A fun stream commission I got from https://www.furaffinity.net/user/felisrandomis! A good idea of what I'd look like if I was just a bird XD
#phyrebird #redtailedhawk #redtail #bird #avian #tailfeathers #avianfeet
A fun stream commission I got from https://www.furaffinity.net/user/felisrandomis! A good idea of what I'd look like if I was just a bird XD
#phyrebird #redtailedhawk #redtail #bird #avian #tailfeathers #avianfeet
Want in on the #UFC313 action? 🙋
Join us for the #UFC313 Official Viewing Party at #RedTail – located inside Resorts World Las Vegas
Book your table now: http://UFC.ac/3DkTosN
CVE-2021-41773 oraz CVE-2021-42013 kończące się kopaniem krypto przez RedTail ( https://nfsec.pl/ai/6597 ) #cryptominer #botnet #redtail #linux #security #twittermigration
2024-11-24 (Sunday): I'm trying something new by spinning up some Linux VMs and infecting them using information I get from the scans hitting my web servers.
For example, I found the latest #Redtail bash script leading to #Linux #ELF #malware, this time from 45.202.35[.]190.
I've posted a #pcap of the infection traffic from a Linux host, the associated malware samples, and another pcap with #scans & #probes hitting one of my web servers at https://www.malware-traffic-analysis.net/2024/11/24/index.html
#出前館 の #システム障害 、原因は“ #マルウェア 感染” 確認作業で3日以上サービス停止 情報漏えいは現状なし (ITmedia NEWS)
Yahoo!ニュース
#フードデリバリーサービス 「出前館」 を提供する出前館社は10月29日、3日以上に渡ったシステム障害の原因が、マルウェア 「 #RedTail 」 だったと発表した …
https://news.yahoo.co.jp/articles/17b0d23cda5ce7cf6ef681da8965f697d90ab714
出前館、3日続いた障害の原因は「暗号資産マイニングマルウェア『#RedTail』感染」 - CNET Japan
https://japan.cnet.com/article/35225479/
『サービスの再開にあたっては、万全を期すために作業を慎重に実施したため、サービスの再開が想定より遅れたという。なお、現時点では個人情報の流出の恐れはないとしている』
New(ish) #cryptominer alert!
The #RedTail cryptominer has a new variant that exploits the recent critical PAN-OS vuln CVE-2024-3400. You may be aware of RedTail from its Log4Shell days, now it's going after at least 6 known vulnerabilities including the PAN-OS, recent Ivanti Connect Secure vulns, and ThinkPHP.
The write-up goes into a lot more technical detail and provides IoCs and mitigations. Here are the highlights:
🔐 Attackers behind this are using private cryptomining pools. It costs a loooootttt of money and time to do this. It also helps obfuscation. This can tell us some things about who is behind this.
👨💻 The tactics observed here mirror tactics previously seen by the Lazarus group. This nation-state theory is supported by the private pools point, but we cannot say that for certain.
🌐 The malware delivery infrastructure relies on multiple unrelated servers hosted by various ✨ legitimate ✨ hosting companies. It is robust and hard to classify as malicious without deeper examination.
Full write up includes IoCs and mitigations:
https://www.akamai.com/blog/security-research/2024-redtail-cryptominer-pan-os-cve-exploit
Incredible work Ryan Barnett Stiv Kupchik and Maxim Zavodchik. I have the coolest job in the world thanks to these folks and their awesome research.
A kestrel in the hand is worth... a fascinating presentation by WildOntario! January Conversation for Conservation presentation at rare is now online for all to see. Come learn about the great work Wild Ontario does and the Birds of Prey they rescue
Juvenile redtail hawk (I think)... #hawk #redtail #sanramoncalif #sfbay #wildlifephotography