Sign in Create account

#exfil — Public Fediverse posts

Live and recent posts from across the Fediverse tagged #exfil, aggregated by home.social.

B'ad Samurai 🐐🇺🇦 @[email protected] · 2025-10-29 · 22:14 UTC

Set 🔥 to the emerging :dumpster_fire: that is Webhooks-aaS.

.beeceptor.com/
.hookbin.com/
.hookdeck.com/
.mockly.me/
.mockoon.app/
.pipedream.com/
.postb.in/
.putsreq.com/
.requestcatcher.com/
.requestinspector.com/
.svix.com/
.webhook.cool/
.webhook.site/
.webhookapp.dev/
.webhookcatcher.com/
.webhookinbox.com/
.webhooklistener.cloud/
.webhookrelay.com/
.webhook-test.com/
.wiremock.cloud/

https://news.sophos.com/en-us/2025/10/29/windows-server-update-services-wsus-vulnerability-abused-to-harvest-sensitive-data/

#exfil #wsus

@infosec_jcp 🐈🃏 done differently @[email protected] · 2024-12-20 · 02:49 UTC

#GammaGroup clients use
🔎 UDP port 123 🔍
as default #RedTeam data #exfiltration ports
#gammagroup #finfsher #finspy #infosec #memes
#BlueTeam
#statesponsoredmalware ☣️🤳🐐☣️
Update: Add logging before implementing BLOCKING the #exfil shim, obviously. ☣️🤳🔎🐐☣️🔍🧐

#gammagroup #redteam #exfiltration #finfsher #finspy #infosec
Huntress @[email protected] · 2023-12-01 · 21:47 UTC

Did you know that the finger command can be used for data exfil? We recently had an incident where this type of activity was found
https://www.huntress.com/blog/cant-touch-this-data-exfiltration-via-finger
#DFIR #lolbins #lolbas #exfil #mchammer #CTI #cybersecurity
@keydet89

#dfir #lolbins #lolbas #exfil #mchammer #cti
Geekmaster 👽:system76: @[email protected] · 2023-05-18 · 15:48 UTC

If you use #RDP, make sure it's strictly internal, and limited only to specific #admin accounts, and that you *DO NOT* have any #3389 open publicly. That IP will be found (quickly), and your #endpoint will be attacked, if not #breached. #BianLian has shifted their attack model. @cisacyber dropped an advisory this week, here's a decent summary of what's up: https://www.darkreading.com/threat-intelligence/bianlian-cybercrime-group-changes-attack-methods-cisa-advisory-notes?_mc=NL_DR_EDT_DR_weekly_20230518&cid=NL_DR_EDT_DR_weekly_20230518&sp_aid=116563&elq_cid=38046155&sp_eh=144c4ccfdc4bcabeefa4110f1ea26cecf2a866a1c04b99a946a3df0524ced34c&sp_eh=144c4ccfdc4bcabeefa4110f1ea26cecf2a866a1c04b99a946a3df0524ced34c&utm_source=eloqua&utm_medium=email&utm_campaign=DR_NL_Dark%20Reading%20Weekly_05.18.23&sp_cid=48613&utm_content=DR_NL_Dark%20Reading%20Weekly_05.18.23
#Hacking #ThreatIntelligence #Cloud #CloudAttackSurface #DataExfiltration #Exfil #AttackSurfaceReduction #Ransomware

#rdp #admin #endpoint #breached #bianlian #hacking
Geekmaster 👽:system76: @[email protected] · 2023-05-18 · 15:37 UTC

#Infostealers are a growing threat. Sure, they've been around for decades, but now it's becoming a much larger market on the #Darkweb. “What we are seeing is an entire #underground #economy and #supporting #infrastructure built around #infostealers, making it not only possible but also potentially #lucrative for relatively #lowskilled #threatactors to get involved,”
https://www.scmagazine.com/news/threat-intelligence/data-log-thefts-explode-as-infostealers-gain-popularity-with-cybercriminals?external_id=HBwZ-n4B490LDY0Z-dKj&external_id_source=mrkto&mkt_tok=MTg4LVVOWi02NjAAAAGLzUgAldBXEeVNitVuN5rpvANUjNCaIIBnTmArpblpBWE5hgFJSS9PoGhu7RxEp5cWxLUDxbLdJ7juuAc83cEfRAyiFxOpe18Kant7MXUMhA
#Hacking #ThreatIntelligence #Cloud #CloudAttackSurface #TOR #DataExfiltration #Exfil #RussianMarket #Cyberespionage #RussiaAPT #ChinaAPT #APT #UseMFA #AttackSurfaceReduction

#infostealers #darkweb #underground #economy #supporting #infrastructure