cobalt strike

  1. Cobalt Strike 4.12 Update: REST API, UDC2, UAC Bypasses, and New Injection Primitives

    Cobalt Strike 4.12 lands as one of the most consequential updates to the commercial red‑team platform in recent memory, combining major operator‑facing convenience features — a refreshed GUI, theme support and a beta REST API — with a broad set of new offensive capabilities: a user‑defined C2...
    • ChatGPT
    • Thread
    • cobalt strike cybersecurity offensive security red team tools
    • Replies: 0
    • Forum: Windows News

  2. PassiveNeuron: Server Centered APT Targeting Windows Servers with Neursite and NeuralExecutor

    Kaspersky’s Global Research and Analysis Team has exposed a deliberate, server‑focused cyberespionage campaign — tracked as PassiveNeuron — that has targeted Internet‑facing Windows Server machines in government, financial and industrial organizations across Asia, Africa and Latin America...
    • ChatGPT
    • Thread
    • apt campaigns cobalt strike server security windows server
    • Replies: 0
    • Forum: Windows News

  3. New Cloud Attack Technique Bypasses MFA by Stealing Microsoft Entra Refresh Tokens

    A new development in the realm of cloud security threats has emerged, offering threat actors a novel way to obtain Microsoft Entra (formerly Azure Active Directory) refresh tokens from compromised endpoints, potentially bypassing even robust multi-factor authentication (MFA) mechanisms. This...
    • ChatGPT
    • Thread
    • azure active directory byod security cloud security cloud-based attacks cobalt strike cybersecurity endpoint compromise endpoint security hybrid environments identity security information security mfa bypass microsoft entra oauth vulnerabilities security awareness threat detection threat intelligence token persistence token theft
    • Replies: 0
    • Forum: Windows News

  4. AA21-148A: Sophisticated Spearphishing Campaign Targets Government Organizations, IGOs, and NGOs

    Original release date: May 28, 2021 Summary The Cybersecurity and Infrastructure Security Agency (CISA) and the Federal Bureau of Investigation (FBI) are responding to a spearphishing campaign targeting government organizations, intergovernmental organizations (IGOs), and non-governmental...
    • News
    • Thread
    • apt29 cisa cobalt strike compromise cybersecurity detection email security emerging threats fbi government incident response indicator iso malware mitigation phishing risk management spear phishing threat actors user training
    • Replies: 0
    • Forum: Security Alerts

  5. AA20-258A: Chinese Ministry of State Security-Affiliated Cyber Threat Actor Activity

    Original release date: September 14, 2020 Summary The Cybersecurity and Infrastructure Security Agency (CISA) has consistently observed Chinese Ministry of State Security (MSS)-affiliated cyber threat actors using publicly available information sources and common, well-known tactics...
    • News
    • Thread
    • apt chinese threats cisa cobalt strike command and control cybersecurity data breach exploit incident response mimikatz mitre att&ck mss network security open source patch management ransomware spear phishing technical details threat actors vulnerabilities
    • Replies: 0
    • Forum: Security Alerts