Rich Hem

@MultiverseStrat

By day, Consulting Director for UnIt 42, Palo Alto Networks. By night, Multiverse Strategies for side projects. Opinions are my own.

Alexandria, VA

Joined October 2018

23 Following

13 Followers

4 Posts

MultiverseStrat retweeted

spencer

@techspence

about 1 month ago

If you’re an IT admin and you’ve never had your internal environment pentested and can’t afford one right now, do this instead: 1. Run Locksmith - fix anything that’s a High risk 2. Run ADeleginator - make sure everyone, authenticated users, domain users and domain computers doesn’t have any unsafe permissions 3. Run ScriptSentry - check for credentials in logon scripts 4. Run PingCastle - check the control paths section. It’s like bloodhound. Look for non-admins that have control paths If you do this, your environment will be much better when you’re done fixing everything.

160

71K

Rich Hem @MultiverseStrat

over 2 years ago

(Day job related) Every year, the Unit 42 IR team provides support to 100s of orgs responding to/recovering from major cyber attacks. Part of our mission is to share our learnings with you, so you can take proactive steps to better defend yourself. https://t.co/CuGEjIsNRq

Rich Hem @MultiverseStrat

about 3 years ago

This has been confirmed by research teams I trust to be dropping files and backdooring . https://t.co/PBUoL2xZ7X

Rich Hem @MultiverseStrat

almost 4 years ago

If anyone is dealing with Hive v5 ransomware ⬇️

reecDeep @reecdeep

almost 4 years ago

Hi folks, I've just released my #Hive #ransomware v5 keystream decryption tool publicly available. 👇 https://t.co/2L87S46v63 #infosec #malware #reverseengineering #CyberSecurity

237

106