Embed Notice

HTML Code

<blockquote style="position: relative; padding-left: 55px;"><section><a href="https://fosstodon.org/users/bert_hubert/statuses/114391804524614869">bert hubert 🇺🇦🇪🇺🇺🇦 (bert_hubert@fosstodon.org)'s status on Thursday, 24-Apr-2025 17:02:34 JST</a><a href="https://fosstodon.org/@bert_hubert" title="bert_hubert@fosstodon.org"><img src="https://gnusocial.jp/avatar/91208-48-20230123121904.webp" width="48" height="48" alt="bert hubert 🇺🇦🇪🇺🇺🇦" style="position: absolute; left: 0; top: 0;">bert hubert 🇺🇦🇪🇺🇺🇦</a></section><article><p>"Three of the four most exploited vulns were zero days, all were in cybersecurity products (Palo-Alto, Ivanti Connect Secure, Ivanti Policy Secure and Fortinet)." <a href="https://cyberplace.social/@GossiTheDog/114391474274944937" rel="nofollow noreferrer">https://cyberplace.social/@GossiTheDog/114391474274944937</a></p></article><footer><a rel="bookmark" href="https://gnusocial.jp/conversation/4943897#notice-9687049">In conversation</a><time datetime="2025-04-24T17:02:34+09:00" title="Thursday, 24-Apr-2025 17:02:34 JST">about a month ago</time> <span>from <span><a href="https://fosstodon.org/@bert_hubert/114391804524614869" rel="external" title="Sent from fosstodon.org via ActivityPub">fosstodon.org</a></span></span><a href="https://fosstodon.org/@bert_hubert/114391804524614869">permalink</a><h4>Attachments</h4><ol><li><article><header><div>Domain not in remote thumbnail source whitelist: cyberplace.social</div><h5><a href="https://cyberplace.social/@GossiTheDog/114391474274944937">Kevin Beaumont (@GossiTheDog@cyberplace.social)</a></h5><div> from <span>Kevin Beaumont</span></div></header><div>Attached: 1 imageExploitation was the primary entry method into orgs, although it declined slight YoY due to the rise of infostealers. Three of the four most exploited vulns were zero days, all were in cybersecurity products (Palo-Alto, Ivanti Connect Secure, Ivanti Policy Secure and Fortinet).  In most of the cases documented, it was ransomware groups running rings around security vendors, ie the security vendors were the cause of the victims woes due to defective products.</div><footer></footer></article></li></ol></footer></blockquote>

Corresponding Notice

Embed this notice
bert hubert 🇺🇦🇪🇺🇺🇦 (bert_hubert@fosstodon.org)'s status on Thursday, 24-Apr-2025 17:02:34 JST bert hubert 🇺🇦🇪🇺🇺🇦
"Three of the four most exploited vulns were zero days, all were in cybersecurity products (Palo-Alto, Ivanti Connect Secure, Ivanti Policy Secure and Fortinet)." https://cyberplace.social/@GossiTheDog/114391474274944937
In conversationabout a month ago from fosstodon.orgpermalink
Attachments
1. Domain not in remote thumbnail source whitelist: cyberplace.social
  Kevin Beaumont (@GossiTheDog@cyberplace.social)
  from Kevin Beaumont
  Attached: 1 image Exploitation was the primary entry method into orgs, although it declined slight YoY due to the rise of infostealers. Three of the four most exploited vulns were zero days, all were in cybersecurity products (Palo-Alto, Ivanti Connect Secure, Ivanti Policy Secure and Fortinet). In most of the cases documented, it was ransomware groups running rings around security vendors, ie the security vendors were the cause of the victims woes due to defective products.

Public

Embed Notice

HTML Code

Corresponding Notice