Advertisement · 728 × 90
#
Hashtag

#JavaGhost

Advertisement · 728 × 90
Curtis
Curtis
@cybershtuff
10 months ago
High-level overview of JavaGhost's TTPs

High-level overview of JavaGhost's TTPs

This isn’t recycled noise on JavaGhost. It surfaces the often-overlooked details responders and CTI analysts actually need.

Practical takeaways include:
✔️ Mapped TTPs
✔️ IR checklist
✔️ Actor context & relevancy

invictus-ir.com/news/profili...

#CTI #CloudSecurity #AWS #DFIR #JavaGhost

1 0 0 0
Curtis
Curtis
@cybershtuff
11 months ago
Preview
Tales from the cloud trenches: The Attacker doth persist too much, methinks | Datadog Security Labs A cloud attack targeting Amazon SES and persistence via AWS Lambda, AWS IAM Identity Center and AWS IAM

🚨 New blog from @securitylabs.datadoghq.com on fresh AWS TTPs! I pivoted & enriched their infra data to uncover the actor #JavaGhost is likely abusing callback proxy networks and leveraging Mass SMTP Tester.

🔗 securitylabs.datadoghq.com/articles/tal...

#CloudSecurity #ThreatIntel #CTI

1 0 1 0
2rZiKKbOU3nTafniR2qMMSE0gwZ
2rZiKKbOU3nTafniR2qMMSE0gwZ
@2rzikkbou3ntafnir2qmmse0gwz.activitypub.awakari.com.ap.brid.gy
1 year ago

Misconfigured AWS Accounts Are Fueling Phishing Campaigns Misconfigured AWS accounts are letting ...

www.esecurityplanet.com/cybersecurity/aws-accoun...

#Cybersecurity #amazon #aws #javaghost #phishing #phishing #attacks

Event Attributes

0 0 0 0
Hackread.com
Hackread.com
@hackread
1 year ago
Preview
JavaGhost Uses Amazon IAM Permissions to Phish Organizations Follow us on Bluesky, Twitter (X) and Facebook at @Hackread

New: Researchers warn that #JavaGhost is ramping up AWS attacks - phishing, IAM abuse, and stealth tactics to target cloud environments.

#CyberSecurity #AWS #CloudSecurity

Read: hackread.com/javaghost-us...

1 1 0 0