Embed Notice

HTML Code

<blockquote style="position: relative; padding-left: 55px;"><section><a href="https://infosec.exchange/users/greynoise/statuses/114151396579507612">GreyNoise (greynoise@infosec.exchange)'s status on Thursday, 13-Mar-2025 05:44:15 JST</a><a href="https://infosec.exchange/@greynoise" title="greynoise@infosec.exchange"><img src="https://gnusocial.jp/avatar/239158-48-20240209210313.webp" width="48" height="48" alt="GreyNoise" style="position: absolute; left: 0; top: 0;">GreyNoise</a></section><article><p>🚨 March 12 UPDATE: Grafana Exploitation May Signal Multi-Phase SSRF Attacks. Update + original analysis: <a href="https://www.greynoise.io/blog/new-ssrf-exploitation-surge" rel="nofollow">https://www.greynoise.io/blog/new-ssrf-exploitation-surge</a> <a href="https://infosec.exchange/tags/Cybersecurity" rel="tag">#Cybersecurity</a> <a href="https://infosec.exchange/tags/GreyNoise" rel="tag">#GreyNoise</a> <a href="https://infosec.exchange/tags/Vulnerability" rel="tag">#Vulnerability</a></p></article><footer><a rel="bookmark" href="https://gnusocial.jp/conversation/4721106#notice-9245492">In conversation</a><time datetime="2025-03-13T05:44:15+09:00" title="Thursday, 13-Mar-2025 05:44:15 JST">about a month ago</time> <span>from <span><a href="https://infosec.exchange/@greynoise/114151396579507612" rel="external" title="Sent from infosec.exchange via ActivityPub">infosec.exchange</a></span></span><a href="https://infosec.exchange/@greynoise/114151396579507612">permalink</a><h4>Attachments</h4><ol><li><article><header><div>Domain not in remote thumbnail source whitelist: cdn.prod.website-files.com</div><h5><a href="https://www.greynoise.io/blog/new-ssrf-exploitation-surge">New SSRF Exploitation Surge Serves as a Reminder of 2019 Capital One Breach</a></h5><div></div></header><div>GreyNoise observed 400+ IPs exploiting multiple SSRF vulnerabilities across various platforms, with recent activity concentrated in Israel and the Netherlands.</div><footer></footer></article></li></ol></footer></blockquote>

Corresponding Notice

Embed this notice
GreyNoise (greynoise@infosec.exchange)'s status on Thursday, 13-Mar-2025 05:44:15 JST GreyNoise
🚨 March 12 UPDATE: Grafana Exploitation May Signal Multi-Phase SSRF Attacks. Update + original analysis: https://www.greynoise.io/blog/new-ssrf-exploitation-surge #Cybersecurity #GreyNoise #Vulnerability
In conversationabout a month ago from infosec.exchangepermalink
Attachments
1. Domain not in remote thumbnail source whitelist: cdn.prod.website-files.com
  New SSRF Exploitation Surge Serves as a Reminder of 2019 Capital One Breach
  GreyNoise observed 400+ IPs exploiting multiple SSRF vulnerabilities across various platforms, with recent activity concentrated in Israel and the Netherlands.

Public

Embed Notice

HTML Code

Corresponding Notice