English
English Indonesia Türkçe Deutsch Español Português Pусский Français Italiano Nederlands Polski العربية ไทย Tiếng Việt 繁體中文 简体中文 日本語 한국어

#proxynotshell search results

h4x0r_dz's profile picture. Uber Driver
H4x0r.DZ 🇰🇵
@h4x0r_dz
Nov 4, 2022

CVE-2022-41040 & CVE-2022-41082 #proxynotshell

h4x0r_dz's tweet image. CVE-2022-41040 & CVE-2022-41082 #proxynotshell
8
64
267
69
0
1ZRR4H's profile picture. 🏴‍☠️ OFFENSIVE-INTEL 🏴‍☠️ Cyber Threat Intelligence by Hackers | Security Researcher en https://t.co/rDrSxZASB3 | @CuratedIntel Member | 🥷🧠🇨🇱
Germán Fernández
@1ZRR4H
Oct 2, 2022

I wrote a quick Nmap script to scan for servers potentially vulnerable to #ProxyNotShell (based on Microsoft's recommended URL blocking rule) I hope it can be useful for someone :) [+] github.com/CronUp/Vulnera… #0day CVE-2022-40140 CVE-2022-41082

1ZRR4H's tweet image. I wrote a quick Nmap script to scan for servers potentially vulnerable to #ProxyNotShell (based on Microsoft's recommended URL blocking rule) I hope it can be useful for someone :) [+] github.com/CronUp/Vulnera… #0day CVE-2022-40140 CVE-2022-41082
23
550
2K
451
0
unit42_jp's profile picture. パロアルトネットワークス(@PaloAltoNtwksJP) のスレットインテリジェンス & セキュリティコンサルティングチーム Unit 42 から最新のリサーチレポートとニュースをお伝えします。
Unit 42 Japan
 @unit42_jp
Oct 5, 2022

Microsoft Exchangeサーバーの脆弱性、CVE-2022-41040とCVE-2022-41082(別名 #ProxyNotShell)が開示されました。悪用された場合リモートからのコード実行が可能となります。本稿では推奨事項と緩和策について解説します。 bit.ly/3VeHgOe

unit42_jp's tweet image. Microsoft Exchangeサーバーの脆弱性、CVE-2022-41040とCVE-2022-41082(別名 #ProxyNotShell)が開示されました。悪用された場合リモートからのコード実行が可能となります。本稿では推奨事項と緩和策について解説します。 bit.ly/3VeHgOe
1
5
12
2
0
UnaPibaGeek's profile picture. I break stuff ∞ Review board @BlackHatEvents USA
Sheila A. Berta
 @UnaPibaGeek
Oct 11, 2022

I'm very late to the party... just having a bit of fun with the #proxynotshell thing, I created this Nuclei template that worked for me to check potentially vulnerable Exchanges. It has the latest mitigation bypass '%40owershell'.

UnaPibaGeek's tweet image. I'm very late to the party... just having a bit of fun with the #proxynotshell thing, I created this Nuclei template that worked for me to check potentially vulnerable Exchanges. It has the latest mitigation bypass '%40owershell'.
8
33
128
34
0
1ZRR4H's profile picture. 🏴‍☠️ OFFENSIVE-INTEL 🏴‍☠️ Cyber Threat Intelligence by Hackers | Security Researcher en https://t.co/rDrSxZASB3 | @CuratedIntel Member | 🥷🧠🇨🇱
Germán Fernández
@1ZRR4H
Oct 7, 2022

#ProxyNotShell vs Double URL encoding. It seems that "{UrlDecode:{REQUEST_URI}}" is not enough either, the server only processes the first encoding 🥹 (must be validated)

