała. CofnijCofnij
-
-
-
Based on what I've seen so far I'd stick with the e-mail theory
-
I wouldn't. Nobody has an email sample
- Pokaż odpowiedzi
Nowa rozmowa -
-
-
Prepositioning?
Dziękujemy. Twitter skorzysta z tych informacji, aby Twoja oś czasu bardziej Ci odpowiadała. CofnijCofnij
-
Wydaje się, że ładowanie zajmuje dużo czasu.
Twitter jest przeciążony lub wystąpił chwilowy problem. Spróbuj ponownie lub sprawdź status Twittera, aby uzyskać więcej informacji.