home.social

#passwordspray — Public Fediverse posts

Live and recent posts from across the Fediverse tagged #passwordspray, aggregated by home.social.

  1. 📰 Iranian Hackers Launch Coordinated Password Spray Attacks on Middle East

    🇮🇷 Iranian APT Gray Sandstorm linked to password spray attacks against Israel & UAE. The campaign, targeting M365 accounts, appears coordinated with kinetic military strikes to aid in damage assessment. #APT #Iran #CyberWarfare #PasswordSpray

    🔗 cyber.netsecops.io/articles/ir

  2. Oh look, another thrilling tale of how #Microsoft bravely "uncovered" a password spray #attack with all the subtlety of a slow-motion car crash. 🚗💥 Apparently, logging in successfully is now a criminal offense—let's all panic! 😱🔍
    petrasecurity.substack.com/p/u #Security #PasswordSpray #CyberThreats #TechNews #PanicAlert #HackerNews #ngated

  3. Should a password spray detection in a SIEM alert you when there are 300+ failed logins against a collection of a dozen and a half accounts in an hour, or ONLY when one of those accounts subsequently logs in _successfully_ ?

    Is it only a password spray if it eventually succeeds?

    #detectionRules #passwordSpray

  4. 26 March 2024: "Cisco was made aware of multiple reports related to password spraying attacks aimed at RAVPN services. It has been noted by Talos that these attacks are not limited to Cisco products but also third-party VPN concentrators. Depending on your environment, the attacks can cause accounts to be locked, resulting in Denial of Service (DoS)-like conditions. This activity appears to be related to reconnaissance efforts." No CVE ID associated. Indicators of attack are provided. 🔗 cisco.com/c/en/us/support/docs

    See related Bleeping Computer reporting: bleepingcomputer.com/news/secu

    #Cisco #passwordspray #VPN #Fortinet #PaloAlto #SonicWall #botnet #Brutus