1ZRR4H's tweet image. #ProxyNotShell vs Double URL encoding. It seems that "{UrlDecode:{REQUEST_URI}}" is not enough either, the server only processes the first encoding 🥹 (must be validated)
1ZRR4H's tweet image. #ProxyNotShell vs Double URL encoding. It seems that "{UrlDecode:{REQUEST_URI}}" is not enough either, the server only processes the first encoding 🥹 (must be validated)
1ZRR4H's tweet image. #ProxyNotShell vs Double URL encoding. It seems that "{UrlDecode:{REQUEST_URI}}" is not enough either, the server only processes the first encoding 🥹 (must be validated)
4
19
70
7
0
Shadowserver's profile picture. Our mission is to make the Internet more secure by bringing to light vulnerabilities, malicious activity and emerging threats. Join our Alliance!
The Shadowserver Foundation
 @Shadowserver
Dec 26, 2022

We are reporting out Microsoft Exchange servers still likely vulnerable to CVE-2022-41082 #ProxyNotShell. Nearly 70K IPs found without MS patches applied (based on version info). Previously recommended mitigation techniques can be bypassed by attackers shadowserver.org/what-we-do/net…

Shadowserver's tweet image. We are reporting out Microsoft Exchange servers still likely vulnerable to CVE-2022-41082 #ProxyNotShell. Nearly 70K IPs found without MS patches applied (based on version info). Previously recommended mitigation techniques can be bypassed by attackers shadowserver.org/what-we-do/net…
6
111
258
39
119K
TodayCyberNews's profile picture. 🦁 TodayCyberNews 🗞️ - By clicking the Follow button, you start getting daily cyber news updates. #DarkWeb #CVE #BugBounty #Malware #0days #Exploit #CyberWar
Today Cyber News
 @TodayCyberNews
Nov 17, 2022

💣 ProxyNotShell PoC ( 1/2 ) ProxyNotShell this is a new exploit used in the wild takes advantage of the recently published Microsoft Server-Side Request Forgery vulnerability (CVE-2022-41040) #exchange #proxynotshell #ssrf #rce #infosec #bugbounty #cybersecurity #bugbountytip

TodayCyberNews's tweet image. 💣 ProxyNotShell PoC ( 1/2 ) ProxyNotShell this is a new exploit used in the wild takes advantage of the recently published Microsoft Server-Side Request Forgery vulnerability (CVE-2022-41040) #exchange #proxynotshell #ssrf #rce #infosec #bugbounty #cybersecurity #bugbountytip
1
10
28
5
0
TenableSecurity's profile picture. Welcome to Tenable. Your exposure ends here. Cloud Exposure | Vulnerability Exposure | OT Exposure | Identity Exposure
Tenable
 @TenableSecurity
Dec 22, 2022

Tenable researcher Dr. @JessieDax covers the latest exploitation of #ProxyNotShell and how #ransomware groups are using it to launch new attacks. ⬇️

0
1
9
1
2K
Laughing_Mantis's profile picture. 20+ yrs in Infosec. Malware Influencer. I turn Malware into Art and Music. Art @MalwareArt. 4x Pwnie Nominee. 𝕍𝕏. GameDev. Autistic.
Greg Linares (Laughing Mantis)
@Laughing_Mantis
Sep 30, 2022

🔊 Since I have no exchange servers to protect, I converted the IOCs & scripts involved in #ProxyNotShell aka CVE-2022-41040 and CVE-2022-41082 into some boss battle EDM via ASCII to MIDI transcoding. Please enjoy & stay safe out there. Logo by the legend @GossiTheDog

4
27
107
7
0
Purp1eW0lf's profile picture. Hunt & Response Senior Manager @HuntressLabs || "Competition is the law of the jungle, but cooperation is the law of civilisation” - Kropotkin
Dray Agha
 @Purp1eW0lf
Dec 14, 2022

179.60.149.28 - Initial access #ProxyNotShell - Bitsadmin to download tooling (http://179.60.149.28:4427/). - Installed Screen Connect, ID: b81d2f07c9163bf5, URL: instance-cmjrni-relay.screenconnect[.]com - Deployed Mimikatz Crawled and saved their tools, you can access...

