In this episode, we discuss Cloudflare IP's being banned in Austria due to overzealous Copyright enforcement, how attackers are moving off of Cobalt Strike as it's getting too well known, and finally Stego! Yes, that's right, all of that CTF experience in stegonagraphy will finally come in handy! Attackers were spotted downloading malware hidden in the cert of a JPG.
Article 1 - Pirate sites ban in Austria took down Cloudflare CDNs by mistake
Supporting Links:
How content delivery networks (CDNs) work
Wahrnehmung von Leistungsschutzrechten GmbH - Informationen
Article 2 - Cybercrime Groups Increasingly Adopting Sliver Command-and-Control Framework
Supporting Links:
A How-To Guide for Using Sliver
Article 3 - James Webb telescope images used to hide malware
Supporting Links:
How to monitor/detect Microsoft Office macro execution?
Command line process auditing
If you found this interesting or useful, please follow us on Twitter @serengetisec and subscribe and review on your favorite podcast app!
In this episode, we reviewed some recent news articles that caught our eye, including how to choose your MSP, will the UK ban default...
In this episode, we discuss a study done on the changes in timeline of ransomware actions from 2019 to 2021, including some enviable metrics...
In this episode, we spend way too much time discussing a specious article about how state sanctioned criminals don't actually present any unique methods...
