#cryptohagenJan 23

Hacker-grupper kompromitterer sikkerheds-testnings-applikationer for at bryde ind og bevæge sig lateralt inden for virksomheds-miljøer

Ifølge Pentera Labs er flere Fortune 500-virksomheder og sikkerheds-udbydere blevet hacket ved hjælp af denne teknik

Målrettede apps omfattede blandt andet #OWASP #JuiceShop, #DVWA og #Hackazon
https://pentera.io/blog/exposed-cloud-training-apps-pentera-labs/

When the Lab Door Stays Open: Exposed Training Apps Exploited for Fortune 500 Cloud Breaches - Pentera

Pentera reveals attackers exploiting exposed cloud training apps with crypto miners in Fortune 500 environments, risking full cloud compromise.

Pentera
The New OilJan 22

Hackers exploit security testing apps to breach #Fortune500 firms

https://www.bleepingcomputer.com/news/security/hackers-exploit-security-testing-apps-to-breach-fortune-500-firms/

#cybersecurity #DVWA #OWASP #JuiceShop #Hacakzon #bWAPP

Hackers exploit security testing apps to breach Fortune 500 firms

Threat actors are exploiting misconfigured web applications used for security training and internal penetration testing, such as DVWA, OWASP Juice Shop, Hackazon, and bWAPP, to gain access to cloud environments of Fortune 500 companies and security vendors.

BleepingComputer
Deepak Kumar VasudevanJul 20, 2025

#TASMAC nameboard themed #JuiceShop Board ( #JuiceMAC )

#MondayFunday Credits: #Whatsapp

muelliJan 15, 2025

Die #DKB reagiert humoristisch erniedrigend auf eine Anfrage zu einer potentiellen unautorisierten Buchung:

"vielen Dank für Ihre Anfrage. Wir wissen, wie wichtig Ihnen eine schnelle Rückmeldung ist, und bedauern sehr, dass Sie diesmal länger warten mussten.

Falls Ihr Anliegen zu den von der DKB ausgegebenen Karten inzwischen gelöst ist, müssen Sie nichts weiter unternehmen. Ihre schriftliche Anfrage wird nicht weiter bearbeitet."

Was für eine Frechheit. Was für ein Saftladen. #juiceshop

Janina NemecOct 4, 2024

@glacier

First day of #osco2024 !!! I am looking forward to our keynotes. For one @bkimminich with his #JuiceShop !

owasp_juiceshop 🧃Sep 27, 2024
Want to see the whole #JuiceShop Lego Tower in all its plastic glory while going on a tour through the 10 year history of our little open source project? Then join @bkimminich at @owasp Global AppSec SF for his talk at 3:15pm in room Bayview A
OWASP FoundationSep 10, 2024
Exciting news! 🌟 Join us at Global #AppSec SF for #OWASP #DSOMM and #JuiceShop User Day! Discover how to run engaging secure coding workshops with Juice Shop & customize your #appsec efforts with DSOMM. Don't miss out - sign up now: https://sf.globalappsec.org/
Global AppSec San Francisco 2024 | OWASP Foundation

Global AppSec San Francisco 2024 on the main website for The OWASP Foundation. OWASP is a nonprofit foundation that works to improve the security of software.

OWASP FoundationSep 9, 2024

#OWASP #DSOMM and #JuiceShop User Day are coming to Global AppSec SF!

Explore techniques for delivering effective secure coding workshops using Juice Shop and strategies for tailoring #appsec initiatives with the DevSecOps Maturity Model (DSOMM).
Learn more & REGISTER: https://sf.globalappsec.org/

Global AppSec San Francisco 2024 | OWASP Foundation

Global AppSec San Francisco 2024 on the main website for The OWASP Foundation. OWASP is a nonprofit foundation that works to improve the security of software.

owasp_juiceshop 🧃Sep 6, 2024

Join the shared User Day of @owasp #DSOMM and #JuiceShop on Sep 25th, the day before #GlobalAppSec San Francisco 2024! The agenda includes intros, demos, workshops and even a live CTF:

https://owasp.org/www-project-juice-shop/#div-userday2024

Register now on https://www.eventbrite.com/e/owasp-global-appsec-san-francisco-2024-tickets-723699172707 because seats are very limited!

OWASP Juice Shop | OWASP Foundation

Probably the most modern and sophisticated insecure web application for security trainings, awareness demos and CTFs. Also great voluntary guinea pig for your security tools and DevSecOps pipelines!

Open Security ConferenceAug 5, 2024

Wait, you haven't registered for the Open Security Conference yet? Then be quick and secure your package now - space is limited! 🚀

✅ Register: https://register.opensecurityconference.org

💡 Learn from our keynote speakers Björn Kimminich and Yvonne Johnson: https://opensecurityconference.org/conference/keynotes

💜 Thrive on the osco values: https://opensecurityconference.org/about/values

See you at this special kind of security event on October 4-6 close to Frankfurt/Main, Germany 😎

#cybersecurity #security #InfoSec #OWASP #JuiceShop #OpenSpace #osco #osco24 [lisi]

Nextcloud