Purp1eW0lf's tweet image. 179.60.149.28 - Initial access #ProxyNotShell - Bitsadmin to download tooling (http://179.60.149.28:4427/). - Installed Screen Connect, ID: b81d2f07c9163bf5, URL: instance-cmjrni-relay.screenconnect[.]com - Deployed Mimikatz Crawled and saved their tools, you can access...
Purp1eW0lf's tweet image. 179.60.149.28 - Initial access #ProxyNotShell - Bitsadmin to download tooling (http://179.60.149.28:4427/). - Installed Screen Connect, ID: b81d2f07c9163bf5, URL: instance-cmjrni-relay.screenconnect[.]com - Deployed Mimikatz Crawled and saved their tools, you can access...
Purp1eW0lf's tweet image. 179.60.149.28 - Initial access #ProxyNotShell - Bitsadmin to download tooling (http://179.60.149.28:4427/). - Installed Screen Connect, ID: b81d2f07c9163bf5, URL: instance-cmjrni-relay.screenconnect[.]com - Deployed Mimikatz Crawled and saved their tools, you can access...
8
58
206
54
0
ANCIChile's profile picture. Somos ANCI, un organismo público descentralizado y técnico, que tiene la facultad de fiscalizar, regular y sancionar en materias de ciberseguridad.
Agencia Nacional de Ciberseguridad (ANCI)
 @ANCIChile
Nov 9, 2022

Desde el CSIRT de Gobierno llamamos a implementar las actualizaciones de seguridad entregadas por #Microsoft ayer, que incluyen parches para las vulnerabilidades de #MicrosoftExchange apodadas "#proxynotshell", CVE-2022-41040 y CVE-2022-41082. Detalles en csirt.gob.cl/noticias/10cnd…

ANCIChile's tweet image. Desde el CSIRT de Gobierno llamamos a implementar las actualizaciones de seguridad entregadas por #Microsoft ayer, que incluyen parches para las vulnerabilidades de #MicrosoftExchange apodadas "#proxynotshell", CVE-2022-41040 y CVE-2022-41082. Detalles en csirt.gob.cl/noticias/10cnd…
0
14
14
0
0
Unit42_Intel's profile picture. The latest research and news from Unit 42, the Palo Alto Networks (@paloaltontwks) Threat Intelligence and Security Consulting Team covering incident response.
Unit 42
 @Unit42_Intel
Oct 5, 2022

CVE-2022-41040 and CVE-2022-41082 (aka #ProxyNotShell) can be used for remote code execution. Read our analysis and suggestions for how to mitigate. bit.ly/3yditAg

Unit42_Intel's tweet image. CVE-2022-41040 and CVE-2022-41082 (aka #ProxyNotShell) can be used for remote code execution. Read our analysis and suggestions for how to mitigate. bit.ly/3yditAg
1
22
39
2
0
Raj_Samani's profile picture. Chief Scientist @Rapid7 | @cloudsa | Co-author of @CyberGridBook & CSA Guide to Cloud | Advisor @EC3Europol https://t.co/YpisLrWlVR
Raj Samani
 @Raj_Samani
Oct 4, 2022

"a scammer has begun creating GitHub repositories where they attempt to sell fake proof-of-concept exploits for the Exchange CVE-2022-41040 and CVE-2022-41082 vulnerabilities." bleepingcomputer.com/news/security/… #ProxyNotShell #infosec

Raj_Samani's tweet image. "a scammer has begun creating GitHub repositories where they attempt to sell fake proof-of-concept exploits for the Exchange CVE-2022-41040 and CVE-2022-41082 vulnerabilities." bleepingcomputer.com/news/security/… #ProxyNotShell #infosec
0
6
6
0
0
Cyberknow20's profile picture. Situational Awareness | Threat Intelligence | cybertracker | Hacktivism | Meme Farmer Digital Owl of the Cyber Realm Posts and Opinions are my own
CyberKnow
@Cyberknow20
Oct 3, 2022

