Mastouille

0 message0 participant0 message aujourd’hui

Harald Leithner<a href="https://joomla.social/@joomla" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@joomla</a> maintainers are in progress to define the minimum requirements for <a href="https://joomla.social/tags/joomla" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#joomla</a> 6. In question is <a href="https://joomla.social/tags/php" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#php</a> <a href="https://joomla.social/tags/mysql" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#mysql</a> <a href="https://joomla.social/tags/mariadb" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#mariadb</a> <a href="https://joomla.social/tags/postgresql" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#postgresql</a> <a href="https://joomla.social/tags/apache" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#apache</a> <a href="https://joomla.social/tags/ngnix" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#ngnix</a> <a href="https://joomla.social/tags/iis" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#iis</a> What's your suggestion?

benzogaga33 :verified:BadIIS, le malware qui transforme les serveurs web IIS en passerelles malveillantes <a href="https://www.it-connect.fr/badiis-le-malware-qui-transforme-les-serveurs-web-iis-en-passerelles-malveillantes/" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://www.it-connect.fr/badiis-le-malware-qui-transforme-les-serveurs-web-iis-en-passerelles-malveillantes/</a> <a href="https://mamot.fr/tags/ActuCybers%C3%A9curit%C3%A9" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#ActuCybersécurité</a> <a href="https://mamot.fr/tags/Cybers%C3%A9curit%C3%A9" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Cybersécurité</a> <a href="https://mamot.fr/tags/Malware" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Malware</a> <a href="https://mamot.fr/tags/IIS" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#IIS</a>

SciPost PhysicsNew <a href="https://scipost.social/tags/openaccess" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#openaccess</a> publication <a href="https://scipost.social/tags/SciPost" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#SciPost</a> <a href="https://scipost.social/tags/Physics" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Physics</a> CodebasesHYPERTILING — a high performance Python library for the generation and visualization of hyperbolic latticesManuel Schrauth, Yanick Thurn, Florian Goth, Jefferson S. E. Portela, Dietmar Herdt, Felix Dusel SciPost Phys. Codebases 34 (2024) <a href="https://scipost.org/SciPostPhysCodeb.34" rel="nofollow noopener noreferrer" target="_blank">https://scipost.org/SciPostPhysCodeb.34</a><a href="https://scipost.social/tags/W%C3%BCrzburgUniversity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#WürzburgUniversity</a> <a href="https://scipost.social/tags/IIS" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#IIS</a> <a href="https://scipost.social/tags/UBC" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#UBC</a>

Der Entgegner (Aka Ratatöskr)Das Verhängnis nahm seinen Lauf in Gestalt eines hastig gebastelten Update des <a href="https://troet.cafe/tags/wsus" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#wsus</a>, das im Konflikt zum zu schlichten SBS-Update-Servers stand. Der benutzte den IIS-7 fürs Deployment, der WSUS-Patch korrumpierte eine Reihe Rights und Ressourcen, woraufhin der IIS-7 nachhaltig beleidigt ausfiel. Im SBS2011 war der <a href="https://troet.cafe/tags/IIS" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#IIS</a> aber Dreh- und Angelpunkt des ganzen Servers! Ohne ihn kein <a href="https://troet.cafe/tags/OWA" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#OWA</a>, kein Autoassignment, kein Cert-Deployment und kein WSUS! Das hinterhältige war: Das Update installierte sich 3/4

ricardo :mastodon:<a href="https://fosstodon.org/tags/Apache" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Apache</a> vs <a href="https://fosstodon.org/tags/IIS" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#IIS</a> vs <a href="https://fosstodon.org/tags/Nginx" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Nginx</a>: An In-depth Comparison of Web Servers <a href="https://www.linuxcareers.com/resources/blog/2023/07/apache-vs-iis-vs-nginx-an-in-depth-comparison-of-web-servers/" rel="nofollow noopener noreferrer" target="_blank">https://www.linuxcareers.com/resources/blog/2023/07/apache-vs-iis-vs-nginx-an-in-depth-comparison-of-web-servers/</a>

Joel Carnat ♑ 🤪<a href="https://bsd.network/@ledeuns" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@ledeuns</a> c'est parce que c'est pas dans <a href="https://piou.foolbazar.eu/tags/exchange" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#exchange</a> mais dans <a href="https://piou.foolbazar.eu/tags/iis" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#iis</a> !!! :)

