by Beck Bailey | Aug 8, 2023 | RSS
New research has revealed that threat actors are abusing Cloudflare Tunnels to establish covert communication channels from compromised hosts and retain persistent access. “Cloudflared is functionally very similar to ngrok,” Nic Finn, a senior threat...
by Beck Bailey | Aug 8, 2023 | RSS
Introduced in 1999, Microsoft Active Directory is the default identity and access management service in Windows networks, responsible for assigning and enforcing security policies for all network endpoints. With it, users can access various resources across networks....
by Beck Bailey | Aug 8, 2023 | RSS
An unknown threat actor is using a variant of the Yashma ransomware to target various entities in English-speaking countries, Bulgaria, China, and Vietnam at least since June 4, 2023. Cisco Talos, in a new write-up, attributed the operation with moderate confidence to...
by Beck Bailey | Aug 8, 2023 | RSS
Cybersecurity researchers have discovered a set of 11 living-off-the-land binaries-and-scripts (LOLBAS) that could be maliciously abused by threat actors to conduct post-exploitation activities. “LOLBAS is an attack method that uses binaries and scripts that...
by Beck Bailey | Aug 7, 2023 | RSS
Qualys report looks at how misconfiguration issues on cloud service providers help attackers gain access.
Recent Comments