A user on XSS is claiming to have a 0day for Microsoft Exchange that is different to the current #ProxyNotShell Could be nothing 🤷‍♂️🤷‍♂️🤷‍♂️ #cybersecurity #infosec #CyberMonday #cyber #Microsoft @GossiTheDog @UK_Daniel_Card

Cyberknow20's tweet image. A user on XSS is claiming to have a 0day for Microsoft Exchange that is different to the current #ProxyNotShell Could be nothing 🤷‍♂️🤷‍♂️🤷‍♂️ #cybersecurity #infosec #CyberMonday #cyber #Microsoft @GossiTheDog @UK_Daniel_Card
Cyberknow20's tweet image. A user on XSS is claiming to have a 0day for Microsoft Exchange that is different to the current #ProxyNotShell Could be nothing 🤷‍♂️🤷‍♂️🤷‍♂️ #cybersecurity #infosec #CyberMonday #cyber #Microsoft @GossiTheDog @UK_Daniel_Card
1
8
17
5
0
Cronup_CyberSec's profile picture. Empresa 🇨🇱 de Ciberseguridad | 🚨 Alerta Temprana de Riesgos | 📡 Monitoreo Continuo de Ciberamenazas | 🎯 Ethical Hacking Profesional | 🛡 Ciberinteligencia
CronUp Ciberseguridad
 @Cronup_CyberSec
Oct 12, 2022

🛡️ La nueva actualización de Microsoft Windows mitiga 84 vulnerabilidades, 13 de ellas clasificadas como críticas ¡Parchea ahora! Más información en nuestro blog: lnkd.in/eNs39GXX #Microsoft #Windows #ProxyNotShell #Actualizaciones #ATRc

Cronup_CyberSec's tweet image. 🛡️ La nueva actualización de Microsoft Windows mitiga 84 vulnerabilidades, 13 de ellas clasificadas como críticas ¡Parchea ahora! Más información en nuestro blog: lnkd.in/eNs39GXX #Microsoft #Windows #ProxyNotShell #Actualizaciones #ATRc
1
5
16
0
0
cyb3rops's profile picture. Head of Research @nextronsystems #DFIR #YARA #Sigma | detection engineer | creator of @thor_scanner, Aurora, Sigma, LOKI, YARA-Forge | always busy ⌚️🐇 | vi/vim
Florian Roth ⚡️
@cyb3rops
Dec 23, 2022

.@nas_bench and I wrote some Sigma and YARA rules to detect the exploitation of #ProxyNotShell using the OWASSRF method reported by @crowdstrike Blog post with links to the rules nextron-systems.com/2022/12/23/ext…

cyb3rops's tweet image. .@nas_bench and I wrote some Sigma and YARA rules to detect the exploitation of #ProxyNotShell using the OWASSRF method reported by @crowdstrike Blog post with links to the rules nextron-systems.com/2022/12/23/ext…
cyb3rops's tweet image. .@nas_bench and I wrote some Sigma and YARA rules to detect the exploitation of #ProxyNotShell using the OWASSRF method reported by @crowdstrike Blog post with links to the rules nextron-systems.com/2022/12/23/ext…
1
36
100
17
20K
ValeryMarchive's profile picture. Rédac' chef @LeMagIT - ministre des #ransomware (proposé) - DM ouverts
Valéry Rieß-Marchive | @valerymarchive.bsky.social
 @ValeryMarchive
Sep 7, 2023

Selon @onyphe, il y avait là, encore hier, un serveur #Exchange dans une version affectée par #ProxyNotShell. C'est surprenant, au demeurant, car le patch pour la CVE-2023-3519 semble avoir été appliqué sous une semaine.

