Sunday, January 22, 2023

What I am Reading 1/22/2023

 Importance of signing in Windows environments

"NTLM relaying has been a plague in Windows environments for many years – and we have witnessed many exploits that rely on the fact that it is possible to relay NTLM authentication attempts to various target services.

While there are many potential targets here, in most red team engagements my colleagues and myself are relaying credentials to other SMB, LDAP or HTTP(S) services (especially on AD CS server, used for issuing certificates). So one of the mandatory “health check” activities should be to verify if your systems really have signing enabled."

CISA Warns of Flaws Affecting Industrial Control Systems from Major Manufacturers

Many ICS flaws remain unpatched as attacks against critical infrastructure rise

Too many default 'admin1234' passwords increase risk for industrial systems, research finds

Vulnerable Historian Servers Imperil OT Networks

Hacking ICS Historians: The Pivot Point from IT to OT

ICS Confronted by Attackers Armed With New Motives, Tactics, and Malware

The lights have been on at a Massachusetts school for over a year because no one can turn them off

"Mustone said the pandemic essentially shut down the factories in China that produce the components they need to do this kind of work. He said it’s a lot cheaper to build things over there, but lots of American companies like his are now paying the price.

'I have been doing this for 42 years and I have never seen this kind of supply chain disruption,” he said. “We made a deal with the devil by moving the factories to China.' ”

More than 4,400 Sophos firewall servers remain vulnerable to critical exploits

Chinese Hackers Exploited Fortinet VPN Vulnerability as Zero-Day

Government watchdog: Feds fail to implement vast majority of cybersecurity recommendations

T-Mobile suffers 8th data breach in less than 5 years

6 Types of Risk Assessment Methodologies + How to Choose

Video - What Really Happened with the Substation Attack in North Carolina?

No comments: