Embed Notice

HTML Code

<blockquote style="position: relative; padding-left: 55px;"><section><a href="https://fosstodon.org/users/simon/statuses/112184790588687668">Simon B (simon@fosstodon.org)'s status on Saturday, 30-Mar-2024 23:46:34 JST</a><a href="https://fosstodon.org/@simon" title="simon@fosstodon.org"><img src="https://gnusocial.jp/avatar/176582-48-20231221171533.webp" width="48" height="48" alt="Simon B" style="position: absolute; left: 0; top: 0;">Simon B</a><div><a href="https://cyberplace.social/@GossiTheDog/112184645230558304" rel="in-reply-to">in reply to</a><ul><li></ul></div></section><article><p><a href="https://cyberplace.social/@GossiTheDog">@GossiTheDog</a> this link has a better detail on the actual obfuscated code <a href="https://www.labs.greynoise.io/grimoire/2024-02-what-is-this-old-ivanti-exploit/" rel="nofollow noreferrer">https://www.labs.greynoise.io/grimoire/2024-02-what-is-this-old-ivanti-exploit/</a></p></article><footer><a rel="bookmark" href="https://gnusocial.jp/conversation/2881363#notice-5726322">In conversation</a><time datetime="2024-03-30T23:46:34+09:00" title="Saturday, 30-Mar-2024 23:46:34 JST">about a year ago</time> <span>from <span><a href="https://fosstodon.org/@simon/112184790588687668" rel="external" title="Sent from fosstodon.org via ActivityPub">fosstodon.org</a></span></span><a href="https://fosstodon.org/@simon/112184790588687668">permalink</a><h4>Attachments</h4><ol><li><article><header><div>Domain not in remote thumbnail source whitelist: www.labs.greynoise.io</div><h5><a href="https://www.labs.greynoise.io/grimoire/2024-02-what-is-this-old-ivanti-exploit/">GreyNoise Labs - Code injection or backdoor: A new look at Ivanti’s CVE-2021-44529</a></h5><div> from <span>Ron Bowes</span></div></header><div>In 2021, Ivanti patched a vulnerability that they called “code injection”. Rumors say it was a backdoor in an open source project. Let’s find out what actually happened!</div><footer></footer></article></li></ol></footer></blockquote>

Corresponding Notice

Embed this notice
Simon B (simon@fosstodon.org)'s status on Saturday, 30-Mar-2024 23:46:34 JSTSimon B
in reply to
- Kevin Beaumont
@GossiTheDog this link has a better detail on the actual obfuscated code https://www.labs.greynoise.io/grimoire/2024-02-what-is-this-old-ivanti-exploit/
In conversationabout a year ago from fosstodon.orgpermalink
Attachments
1. Domain not in remote thumbnail source whitelist: www.labs.greynoise.io
  GreyNoise Labs - Code injection or backdoor: A new look at Ivanti’s CVE-2021-44529
  from Ron Bowes
  In 2021, Ivanti patched a vulnerability that they called “code injection”. Rumors say it was a backdoor in an open source project. Let’s find out what actually happened!

Public

Embed Notice

HTML Code

Corresponding Notice