English
English Indonesia Türkçe Deutsch Español Português Pусский Français Italiano Nederlands Polski العربية ไทย Tiếng Việt 繁體中文 简体中文 日本語 한국어

#webshells search results

Secu0133's profile picture.
V1rgul3
 @Secu0133
Dec 22, 2019

Once again #Emotet changed their #Webshells, providing minor modifications such as the title (#fsociety), password and comments. Source IP addresses accessing them to update the payloads and grep commands to identify those files have been updated on my Github @Cryptolaemus1

Secu0133's tweet image. Once again #Emotet changed their #Webshells, providing minor modifications such as the title (#fsociety), password and comments. Source IP addresses accessing them to update the payloads and grep commands to identify those files have been updated on my Github @Cryptolaemus1
0
45
98
10
0
JaromirHorejsi's profile picture. malware researcher, reverse engineer, blogger, conference speaker, programmer, IT security professional
JaromirHorejsi
 @JaromirHorejsi
May 17, 2018

#hacked website with #malware and #webshells https://imskolkata.]]]org/journal/journal_doc/

JaromirHorejsi's tweet image. #hacked website with #malware and #webshells https://imskolkata.]]]org/journal/journal_doc/
1
10
12
0
0
1ZRR4H's profile picture. 🏴‍☠️ OFFENSIVE-INTEL 🏴‍☠️ Cyber Threat Intelligence by Hackers | Security Researcher en https://t.co/rDrSxZASB3 | @CuratedIntel Member | 🥷🧠🇨🇱
Germán Fernández
@1ZRR4H
Apr 9, 2021

Banco en Latinoamérica lleva más de 1 mes comprometido vía #ProxyLogon CVE-2021-26855. Es demasiada negligencia! simplemente algunas organizaciones no estan preparadas o no son conscientes del riesgo y la evolución constante de las ciberamenazas, CUIDADO. #backdoors #webshells

1ZRR4H's tweet image. Banco en Latinoamérica lleva más de 1 mes comprometido vía #ProxyLogon CVE-2021-26855. Es demasiada negligencia! simplemente algunas organizaciones no estan preparadas o no son conscientes del riesgo y la evolución constante de las ciberamenazas, CUIDADO. #backdoors #webshells
3
33
56
3
0
luc4m's profile picture. (っ◔◡◔)っ @luc4m@ioc.exchange
lc4m
 @luc4m
Dec 13, 2019

Another CN guy spreading #webshells (49.89.174.53) CC @bad_packets

luc4m's tweet image. Another CN guy spreading #webshells (49.89.174.53) CC @bad_packets
luc4m's tweet image. Another CN guy spreading #webshells (49.89.174.53) CC @bad_packets
0
2
9
1
0
1ZRR4H's profile picture. 🏴‍☠️ OFFENSIVE-INTEL 🏴‍☠️ Cyber Threat Intelligence by Hackers | Security Researcher en https://t.co/rDrSxZASB3 | @CuratedIntel Member | 🥷🧠🇨🇱
Germán Fernández
@1ZRR4H
Feb 18, 2021

Banco Pichincha Hacked ~ Threat Actor: Hotarus Corp #Webshells #DataLeak #Extorsion

1ZRR4H's tweet image. Banco Pichincha Hacked ~ Threat Actor: Hotarus Corp #Webshells #DataLeak #Extorsion
1ZRR4H's tweet image. Banco Pichincha Hacked ~ Threat Actor: Hotarus Corp #Webshells #DataLeak #Extorsion
1ZRR4H's tweet image. Banco Pichincha Hacked ~ Threat Actor: Hotarus Corp #Webshells #DataLeak #Extorsion
1ZRR4H's profile picture. 🏴‍☠️ OFFENSIVE-INTEL 🏴‍☠️ Cyber Threat Intelligence by Hackers | Security Researcher en https://t.co/rDrSxZASB3 | @CuratedIntel Member | 🥷🧠🇨🇱
Germán Fernández
@1ZRR4H
Feb 10, 2021

Los atacantes piden un "rescate" de 30 millones de dolares en Bitcoins en un plazo de 12 días 😵 Aquí la estrategia comunicacional de Banco Pichincha es clave, plan de acción para tranquilidad de sus clientes, IR y obviamente no acceder a la extorsión. #DataLeak #Hacked

1ZRR4H's tweet image. Los atacantes piden un "rescate" de 30 millones de dolares en Bitcoins en un plazo de 12 días 😵 Aquí la estrategia comunicacional de Banco Pichincha es clave, plan de acción para tranquilidad de sus clientes, IR y obviamente no acceder a la extorsión. #DataLeak #Hacked
3
8
17
2
0
3
17
36
5
0
1ZRR4H's profile picture. 🏴‍☠️ OFFENSIVE-INTEL 🏴‍☠️ Cyber Threat Intelligence by Hackers | Security Researcher en https://t.co/rDrSxZASB3 | @CuratedIntel Member | 🥷🧠🇨🇱
Germán Fernández
@1ZRR4H
May 14, 2022

WSO2 - CVE-2022-29464 🚨 Unrestricted File Upload lead to RCE 1ra ronda de explotación inicio el 21 de Abril con la instalación masiva de #webshells como backdoor. Al menos 212 servidores en el mundo ya están comprometidos (última imagen con el TOP 25 servidores por país).

