Embed Notice

HTML Code

<blockquote style="position: relative; padding-left: 55px;"><section><a href="https://cyberplace.social/users/GossiTheDog/statuses/113403371488235122">Kevin Beaumont (gossithedog@cyberplace.social)'s status on Friday, 01-Nov-2024 03:09:04 JST</a><a href="https://cyberplace.social/@GossiTheDog" title="gossithedog@cyberplace.social"><img src="https://gnusocial.jp/avatar/38360-48-20240926225417.webp" width="48" height="48" alt="Kevin Beaumont" style="position: absolute; left: 0; top: 0;">Kevin Beaumont</a></section><article><p>Kingdom Bank in the UK have got their online banking available in the past 30 minutes by... changing the URL.  It's now <a href="https://onl1ne44.kingdom.bank" rel="nofollow noreferrer">https://onl1ne44.kingdom.bank</a></p><p>As before it's behind Microsoft Azure Application Gateway.  </p><p>Many of the NoName victims over the last few days use Azure Application Gateway.  I've been in touch with a few - they have DDoS mitigation enabled in the Azure service, but it doesn't work against NoName doing basic attacks.  This includes councils etc.</p><p><a href="https://cyberplace.social/tags/NoName" rel="tag">#NoName</a> <a href="https://cyberplace.social/tags/threatintel" rel="tag">#threatintel</a></p></article><footer><a rel="bookmark" href="https://gnusocial.jp/conversation/3660931#notice-7645289">In conversation</a><time datetime="2024-11-01T03:09:04+09:00" title="Friday, 01-Nov-2024 03:09:04 JST">about 22 days ago</time> <span>from <span><a href="https://cyberplace.social/@GossiTheDog/113403371488235122" rel="external" title="Sent from cyberplace.social via ActivityPub">cyberplace.social</a></span></span><a href="https://cyberplace.social/@GossiTheDog/113403371488235122">permalink</a><h4>Attachments</h4><ol><li><label><a rel="external" href="https://gnusocial.jp/attachment/3381930">Untitled attachment</a></label><br><a href="https://cyberplace.social/system/media_attachments/files/113/403/360/570/333/864/original/19e7b500a294137b.png" rel="external">https://cyberplace.social/system/media_attachments/files/113/403/360/570/333/864/original/19e7b500a294137b.png</a></li><li><label><a rel="external" href="https://gnusocial.jp/attachment/3381931">Untitled attachment</a></label><br></li></ol></footer></blockquote>

Corresponding Notice

Embed this notice
Kevin Beaumont (gossithedog@cyberplace.social)'s status on Friday, 01-Nov-2024 03:09:04 JST Kevin Beaumont
Kingdom Bank in the UK have got their online banking available in the past 30 minutes by... changing the URL. It's now https://onl1ne44.kingdom.bank
As before it's behind Microsoft Azure Application Gateway.
Many of the NoName victims over the last few days use Azure Application Gateway. I've been in touch with a few - they have DDoS mitigation enabled in the Azure service, but it doesn't work against NoName doing basic attacks. This includes councils etc.
#NoName #threatintel
In conversationabout 22 days ago from cyberplace.socialpermalink
Attachments
1. Untitled attachment
  https://cyberplace.social/system/media_attachments/files/113/403/360/570/333/864/original/19e7b500a294137b.png
2. Untitled attachment

Public

Embed Notice

HTML Code

Corresponding Notice