June 24th 2022 CTP Week In Review: DFSCoerce, Ransomware in OneDrive & PowerShell Forever
06/28/22 • 15 min
In this week's review:
- New NTLM Relaying Attack via DFSCoerce
- Ransomware Potential for OneDrive & SharePoint Files
- Keeping PowerShell: Security Measures to Use and Embrace
Blog: https://offsec.blog/
Youtube: https://www.youtube.com/channel/UCCWmudG_CTNAFBaV48vIcfw
Twitter: https://twitter.com/cyberthreatpov
Work with Us: https://securit360.com
Blog: https://offsec.blog/
Youtube: https://www.youtube.com/@cyberthreatpov
Twitter: https://x.com/cyberthreatpov
Follow Spencer on social ⬇
Spencer's Links: https://go.spenceralessi.com/mylinks
Work with Us: https://securit360.com
In this week's review:
- New NTLM Relaying Attack via DFSCoerce
- Ransomware Potential for OneDrive & SharePoint Files
- Keeping PowerShell: Security Measures to Use and Embrace
Blog: https://offsec.blog/
Youtube: https://www.youtube.com/channel/UCCWmudG_CTNAFBaV48vIcfw
Twitter: https://twitter.com/cyberthreatpov
Work with Us: https://securit360.com
Blog: https://offsec.blog/
Youtube: https://www.youtube.com/@cyberthreatpov
Twitter: https://x.com/cyberthreatpov
Follow Spencer on social ⬇
Spencer's Links: https://go.spenceralessi.com/mylinks
Work with Us: https://securit360.com
Previous Episode
June 17th 2022 CTP Week In Review: BlackCat - LockBit 2.0 - Saitama DNS Tunneling - Exposed Travis CI Logs
In this week's review:
- The rise of BlackCat (ALPHV) ransomware
- LockBit 2.0: How This RaaS Operates and How to Protect Against It
- Translating Saitama's DNS tunneling messages - SANS Internet Storm Center
- Public Travis CI Logs (Still) Expose Users to Cyber Attacks
Blog: https://offsec.blog/
Youtube: https://www.youtube.com/channel/UCCWmudG_CTNAFBaV48vIcfw
Twitter: https://twitter.com/cyberthreatpov
Work with Us: https://securit360.com
Blog: https://offsec.blog/
Youtube: https://www.youtube.com/@cyberthreatpov
Twitter: https://x.com/cyberthreatpov
Follow Spencer on social ⬇
Spencer's Links: https://go.spenceralessi.com/mylinks
Work with Us: https://securit360.com
Next Episode
July 1st 2022 CTP Week in Review: LNK Malware - LockBit 3.0 Bug Bounty - PwnKit Exploitation In The Wild
In this week's review
- Rise of LNK (Shortcut files) Malware
- LockBit 3.0 Released Now With Bug Bounty Program
- CISA Says PwnKit Exploited in the Wild
Blog: https://offsec.blog/
Youtube: https://www.youtube.com/channel/UCCWmudG_CTNAFBaV48vIcfw
Twitter: https://twitter.com/cyberthreatpov
Work with Us: https://securit360.com
Blog: https://offsec.blog/
Youtube: https://www.youtube.com/@cyberthreatpov
Twitter: https://x.com/cyberthreatpov
Follow Spencer on social ⬇
Spencer's Links: https://go.spenceralessi.com/mylinks
Work with Us: https://securit360.com
If you like this episode you’ll love
Episode Comments
Generate a badge
Get a badge for your website that links back to this episode
<a href="https://goodpods.com/podcasts/the-cyber-threat-perspective-228427/june-24th-2022-ctp-week-in-review-dfscoerce-ransomware-in-onedrive-and-25850849"> <img src="https://storage.googleapis.com/goodpods-images-bucket/badges/generic-badge-1.svg" alt="listen to june 24th 2022 ctp week in review: dfscoerce, ransomware in onedrive & powershell forever on goodpods" style="width: 225px" /> </a>
Copy