Kevin Beaumont on Nostr: Obvious point - there will likely be more #ConnectAround victims. Most orgs don't ...
Obvious point - there will likely be more #ConnectAround victims.
Most orgs don't have the capability to detect suspected zero day exploitation of a VPN and call in Mandiant IR... they probably have Bob The Builder as an MSP and a security budget of 4 twigs.
Published at
2024-01-10 19:23:12Event JSON
{
"id": "53c60649c2377eabfcb986a0e01f9e5c1d9e93246851a01c28fff4376175c0d5",
"pubkey": "f6870afcde4480ec8508f50304859e14a51309ff24ab3f0f862c52bdc4af8747",
"created_at": 1704914592,
"kind": 1,
"tags": [
[
"e",
"26aa7322aaec3566f92613d2473f10bf60bec31b295bc0ec5929479d4dcda6a9",
"wss://relay.mostr.pub",
"reply"
],
[
"t",
"connectaround"
],
[
"proxy",
"https://cyberplace.social/users/GossiTheDog/statuses/111733282743838460",
"activitypub"
]
],
"content": "Obvious point - there will likely be more #ConnectAround victims. \n\nMost orgs don't have the capability to detect suspected zero day exploitation of a VPN and call in Mandiant IR... they probably have Bob The Builder as an MSP and a security budget of 4 twigs.",
"sig": "367839150bceae9c87348adc4695d60c253f39fc4ce42a9c155a8f757f6e050342569a02d24a748d49850ad2d913d434f7ff7a96569813eece119c73934af17b"
}
