Not sure what an iLo is? Then this story is probably not for you – but if you have an HP server that someone looks after for you, then pass this on to them. Over 20 thousand servers have their iLO interfaces exposed to the internet, many with outdated and …
When you have found a “good” thing, why stop?
The log4j vulnerability and it’s associated attack vectors was always going to be major cybersecurity crisis – and of course once the bad actors knew about it they would expand their exploitation. This article on the SANS internet shows how initial attempts to mitigate the log4j issue are now being …
Continue reading “When you have found a “good” thing, why stop?”
Patch Tuesday – get to work…
So yesterday was Patch Tuesday – and we all know what that means. Get the updates and patching done now! Here here are my favourite round-up articles: Microsoft Patch Tuesday – January 2022 – SANS Internet Storm Centre Microsoft starts 2022 with 96 CVEs for Patch Tuesday • The Register …
A specific but large target – but what does it do?
Targeting Chinese speaking people gives you a lot of potential targets but the researcher at SANS was unsure what this malicious does. Malicious Python Script Targeting Chinese People – SANS Internet Storm Center
Hackers reuse code as well
It is a classic move of any developer to reuse code – actually it is a professional move to reuse code that you know works. So it is no surprise that hackers take professional steps to ensure their malware attacks work. Even taking legitimate code from GitHub. Code Reuse In …
