/
Navigation
C
Chronicles
Browse all articles
C
E
Explore
Semantic exploration
E
R
Research
Entity momentum
R
N
Nexus
Correlations & relationships
N
~
Story Arc
Topic evolution
S
Drift Map
Semantic trajectory animation
D
P
Posts
Analysis & commentary
P
Browse
@
Entities
Companies, people, products, technologies
Domains
Browse by publication source
Handles
Browse by social media handle
Detection
?
Concept Search
Semantic similarity search
!
High Impact Stories
Top coverage by position
+
Sentiment Analysis
Positive/negative coverage
*
Anomaly Detection
Unusual coverage patterns
Analysis
vs
Rivalry Report
Compare two entities head-to-head
/\
Semantic Pivots
Narrative discontinuities
!!
Crisis Response
Event recovery patterns
Connected
Nav: C E R N
Search: /
Command: ⌘K
Embeddings: large
VOICE ARCHIVE

Paul Rascagnères

@r00tbsd
4 posts
2022-10-01
Some explanations from MS concerning the Exchange 0d: https://msrc-blog.microsoft.com/ ... The attackers exploited 2 vulns and the first one needs to be authenticated.
2022-10-01 View on X
BleepingComputer

Microsoft confirms two zero-days in Exchange Server 2013, 2016, and 2019 are being exploited in the wild; security firm GTSC suspects a Chinese threat actor

Microsoft has confirmed that two recently reported zero-day vulnerabilities in Microsoft Exchange Server 2013, 2016, and 2019 are being exploited in the wild.

View original
2022-09-30
Some explanations from MS concerning the Exchange 0d: https://msrc-blog.microsoft.com/ ... The attackers exploited 2 vulns and the first one needs to be authenticated.
2022-09-30 View on X
BleepingComputer

Microsoft confirms two zero-days in Exchange Server 2013, 2016, and 2019 are being exploited in the wild; security firm GTSC suspects a Chinese threat actor

Microsoft has confirmed that two recently reported zero-day vulnerabilities in Microsoft Exchange Server 2013, 2016, and 2019 are being exploited in the wild.

View original
2022-06-03
We identified a 0day currently exploited by CN threat actors on #confluence. The RCE was used to deploy a JSP webshell. There is currently no patch. If you have front web instances, I would disconnect them... More details on our blog: https://www.volexity.com/...
2022-06-03 View on X
The Register

Atlassian warns users to restrict internet access to its Confluence software, or disable it, in light of an unpatched critical RCE flaw actively under attack

CISA's suggested action is to take the thing offline until it can be fixed, Atlassian has added a possible defence

View original
2022-01-17
There is similar samples on VT... Are they related to the incident? If yes, why did you make the choice to put hashes from samples not on VT in the blog post? #SharingIsCaring https://twitter.com/...
2022-01-17 View on X
Microsoft Security Blog

Microsoft identifies a destructive malware operation targeting Ukrainian organizations; the malware looks like ransomware but lacks a ransom recovery mechanism

European Union simulated a cyber attack on a fictitious Finnish power company Vilius Petkauskas / cybernews.com : Belarus state hackers suspected behind Ukraine cyberattack Grugq /...

View original