1ZRR4H's tweet image. WSO2 - CVE-2022-29464 🚨 Unrestricted File Upload lead to RCE 1ra ronda de explotación inicio el 21 de Abril con la instalación masiva de #webshells como backdoor. Al menos 212 servidores en el mundo ya están comprometidos (última imagen con el TOP 25 servidores por país).
1ZRR4H's tweet image. WSO2 - CVE-2022-29464 🚨 Unrestricted File Upload lead to RCE 1ra ronda de explotación inicio el 21 de Abril con la instalación masiva de #webshells como backdoor. Al menos 212 servidores en el mundo ya están comprometidos (última imagen con el TOP 25 servidores por país).
1ZRR4H's tweet image. WSO2 - CVE-2022-29464 🚨 Unrestricted File Upload lead to RCE 1ra ronda de explotación inicio el 21 de Abril con la instalación masiva de #webshells como backdoor. Al menos 212 servidores en el mundo ya están comprometidos (última imagen con el TOP 25 servidores por país).
1ZRR4H's tweet image. WSO2 - CVE-2022-29464 🚨 Unrestricted File Upload lead to RCE 1ra ronda de explotación inicio el 21 de Abril con la instalación masiva de #webshells como backdoor. Al menos 212 servidores en el mundo ya están comprometidos (última imagen con el TOP 25 servidores por país).
2
16
49
6
0
L3viGun's profile picture. Build beautiful because The Gospel changes everything. Chief Security // Intelligence Officer @recordedfuture; opinions expressed = solely mine
Levi Gundert
@L3viGun
May 13, 2019

In my experience #webshells are the most overlooked risk topic in the #CISO community. Being that #SharePoint is beloved by enterprises, this #CVE 2019-0604 is a great opportunity to explain adversary web shell placement and usage tactics. #vulnerabilities @RecordedFuture

L3viGun's tweet image. In my experience #webshells are the most overlooked risk topic in the #CISO community. Being that #SharePoint is beloved by enterprises, this #CVE 2019-0604 is a great opportunity to explain adversary web shell placement and usage tactics. #vulnerabilities @RecordedFuture
L3viGun's tweet image. In my experience #webshells are the most overlooked risk topic in the #CISO community. Being that #SharePoint is beloved by enterprises, this #CVE 2019-0604 is a great opportunity to explain adversary web shell placement and usage tactics. #vulnerabilities @RecordedFuture
L3viGun's tweet image. In my experience #webshells are the most overlooked risk topic in the #CISO community. Being that #SharePoint is beloved by enterprises, this #CVE 2019-0604 is a great opportunity to explain adversary web shell placement and usage tactics. #vulnerabilities @RecordedFuture
1
5
16
0
0
sicehice's profile picture. Follow us for IP address OSINT, threat data aggregation, bulk IP lookups, free API access and more - https://t.co/FdwKUSr0a0
sicehice
 @sicehice
Dec 26

#opendir hosting #CobaltStrike #webshells and #shellcode loader 152.32.170.129 🇭🇰 121.exe and 12.exe (both CobaltStrike) connect to 152.42.226.16 🇸🇬 for C2 Interesting payload hosted in Sqlite database (also CobaltStrike)

sicehice's tweet image. #opendir hosting #CobaltStrike #webshells and #shellcode loader 152.32.170.129 🇭🇰 121.exe and 12.exe (both CobaltStrike) connect to 152.42.226.16 🇸🇬 for C2 Interesting payload hosted in Sqlite database (also CobaltStrike)
sicehice's tweet image. #opendir hosting #CobaltStrike #webshells and #shellcode loader 152.32.170.129 🇭🇰 121.exe and 12.exe (both CobaltStrike) connect to 152.42.226.16 🇸🇬 for C2 Interesting payload hosted in Sqlite database (also CobaltStrike)
sicehice's tweet image. #opendir hosting #CobaltStrike #webshells and #shellcode loader 152.32.170.129 🇭🇰 121.exe and 12.exe (both CobaltStrike) connect to 152.42.226.16 🇸🇬 for C2 Interesting payload hosted in Sqlite database (also CobaltStrike)
1
12
71
21
6K
Jouliok's profile picture. IR - RE
Joul Kouchakji
 @Jouliok
Jun 18, 2019

#phishing #webshells //milangroupinternational[.]com/wp-content/uploads/ Phishing using Excel sheet login and another for DHL @DHLUS @PhishKitTracker @PhishingAi @ActorExpose @dave_daves @Spam404Online

Jouliok's tweet image. #phishing #webshells //milangroupinternational[.]com/wp-content/uploads/ Phishing using Excel sheet login and another for DHL @DHLUS @PhishKitTracker @PhishingAi @ActorExpose @dave_daves @Spam404Online
Jouliok's tweet image. #phishing #webshells //milangroupinternational[.]com/wp-content/uploads/ Phishing using Excel sheet login and another for DHL @DHLUS @PhishKitTracker @PhishingAi @ActorExpose @dave_daves @Spam404Online
Jouliok's tweet image. #phishing #webshells //milangroupinternational[.]com/wp-content/uploads/ Phishing using Excel sheet login and another for DHL @DHLUS @PhishKitTracker @PhishingAi @ActorExpose @dave_daves @Spam404Online
Jouliok's tweet image. #phishing #webshells //milangroupinternational[.]com/wp-content/uploads/ Phishing using Excel sheet login and another for DHL @DHLUS @PhishKitTracker @PhishingAi @ActorExpose @dave_daves @Spam404Online
1
5
11
1
0
cyb3rops's profile picture. Head of Research @nextronsystems #DFIR #YARA #Sigma | detection engineer | creator of @thor_scanner, Aurora, Sigma, LOKI, YARA-Forge | always busy ⌚️🐇 | vi/vim
Florian Roth ⚡️
@cyb3rops
Oct 26, 2019