1
1
3
0
515
ValeryMarchive's profile picture. Rédac' chef @LeMagIT - ministre des #ransomware (proposé) - DM ouverts
Valéry Rieß-Marchive | @valerymarchive.bsky.social
 @ValeryMarchive
Jun 22, 2023

Dans un communiqué, @FranceRugby évoque une #cyberattaque limitée à son serveur de messagerie. Une serveur #Exchange qui, selon @onyphe, était encore dans une version concernée par #ProxyNotShell, le 7 juin. Un air déjà-vu après #Play vs @Rackspace fin 2022.

ValeryMarchive's profile picture. Rédac' chef @LeMagIT - ministre des #ransomware (proposé) - DM ouverts
Valéry Rieß-Marchive | @valerymarchive.bsky.social
 @ValeryMarchive
Jun 21, 2023

🚨Le groupe #Play vient de revendiquer une #cyberattaque contre la @FranceRugby cc @ransomwaremap via @AlvieriD 👇lemagit.fr/actualites/366…

ValeryMarchive's tweet card. Une revendication de cyberattaque contre la Fédération Française de Rubgy vient d’être publiée sur le site vitrine de la franchise mafieuse Play, celle-là même qui avait frappé la ville de Lille. L...
Fédération Française de Rugby : la cyberattaque remonte au début du...
Source: lemagit.fr
0
2
3
1
2K
0
3
5
0
816
evk1r0sp3m's profile picture. InfoSec / music / lols
evKIROSpem
 @evk1r0sp3m
Apr 19, 2023

Just been notified that @CorribOilGIR are suffering a ransomware attack by the Play ransomware group. Play have been seen using #ProxyNotShell vulns, credential stuffing and access brokers to gain initial access with valid creds. Sad times. #Ransomware

0
0
0
0
104
DinahRichardso6's profile picture. Kirby and the Forgotten Land Shopping Bag
Dinah Richardson
 @DinahRichardso6
Mar 20, 2023

泛化国家安全概念,滥用国家力量,无理打压别国企业,这就是美国霸权 #ProxyNotShell

DinahRichardso6's tweet image. 泛化国家安全概念,滥用国家力量,无理打压别国企业,这就是美国霸权 #ProxyNotShell
0
0
0
0
64
SophosXOps's profile picture. A task force composed of our SophosLabs, SecOps, and SophosAI teams working together towards one goal: protecting our customers.
Sophos X-Ops
 @SophosXOps
Mar 16, 2023

Ides of March, meet the arghs of December (2022): At the approximate three-month mark for #OWASSRF – aka Son Of #ProxyNotShell -- X-Ops researchers look at how defenders have taken on the fight. news.sophos.com/en-us/2023/03/…

0
1
0
1
1K
aitnews's profile picture. البوابة التقنية .. مصدرك الأول للأخبار التقنية باللغة العربية
البوابة التقنية
@aitnews
Mar 7, 2023

وبحسب الباحثين فإن عدد مجموعات القراصنة يتزايد بسرعات كبيرة، مدعين أنه خلال 2022 ظهر 33 خصمًا جديدًا. وعلاوة على ذلك، لا يزال #القراصنة يستخدمون الثغرات الأمنية المعروفة والأدوات القديمة. ولا تزال ثغرة #Log4Shell تمثل عائقًا كبيرًا بالإضافة إلى ثغرتي #ProxyNotShell و Follina. 6/6

0
0
0
0
490
jais_george's profile picture.
Jais George
 @jais_george
Mar 2, 2023

Nation-state, eCrime and hacktivist threat actors more into data theft and extortion campaigns: Report #Crowdstrike #AdamMeyers #Proxynotshell #Microsoft #Falcon #CloudExploitations #Cyberattacks cio.economictimes.indiatimes.com/news/digital-s…

0
0
0
0
44
AxCom_'s profile picture. En Ax Comunicación somos un equipo multidisciplinar apasionado por transformar la comunicación en un activo estratégico y tangible para tu negocio.
Ax Comunicación
 @AxCom_
Feb 2, 2023

