Trend Micro’s Post

Our latest research uncovers the tactics of three threat actors exploiting CVE-2023-22527 in Confluence Data Center and Server. From deploying XMRig miners to targeting SSH endpoints, we dissect their methods. Check out the full article: https://bit.ly/4cOata9

Our latest research uncovers the tactics of three threat actors exploiting CVE-2023-22527 in Confluence Data Center and Server. From deploying XMRig miners to targeting SSH endpoints, we dissect their methods. Check out the full article: https://bit.ly/4cOata9

A severe zero-day vulnerability CVE-2023-22518 in #Atlassian Confluence Data Center and Server has been #exploited in the wild in a limited scope. Organizations to apply patches to #mitigation risks. See real attack PoC in 3 steps with mitigation guideline. Read more: https://lnkd.in/dqqYYu65 #cve #vulnerability #Atlassian #confluence #0day #ZERODay #exploit #cybersecurity #infosec #forenzy #forenzynetworks

🎉 Day-4 of MyDFIR's 30-Day SOC Analyst Challenge! 🚀 I continued my 30-day SOC Challenge with MYDFIR Diving deep into real-world security operations,  I’ve just published a detailed guide on setting up Kibana on Vultr. Kibana is a powerful tool for visualizing and analyzing data, and this guide walks you through the entire process, from deploying a Vultr instance to configuring Kibana for optimal performance. Exited to continue this journey and further refine my cybersecurity skills. #SOCChallenge #Cybersecurity #Kibana #Vultr #DataVisualization #SOC #SIEM #Infosec #LearningJourney #MyDFIR

🌟 Learned some cool new security tricks from this room! 🌟 Just wrapped up a deep dive into: 🔍 Prototype Pollution in Kibana: Figured out how this can mess with your apps and how to stop it. 🔐 Privilege Escalation via File Capabilities: Discovered how to use file capabilities to get higher privileges in Linux. Super handy for both hacking and securing systems. Tough but totally worth it! 😎 #CyberSecurity #Learning #Kibana #LinuxPriviledgeEscalation #Hacking #Security #TryHackMe

A BOLA vulnerability can be easy to overlook, even though it’s not complex and impact can be high. After discovering BOLA vulnerability CVE-2024-1313 in the open-source software Grafana, a data dashboard visualizer, Unit 42 analyzes their findings. #PrismaCloud #PaloAltoNetworks #CVE #CodetoCloud #CloudSecurity #CodetoCloudSecurity #Unit42 #Vulnerability

🚨 Attention all Grafana users! 🚨 A new CVE ID (CVE ID: CVE-2024-1442) has been identified that impacts versions 8.5.0 through 10.3.4. A user with data source creation permissions can use the Grafana API to create a data source with UID set to * which grants them access to read, query, edit and delete all data sources within the organization. Please ensure that you have updated to the latest version of Grafana to ensure the security of your data. Stay safe and secure! 🔒 #Grafana #Cybersecurity #DataSecurity #CVE #apisecurity #owasp https://lnkd.in/eBPQMESF

Enable real-time DLP in GitHub capable of finding malware, passwords, keys, dependency risks, and other sensitive data exposed within your code repositories. Polymer DLP for GitHub is a complete shift-left solution for your software development lifecycle (SDLC) - and it only takes 15 minutes to install. Protect your company and reduce the threat of sensitive data exposure. https://lnkd.in/ecn-DRb8 #dlp #datalossprevention #github #githubdlp #sdlc #softwaresupplychain #datasecurity

Spotfire row level security gives you data access control, ensures compliance, and allows you to reuse the same dashboard or analysis for different people. Check out this Quick Tip to learn more. http://spr.ly/6049kdw8Z

Spotfire row level security gives you data access control, ensures compliance, and allows you to reuse the same dashboard or analysis for different people. Check out this Quick Tip to learn more. http://spr.ly/6048nnhsa