LAB52

@LAB52io

(Cyber) Intelligence @ S2 Grupo

lab52.io
Vrijeme pridruživanja: srpanj 2019.
7 fotografija ili videozapisa Fotografije i videozapisi

Tweetovi

Blokirali ste korisnika/cu @LAB52io

Jeste li sigurni da želite vidjeti te tweetove? Time nećete deblokirati korisnika/cu @LAB52io

  1. proslijedio/la je Tweet
    prije 16 sati

    Coming soon to Sysmon: clipboard logging for malicious RDP session DFIR, and shredded file recovery for capturing hacking tools

    14 replies 210 proslijeđenih tweetova 649 korisnika označava da im se sviđa
    Poništi
  2. proslijedio/la je Tweet
    4. velj

    CERT Japan has published a tool called EmoCheck that tells you if you've been infected with Emotet. Tool works by scanning for common process names used by Emotet.

    90 proslijeđenih tweetova 147 korisnika označava da im se sviđa
    Poništi
  3. proslijedio/la je Tweet
    3. velj

    Dragos initially learned of a new variant, “Snake” or “EKANS,” on January 6, 2020 that has the functionality to forcibly stop a number of processes, including multiple items related to operations. Read the full, public report here:

    53 proslijeđena tweeta 69 korisnika označava da im se sviđa
    Poništi
  4. proslijedio/la je Tweet
    3. velj

    BREAKING: Twitter says a suspected state-sponsored actor used its API to match usernames to phone numbers - Attack took place on December 24, 2019 - Twitter said attack came from IPs in Iran, Israel, and Malaysia

    514 proslijeđenih tweetova 528 korisnika označava da im se sviđa
    Prikaži ovu nit
    Prikaži ovu nit
    Poništi
  5. proslijedio/la je Tweet
    2. velj

    Raytheon engineer arrested for taking US missile defense data to China | ZDNet

    13 proslijeđenih tweetova 19 korisnika označava da im se sviđa
    Poništi
  6. proslijedio/la je Tweet
    2. velj

    "America warned Germany that Huawei's 5G gear was effectively bugged and leaking secrets to PRC agents, and that Huawei has been proven to work with China's security agencies."

    22 proslijeđena tweeta 23 korisnika označavaju da im se sviđa
    Poništi
  7. proslijedio/la je Tweet
    2. velj

    SettingSyncHost.exe as a LolBin cd %TEMP% & c:\windows\system32\SettingSyncHost.exe -LoadAndRunDiagScript foo

    167 proslijeđenih tweetova 364 korisnika označavaju da im se sviđa
    Poništi
  8. proslijedio/la je Tweet
    1. velj

    I take for granted this understanding. This is why it's important to distinguish between exploitation of a software flaw, and vulnerability agnostic capabilities dropped post-exploitation. The whole idea of persistence is retaining access after patching.

    “Compromised systems cannot be remediated by applying software patches that were released to fix the vulnerability. Once CNE actors establish a foothold on an affected device, their presence remains even though the original attack vector has been closed.” -CISA
    5 proslijeđenih tweetova 14 korisnika označava da im se sviđa
    Poništi
  9. proslijedio/la je Tweet
    31. sij

    NIST Tests Forensic Methods for Getting Data From Damaged Mobile Phones:

    10 proslijeđenih tweetova 12 korisnika označava da im se sviđa
    Poništi
  10. proslijedio/la je Tweet
    21. stu 2019.

    Russia’s GRU intelligence agency is perfecting its disinformation techniques for 2020 - The Washington Post

    7 replies 247 proslijeđenih tweetova 293 korisnika označavaju da im se sviđa
    Poništi
  11. 31. sij

    Happy to see DigiCrime is still up & running after 25 years... now we are applying for some services ;)

    Poništi
  12. proslijedio/la je Tweet
    31. sij

    Winnti Group targeting universities in Hong Kong | by

    9 proslijeđenih tweetova 27 korisnika označava da im se sviđa
    Poništi
  13. proslijedio/la je Tweet
    31. sij

    GRU in the DMs like, sup babYY

    10 replies 16 proslijeđenih tweetova 189 korisnika označava da im se sviđa
    Prikaži ovu nit
    Prikaži ovu nit
    Poništi
  14. proslijedio/la je Tweet
    30. sij

    It looks like "a known Russian inspection satellite is currently inspecting a known US spy satellite." cc:

    Something to potentially watch: Cosmos 2542, a Russian inspection satellite, has recently synchronized its orbit with USA 245, an NRO KH11. A thread:
    Prikaži ovu nit
    110 proslijeđenih tweetova 125 korisnika označava da im se sviđa
    Poništi
  15. proslijedio/la je Tweet
    30. sij

    The FBI Boston field office has put out a Wanted poster for the Yanqing Ye who is charged with attending Boston University while being a Lieutenant in the Chinese Army and funneling U.S. military information to China.

    Yanqing Ye is wanted by the for allegedly acting as an agent of a foreign government, visa fraud, making false statements and conspiracy. Click here to view the full poster:
    26 replies 323 proslijeđena tweeta 350 korisnika označava da im se sviđa
    Prikaži ovu nit
    Prikaži ovu nit
    Poništi
  16. proslijedio/la je Tweet
    30. sij

    Everything is said in one slide!

    17 proslijeđenih tweetova 37 korisnika označava da im se sviđa
    Poništi
  17. proslijedio/la je Tweet
    30. sij

    NEW: Iranian hackers (APT34) target US government workers in new campaign

    1 reply 21 proslijeđeni tweet 35 korisnika označava da im se sviđa
    Poništi
  18. proslijedio/la je Tweet
    30. sij

    ., former head of CIA’s Russia operations: "If we only play defense, we’re bound to lose. We have a President in Russia who is using old KGB tactics … very clear political warfare. Part of the problem is we're not treating it like they're the enemy."

    5 replies 70 proslijeđenih tweetova 119 korisnika označava da im se sviđa
    Prikaži ovu nit
    Prikaži ovu nit
    Poništi
  19. proslijedio/la je Tweet
    30. sij

    Book discount offer: My new book on 'The Intelligence War Against the IRA' (1969-1998) will shortly be released in paperback, hardback and electronically with Pre-orders at 20% discount until the end of tomorrow via code LEAHY2020

    9 replies 65 proslijeđenih tweetova 151 korisnik označava da mu se sviđa
    Poništi
  20. proslijedio/la je Tweet
    30. sij

    I think I’m gonna add “former 8200” to my resume so I can get a C level job at a cyber security company. What are they going to do, call 8200 and ask for a reference??

    66 proslijeđenih tweetova 554 korisnika označavaju da im se sviđa
    Poništi

@LAB52io još nije objavio nijedan Tweet.

Čini se da učitavanje traje već neko vrijeme.

Twitter je možda preopterećen ili ima kratkotrajnih poteškoća u radu. Pokušajte ponovno ili potražite dodatne informacije u odjeljku Status Twittera.

    Možda bi vam se svidjelo i ovo:

    ·