Una investigación de @Bitdefender alerta sobre una nueva ola de ataques que utiliza vulnerabilidades conocidas y cadenas de exploits #ProxyNotShell/OWASSRF para atacar implementaciones locales de #MicrosoftExchange bit.ly/3RnDUH6

0
0
0
0
65
neosec_eu's profile picture. Bedrohungen identifizieren und Risiken Ihres Unternehmens minimieren, Kontinuität schaffen.
Neosec
 @neosec_eu
Feb 1, 2023

#Rackspace hat bekannt gegeben, dass Angreifer bei einem Einbruch auf Kundendaten zugegriffen haben. Der Einbruch fand am 6. Dezember statt. Das Unternehmen ist noch dabei, die Daten der Kunden wiederherzustellen und alle Details des Verstoßes zu untersuchen. #proxynotshell

1
0
0
0
59
No results for "#proxynotshell"
h4x0r_dz's profile picture. Uber Driver
H4x0r.DZ 🇰🇵
@h4x0r_dz
Nov 4, 2022

CVE-2022-41040 & CVE-2022-41082 #proxynotshell

h4x0r_dz's tweet image. CVE-2022-41040 & CVE-2022-41082 #proxynotshell
8
64
267
69
0
1ZRR4H's profile picture. 🏴‍☠️ OFFENSIVE-INTEL 🏴‍☠️ Cyber Threat Intelligence by Hackers | Security Researcher en https://t.co/rDrSxZASB3 | @CuratedIntel Member | 🥷🧠🇨🇱
Germán Fernández
@1ZRR4H
Oct 2, 2022

I wrote a quick Nmap script to scan for servers potentially vulnerable to #ProxyNotShell (based on Microsoft's recommended URL blocking rule) I hope it can be useful for someone :) [+] github.com/CronUp/Vulnera… #0day CVE-2022-40140 CVE-2022-41082

1ZRR4H's tweet image. I wrote a quick Nmap script to scan for servers potentially vulnerable to #ProxyNotShell (based on Microsoft's recommended URL blocking rule) I hope it can be useful for someone :) [+] github.com/CronUp/Vulnera… #0day CVE-2022-40140 CVE-2022-41082
23
550
2K
451
0
unit42_jp's profile picture. パロアルトネットワークス(@PaloAltoNtwksJP) のスレットインテリジェンス & セキュリティコンサルティングチーム Unit 42 から最新のリサーチレポートとニュースをお伝えします。
Unit 42 Japan
 @unit42_jp
Oct 5, 2022

Microsoft Exchangeサーバーの脆弱性、CVE-2022-41040とCVE-2022-41082(別名 #ProxyNotShell)が開示されました。悪用された場合リモートからのコード実行が可能となります。本稿では推奨事項と緩和策について解説します。 bit.ly/3VeHgOe

unit42_jp's tweet image. Microsoft Exchangeサーバーの脆弱性、CVE-2022-41040とCVE-2022-41082(別名 #ProxyNotShell)が開示されました。悪用された場合リモートからのコード実行が可能となります。本稿では推奨事項と緩和策について解説します。 bit.ly/3VeHgOe
1
5
12
2
0
Js_Cod01's profile picture. Self-Learner, Entrepreneur, Tech Enthusiasts, #JavaScript, #CSS, #HTML, #Vue, #Node, #bootstrap, Web Dev, #API, #React. ❤ @elonmusk @jonasschmedtman ❤
JavaScript Professional
 @Js_Cod01
Dec 21, 2022

#Ransomware attackers are using a new exploit called "OWASSRF" to bypass #Microsoft's security measures for the Exchange #ProxyNotShell remote code execution #vulnerability. source: The Hacker News

