433 Central Ave., 4th Floor, St. Petersburg, FL 33701 | [email protected] | Office: (727) 493-2351

Simple Netcat Backdoor in Python Script, (Sat, Sep 30th)

Why reinvent the wheel? We are all lazy and, if we have a tool that offers some interesting capabilities, why not use it? I spotted a simple maliciouis Python script targeting Windows hosts. The file (SHA256:d706d94981bc53ab1458519f224b9602152325fc2a18f3df9d9da8f562b99044) is flagged by 16 antivirus products on VirusTotal[1]. Nothing very exciting with the script, it's a bot that uses a Discord channel for C2 communications. 
http://news.poseidon-us.com/Swp99G

Microsoft Entra ID Protection Eases Password Change Remediations

Microsoft has improved the remediation process when users authenticating via on-premises methods are deemed to be at risk by the Microsoft Entra ID Protection service, per a Thursday announcement.
http://news.poseidon-us.com/SwnYVy

At TSA and across DHS, employees prepare to work without pay under government shutdown

“The employees are upset that they’re going into this again.” Staff at TSA and other DHS components are preparing to go to work without pay.
http://news.poseidon-us.com/SwnWbP

Nexusflow raises $10.6 million to improve generative AI in cybersecurity

Nexusflow announced that it has raised a $10.6 million seed round led by Point72 Ventures, with participation from Fusion Fund and several AI luminaries in Silicon Valley. Nexusflow was founded by AI experts Professor Jiantao Jiao and Professor Kurt Keutzer from the Berkeley AI Research (BAIR) Lab, along with industry AI leader Jian Zhang. Jian Zhang received his Ph.D. from the Stanford AI Lab and served as the former Machine Learning Director at SambaNova Systems, … More → The post Nexusflow raises $10.6 million to improve generative AI in cybersecurity appeared first on Help Net Security.
http://news.poseidon-us.com/SwmF9R

ISC Stormcast For Friday, September 29th, 2023 https://isc.sans.edu/podcastdetail/8680, (Fri, Sep 29th)

(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.
http://news.poseidon-us.com/SwlMKz

IRS plans to furlough two-thirds of workforce if Congress triggers government shutdown

The IRS is planning to furlough most of its employees, if lawmakers don’t avert a government shutdown by the end of the week.
http://news.poseidon-us.com/Swl06f

IRS plans to furlough two-thirds of workforce if Congress triggers government shutdown

The IRS is planning to furlough most of its employees, if lawmakers don’t avert a government shutdown by the end of the week.
http://news.poseidon-us.com/Swl01x

How to make furlough a personally fulfilling time

Cynics see a federal government shutdown as a paid vacation for federal employees, at least those forced into furlough. For the most part, you can actually take paid, approved leave during a shutdown.
http://news.poseidon-us.com/SwkyQx

PingSafe unveils MSSP partnership with Human Managed

PingSafe has unveiled a strategic partnership with Human Managed, providing data-driven and evidence-based security findings to improve the security posture of their extended customer base. Available now in Human Managed’s flagship Intelligence Decision Action (IDEA) Platform, PingSafe increases the capabilities of Human Managed to control threats and manage risk for their clients. PingSafe is the graph-based CNAPP platform that reduces false positives by providing proof of exploitability, allowing security teams to focus on fixing the … More → The post PingSafe unveils MSSP partnership with Human Managed appeared first on Help Net Security.
http://news.poseidon-us.com/SwjZ1m