all InfoSec news
Compromised Web Server
Feb. 4, 2023, 5:04 p.m. | /u/techno_it
cybersecurity www.reddit.com
Web shell attack was detected on the internet-facing IIS web server. The attacker has likely taken advantage of a vulnerability in the web server software where an attacker was able to upload and execute malicious files ( Webshell payload, PowerShell scripts, netcat) and execute arbitrary commands.
The attacker performed reconnaissance using whoami, dir, and systeminfo to gather information about its environment and configuration.
AV was able to detect and stop the attack quickly before any harm could be done …
attack compromised configuration cybersecurity detect environment files iis information internet malicious netcat payload powershell powershell scripts reconnaissance scripts server shell software taken the web vulnerability web web server web shell webshell whoami
More from www.reddit.com / cybersecurity
Jobs in InfoSec / Cybersecurity
Social Engineer For Reverse Engineering Exploit Study
@ Independent study | Remote
Data Privacy Manager m/f/d)
@ Coloplast | Hamburg, HH, DE
Cybersecurity Sr. Manager
@ Eastman | Kingsport, TN, US, 37660
KDN IAM Associate Consultant
@ KPMG India | Hyderabad, Telangana, India
Learning Experience Designer in Cybersecurity (f/m/div.) (Salary: ~113.000 EUR p.a.*)
@ Bosch Group | Stuttgart, Germany
Senior Security Engineer - SIEM
@ Samsara | Remote - US