It may be hard to detect #Webshells in your Sandbox 🙃 But there's a generic way to detect webshells w/ Sigma rules that trigger on susp parent->child process relations @FireEye example China Chopper fireeye.com/blog/threat-re… Rules github.com/Neo23x0/sigma/… github.com/Neo23x0/sigma/…

cyb3rops's tweet image. It may be hard to detect #Webshells in your Sandbox 🙃 But there's a generic way to detect webshells w/ Sigma rules that trigger on susp parent->child process relations @FireEye example China Chopper fireeye.com/blog/threat-re… Rules github.com/Neo23x0/sigma/… github.com/Neo23x0/sigma/…
cyb3rops's tweet image. It may be hard to detect #Webshells in your Sandbox 🙃 But there's a generic way to detect webshells w/ Sigma rules that trigger on susp parent->child process relations @FireEye example China Chopper fireeye.com/blog/threat-re… Rules github.com/Neo23x0/sigma/… github.com/Neo23x0/sigma/…
cyb3rops's tweet image. It may be hard to detect #Webshells in your Sandbox 🙃 But there's a generic way to detect webshells w/ Sigma rules that trigger on susp parent->child process relations @FireEye example China Chopper fireeye.com/blog/threat-re… Rules github.com/Neo23x0/sigma/… github.com/Neo23x0/sigma/…
1
73
200
24
0
1ZRR4H's profile picture. 🏴‍☠️ OFFENSIVE-INTEL 🏴‍☠️ Cyber Threat Intelligence by Hackers | Security Researcher en https://t.co/rDrSxZASB3 | @CuratedIntel Member | 🥷🧠🇨🇱
Germán Fernández
@1ZRR4H
Oct 14, 2021

#Webshells Providers 🕸️ CMS exploiter bot, +30 Wordpress/others vulns. ~ #TR #Qakbot #SquirrelWaffle 🤭

0
13
20
1
0
cyberfeeddigest's profile picture. I deliver daily #DarkWeb ,#DeepWeb and #CTI feeds,and a bit of geopolitical clashes #Darkweb #Deepweb #Ransomware #Malware #Databreach #CTI #ThreatIntel
darkweb-deepwebfeed
 @cyberfeeddigest
Sep 2

🔎 Tracking #WebShells in the Wild! 🔎 A list of known #Webshells actively leveraged by #cybercriminals. 📂 Valuable reference for #CyberSecurity researchers & defenders. ➡️ hxxps://gist.github[.]com/sbnsec/352128ea5bd8c95f48d748d5f25e3639 #ThreatIntel #Infosec

cyberfeeddigest's tweet image. 🔎 Tracking #WebShells in the Wild! 🔎 A list of known #Webshells actively leveraged by #cybercriminals. 📂 Valuable reference for #CyberSecurity researchers & defenders. ➡️ hxxps://gist.github[.]com/sbnsec/352128ea5bd8c95f48d748d5f25e3639 #ThreatIntel #Infosec
1
1
14
15
2K
1ZRR4H's profile picture. 🏴‍☠️ OFFENSIVE-INTEL 🏴‍☠️ Cyber Threat Intelligence by Hackers | Security Researcher en https://t.co/rDrSxZASB3 | @CuratedIntel Member | 🥷🧠🇨🇱
Germán Fernández
@1ZRR4H
Nov 6, 2021

🚨 Sitios del gobierno mexicano 🇲🇽 comprometidos vía #ProxyShell [2021-11-06 - LIVE #Webshells] El sitio de la Secretaría de Seguridad del Estado fue reportado hace 77 días atrás. 💡 Exploit ha sido utilizado por Conti, LockFile y Babuk #Ransomware REF: bleepingcomputer.com/news/security/…

1ZRR4H's tweet image. 🚨 Sitios del gobierno mexicano 🇲🇽 comprometidos vía #ProxyShell [2021-11-06 - LIVE #Webshells] El sitio de la Secretaría de Seguridad del Estado fue reportado hace 77 días atrás. 💡 Exploit ha sido utilizado por Conti, LockFile y Babuk #Ransomware REF: bleepingcomputer.com/news/security/…
1ZRR4H's tweet image. 🚨 Sitios del gobierno mexicano 🇲🇽 comprometidos vía #ProxyShell [2021-11-06 - LIVE #Webshells] El sitio de la Secretaría de Seguridad del Estado fue reportado hace 77 días atrás. 💡 Exploit ha sido utilizado por Conti, LockFile y Babuk #Ransomware REF: bleepingcomputer.com/news/security/…
2
26
38
1
0
cyberfeeddigest's profile picture. I deliver daily #DarkWeb ,#DeepWeb and #CTI feeds,and a bit of geopolitical clashes #Darkweb #Deepweb #Ransomware #Malware #Databreach #CTI #ThreatIntel
darkweb-deepwebfeed
 @cyberfeeddigest
Sep 2