Js_Cod01's tweet image. #Ransomware attackers are using a new exploit called "OWASSRF" to bypass #Microsoft's security measures for the Exchange #ProxyNotShell remote code execution #vulnerability. source: The Hacker News
Js_Cod01's tweet image. #Ransomware attackers are using a new exploit called "OWASSRF" to bypass #Microsoft's security measures for the Exchange #ProxyNotShell remote code execution #vulnerability. source: The Hacker News
0
1
3
0
207
1ZRR4H's profile picture. 🏴‍☠️ OFFENSIVE-INTEL 🏴‍☠️ Cyber Threat Intelligence by Hackers | Security Researcher en https://t.co/rDrSxZASB3 | @CuratedIntel Member | 🥷🧠🇨🇱
Germán Fernández
@1ZRR4H
Oct 7, 2022

#ProxyNotShell vs Double URL encoding. It seems that "{UrlDecode:{REQUEST_URI}}" is not enough either, the server only processes the first encoding 🥹 (must be validated)

1ZRR4H's tweet image. #ProxyNotShell vs Double URL encoding. It seems that "{UrlDecode:{REQUEST_URI}}" is not enough either, the server only processes the first encoding 🥹 (must be validated)
1ZRR4H's tweet image. #ProxyNotShell vs Double URL encoding. It seems that "{UrlDecode:{REQUEST_URI}}" is not enough either, the server only processes the first encoding 🥹 (must be validated)
1ZRR4H's tweet image. #ProxyNotShell vs Double URL encoding. It seems that "{UrlDecode:{REQUEST_URI}}" is not enough either, the server only processes the first encoding 🥹 (must be validated)
4
19
70
7
0
Shadowserver's profile picture. Our mission is to make the Internet more secure by bringing to light vulnerabilities, malicious activity and emerging threats. Join our Alliance!
The Shadowserver Foundation
 @Shadowserver
Dec 26, 2022

We are reporting out Microsoft Exchange servers still likely vulnerable to CVE-2022-41082 #ProxyNotShell. Nearly 70K IPs found without MS patches applied (based on version info). Previously recommended mitigation techniques can be bypassed by attackers shadowserver.org/what-we-do/net…

Shadowserver's tweet image. We are reporting out Microsoft Exchange servers still likely vulnerable to CVE-2022-41082 #ProxyNotShell. Nearly 70K IPs found without MS patches applied (based on version info). Previously recommended mitigation techniques can be bypassed by attackers shadowserver.org/what-we-do/net…
6
111
258
39
119K
leak_ix's profile picture. Provide comprehensive visibility into internet-facing assets. Looking for vulnerabilities and misconfigurations 24/7 since 2020. https://t.co/MEjkffN1xg
LeakIX
@leak_ix
Oct 3, 2022

A few days in, time to check Proxy(Not)Shell mitigation status ! #ProxyNotShell

leak_ix's tweet image. A few days in, time to check Proxy(Not)Shell mitigation status ! #ProxyNotShell
leak_ix's tweet image. A few days in, time to check Proxy(Not)Shell mitigation status ! #ProxyNotShell
0
1
3
0
0
TodayCyberNews's profile picture. 🦁 TodayCyberNews 🗞️ - By clicking the Follow button, you start getting daily cyber news updates. #DarkWeb #CVE #BugBounty #Malware #0days #Exploit #CyberWar
Today Cyber News
 @TodayCyberNews
Nov 17, 2022

💣 ProxyNotShell PoC ( 1/2 ) ProxyNotShell this is a new exploit used in the wild takes advantage of the recently published Microsoft Server-Side Request Forgery vulnerability (CVE-2022-41040) #exchange #proxynotshell #ssrf #rce #infosec #bugbounty #cybersecurity #bugbountytip

TodayCyberNews's tweet image. 💣 ProxyNotShell PoC ( 1/2 ) ProxyNotShell this is a new exploit used in the wild takes advantage of the recently published Microsoft Server-Side Request Forgery vulnerability (CVE-2022-41040) #exchange #proxynotshell #ssrf #rce #infosec #bugbounty #cybersecurity #bugbountytip
1
10
28
5
0
ANCIChile's profile picture. Somos ANCI, un organismo público descentralizado y técnico, que tiene la facultad de fiscalizar, regular y sancionar en materias de ciberseguridad.
Agencia Nacional de Ciberseguridad (ANCI)
 @ANCIChile
Nov 9, 2022

