filmov
tv
SentinelOne VS CVE-2022-30190 (Follina)
Показать описание
SentinelOne customers are protected from CVE-2022-30190 (Follina).
- On May 27th 2022, @nao_sec identified a malicious Microsoft Word document using a "ms-msdt" protocol scheme for arbitrary code execution.
- As the industry continues to identify novel ways to abuse this ability over the weekend, Microsoft assigned it as CVE-2022-30190.
- Similar to what we observed with Log4j, the methods of execution and outcomes of this vulnerability continue to expand as it gains more researcher and attacker attention.
- Specific attackers have been observed exploiting the vulnerability. Chinese APTs have potentially made use of it around May 20th, 2022, but first samples identified as easily as mid-April 2022.
- Defenders should consider it a critical vulnerability and seek mitigation steps immediately. Additional effort should then be made to hunt for execution prior to public knowledge as attackers could have already abused it.
#cybersecurity #ransomware #XDR
~~~Subscribe to our channels:~~~
~~~~~~~~~~~~
- On May 27th 2022, @nao_sec identified a malicious Microsoft Word document using a "ms-msdt" protocol scheme for arbitrary code execution.
- As the industry continues to identify novel ways to abuse this ability over the weekend, Microsoft assigned it as CVE-2022-30190.
- Similar to what we observed with Log4j, the methods of execution and outcomes of this vulnerability continue to expand as it gains more researcher and attacker attention.
- Specific attackers have been observed exploiting the vulnerability. Chinese APTs have potentially made use of it around May 20th, 2022, but first samples identified as easily as mid-April 2022.
- Defenders should consider it a critical vulnerability and seek mitigation steps immediately. Additional effort should then be made to hunt for execution prior to public knowledge as attackers could have already abused it.
#cybersecurity #ransomware #XDR
~~~Subscribe to our channels:~~~
~~~~~~~~~~~~
0:04:09
SentinelOne VS CVE-2022-30190 (Follina)
0:48:30
Understanding Follina (CVE-2022-30190)
0:04:50
Disable MSDT URL (CVE-2022-30190, Follina) with Quest KACE SMA & PowerShell
0:00:19
Folina (CVE-2022-30190) Proof of Concept by Nee
0:31:48
CVE-2022-30190 | Follina MSDT - Part 1
0:03:54
Follina (CVE-2022-30190) - MS Office Suite/MSDT 0day
0:05:26
DIY Mitigation for CVE-2022-30190 'Follina'
0:04:43
Thorough MSDT 0-Day CVE-2022-30190 POC 'Follina'
0:00:40
ms-msdt 0day rce (CVE-2022-30190)
0:06:14
Follina - Exploiting MS-MSDT 0-Day CVE-2022-30190 | Alert! Everyone Windows Hacked || Pentest blog
0:10:49
Lets Fun With 'Follina'| CVE-2022-30190 Exploit @_JohnHammond
0:07:48
Exploiting MSDT 0-Day CVE-2022-30190
0:02:45
CVE-2022-30190 / Follina Vuln
0:03:11
DO IT NOW | Fix cve-2022 30190 Vulnerability | Follina
0:17:50
Follina- MSDT Exploit- CVE2022-30190 Explained with Detection and Mitigation
0:02:04
POC - 'FOLLINA' (CVE-2022-30190)
0:00:43
Micropatching the 'Follina' 0day
0:00:30
Mitigando a CVE-2022-30190 'Follina' com a Planos Informática.
0:05:06
Follina / CVE-2022-30190 - Microsoft Office Zero-Click RCE | Threat SnapShot
0:07:50
Five Hacking Tips - Follina - CVE2022-30190
0:03:02
Microsoft Office Zero-Day Vulnerability | Follina | CVE-2022-30910 | Support Diagnostic Tool Exploit
0:04:54
🇺🇦 SentinelOne Vs. Pteranodon Backdoor – Prevention and Detection
0:25:32
SA - SOC173-123 - Follina 0-Day Detected
0:01:50
Demonstration of Attack Exploiting CVE-2022-30190
Комментарии