We are reporting out Microsoft Exchange servers still likely vulnerable to CVE-2022-41082 #ProxyNotShell. Nearly 70K IPs found without MS patches applied (based on version info). Previously recommended mitigation techniques can be bypassed by attackers
https://t.co/ApcM9HwiOK
ByteDance used TikTok to monitor journalists’ physical location in an attempt to identify whether they had been in the same locales as the company’s employees. https://t.co/TAQXz893C1
I’m speaking @avar_asia w/ @StredaAdolf about our analysis of tools used & data collected in an espionage attack presumably carried out by the #MustangPanda APT group targeting Burmese gov, political NGOs, & opposition groups. Read more on #AvastDecoded https://t.co/QqchLQ708W
https://t.co/BHlECaqa5h leaks API keys, shared documents, password reset links, team invites, and other sensitive data.
We identified one culprit to be other security tools that accidentally make their scans public and put their users at risk.
https://t.co/dnFWzjbm1V
Microsoft has identified a new ransomware strain "Prestige" in limited targeted attacks in Ukraine and Poland. Several notable features differentiate this ransomware from other campaigns and payloads tracked by MSTIC. Get TTPs and protection info: https://t.co/4E3gaj1K7b