🔎 Tracking #WebShells in the Wild! 🔎 A list of known #Webshells actively leveraged by #cybercriminals. 📂 Valuable reference for #CyberSecurity researchers & defenders. ➡️ hxxps://gist.github[.]com/sbnsec/352128ea5bd8c95f48d748d5f25e3639 #ThreatIntel #Infosec

cyberfeeddigest's tweet image. 🔎 Tracking #WebShells in the Wild! 🔎 A list of known #Webshells actively leveraged by #cybercriminals. 📂 Valuable reference for #CyberSecurity researchers & defenders. ➡️ hxxps://gist.github[.]com/sbnsec/352128ea5bd8c95f48d748d5f25e3639 #ThreatIntel #Infosec
1
1
14
15
2K
TweetThreatNews's profile picture. 🔍 ThreatResearch 📰 CybersecurityNews 🖥️ RansomMonitor 📂 Cyber Attack 📂 Data Breach 🎥 Youtube
Cybersecurity News Everyday
 @TweetThreatNews
Aug 30

A misconfigured public PHP upload page on a Linux server allowed upload of obfuscated web shells and mailer scripts. Missing EDR, unpatched CVEs, and poor logging hindered detection. #WebShells #UploadSecurity #Varonis ift.tt/iKz7nAZ

0
0
0
0
108
TweetThreatNews's profile picture. 🔍 ThreatResearch 📰 CybersecurityNews 🖥️ RansomMonitor 📂 Cyber Attack 📂 Data Breach 🎥 Youtube
Cybersecurity News Everyday
 @TweetThreatNews
Aug 15

Chinese-speaking APT group UAT-7237 targets Taiwan’s web servers using custom open-source tools like SoundBill, JuicyPotato, and Mimikatz to exploit vulnerabilities and maintain persistence via RDP and VPN. #UAT7237 #Taiwan #WebShells ift.tt/Ln18SG2

TweetThreatNews's tweet card. A Chinese-speaking APT group, tracked as UAT-7237, is actively targeting Taiwan's web infrastructure using customized open-source tools and sophisticated persistence techniques. Their attacks involve...
Taiwan Web Servers Breached by UAT-7237 Using Customized Open-Source Hacking Tools
Source: hendryadrian.com
0
1
0
0
150
CyberHub_blog's profile picture. https://t.co/Sl6uu99OD0 – Automated cybersecurity intelligence → News, podcast, subreddit, ctf, cve and yt video summaries with Mistral AI
CyberHub
 @CyberHub_blog
Jul 30

📌 Webshells evade detection with strong features and encryption. These malicious scripts allow unauthorized remote access to web servers. #CyberSecurity #Webshells tinyurl.com/2bbw35x9

CyberHub_blog's tweet image. 📌 Webshells evade detection with strong features and encryption. These malicious scripts allow unauthorized remote access to web servers. #CyberSecurity #Webshells tinyurl.com/2bbw35x9
0
0
0
0
10
govdatahosting's profile picture.
govdatahosting
 @govdatahosting
Jul 14

Malicious web shells pose a persistent threat, exploiting server vulnerabilities for unauthorized access. A zero-trust environment and tools like file integrity monitoring are critical in detecting and mitigating these threats. #Cybersecurity #WebShells fedtechmagazine.com/article/2024/0…

fedtechmagazine.com

How to Detect and Remove Threatening Web Shells

Secretly planted scripts allow entry to malicious actors at a later date. Here’s how to detect and remove them.

Source: fedtechmagazine.com
0
0
0
0
7
rkx73's profile picture. #OSINT #ComputerForensics #Cyberintelligence #Cybersecurity You will never be alone
rkx7
 @rkx73
Apr 30

#Wshlient A Simple Tool To Interact With #WebShells And Command Injection Vulnerabilities kitploit.com/2025/04/wshlie…

0
1
0
0
123
TweetThreatNews's profile picture. 🔍 ThreatResearch 📰 CybersecurityNews 🖥️ RansomMonitor 📂 Cyber Attack 📂 Data Breach 🎥 Youtube
Cybersecurity News Everyday
 @TweetThreatNews
Apr 25

A new critical vulnerability in SAP NetWeaver (CVE-2025-31324) allows threat actors to upload JSP web shells, risking unauthorized access to systems, especially in government and enterprise sectors. 🚨 #SAPSecurity #WebShells #USA link: ift.tt/s6Gt8m1

TweetThreatNews's tweet image. A new critical vulnerability in SAP NetWeaver (CVE-2025-31324) allows threat actors to upload JSP web shells, risking unauthorized access to systems, especially in government and enterprise sectors. 🚨 #SAPSecurity #WebShells #USA link: ift.tt/s6Gt8m1
0
0
1
0
187
ShanHolo's profile picture. Another blue team member…..#CSIRT #DFIR #Malware #4n6 #ThreatIntel and following the white rabbit...
Shanholo
 @ShanHolo
Apr 25

Similar #Webshells found with 0 Detection ratio ☣️47e3a2efc95263265df226fc6c7b50d4 ☣️92d50706e8d050aa9ff372fdf51883d7 ☣️7abe3fcbdb64af014228bf1f76fa5cc0 ☣️b7b1e65123d3cb6cc105204fa2ee7118

