Wed May 13 15:47:10 2020 <8f79fcda> <@U4FQ46RGU> interesting to note that there was an uptick in BTC price the April 28th/29th which correlates with when these attacks began. <https://www.wordfence.com/blog/2020/05/one-attacker-rules-them-all/> — One Attacker Outpaces All Others — Starting April 28th, we saw a 30 times increase in cross site scripting attack volume, originating from a single […]
Wed May 13 14:19:06 2020 <773ab1f1> oh snap clever <773ab1f1> nice way to weaponize a payload fire and forget style
Wed May 13 13:46:13 2020 <773ab1f1> Do you know how the XSS payload was delivered to the admin? <8f79fcda> Through a wp_post table
Wed May 13 13:20:57 2020 <8f79fcda> <@U4FQ46RGU> <https://www.wordfence.com/blog/2020/05/nearly-a-million-wp-sites-targeted-in-large-scale-attacks/|https://www.wordfence.com/blog/2020/05/nearly-a-million-wp-sites-targeted-in-large-scale-attacks/> — Nearly a Million WP Sites Targeted in Large-Scale Attacks — Our Threat Intelligence Team has been tracking a sudden uptick in attacks targeting Cross-Site Scripting(XSS) vulnerabilities that began on April 28, 2020 and increased over the next few days to approximately 30 times the normal volume […]
Wed May 13 02:39:32 2020 <8f79fcda> one looks like an azure vuln
Wed May 13 02:28:19 2020 <8f79fcda> i don’t know enough details to speak competently on the details. The fact that 2 happened in a day is of note. totally different systems/vendors
Wed May 13 02:06:47 2020 <773ab1f1> Fancy, kno how yet?
Wed May 13 01:40:41 2020 <8f79fcda> Cyberattacks are up today <8f79fcda> our phone service at work disabled outgoing calls <8f79fcda> and we had a JS injection attack on one of our production servers that negotiated it’s way to a staging server
Wed Apr 29 18:56:48 2020 <d666283b> <https://www.hackasat.com/|https://www.hackasat.com/>
Wed Apr 29 15:48:11 2020 <d666283b> <https://techcrunch-com.cdn.ampproject.org/c/s/techcrunch.com/2020/04/22/air-force-hack-satellite/amp/|https://techcrunch-com.cdn.ampproject.org/c/s/techcrunch.com/2020/04/22/air-force-hack-satellite/amp/> <8f79fcda> that’s pretty cool
Mon Apr 27 14:05:05 2020 <773ab1f1> <https://www.cyberscoop.com/poland-cyberattack-russia-us-military/> — Poland suggests Russian operatives planted a fake letter following data breach — Polish security services on Thursday suggested the Russian government could be behind a cyberattack against an elite Polish military academy and an ensuing effort to undermine U.S.-Polish relations. Stanislaw Zaryn, a spokesman for the Minister-Special Services Coordinator, which oversees Polish […]
Fri Apr 24 23:58:06 2020 <773ab1f1>
Sun Apr 19 04:00:18 2020 <773ab1f1> <https://twitter.com/rewkang/status/1251707230040150018?s=21|https://twitter.com/rewkang/status/1251707230040150018?s=21> <773ab1f1> A nice little run of eth defi hacks
Sat Apr 18 16:21:44 2020 <8f79fcda> Ah yes, the hacks begin again
Sat Apr 18 13:39:40 2020 <773ab1f1> <https://twitter.com/bneiluj/status/1251448415503908864>
Wed Apr 15 15:29:17 2020 <773ab1f1> <https://twitter.com/adamhrv/status/1220630888918196225>
Tue Apr 14 22:05:40 2020 <8f79fcda> <https://github.com/DP-3T/>
Mon Apr 13 15:08:26 2020 <8f79fcda> <https://old.reddit.com/r/pcgaming/comments/g02ggb/valorant_anticheat_starts_upon_computer_boot_and/|https://old.reddit.com/r/pcgaming/comments/g02ggb/valorant_anticheat_starts_upon_computer_boot_and/> — Valorant anti-cheat starts upon computer boot and runs all the time, even when you don’t play the game — The kernel anticheat driver (vgk.sys) starts when you turn your computer on. To turn it off, you either need to change the name of the driver file…
Sat Apr 11 15:00:16 2020 <773ab1f1> <https://twitter.com/moxie/status/1248707315626201088>
Fri Apr 10 17:03:18 2020 <8f79fcda> “the float error is a feature not a bug”