A VR RMM? And poorly categorized by every security vendor.
vspatial.com
vwaas.net
GIF
Recent searches
Search options
#rmm
0 posts0 participants0 posts today
BlueTrait RMM was reported as a known abused by IABs in ProofPoint's Mar 7 report but is not on LOLRMM or categorized well by proxy/firewall vendors. So here are the domains for your $tools.
dalegroup.net
bluetrait.io```
#rmm #infosec #lolrmm
Hackers exploiting flaws in SimpleHelp RMM to breach networks
https://www.bleepingcomputer.com/news/security/hackers-exploiting-flaws-in-simplehelp-rmm-to-breach-networks/
BleepingComputer · Hackers exploiting flaws in SimpleHelp RMM to breach networks
Is it just me or do a lot of RMM platforms rebrand with a new domain questionably often.
For work, I've been tasked with migrating server patching schedules from #connectwise #automate to #RMM. Due to the way we have shoe-horned this in, we need to set the schedule per device via 3 custom fields. Between #windows11 being windows. #microsoft #excel popping up a toast over my mouse whenever it saves, RMM's cluncky interface and the stupid way we have implemented it, I think the last of my Professional IT passion just died.
DFIR Next Steps: What To Do After You Find A Suspicious Use Of Remote Monitoring & Management Tools: https://www.cybertriage.com/blog/dfir-next-steps-what-to-do-after-you-find-a-suspicious-use-of-remote-monitoring-management-tools/
Cyber Triage · DFIR Next Steps: What To Do After You Find A Suspicious Use Of Remote Monitoring & Management ToolsThis post in the “DFIR Next Steps” series is about what to do when you identify the use of RMM tools on a host. This is the first part of a series on RMM
In other news, if you ever wondered what it’s like working as a #MentalHealth #nurse for the #NHS in a #StreetTriage team, check out this screenshot of two messages I received from The Child one night this week.
Mum did indeed get a call.
Fear not, it was a positive outcome.
But #WelcomeToMyWorld. :)
Russian Hackers Use Legit Remote Monitoring Software to Spy on Ukraine and Allies https://thecyberexpress.com/remote-monitoring-software-to-spy-on-ukraine/ #RemoteManagementSoftware #TheCyberExpressNews #CybersecurityNews #RemoteMonitoring #UkraineandAllies #TheCyberExpress #FirewallDaily #CyberWarfare #SmokeLoader #Hackers #malware #Ukraine #CERTUA #Europe #RMM #Spy #US
The Cyber Express · Russian Hackers Use Remote Monitoring Tool to Spy on Ukraine
Cisco Talos Intelligence provides a guide on implementing security controls to prevent the increasingly popular use of remote system management/desktop access tools (e.g. AnyDesk, TeamViewer) by threat actors. They also recommend SIEM alerts and log collection for forensics. 
https://blog.talosintelligence.com/adversaries-are-leveraging-remote-access-tools/
Cisco Talos Blog · Adversaries are leveraging remote access tools now more than ever — here’s how to stop themWhile there are many legitimate uses for this software, adversaries are also finding ways to use them for command and control in their campaigns.
SentinelOne provides a February 2024 cybercrime update, briefing touching on ransomware activity, exploited vulnerabilities in Remote Monitoring and Management (RMM) software, emerging trends and tactics, and law enforcement actions taken this month. https://www.sentinelone.com/blog/february-2024-cybercrime-update-commercial-spyware-ai-driven-apts-and-flawed-rmms/
SentinelOne · February 2024 Cybercrime Update | Commercial Spyware, AI-Driven APTs & Flawed RMMsLearn about the latest trends in cybercriminal activity, new actors, novel threats and evolving tools. Here's February's update.
If any uses #Kaseya, do you know if the cloud version of VSAX is down?
Good morning and happy Thursday #Fediverse!
Let’s start this beautiful day off with our #KoffeeWithKyle chat to discuss what our agenda is for today.
For me, my new replacement speakers came in for my Nintendo Switch so I’ll be replacing them. I also have the usual work stuff. Getting started updating clients endpoints to meet GM guidelines. Then it’s just relaxing at home.
GIF
Today ended up being quite the busy day. Man!
Repurposed and old ass Dell Optiplex into an Ubuntu machine. Ran some stress tests on this low end gaming machine this guy says is running slow (Lol). All while getting my Kaseya Certified Administrator in VSAX certification.
I’m tired.
TrendMicro report on exploring forensic evidence and detection methods for remote monitoring and management (RMM) tooling. Also including common sync tools used in incidents: https://jsac.jpcert.or.jp/archive/2023/pdf/JSAC2023_1_1_yamashige-nakatani-tanaka_en.pdf
@GossiTheDog Trend Micro did an absolutely fantastic job doing a lot of the heavy lifting to help accelerate detection / use case development:
Huntress published their small and medium-sized business (SMB) threat landscape in a report. Key findings include:
- use of living off the land (LoL) techniques instead of custom tools and malware
- hijacking of remote monitoring and management (RMM) software
- surge of identity-based attacks, leading to information theft or business email compromise (BEC)
- threat of lesser-known ransomware groups
www.huntress.comNavigating the SMB Threat Landscape: Key Insights from Huntress’ SMB Threat ReportNavigate the SMB threat landscape with Huntress’ SMB Threat Report. Gain insights into evolving cyber threats targeting SMBs. Read on for key insights.
W niektórych Linuxach jest wgrane takie cudowne coś, co pozwala zainstalować na raz wiele niezbędnych programów pokroju przeglądarki, steama czy innych VLC. Na Windowsa znalazłem Ninite, ewentualnie wiele osób poleca jeszcze Chocolatey. Znacie jeszcze jakieś takie programy, które ułatwiają przygotowanie sprzętu dla nowego użytkownika (w domyśle prywatnego)?