SchrDckr, Not CISSP

@schrdckr

CYBER SECURITY ADVISOR, THREAT HUNTER, CISSPCISACSXISO27K1CERTSOCSANSCCCOWASP, PHOENIX FOUNDATION FOR LAW AND GOVERNMENT

Berlin, Deutschland
Vrijeme pridruživanja: prosinac 2016.

Tweetovi

Blokirali ste korisnika/cu @schrdckr

Jeste li sigurni da želite vidjeti te tweetove? Time nećete deblokirati korisnika/cu @schrdckr

  1. 3. velj
    Poništi
  2. proslijedio/la je Tweet
    31. sij

    🚨 Palindrome altert - Sunday will be 02/02/2020 - 02022020

    Poništi
  3. proslijedio/la je Tweet

    TIL I’m really under qualified, I have none of these.

    Prikaži ovu nit
    Poništi
  4. proslijedio/la je Tweet

    📢 CVE-2019-0604 is being exploited in the wild 📢 It's a web based remote code execution vuln without need for authentication, plus Microsoft had to reissue the patch later as the first one didn't fix the vulnerability - so lots of places are exposed.

    Prikaži ovu nit
    Poništi
  5. proslijedio/la je Tweet

    New research into REvil ransomware. This is totally out of control. - Over 150k unique infections demanding $38m in ransom in last few months. - The last 30 days have been most active yet.

    Prikaži ovu nit
    Poništi
  6. proslijedio/la je Tweet

    I think this is a really interesting situation - when your cyber insurance company tells you to patch.

    Poništi
  7. proslijedio/la je Tweet
    28. sij

    NEW: With 30 million card details put up for sale on Joker's Stash, the Wawa card breach may rank as one of the biggest of all times, second to the Home Depot and Target breaches only

    Prikaži ovu nit
    Poništi
  8. proslijedio/la je Tweet
    28. sij

    Per Gemini Advisory, the Wawa card dump appears to contain: - 30 million US card records for users across 40 states - 1 million international cards from 100 countries US cards are sold for $17/card International cards are sold for $210/card

    Prikaži ovu nit
    Poništi
  9. proslijedio/la je Tweet
    28. sij

    So posted a little challenge. It's always nice to do a little geolocation challenge that doesn't revolve around conflict. Location is: I thought I'd include my working out here, as a lot of people seem to ask about geolocation ✌️

    Prikaži ovu nit
    Poništi
  10. proslijedio/la je Tweet
    28. sij

    The average ransom demand for a REvil ransomware infection is a whopping $260,000 * Average for full network compromise is $470,000 * When network compromise fails and REvil infects only one PC, average is $48,000

    Poništi
  11. proslijedio/la je Tweet
    28. sij

    Blog: Tracking : our analysis of sample configurations, ransom demands and sinkhole data. The REvil affiliates operate at a huge scale encrypting 1000s of systems at once. And we're only seeing a fraction of the total activity.

    Prikaži ovu nit
    Poništi
  12. proslijedio/la je Tweet
    28. sij

    So glad that was able to cover the blog. Our blog is long and I'm not a writer. He is and has distilled our ramblings:

    Prikaži ovu nit
    Poništi
  13. proslijedio/la je Tweet

    Kobe's Career Made Field Goals

    Poništi
  14. proslijedio/la je Tweet
    28. sij

    Bunch of interesting stats in Spamhaus' 2019 year-in-review report on malware botnets. To my surprise, Lokibot beat out AZORult as the most popular malware strain. I was so sick of seeing AZORult IoCs in my Twitter feed that I almost added AZORult to my muted words list

    Prikaži ovu nit
    Poništi
  15. proslijedio/la je Tweet
    28. sij
    Prikaži ovu nit
    Poništi
  16. proslijedio/la je Tweet
    28. sij
    Prikaži ovu nit
    Poništi
  17. proslijedio/la je Tweet
    28. sij

    Some Lateral Movement Methods: -Pass the Hash/Relay ((Net-)NTLM) -Pass the Ticket (Silver/Golden) -RDP (Legit creds) -Remote Services (VNC/SSH) -(D)COM (Remote sched tasks, Services, WMI) -Remote Service Vuln (EB) -Admin Shares (PSExec) -Webshell (Chopper) -WinRM (PS Remoting)

    Poništi
  18. proslijedio/la je Tweet
    28. sij
    Odgovor korisniku/ci
    Poništi
  19. proslijedio/la je Tweet
    27. sij

    What issues do people have with a rollout in an enterprise? Log volume? I’ve seen orgs worried about 20GB of daily Sysmon log data, while at the same time spending a 6 figure sum on a license to process 500GB of daily firewall log data. (which is mostly useless)

    Poništi
  20. proslijedio/la je Tweet

    "DAX30-Konzerne hatten schon früher Kenntnis von der – entschieden sich aber, diese nicht dem zu melden; angels Vertrauen, dass diese Erkenntnisse nicht auch über das an die zur Ausnutzung gelangen würden!"

    Prikaži ovu nit
    Poništi

Čini se da učitavanje traje već neko vrijeme.

Twitter je možda preopterećen ili ima kratkotrajnih poteškoća u radu. Pokušajte ponovno ili potražite dodatne informacije u odjeljku Status Twittera.

    Možda bi vam se svidjelo i ovo:

    ·