Mastodawn

Unveiled Security Feb 22, 2023

Setting Time Expectations for RFIs

https://unveiledsecurity.com/2023/02/22/setting-time-expectations-for-rfis/

#cyberthreatintelligence

Setting Time Expectations for RFIs

Unveiled Security

Unveiled Security Feb 10, 2023

New post, "External Attack Surface Management and its Integration with Cybersecurity Operations

https://unveiledsecurity.com/2023/02/10/external-attack-surface-management-and-its-integration-with-cybersecurity-operations/

#Cybersecurity #CyberThreatIntelligence #VulnerabilityManagement #AttackSurface

External Attack Surface Management and its Integration with Cybersecurity Operations

Unveiled Security

Unveiled Security Feb 3, 2023

New post by guest contributor Justin Klein Keane, "Rethinking Cyber Threat Intelligence"

https://unveiledsecurity.com/2023/02/03/rethinking-cyber-threat-intelligence/

#cyberthreatintelligence
#cybersecurity
#soc

Rethinking Cyber Threat Intelligence

Unveiled Security

Unveiled Security Jan 26, 2023

Quick Take: Proof-of-Concept Exploiting Windows CryptoAPI Spoofing Vulnerability Released

https://unveiledsecurity.com/2023/01/26/quick-take-proof-of-concept-exploiting-windows-cryptoapi-spoofing-vulnerability-released/

#vulnerability #microsoft #proofofconcept

Quick Take: Proof-of-Concept Exploiting Windows CryptoAPI Spoofing Vulnerability Released

Unveiled Security

Unveiled Security Jan 24, 2023

New and updated post, "Threat Intelligence Requirements"

https://unveiledsecurity.com/2023/01/24/threat-intelligence-requirements/

#cyberthreatintelligence #cybersecurity

Threat Intelligence Requirements

Unveiled Security

Unveiled Security Jan 6, 2023

On Dec 22, 2022, Unit42 released a threat brief on the new OWASSRF exploit method for Microsoft Exchange Server published by CrowdStrike

Threat Brief: OWASSRF Vulnerability Exploitation

https://unit42.paloaltonetworks.com/threat-brief-owassrf/

#OWASSRF #ProxyNotShell #Cybersecurity #CyberThreatIntelligence

Threat Brief: OWASSRF Vulnerability Exploitation

We analyze the new exploit method for Microsoft Exchange Server, OWASSRF, noting that all exploit attempts we've observed use the same PowerShell backdoor, which we track as SilverArrow. Read the details and learn how to mitigate.

Unit 42

Setting Time Expectations for&nbsp;RFIs

External Attack Surface Management and its Integration with Cybersecurity&nbsp;Operations

Rethinking Cyber Threat&nbsp;Intelligence

Quick Take: Proof-of-Concept Exploiting Windows CryptoAPI Spoofing Vulnerability&nbsp;Released

Threat Intelligence Requirements

Threat Brief: OWASSRF Vulnerability Exploitation

Setting Time Expectations for RFIs

External Attack Surface Management and its Integration with Cybersecurity Operations

Rethinking Cyber Threat Intelligence

Quick Take: Proof-of-Concept Exploiting Windows CryptoAPI Spoofing Vulnerability Released