RedhotcyberLazarus utilizza Microsoft Internet Information Services (IIS) per distribuire malwareL’AhnLab Security Emergency Response Center (<a href="https://mastodon.bida.im/tags/ASEC" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#ASEC</a>) riferisce che il gruppo di hacker nordcoreani <a href="https://mastodon.bida.im/tags/Lazarus" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Lazarus</a> Group sta prendendo di mira le versioni <a href="https://mastodon.bida.im/tags/vulnerabili" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#vulnerabili</a> dei server <a href="https://mastodon.bida.im/tags/Microsoft" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Microsoft</a> Internet Information Services (<a href="https://mastodon.bida.im/tags/IIS" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#IIS</a>) per distribuire <a href="https://mastodon.bida.im/tags/malware" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#malware</a> sui <a href="https://mastodon.bida.im/tags/sistemi" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#sistemi</a> bersaglio.Secondo AhnLab Securit, il gruppo utilizza un metodo di sideload DLL (<a href="https://mastodon.bida.im/tags/DLL" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#DLL</a> <a href="https://mastodon.bida.im/tags/Sideloading" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Sideloading</a>) per lanciare <a href="https://mastodon.bida.im/tags/payload" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#payload</a> arbitrari. <a href="https://mastodon.bida.im/tags/redhotcyber" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#redhotcyber</a> <a href="https://mastodon.bida.im/tags/informationsecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#informationsecurity</a> <a href="https://mastodon.bida.im/tags/ethicalhacking" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#ethicalhacking</a> <a href="https://mastodon.bida.im/tags/dataprotection" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#dataprotection</a> <a href="https://mastodon.bida.im/tags/hacking" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#hacking</a> <a href="https://mastodon.bida.im/tags/cybersecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#cybersecurity</a> <a href="https://mastodon.bida.im/tags/cybercrime" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#cybercrime</a> <a href="https://mastodon.bida.im/tags/cybersecurityawareness" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#cybersecurityawareness</a> <a href="https://mastodon.bida.im/tags/cybersecuritytraining" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#cybersecuritytraining</a> <a href="https://mastodon.bida.im/tags/cybersecuritynews" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#cybersecuritynews</a> <a href="https://mastodon.bida.im/tags/privacy" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#privacy</a> <a href="https://mastodon.bida.im/tags/infosecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#infosecurity</a><a href="https://www.redhotcyber.com/post/lazarus-utilizza-microsoft-internet-information-services-iis-per-distribuire-malware/" rel="nofollow noopener noreferrer" target="_blank">https://www.redhotcyber.com/post/lazarus-utilizza-microsoft-internet-information-services-iis-per-distribuire-malware/</a>

RedhotcyberUn nuovo malware dal nome Frebniss consente ai criminali informatici di hackerare Microsoft IIS<a href="https://mastodon.bida.im/tags/Frebniis" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Frebniis</a> è stato scoperto dal <a href="https://mastodon.bida.im/tags/Symantec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Symantec</a> Threat Hunter Team, che ha riferito che aggressori sconosciuti stanno attualmente utilizzando il <a href="https://mastodon.bida.im/tags/malware" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#malware</a> contro una serie di obiettivi taiwanesi.Negli attacchi visti da Symantec, gli hacker criminali hanno utilizzato una funzionalità <a href="https://mastodon.bida.im/tags/IIS" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#IIS</a> chiamata Failed Request Event Buffering (<a href="https://mastodon.bida.im/tags/FREB" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#FREB</a>), responsabile della raccolta dei <a href="https://mastodon.bida.im/tags/metadati" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#metadati</a> delle richieste (indirizzo <a href="https://mastodon.bida.im/tags/IP" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#IP</a>, intestazioni <a href="https://mastodon.bida.im/tags/HTTP" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#HTTP</a>, <a href="https://mastodon.bida.im/tags/cookie" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#cookie</a> ). Il suo scopo è aiutare gli amministratori del server a risolvere i codici di stato HTTP imprevisti o i problemi di elaborazione delle richieste. <a href="https://mastodon.bida.im/tags/redhotcyber" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#redhotcyber</a> <a href="https://mastodon.bida.im/tags/informationsecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#informationsecurity</a> <a href="https://mastodon.bida.im/tags/ethicalhacking" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#ethicalhacking</a> <a href="https://mastodon.bida.im/tags/hacking" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#hacking</a> <a href="https://mastodon.bida.im/tags/cybersecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#cybersecurity</a> <a href="https://mastodon.bida.im/tags/cybercrime" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#cybercrime</a> <a href="https://mastodon.bida.im/tags/cybersecuritynews" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#cybersecuritynews</a> <a href="https://mastodon.bida.im/tags/privacy" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#privacy</a> <a href="https://mastodon.bida.im/tags/infosecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#infosecurity</a><a href="https://www.redhotcyber.com/post/un-nuovo-malware-dal-nome-frebniss-consente-ai-criminali-informatici-di-hackerare-microsoft-iis/" rel="nofollow noopener noreferrer" target="_blank">https://www.redhotcyber.com/post/un-nuovo-malware-dal-nome-frebniss-consente-ai-criminali-informatici-di-hackerare-microsoft-iis/</a>

Fabian BaderIIS modules: The evolution of web shells and how to detect them  - Microsoft Security Blog<a href="https://infosec.exchange/tags/webshell" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#webshell</a> <a href="https://infosec.exchange/tags/security" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#security</a> <a href="https://infosec.exchange/tags/mde" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#mde</a> <a href="https://infosec.exchange/tags/iis" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#iis</a> <a href="https://infosec.exchange/tags/detection" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#detection</a> <a href="https://infosec.exchange/tags/kql" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#kql</a><a href="http://www.microsoft.com/en-us/security/blog/2022/12/12/iis-modules-the-evolution-of-web-shells-and-how-to-detect-them/?WT.mc_id=AZ-MVP-5004810" rel="nofollow noopener noreferrer" target="_blank">http://www.microsoft.com/en-us/security/blog/2022/12/12/iis-modules-the-evolution-of-web-shells-and-how-to-detect-them/?WT.mc_id=AZ-MVP-5004810</a>

Recherches récentes

Options de recherche

Administré par :

Statistiques du serveur :

#iis