0x0e: Important, Spoofing
5h3llcast
Norwegian Bokmål - December 10, 2020 10:47 - 48 minutes - 22.3 MBTechnology Homepage Download Apple Podcasts Google Podcasts Overcast Castro Pocket Casts RSS feed
Previous Episode: 0x0d: Ende-til-ende-utviklere
Next Episode: 0x0f: En såkalt episode
Martin (@Mrtn9), Eirik (@0xSV1), Melvin (@Flangvik) og Joakim (@0xAgentP) snakker om at PST mener russiske militær-hackere sto bak angrepet mot Stortinget, cross-platform remote code execution in Microsoft Teams, sårbarhet i VMware, FireEye som har blitt hacket og Storebrand som finner en CVE i Adobe under en CTF.
Finn oss på Twitter Martin Eirik Melvin Joakim 5h3llcast
Eller send oss en e-post på [email protected].
Klippet av Elisabeth Schanke.
Nyheter PST mener russiske militær-hackere sto bak angrepet mot Stortinget https://www.vg.no/nyheter/innenriks/i/7KPmyB/pst-mener-russiske-militaer-hackere-sto-bak-angrepet-mot-stortinget https://www.nrk.no/norge/stortinget-ikke-alene_-massivt-hackerangrep-mot-norge-1.15277734 "Important, Spoofing" - zero-click, wormable, cross-platform remote code execution in Microsoft Teams https://www.theregister.com/2020/12/07/microsoft_teams_rce_flaw/ https://github.com/oskarsve/ms-teams-rce Russian State-Sponsored Malicious Cyber Actors Exploit Known Vulnerability in Virtual Workspaces https://twitter.com/NSACyber/status/1335962730323435530 https://www.nsa.gov/News-Features/Feature-Stories/Article-View/Article/2434988/russian-state-sponsored-malicious-cyber-actors-exploit-known-vulnerability-in-v/ https://media.defense.gov/2020/Dec/07/2002547071/-1/-1/0/CSA_VMWARE%20ACCESS_U_OO_195076_20.PDF https://en.wikipedia.org/wiki/Vulnerabilities_Equities_Process FireEye hacket https://www.fireeye.com/blog/products-and-services/2020/12/fireeye-shares-details-of-recent-cyber-attack-actions-to-protect-community.html https://www.fireeye.com/blog/threat-research/2020/12/unauthorized-access-of-fireeye-red-team-tools.html https://github.com/fireeye/red_team_tool_countermeasures/ https://www.cnbc.com/video/2020/12/09/a-former-nsa-hacker-breaks-down-the-fireeye-hack.html Storebrand finner en CVE i Adobe under en CTF under sikkerhetsmåneden 2019 (oktober) https://www.linkedin.com/posts/kennyjansson_adobe-security-bulletin-activity-6742132087480029184-mshQ/ https://helpx.adobe.com/security/products/experience-manager/apsb20-72.html Kontakt oss Har du bidrag eller spørsmål? Kunne tenke deg og være gjest? Send epost til [email protected] eller @ oss på @5h3llcast