ShanHolo's tweet image. Similar #Webshells found with 0 Detection ratio ☣️47e3a2efc95263265df226fc6c7b50d4 ☣️92d50706e8d050aa9ff372fdf51883d7 ☣️7abe3fcbdb64af014228bf1f76fa5cc0 ☣️b7b1e65123d3cb6cc105204fa2ee7118
ShanHolo's tweet image. Similar #Webshells found with 0 Detection ratio ☣️47e3a2efc95263265df226fc6c7b50d4 ☣️92d50706e8d050aa9ff372fdf51883d7 ☣️7abe3fcbdb64af014228bf1f76fa5cc0 ☣️b7b1e65123d3cb6cc105204fa2ee7118
1
0
1
0
265
cyberfeeddigest's profile picture. I deliver daily #DarkWeb ,#DeepWeb and #CTI feeds,and a bit of geopolitical clashes #Darkweb #Deepweb #Ransomware #Malware #Databreach #CTI #ThreatIntel
darkweb-deepwebfeed
 @cyberfeeddigest
Mar 30

🚨 #Opendir Alert: Potential #Webshells Exposed! 🚨 🔹 Examples: b374k.txt, c99.php, c99shell.php, neoz.php, r57.txt, phpshell.rar 🔹 Link: server[.]xcode[.]co[.]id/files/phpshell/ 🔹 Warning: Handle with caution—potential webshells! 🔹 Good Source for: #Malware analysts &…

cyberfeeddigest's tweet image. 🚨 #Opendir Alert: Potential #Webshells Exposed! 🚨 🔹 Examples: b374k.txt, c99.php, c99shell.php, neoz.php, r57.txt, phpshell.rar 🔹 Link: server[.]xcode[.]co[.]id/files/phpshell/ 🔹 Warning: Handle with caution—potential webshells! 🔹 Good Source for: #Malware analysts &…
2
0
5
0
740
TweetThreatNews's profile picture. 🔍 ThreatResearch 📰 CybersecurityNews 🖥️ RansomMonitor 📂 Cyber Attack 📂 Data Breach 🎥 Youtube
Cybersecurity News Everyday
 @TweetThreatNews
Mar 25

A sophisticated cyberattack by the China-linked group Weaver Ant targeted a major Asian telecom, employing advanced web shell techniques for persistent access and evasion. 🕵️‍♂️🔒 #China #CyberEspionage #WebShells link: ift.tt/tCTbZia

TweetThreatNews's tweet image. A sophisticated cyberattack by the China-linked group Weaver Ant targeted a major Asian telecom, employing advanced web shell techniques for persistent access and evasion. 🕵️‍♂️🔒 #China #CyberEspionage #WebShells link: ift.tt/tCTbZia
0
0
1
0
128
TweetThreatNews's profile picture. 🔍 ThreatResearch 📰 CybersecurityNews 🖥️ RansomMonitor 📂 Cyber Attack 📂 Data Breach 🎥 Youtube
Cybersecurity News Everyday
 @TweetThreatNews
Mar 14

The Lazarus Group has breached IIS web servers, deploying web shells and advanced tactics for a multi-stage attack, including LazarLoader malware and obfuscation techniques. 🚨 #LazarusGroup #NorthKorea #WebShells link: ift.tt/JFRVjBr

TweetThreatNews's tweet image. The Lazarus Group has breached IIS web servers, deploying web shells and advanced tactics for a multi-stage attack, including LazarLoader malware and obfuscation techniques. 🚨 #LazarusGroup #NorthKorea #WebShells link: ift.tt/JFRVjBr
0
0
1
1
71
BizTechMagazine's profile picture. BizTech explores technology topics and issues that businesses face. // Sponsored by @CDWCorp // Sign up for timely insights, free! https://t.co/AizGMftOc5
BizTech Magazine
 @BizTechMagazine
Feb 19

Malicious actors plant #WebShells in networks to create access points for later use. Here’s how to guard against it: biztechmagazine.com/article/2025/0…

BizTechMagazine's tweet image. Malicious actors plant #WebShells in networks to create access points for later use. Here’s how to guard against it: biztechmagazine.com/article/2025/0…
0
0
0
0
73
StateTech's profile picture. Building better state and local governments with technology. // Sponsored by CDW•G. // Sign up for timely insights, free! https://t.co/aZ0o1ZdXEq
StateTech Magazine
 @StateTech
Feb 18

.@CISAgov released an emergency directive on #WebShells earlier this year. Here’s what #StateGov and #LocalGov agencies should know: statetechmagazine.com/article/2024/0…

StateTech's tweet image. .@CISAgov released an emergency directive on #WebShells earlier this year. Here’s what #StateGov and #LocalGov agencies should know: statetechmagazine.com/article/2024/0…
0
0
1
0
129
TweetThreatNews's profile picture. 🔍 ThreatResearch 📰 CybersecurityNews 🖥️ RansomMonitor 📂 Cyber Attack 📂 Data Breach 🎥 Youtube
Cybersecurity News Everyday
 @TweetThreatNews
Feb 13

🚨 Chinese hackers exploit critical vulnerabilities in Ivanti CSA 4.6, enabling remote code execution and SQL injection. Persistent webshells hint at sophisticated attack strategies. 📊 #Ivanti #China #Webshells link: ift.tt/3LSthPF