Desde el CSIRT de Gobierno llamamos a implementar las actualizaciones de seguridad entregadas por #Microsoft ayer, que incluyen parches para las vulnerabilidades de #MicrosoftExchange apodadas "#proxynotshell", CVE-2022-41040 y CVE-2022-41082. Detalles en csirt.gob.cl/noticias/10cnd…

ANCIChile's tweet image. Desde el CSIRT de Gobierno llamamos a implementar las actualizaciones de seguridad entregadas por #Microsoft ayer, que incluyen parches para las vulnerabilidades de #MicrosoftExchange apodadas "#proxynotshell", CVE-2022-41040 y CVE-2022-41082. Detalles en csirt.gob.cl/noticias/10cnd…
0
14
14
0
0
hightur's profile picture. ( Network || System || Security ) addict. Open-source Enthusiastic
Thur
 @hightur
Oct 5, 2022

@github Can you ban these fake repo/users please ? #ProxyNotShell #fake

hightur's tweet image. @github Can you ban these fake repo/users please ? #ProxyNotShell #fake
1
0
0
0
0
cyb3rops's profile picture. Head of Research @nextronsystems #DFIR #YARA #Sigma | detection engineer | creator of @thor_scanner, Aurora, Sigma, LOKI, YARA-Forge | always busy ⌚️🐇 | vi/vim
Florian Roth ⚡️
@cyb3rops
Dec 23, 2022

.@nas_bench and I wrote some Sigma and YARA rules to detect the exploitation of #ProxyNotShell using the OWASSRF method reported by @crowdstrike Blog post with links to the rules nextron-systems.com/2022/12/23/ext…

cyb3rops's tweet image. .@nas_bench and I wrote some Sigma and YARA rules to detect the exploitation of #ProxyNotShell using the OWASSRF method reported by @crowdstrike Blog post with links to the rules nextron-systems.com/2022/12/23/ext…
cyb3rops's tweet image. .@nas_bench and I wrote some Sigma and YARA rules to detect the exploitation of #ProxyNotShell using the OWASSRF method reported by @crowdstrike Blog post with links to the rules nextron-systems.com/2022/12/23/ext…
1
36
100
17
20K
0xDroogy's profile picture. Threat-Hunter/Film-Nerd 🎬 https://t.co/8wOiKi2F25 💾 https://t.co/JHM8u3D9na
Droogy
 @0xDroogy
Oct 3, 2022

Really surprised to see so many infosec folks amplify GTSC's attribution of active #ProxyNotShell exploitation to a Chinese actor given how thin the evidence is - good thing only Chinese APTs can speak Chinese! /s

0xDroogy's tweet image. Really surprised to see so many infosec folks amplify GTSC's attribution of active #ProxyNotShell exploitation to a Chinese actor given how thin the evidence is - good thing only Chinese APTs can speak Chinese! /s
0
0
0
0
0
Unit42_Intel's profile picture. The latest research and news from Unit 42, the Palo Alto Networks (@paloaltontwks) Threat Intelligence and Security Consulting Team covering incident response.
Unit 42
 @Unit42_Intel
Oct 5, 2022

CVE-2022-41040 and CVE-2022-41082 (aka #ProxyNotShell) can be used for remote code execution. Read our analysis and suggestions for how to mitigate. bit.ly/3yditAg

Unit42_Intel's tweet image. CVE-2022-41040 and CVE-2022-41082 (aka #ProxyNotShell) can be used for remote code execution. Read our analysis and suggestions for how to mitigate. bit.ly/3yditAg
1
22
39
2
0

Something went wrong.


Something went wrong.


United States Trends