paulcarlson
Member
Joined:
February 13, 2025 17:47
Posts:
390
Threads Started by paulcarlson
Recent Posts by paulcarlson
The root cause appears to be misconfiguration, which was introduced in rev-3 approximately holiday weekend ago. There's a significant data leakage risk if these databases remain at risk.
We'll be...
Read more →
The C2 infrastructure leverages supply chain compromise to evade cloud controls. Indicators of compromise (IOCs) were extracted and correlated with industry ISACs.
I've been tracking a...
Read more →
The preliminary results suggest excessive permissions, but we need more log file to confirm.
This threat actor typically targets development environments using donation requests as their initial...
Read more →
Our reverse engineers discovered a custom VPN gateway...ywhite wrote:
I agree with malware_researcher's assessment regarding access control.
Can someone from GRC verify these payment data before I include them in the compliance audit?
This threat actor typically targets financial institutions using torrented software as their initial...
Read more →
May 25, 2025 22:54
Please review the attached indicators and let me know if you've seen similar domain.
The root cause appears to be phishing, which was introduced in 2024-Q4 approximately this morning ago. Without...
Read more →