TweetThreatNews's tweet image. 🚨 Chinese hackers exploit critical vulnerabilities in Ivanti CSA 4.6, enabling remote code execution and SQL injection. Persistent webshells hint at sophisticated attack strategies. 📊 #Ivanti #China #Webshells link: ift.tt/3LSthPF
0
0
2
0
101
BizTechMagazine's profile picture. BizTech explores technology topics and issues that businesses face. // Sponsored by @CDWCorp // Sign up for timely insights, free! https://t.co/AizGMftOc5
BizTech Magazine
 @BizTechMagazine
Feb 12

What are malicious #WebShells, and what are the steps you need to take to protect your business from this increasingly popular #cyberattack? biztechmagazine.com/article/2025/0…

BizTechMagazine's tweet image. What are malicious #WebShells, and what are the steps you need to take to protect your business from this increasingly popular #cyberattack? biztechmagazine.com/article/2025/0…
0
0
0
0
86
TweetThreatNews's profile picture. 🔍 ThreatResearch 📰 CybersecurityNews 🖥️ RansomMonitor 📂 Cyber Attack 📂 Data Breach 🎥 Youtube
Cybersecurity News Everyday
 @TweetThreatNews
Feb 10

Exploitation of Ivanti CSA vulnerabilities, notably CVE-2024-8963, has led to widespread webshell deployments across sectors like healthcare and finance. Insightful analysis highlights tactics used by threat actors. 🔍 #Ivanti #Webshells link: ift.tt/HIRoblP

TweetThreatNews's tweet image. Exploitation of Ivanti CSA vulnerabilities, notably CVE-2024-8963, has led to widespread webshell deployments across sectors like healthcare and finance. Insightful analysis highlights tactics used by threat actors. 🔍 #Ivanti #Webshells link: ift.tt/HIRoblP
0
0
0
0
198
cyb3rops's profile picture. Head of Research @nextronsystems #DFIR #YARA #Sigma | detection engineer | creator of @thor_scanner, Aurora, Sigma, LOKI, YARA-Forge | always busy ⌚️🐇 | vi/vim
Florian Roth ⚡️
@cyb3rops
Jan 11, 2016

Web Malware Collection Github Repo #Webshells & Flooder github.com/nikicat/web-ma…

cyb3rops's tweet image. Web Malware Collection Github Repo #Webshells & Flooder github.com/nikicat/web-ma…
0
123
162
2
0
Secu0133's profile picture.
V1rgul3
 @Secu0133
Dec 22, 2019

Once again #Emotet changed their #Webshells, providing minor modifications such as the title (#fsociety), password and comments. Source IP addresses accessing them to update the payloads and grep commands to identify those files have been updated on my Github @Cryptolaemus1

Secu0133's tweet image. Once again #Emotet changed their #Webshells, providing minor modifications such as the title (#fsociety), password and comments. Source IP addresses accessing them to update the payloads and grep commands to identify those files have been updated on my Github @Cryptolaemus1
0
45
98
10
0
JaromirHorejsi's profile picture. malware researcher, reverse engineer, blogger, conference speaker, programmer, IT security professional
JaromirHorejsi
 @JaromirHorejsi
May 17, 2018

#hacked website with #malware and #webshells https://imskolkata.]]]org/journal/journal_doc/

JaromirHorejsi's tweet image. #hacked website with #malware and #webshells https://imskolkata.]]]org/journal/journal_doc/
1
10
12
0
0
1ZRR4H's profile picture. 🏴‍☠️ OFFENSIVE-INTEL 🏴‍☠️ Cyber Threat Intelligence by Hackers | Security Researcher en https://t.co/rDrSxZASB3 | @CuratedIntel Member | 🥷🧠🇨🇱
Germán Fernández
@1ZRR4H
Apr 9, 2021

Banco en Latinoamérica lleva más de 1 mes comprometido vía #ProxyLogon CVE-2021-26855. Es demasiada negligencia! simplemente algunas organizaciones no estan preparadas o no son conscientes del riesgo y la evolución constante de las ciberamenazas, CUIDADO. #backdoors #webshells

1ZRR4H's tweet image. Banco en Latinoamérica lleva más de 1 mes comprometido vía #ProxyLogon CVE-2021-26855. Es demasiada negligencia! simplemente algunas organizaciones no estan preparadas o no son conscientes del riesgo y la evolución constante de las ciberamenazas, CUIDADO. #backdoors #webshells
3
33
56
3
0
ComputerWeekly's profile picture. Talk to the team and read the latest tech news at https://t.co/cEprBX7E7m - Orwell Special Prize winner 2024
ComputerWeekly
 @ComputerWeekly
Oct 12, 2018

Remote access #Trojans (#RATs), #WebShells and #Mimikatz among the top publicly available tools that are used in #CyberAttacks around the world, a five-nation #CyberIntelligence report reveals bit.ly/2NFooUu

ComputerWeekly's tweet image. Remote access #Trojans (#RATs), #WebShells and #Mimikatz among the top publicly available tools that are used in #CyberAttacks around the world, a five-nation #CyberIntelligence report reveals bit.ly/2NFooUu
0
0
1
0
0
1ZRR4H's profile picture. 🏴‍☠️ OFFENSIVE-INTEL 🏴‍☠️ Cyber Threat Intelligence by Hackers | Security Researcher en https://t.co/rDrSxZASB3 | @CuratedIntel Member | 🥷🧠🇨🇱
Germán Fernández
@1ZRR4H
Feb 18, 2021

