June 10th 2022 CTP Week in Review: Dogwalk - Qakbot - Follina - ESXi Ransomware
Jun 10, 2022•23 min•Season 100Ep. 6
Episode description
In this week's review:
- A DFIR Report with no Ransomware and no Cobalt Strike
- Path Traversal & MOTW Bypass - DIAGCAB Windows Zero-day aka "Dogwalk"
- Linux version of Black Basta ransomware targets VMware ESXi servers
- TA570 Qakbot (Qbot) tries CVE-2022-30190 (Follina) exploit (ms-msdt)
Blog: https://offsec.blog/
Youtube: https://www.youtube.com/channel/UCCWmudG_CTNAFBaV48vIcfw
Twitter: https://twitter.com/cyberthreatpov
Work with Us: https://securit360.com
Blog: https://offsec.blog/
Youtube: https://www.youtube.com/@cyberthreatpov
Twitter: https://x.com/cyberthreatpov
Spencer's Twitter: https://x.com/techspence
Spencer's LinkedIn: https://linkedin.com/in/SpencerAlessi
Work with Us: https://securit360.com