threatyodeling  🇦🇺

@[email protected]
217 Followers
186 Following
82 Posts
#Infosec
ResidingSydney, Australia
InterestsInfoSec
InterestsHacking
Verificationhttps://www.backslack.com/
BirthplaceManchester, UK
threatyodeling  🇦🇺Nov 22, 2022

Tax filing websites have been sending users’ financial information to Facebook

https://www.theverge.com/2022/11/22/23471842/facebook-hr-block-taxact-taxslayer-info-sharing 

Facebook has been receiving users’ financial info from tax preparers

The Markup found that tax preparation services including TaxAct, TaxSlayer, and H&R Block have sent users’ personal financial information to Facebook through the Meta Pixel.

The Verge
threatyodeling  🇦🇺Nov 11, 2022

Blind Insecure Direct Object Reference (IDOR) Leads To Export Other User’s Data (Meta/IG)

https://nobugescapes.com/blog/blind-insecure-direct-object-reference-idor-leads-to-export-other-users-data/ 

threatyodeling  🇦🇺Nov 10, 2022

The Microsoft Sentinel Triage AssistanT (STAT) enables easy to create incident triage automation in Microsoft Sentinel

https://github.com/briandelmsft/SentinelAutomationModules 

GitHub - briandelmsft/SentinelAutomationModules: The Microsoft Sentinel Triage AssistanT (STAT) enables easy to create incident triage automation in Microsoft Sentinel

The Microsoft Sentinel Triage AssistanT (STAT) enables easy to create incident triage automation in Microsoft Sentinel - GitHub - briandelmsft/SentinelAutomationModules: The Microsoft Sentinel Tria...

GitHub
threatyodeling  🇦🇺Nov 10, 2022

Active Directory (AD) mind-map

https://orange-cyberdefense.github.io/ocd-mindmaps/img/pentest_ad_dark_2022_11.svg 

threatyodeling  🇦🇺Nov 10, 2022

Accidental $70k Google Pixel Lock Screen Bypass

https://bugs.xdavidhu.me/google/2022/11/10/accidental-70k-google-pixel-lock-screen-bypass/ 

Accidental $70k Google Pixel Lock Screen Bypass

David Schütz's bug bounty writeups

threatyodeling  🇦🇺Nov 10, 2022
🇺🇦 Nate Warfield🌻Nov 9, 2022

https://therecord.media/high-severity-vulnerability-found-in-computers-used-by-large-oil-and-gas-utilities/

"..finding a “high-severity path-traversal vulnerability” in the flow computers and remote controllers.

“Attackers can exploit this flaw to gain root access on an ABB flow computer, read and write files, and remotely execute code,” they said. "

This is my surprised face 😶

‘High-severity’ vulnerability found in computers used by large oil and gas utilities

The makers of a popular computer system used widely by large oil and gas utilities worldwide have patched a vulnerability discovered by security company Claroty. 

The Record by Recorded Future
threatyodeling  🇦🇺Nov 10, 2022
🇺🇦 Nate Warfield🌻Nov 9, 2022

https://eclypsium.com/2022/11/09/pwned-balancers-f5-and-citrix-for-persistent-c2/

My research blog on attacking F5 & Citrix is live now. Code samples, video demos and what little IOCs there are to offer. Enjoy!

Pwned Balancers: Commandeering F5 and Citrix for persistent access & C2 - Eclypsium

Summary The last 3 years have seen attackers turn their spotlights on initial network access through VPN concentrators, load balancers, routers, and IoT devices. Once the realm of only the most skilled nation-states, the evolution of network device firmware into full-fledged operating systems today provides attackers with a nearly invisible…

Eclypsium
threatyodeling  🇦🇺Nov 10, 2022

They See Me Roaming: Following APT29 by Taking a Deeper Look at Windows Credential Roaming

https://www.mandiant.com/resources/blog/apt29-windows-credential-roaming 

They See Me Roaming: Following APT29 by Taking a Deeper Look at Windows Credential Roaming | Mandiant

Mandiant
threatyodeling  🇦🇺Nov 10, 2022

Who is REvil, the Russia-backed hacker group thought to be behind the Medibank data breach

https://www.sbs.com.au/news/article/who-is-revil-the-russia-backed-hacker-group-thought-to-be-behind-the-medibank-data-breach/b44xvb1ya 

threatyodeling  🇦🇺Nov 9, 2022

Apple Is Tracking You Even When Its Own Privacy Settings Say It’s Not, New Research Says

https://gizmodo.com/apple-iphone-analytics-tracking-even-when-off-app-store-1849757558 

Apple Is Tracking You Even When Its Own Privacy Settings Say It’s Not, New Research Says

An independent test suggests Apple collects data about you and your phone when its own settings promise to “disable the sharing of Device Analytics altogether.”

Gizmodo