Cobalt Strike via MSBuild; H2 JNDI Vuln; Trojanized dnSpy; Fin7 BadUSB
If you are not able to play the podcast using the player below: Use this direct link to the audio file: https://traffic.libsyn.com/securitypodcast/7828.mp3
My Next Class
Application Security: Securing Web Apps, APIs, and Microservices | Tokyo | Aug 29th - Sep 3rd 2022 |
Application Security: Securing Web Apps, APIs, and Microservices | Online | Japan Standard Time | Aug 29th - Sep 3rd 2022 |
Extracting Cobalt Strike Beacons from MSBuild Scripts
https://isc.sans.edu/forums/diary/Extracting+Cobalt+Strike+Beacons+from+MSBuild+Scripts/28200/
The JNDI Strikes Back: Unauthenticated RCE in H2 Database Console
https://jfrog.com/blog/the-jndi-strikes-back-unauthenticated-rce-in-h2-database-console/
Trojanized dnSpy app drops malware cocktail
https://www.bleepingcomputer.com/news/security/trojanized-dnspy-app-drops-malware-cocktail-on-researchers-devs/
FIN7 Attackers Sending Malicious USB Sticks
https://www.bleepingcomputer.com/news/security/fbi-hackers-use-badusb-to-target-defense-firms-with-ransomware/
https://isc.sans.edu/forums/diary/Extracting+Cobalt+Strike+Beacons+from+MSBuild+Scripts/28200/
The JNDI Strikes Back: Unauthenticated RCE in H2 Database Console
https://jfrog.com/blog/the-jndi-strikes-back-unauthenticated-rce-in-h2-database-console/
Trojanized dnSpy app drops malware cocktail
https://www.bleepingcomputer.com/news/security/trojanized-dnspy-app-drops-malware-cocktail-on-researchers-devs/
FIN7 Attackers Sending Malicious USB Sticks
https://www.bleepingcomputer.com/news/security/fbi-hackers-use-badusb-to-target-defense-firms-with-ransomware/
Discussion
New Discussions closed for all Podcasts older than two(2) weeks
Please send your comments to our Contact Form
Application Security: Securing Web Apps, APIs, and Microservices | Tokyo | Aug 29th - Sep 3rd 2022 |
Application Security: Securing Web Apps, APIs, and Microservices | Online | Japan Standard Time | Aug 29th - Sep 3rd 2022 |
Intrusion Detection In-Depth | Riyadh | Oct 8th - Oct 13th 2022 |
Intrusion Detection In-Depth | Online | Arabian Standard Time | Oct 8th - Oct 13th 2022 |
Application Security: Securing Web Apps, APIs, and Microservices | San Francisco | Dec 5th - Dec 10th 2022 |
Application Security: Securing Web Apps, APIs, and Microservices | Online | US Pacific | Dec 5th - Dec 10th 2022 |
Intrusion Detection In-Depth | Online | Central European Time | Jan 30th - Feb 4th 2023 |