Go Back   DaemonForums > DaemonForums.org > News

News News regarding BSD and related.

Thread Tools Display Modes
  #1   (View Single Post)  
Old 23rd May 2021
e1-531g e1-531g is offline
ISO Quartermaster
Join Date: Mar 2014
Posts: 619
Default PowerShell Is Source of More Than a Third of Critical Security Threats

Found it on Slashdot
PowerShell was the source of more than a third of critical threats detected on endpoints in the second half of 2020, according to a Cisco research study released at the RSA Conference today.

The top category of threats detected across endpoints by Cisco Secure Endpoint was dual-use tools leveraged for exploitation and post-exploitation tasks. PowerShell Empire, Cobalt Strike, PowerSploit, Metasploit and other such tools have legitimate uses, Cisco noted in the report, but they’ve become part of the attacker toolkit too. Such “living off the land” tactics can avoid detection when deploying foreign tools or code to compromise systems.

In second place was ransomware, and after the recent Colonial Pipeline hack probably needs no further comment.
In the past I have created a thread about LOLBAS in OpenBSD, but unfortunately there were no constructive answers what to remove from i.e. chroot to restrict user
Signature: Furthermore, I consider that systemd must be destroyed.
Based on Latin oratorical phrase
Reply With Quote
  #2   (View Single Post)  
Old 23rd May 2021
jmccue jmccue is offline
Real Name: John McCue
Shell Scout
Join Date: Aug 2012
Location: here
Posts: 110

I am wondering how this effects people who installed and used this under Linux. At work, a few people I know did install powershell on their work systems, me, I stayed away from it on the Linux systems I have.

Out of curiosity, I did a package search, and from what I see powershell is not in OpenBSD packages. Not that I would ever use it
Reply With Quote

lolbas, lolbins, powershell

Thread Tools
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off

Forum Jump

Similar Threads
Thread Thread Starter Forum Replies Last Post
Security PostgreSQL critical security fix now available J65nko News 1 4th April 2013 09:56 PM
Security Critical security holes closed in Firefox 16 and Thunderbird 16 J65nko News 0 29th October 2012 04:35 PM
Five DNS Threats You Should Protect Against J65nko News 0 13th October 2011 07:11 PM
phpMyAdmin updates close critical security holes J65nko News 0 26th July 2011 06:57 PM
Apache HTTPClient 4.1.1 fixes critical security bug J65nko News 0 23rd March 2011 12:25 AM

All times are GMT. The time now is 04:45 AM.

Powered by vBulletin® Version 3.8.4
Copyright ©2000 - 2022, Jelsoft Enterprises Ltd.
Content copyright © 2007-2010, the authors
Daemon image copyright ©1988, Marshall Kirk McKusick