Banco Pichincha Hacked ~ Threat Actor: Hotarus Corp #Webshells #DataLeak #Extorsion

1ZRR4H's tweet image. Banco Pichincha Hacked ~ Threat Actor: Hotarus Corp #Webshells #DataLeak #Extorsion
1ZRR4H's tweet image. Banco Pichincha Hacked ~ Threat Actor: Hotarus Corp #Webshells #DataLeak #Extorsion
1ZRR4H's tweet image. Banco Pichincha Hacked ~ Threat Actor: Hotarus Corp #Webshells #DataLeak #Extorsion
1ZRR4H's profile picture. 🏴‍☠️ OFFENSIVE-INTEL 🏴‍☠️ Cyber Threat Intelligence by Hackers | Security Researcher en https://t.co/rDrSxZASB3 | @CuratedIntel Member | 🥷🧠🇨🇱
Germán Fernández
@1ZRR4H
Feb 10, 2021

Los atacantes piden un "rescate" de 30 millones de dolares en Bitcoins en un plazo de 12 días 😵 Aquí la estrategia comunicacional de Banco Pichincha es clave, plan de acción para tranquilidad de sus clientes, IR y obviamente no acceder a la extorsión. #DataLeak #Hacked

1ZRR4H's tweet image. Los atacantes piden un "rescate" de 30 millones de dolares en Bitcoins en un plazo de 12 días 😵 Aquí la estrategia comunicacional de Banco Pichincha es clave, plan de acción para tranquilidad de sus clientes, IR y obviamente no acceder a la extorsión. #DataLeak #Hacked
3
8
17
2
0
3
17
36
5
0
1ZRR4H's profile picture. 🏴‍☠️ OFFENSIVE-INTEL 🏴‍☠️ Cyber Threat Intelligence by Hackers | Security Researcher en https://t.co/rDrSxZASB3 | @CuratedIntel Member | 🥷🧠🇨🇱
Germán Fernández
@1ZRR4H
Nov 6, 2021

🚨 Sitios del gobierno mexicano 🇲🇽 comprometidos vía #ProxyShell [2021-11-06 - LIVE #Webshells] El sitio de la Secretaría de Seguridad del Estado fue reportado hace 77 días atrás. 💡 Exploit ha sido utilizado por Conti, LockFile y Babuk #Ransomware REF: bleepingcomputer.com/news/security/…

1ZRR4H's tweet image. 🚨 Sitios del gobierno mexicano 🇲🇽 comprometidos vía #ProxyShell [2021-11-06 - LIVE #Webshells] El sitio de la Secretaría de Seguridad del Estado fue reportado hace 77 días atrás. 💡 Exploit ha sido utilizado por Conti, LockFile y Babuk #Ransomware REF: bleepingcomputer.com/news/security/…
1ZRR4H's tweet image. 🚨 Sitios del gobierno mexicano 🇲🇽 comprometidos vía #ProxyShell [2021-11-06 - LIVE #Webshells] El sitio de la Secretaría de Seguridad del Estado fue reportado hace 77 días atrás. 💡 Exploit ha sido utilizado por Conti, LockFile y Babuk #Ransomware REF: bleepingcomputer.com/news/security/…
2
26
38
1
0
1ZRR4H's profile picture. 🏴‍☠️ OFFENSIVE-INTEL 🏴‍☠️ Cyber Threat Intelligence by Hackers | Security Researcher en https://t.co/rDrSxZASB3 | @CuratedIntel Member | 🥷🧠🇨🇱
Germán Fernández
@1ZRR4H
May 14, 2022

WSO2 - CVE-2022-29464 🚨 Unrestricted File Upload lead to RCE 1ra ronda de explotación inicio el 21 de Abril con la instalación masiva de #webshells como backdoor. Al menos 212 servidores en el mundo ya están comprometidos (última imagen con el TOP 25 servidores por país).

1ZRR4H's tweet image. WSO2 - CVE-2022-29464 🚨 Unrestricted File Upload lead to RCE 1ra ronda de explotación inicio el 21 de Abril con la instalación masiva de #webshells como backdoor. Al menos 212 servidores en el mundo ya están comprometidos (última imagen con el TOP 25 servidores por país).
1ZRR4H's tweet image. WSO2 - CVE-2022-29464 🚨 Unrestricted File Upload lead to RCE 1ra ronda de explotación inicio el 21 de Abril con la instalación masiva de #webshells como backdoor. Al menos 212 servidores en el mundo ya están comprometidos (última imagen con el TOP 25 servidores por país).
1ZRR4H's tweet image. WSO2 - CVE-2022-29464 🚨 Unrestricted File Upload lead to RCE 1ra ronda de explotación inicio el 21 de Abril con la instalación masiva de #webshells como backdoor. Al menos 212 servidores en el mundo ya están comprometidos (última imagen con el TOP 25 servidores por país).
1ZRR4H's tweet image. WSO2 - CVE-2022-29464 🚨 Unrestricted File Upload lead to RCE 1ra ronda de explotación inicio el 21 de Abril con la instalación masiva de #webshells como backdoor. Al menos 212 servidores en el mundo ya están comprometidos (última imagen con el TOP 25 servidores por país).
2
16
49
6
0
luc4m's profile picture. (っ◔◡◔)っ @luc4m@ioc.exchange
lc4m
 @luc4m
Dec 13, 2019

