How to Detect Impacket's Hidden Lateral Movement

Security researchers have discovered an open-source remote access trojan, AsyncRAT, being delivered through a multi-stage, in-memory loader as adversaries move to fileless techniques. (Story by Shweta Sharma) https://lnkd.in/ewppux6F

Security researchers have discovered an open-source remote access trojan, AsyncRAT, being delivered through a multi-stage, in-memory loader as adversaries move to fileless techniques #comcastbusiness #iworkforcomcast

Edge exploits in the news again. 🙄 Our latest blog on VPNs (and how to protect them), hot off the presses. https://lnkd.in/gWr76t64

A lot of our customers are dealing with this one ... Read our latest post on the raw exposure of VPN services.

The Edge is having a bit of a moment. Brute force attacks against VPNs, remote access applications, and other edge services are alive and well, and hammering away harder than ever. A recent HelpNetSecurity article highlights how attackers are relentlessly targeting VPNs and firewalls as entry points, while Infosecurity Magazine notes that nearly 30% of breaches begin at the edge of the network. https://lnkd.in/gFgthQ_m

Hadrian’s Orchestrator AI uncovered a Server-Side Request Forgery (SSRF) vulnerability in an endpoint acting as a proxy, fetching content from user-provided URLs. So what is SSRF, and why does it matter? This quick explainer breaks down how attackers exploit it and why it poses a serious risk to applications Watch it here: https://lnkd.in/eNBxatAa #SSRF #Cybersecurity

Hadrians AI orchestration enables rapid scanning across services, reducing time-to-discovery and enabling proactive remediation before SSRF exploitation. Check out our video !!

TP-Link has confirmed the existence of an unpatched zero-day vulnerability impacting multiple router models, as CISA warns that other router flaws have been exploited in attacks. The zero-day vulnerability was discovered by independent threat researcher Mehrun (ByteRay), who noted that he first reported it to TP-Link on May 11, 2024. #staycurious #stayinformed #noble1 #tomshaw TOM SHAW

Did you know that through 2026, hashtag#Gartner estimates 'unpatchable' attack surfaces will grow to represent more than 50% of all enterprises' total exposure? 📈 🔎 It's time to treat third-party data as a first-class citizen: Rapid7 combines telemetry from all of your security tools, building a complete picture of your attack surface. Explore the Command Platform in a new blog: https://buff.ly/0vUXYZ6

"That’s where AI offers the most real-world value to defenders: by helping us do the basics better, faster, and with fewer people." Another fantastic blog from RoboShadow founder Terry Lewis talking about the impact that AI is having on the cybersecurity race. On the flipside, a nice reminder to where AI is bring a lot of power to the workforce... validating the hours I have spent this week building GPTs to make mini versions of myself.