- The Grugq's Newsletter
- Posts
- June 3, 2022
June 3, 2022
The Folina 0day was used to attack Russia and Belarus, based on the location where the ITW samples were uploaded. It is interesting that a clearly Western(-aligned) APT was detected (the file was uploaded to VT).
There is the question of what the original users were targeting, and why did their 0day get uploaded? I’m curious, but I doubt there are any threat Intel companies with the telemetry to inform us. Kaspersky? GroupIB? Positive Technology? Might be interesting if they made a report about cyber campaigns that were detected and thwarted.
The infosec community reacted rapidly and dealt with the vulnerability quickly. I think this shows how the infosec community is dedicated to securing the internet for everyone, even if the targets were Russians and the attacker was a (probably) Western government.
-
-
Fake article, but the technology exists and can totally do this already.
-
Red Mercury, an invented substance much sought after by terrorists and other idiots, gets a back story.
-
-
-
-
I’d watch this.
-
Too true.
-
Everyone has a cyber!
-
-
0day whiplash, there’s another one being exploited ITW.
-
-
This is a good read.
-
-
-
Reply