Обложка канала

Sys-Admin & InfoSec Channel. Страница 2

13884 @sysadm_in_channel
Открыть

Посты с ИТ-ресурсов, новости, тулзы, хакинг, администрирование, возможны бредовые посты с мемами, поздравлениями, может даже хейтами..

  • Sys-Admin & InfoSec Channel

    Citrix ADC Gateway RCE: CVE-2023-3519 Exploitable Servers Unpatched

    Bishop Fox 's exploit for CVE-2023-3519, a stack overflow in Citrix ADC Gateway that allows remote code execution, roughly 53% of them are unpatched.

    Bishop Fox

  • Sys-Admin & InfoSec Channel

    / Atlassian has RCE in Confluence, Bamboo ..vulnerabilities included critical and high severity vulnerabilities which have been fixed in new versions of Atlassian products, released in the last month: confluence.atlassian.com/securit…643.html

  • Sys-Admin & InfoSec Channel

    Compromised Microsoft Key: More Impactful Than We Thought | Wiz Blog

    Our investigation of the security incident disclosed by Microsoft and CISA and attributed to Chinese threat actor Storm-0558, found that this incident seems to have a broader scope than originally assumed. Organizations using Microsoft and Azure services should take steps to assess potential impact.

    wiz.io

  • Реклама

  • Sys-Admin & InfoSec Channel

    Открытый практикум Networks by Rebrain: Ethernet over IP   • 27 Июля (Четверг), 20:00 по МСК. Детали Программа: • Всегда ли нужен L3 VPN • Как работают EoIP / Layer-2 GRE / L2TPv3 • Примеры конфигураций и сценарии использования Ведет: • Ольга Яновская – Руководитель направления Networks by Rebrain. Ph.D. in Information Technology. Cisco NetAcad Instructor / NetAcad Success Lead / Instructor-Trainer.

  • Sys-Admin & InfoSec Channel

    / Remote Code Execution in OpenSSH's forwarded ssh-agent Agent forwarding should be enabled with caution. Users with the ability to bypass file permissions on the remote host ... can access the local agent through the forwarded connection… CVE-2023-38408: — www.qualys.com/2023/07…gent.txt

  • Sys-Admin & InfoSec Channel

    Massive Targeted Exploit Campaign Against WooCommerce Payments Underway

    The Wordfence Threat Intelligence team has been monitoring an ongoing exploit campaign targeting a recently disclosed vulnerability in WooCommerce Payments, a plugin installed on over 600,000 sites. Large-scale attacks against the vulnerability, assigned CVE-2023-28121, began on Thursday, July 14, 2023 and continued over the weekend, peaking at 1.3 million attacks against 157,000 sites on Saturday, ...Read More

    Wordfence

  • Sys-Admin & InfoSec Channel

  • Sys-Admin & InfoSec Channel

    WormGPT - The Generative AI Tool Cybercriminals Are Using to Launch BEC Attacks | SlashNext

    In this blog post, we'll look at the use of generative AI, including OpenAI's ChatGPT, and the cybercrime tool WormGPT, in BEC attacks.

    SlashNext

  • Sys-Admin & InfoSec Channel

  • Sys-Admin & InfoSec Channel

    / Routers From The Underground: Exposing AVrecon ..complex operation that infects small-office/home-office (SOHO) routers, deploying a Linux-based Remote Access Trojan (RAT) we’ve dubbed “AVrecon.”..: blog.lumen.com/routers…-avrecon
    Routers from the Underground: Exposing AVrecon

    Lumen Black Lotus Labs® identified a complex operation that infects small-office/home-office (SOHO) routers we’ve dubbed “AVrecon.”

    Lumen

  • Sys-Admin & InfoSec Channel

    ⚠️ Reminding/Notice. bld.sys-adm.in will migrate to OpenBLD.net Review and resetup all DoT, DoH, DNS setings to OpenBLD.net please. Keep in mind - On this IP addresess will only remain DoT, DoH: - 49.12.234.130 - 135.125.204.230

  • Sys-Admin & InfoSec Channel

    / TeamTNT Reemerged with New Aggressive Cloud Campaign The botnet run by TeamTNT has set its sights on Docker and Kubernetes environments, Redis servers, Postgres databases, Hadoop clusters, Tomcat and Nginx servers, Weave Scope, SSH, and Jupyter applications..: — Article with Technical Details from AquaSec
    TeamTNT Reemerged with New Aggressive Cloud Campaign

    The botnet run by TeamTNT has set its sights on Docker and Kubernetes environments, Redis servers, Postgres databases, Hadoop clusters, Tomcat and others.

    Aquasec

  • Sys-Admin & InfoSec Channel

  • Sys-Admin & InfoSec Channel

    Открытый практикум Golang by Rebrain: Реализация kubernetes оператора   • 18 Июля (Вторник) 19:00 по МСК. Детали Программа: • Рассмотрим паттерн оператор, концепцию ресурсов и k8s REST API • Рассмотрим реализацию кеша в библиотеки client-go для работы с API k8s • Поработаем с Operator Framework • Рассмотрим некоторые практики, используемые при написании операторов Ведет: • Дмитрий Гордеев – Руководитель практикума Golang by REBRAIN. Занимается разработкой нового Claud'а в x5 Tech. Опыт разработки – 5 лет

  • Sys-Admin & InfoSec Channel

  • Реклама

  • Sys-Admin & InfoSec Channel

    Mitigation for China-Based Threat Actor Activity

    Microsoft and others in the industry have called for transparency when it comes to cyber incidents so that we can learn and get better. As we’ve stated previously, we cannot ignore the exponential rise and frequency of sophisticated attacks. The growing challenges we face only reinforce our commitment to greater information sharing and industry partnership.   ...

    Microsoft On the Issues

  • Sys-Admin & InfoSec Channel

  • Sys-Admin & InfoSec Channel

    Azure AD is Becoming Microsoft Entra ID

    Today we announced significant milestones for identity and network access, including the news that Microsoft Azure Active Directory (Azure AD) is becoming Microsoft Entra ID.      As part of our ongoing commitment to simplify secure access experiences for everyone, the rebranding of Azure AD to Micr...

    TECHCOMMUNITY.MICROSOFT.COM