Another CN guy spreading #webshells (49.89.174.53) CC @bad_packets

luc4m's tweet image. Another CN guy spreading #webshells (49.89.174.53) CC @bad_packets
luc4m's tweet image. Another CN guy spreading #webshells (49.89.174.53) CC @bad_packets
0
2
9
1
0
Jouliok's profile picture. IR - RE
Joul Kouchakji
 @Jouliok
Jun 18, 2019

#phishing #webshells //milangroupinternational[.]com/wp-content/uploads/ Phishing using Excel sheet login and another for DHL @DHLUS @PhishKitTracker @PhishingAi @ActorExpose @dave_daves @Spam404Online

Jouliok's tweet image. #phishing #webshells //milangroupinternational[.]com/wp-content/uploads/ Phishing using Excel sheet login and another for DHL @DHLUS @PhishKitTracker @PhishingAi @ActorExpose @dave_daves @Spam404Online
Jouliok's tweet image. #phishing #webshells //milangroupinternational[.]com/wp-content/uploads/ Phishing using Excel sheet login and another for DHL @DHLUS @PhishKitTracker @PhishingAi @ActorExpose @dave_daves @Spam404Online
Jouliok's tweet image. #phishing #webshells //milangroupinternational[.]com/wp-content/uploads/ Phishing using Excel sheet login and another for DHL @DHLUS @PhishKitTracker @PhishingAi @ActorExpose @dave_daves @Spam404Online
Jouliok's tweet image. #phishing #webshells //milangroupinternational[.]com/wp-content/uploads/ Phishing using Excel sheet login and another for DHL @DHLUS @PhishKitTracker @PhishingAi @ActorExpose @dave_daves @Spam404Online
1
5
11
1
0
1ZRR4H's profile picture. 🏴‍☠️ OFFENSIVE-INTEL 🏴‍☠️ Cyber Threat Intelligence by Hackers | Security Researcher en https://t.co/rDrSxZASB3 | @CuratedIntel Member | 🥷🧠🇨🇱
Germán Fernández
@1ZRR4H
Jan 20, 2021

Malware en sitio ganar-dinero-hoy.com Listado de subdominios comprometidos + nombres de Webshell's para los diccionarios ;) -> pastebin.com/RpSeuTvB cc: @0x5061746f #opendir #webshells #malware #payloads

1ZRR4H's tweet image. Malware en sitio ganar-dinero-hoy.com Listado de subdominios comprometidos + nombres de Webshell's para los diccionarios ;) -> pastebin.com/RpSeuTvB cc: @0x5061746f #opendir #webshells #malware #payloads
1ZRR4H's tweet image. Malware en sitio ganar-dinero-hoy.com Listado de subdominios comprometidos + nombres de Webshell's para los diccionarios ;) -> pastebin.com/RpSeuTvB cc: @0x5061746f #opendir #webshells #malware #payloads
1
11
14
0
0
jstrosch's profile picture. Reverse engineer and content creater | 😱 1M+ views on YT | 🎙️ Host of Behind the Binary podcast 👇
Josh Stroschein | The Cyber Yeti
@jstrosch
Jun 19, 2020

#opendir open #webshells #mailers #phishing @netflix hxxp://laravel.rfinderpro.[net]/vendor/phpunit/phpunit/src/Util/PHP/ @James_inthe_box

jstrosch's tweet image. #opendir open #webshells #mailers #phishing @netflix hxxp://laravel.rfinderpro.[net]/vendor/phpunit/phpunit/src/Util/PHP/ @James_inthe_box
jstrosch's tweet image. #opendir open #webshells #mailers #phishing @netflix hxxp://laravel.rfinderpro.[net]/vendor/phpunit/phpunit/src/Util/PHP/ @James_inthe_box
jstrosch's tweet image. #opendir open #webshells #mailers #phishing @netflix hxxp://laravel.rfinderpro.[net]/vendor/phpunit/phpunit/src/Util/PHP/ @James_inthe_box
1
1
7
0
0
L3viGun's profile picture. Build beautiful because The Gospel changes everything. Chief Security // Intelligence Officer @recordedfuture; opinions expressed = solely mine
Levi Gundert
@L3viGun
May 13, 2019

In my experience #webshells are the most overlooked risk topic in the #CISO community. Being that #SharePoint is beloved by enterprises, this #CVE 2019-0604 is a great opportunity to explain adversary web shell placement and usage tactics. #vulnerabilities @RecordedFuture

L3viGun's tweet image. In my experience #webshells are the most overlooked risk topic in the #CISO community. Being that #SharePoint is beloved by enterprises, this #CVE 2019-0604 is a great opportunity to explain adversary web shell placement and usage tactics. #vulnerabilities @RecordedFuture
L3viGun's tweet image. In my experience #webshells are the most overlooked risk topic in the #CISO community. Being that #SharePoint is beloved by enterprises, this #CVE 2019-0604 is a great opportunity to explain adversary web shell placement and usage tactics. #vulnerabilities @RecordedFuture
L3viGun's tweet image. In my experience #webshells are the most overlooked risk topic in the #CISO community. Being that #SharePoint is beloved by enterprises, this #CVE 2019-0604 is a great opportunity to explain adversary web shell placement and usage tactics. #vulnerabilities @RecordedFuture
1
5
16
0
0

Something went wrong.


Something went wrong.


United States Trends