Lmst

Jannis Funk + Madeleine Dallmeyer + Joachim Telgenbüscher auf #stage6 3/x

#Trump hat angeordnet, Wissensarchive zu löschen und somit Geschichte der #Indigene, #Sklaverei, der #PoC und von ganz #Amerika zu verfälschen. -> brandgefährlich! Nicht rückgängig zu machen!

Es gibt auch Wissen, das oral weitergegeben wird, das nirgends niedergeschrieben/hinterlegt ist, nur in den Köpfen einzelner bzw von Gruppen, oft Indigene. Hierbei wird Wissen verändert, weiterentwickelt. #oralHistory

#lgbt #lgbtqia #equality #trans #transgender #lesbian #gay #bisexual #PoC #blacklivesmatter

Tiens, il y a un PoC d'exploitation pour la vulnérabilité BadSuccessor 👀

BadSuccessor, est une technique d'escalade de privilèges dans Active Directory. Elle exploite l’attribut peu connu dMSA ( delegated Managed Service Account) pour injecter un objet malveillant. Si un utilisateur a juste les droits "CreateChild" sur une OU (Organizational Unit), il peut créer un compte spécial et s’en servir pour devenir Domain Admin.

( 91% des environnements d'entreprise analysés par Akamai sont vulnérables à cette attaque. )
👇
https://www.akamai.com/blog/security-research/abusing-dmsa-for-privilege-escalation-in-active-directory

Et maintenant, il y a un PoC fonctionnel côté offensive.
⬇️
SharpSuccessor
Un outil .NET qui automatise le processus. Il permet à un utilisateur peu privilégié de :

Créer un objet dMSA piégé dans une OU sur laquelle il a les droits "CreateChild"
Associer cet objet à sa propre session utilisateur
Et obtenir les privilèges de domaine admin
👇
https://github.com/logangoins/SharpSuccessor

Mitigation

"Until a formal patch is released by Microsoft, defensive efforts should focus on limiting the ability to create dMSAs and tightening permissions wherever possible."

Limiter les droits "CreateChild" :
Réviser les permissions sur les OU et restreindre la création d’objets aux seuls comptes administratifs de confiance.
Surveiller les créations et modifications de dMSA :
Configurez des audits pour les événements AD pertinents (Event IDs 5136, 5137) afin de détecter toute activité suspecte liée aux dMSA.
Utiliser des outils de détection :
Employer des scripts comme Get-BadSuccessorOUPermissions.ps1 ( https://github.com/akamai/BadSuccessor ) pour identifier les comptes ayant des permissions à risque pour remédiation.

[ dans les news infosec ]
⬇️
"SharpSuccessor PoC Released to Weaponize Windows Server 2025 BadSuccessor Flaw"
👇
https://gbhackers.com/sharpsuccessor-poc-released/

#CyberVeille #BadSuccessor #PoC #AD #activedirectory

Reading Octavia Butler in a time of change

https://beehaw.org/post/20233690

Apache Tomcat #RCE Vulnerability Exposed with #PoC Released https://gbhackers.com/apache-tomcat-rce-vulnerability/ #infosec

PoC Published for Actively Exploited Fortinet Zero Day Vulnerability

Pulse ID: 6830f1bf89e532eba6d697eb
Pulse Link: https://otx.alienvault.com/pulse/6830f1bf89e532eba6d697eb
Pulse Author: cryptocti
Created: 2025-05-23 22:07:59

Be advised, this data is unverified and should be considered preliminary. Always do further verification.

#CyberSecurity #InfoSec #OTX #OpenThreatExchange #PoC #Vulnerability #bot #cryptocti

Plantations Burning Down To The Ground Is A Good Thing

https://beehaw.org/post/20133717

Dollhouse & Co to host Berryland Bazaar at Studio 614 Sunday featuring Ohio State alumna charm bar - Grayson Newbourn

Count the ways that #Trump is destroying lives: the #economy, US standing & #creditrating, #tariffs, #jobs, #rights, #education, #health, #healthcare, #housing affordability, #wellbeing, #publicsafety, #publichealth, #tourism... to #immigrants, #POC, #LGBTQ ppl, #disabled ppl, #farmers, #children, #seniors, small business owners...

"Travel to the US🚨is dropping from pretty much every part of the world!

Tourism to the US from Europe is in the process of collapsing."
-A Reichlin-Melnick
#USPol

Line graph depicting year-over-year changes in monthly arrivals of international visitors to the U.S., categorized by country/region of residence. Data shows significant declines for most regions, particularly Canada, Eastern Europe, and Asia, indicating potential major losses in the…

A line graph illustrating the year-on-year change in European visitors to the US from various countries (Austria, Denmark, Germany, Iceland, Norway, Spain, Sweden, and the UK) between 2024 and 2025. The graph highlights…

»OpenPGP.js bug enables encrypted message spoofing:
Security researchers are sounding the alarm over a fresh flaw in the JavaScript implementation of OpenPGP (OpenPGP.js) that allows both signed and encrypted messages to be spoofed.«

I hope this will be resolved as soon as possible and the web email hosters will then also use the current version.

🔓 https://www.theregister.com/2025/05/20/openpgp_js_flaw/

#openpgp #javascript #email #secirity #privacy #spoofing #itsecurity #itsec #itsec #poc #flaw

I’ve decided that May will be #BookList Month! Each day there will be a new category. #Authors, if your #Book fits that category, comment with a link to it. #Readers, bookmark interesting categories to find new books.

The category for May 20th is: books with #POC characters

What happens when ancient gods arise in dreams to stop a colonizing force of invaders? Find out in Ajakava, by Chaitanya Murali!
#fantasy #POC #history
https://www.spacewizardsciencefantasy.com/book/ajakava

MT @The_Cyber_News@X.com
🔐 BitLocker Encryption Bypassed in Minutes Using Bitpixie Vulnerability https://cybersecuritynews.com/bitlocker-encryption-bypassed/ #infosec #poc

@publicnewsfeed So the bigot47 regime attacks #DEI & #POC & then imports #racist white South Africans. Hope all the non-white Republican voters are seeing the writing on the wall that they're supporting #whitesupremacy.

Thinking about doing a #PoC of #E2E #encryption – sorry #Cat2Cat encryption. Leave a like there if there is interest for such a completely useless but secure messenger.
This project should show that #cats can carry messages in the #Neuland aka #internet.