Daily NCSC-FI news followup 2020-10-11

Settings That Impact The Windows OS

windowsir.blogspot.com/2020/10/settings-that-impact-windows-os.html There are a number of settings within Windows systems that can and do significantly impact the functionality of Windows, and as a result, can also impact what is available to a DFIR analyst. These settings very often manifest as modifications to Registry keys or values. These settings also make excellent targets for threat hunting, as well.

Kud I Enter Your Server? New Vulnerabilities in Microsoft Azure

www.intezer.com/blog/cloud-security/kud-i-enter-your-server-new-vulnerabilities-in-microsoft-azure/ We discovered two vulnerabilities in Microsoft Azure. They existed in a popular cloud service called Azure App Services – specifically impacting Linux servers – and should be on the radar of enterprise organizations that use cloud resources. The first vulnerability enabled an attacker with access to the server to take over the App Service’s git repository and implant phishing pages accessible through the Azure Portal. The second vulnerability allowed an attacker with an existing low-severity vulnerability on the application (SSRF) to upgrade to full code execution on the App Service and trigger the first vulnerability.

The most common malicious email attachments infecting Windows

www.bleepingcomputer.com/news/security/the-most-common-malicious-email-attachments-infecting-windows/

This week in forensics – week 41/2020

thisweekin4n6.com/2020/10/11/week-41-2020/

Sveriges Radio hackade på Twitter

www.svt.se/nyheter/inrikes/sveriges-radio-hackade-pa-twitter Flera av Sveriges Radios konton på Twitter har hackats — ett antal märkliga och obscena inlägg postades under lördagen. Nu har Twitterkontona SR Ekot och SR Politik stängts ner.

Leave a Reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.