Collaborate Disseminate
With the rise of ML, traditional red teams tasked with probing and exposing security vulnerabilities found themselves facing a new set of challenges that required a deep and comprehensive understanding of machine learning. Google’s recent announcement … Continue reading Google’s AI Red Team: Advancing cybersecurity on the AI frontier
Google has created a dedicated AI Red Team tasked with carrying out complex technical attacks on artificial intelligence systems.
The post Google Creates Red Team to Test Attacks Against AI Systems appeared first on SecurityWeek.
Continue reading Google Creates Red Team to Test Attacks Against AI Systems
A tool that automates the delivery of malware from external attackers to target employees’ Microsoft Teams inbox has been released. TeamsPhisher (Source: Alex Reid) About the exploited vulnerability As noted by Jumpsec researchers Max Corbridge and Tom… Continue reading Malware delivery to Microsoft Teams users made easy
In this post, we’ll review a simple technique that we’ve developed to encrypt Cobalt Strike’s Beacon in memory while executing BOFs to prevent a memory scan from detecting Beacon. Picture this — you’re on a red team engagement and your phish went through, your initial access payload got past EDR, your beacon is now living […]
The post Your BOFs Are gross, Put on a Mask: How to Hide Beacon During BOF Execution appeared first on Security Intelligence.
Continue reading Your BOFs Are gross, Put on a Mask: How to Hide Beacon During BOF Execution
Security researchers have uncovered a bug that could allow attackers to deliver malware directly into employees’ Microsoft Teams inbox. “Organisations that use Microsoft Teams inherit Microsoft’s default configuration which allows users fro… Continue reading Microsoft Teams vulnerability allows attackers to deliver malware to employees
This year, against the backdrop of attacks on everyone from healthcare institutions and schools to financial services organizations, as well as the introduction of legislation across the UK and EU to move security up the agenda, cybersecurity has undou… Continue reading Red teaming can be the ground truth for CISOs and execs
Over the past few years, there has been a massive proliferation of YARA signatures for Beacon. We know from conversations with our customers that this has become problematic when using Cobalt Strike for red team engagements and that there has been some confusion over how Cobalt Strike’s malleable C2 options can help. Therefore, this blog […]
Continue reading Cobalt Strike and YARA: Can I Have Your Signature?
DEF CON’s AI Village will host the first public assessment of large language models (LLMs) at the 31st edition of the hacker convention this August, aimed at finding bugs in and uncovering the potential for misuse of AI models. The possibilities … Continue reading Finding bugs in AI models at DEF CON 31
This blog post accompanies a new addition to the Arsenal Kit – The User-Defined Reflective Loader Visual Studio (UDRL-VS). Over the past few months, we have received a lot of feedback from our users that whilst the flexibility of the UDRL is great, there is not enough information/example code to get the most out of […]
Continue reading Revisiting the User-Defined Reflective Loader Part 1: Simplifying Development
The Challenge with Using Cobalt Strike for Advanced Red Team Exercises While next-generation AI and machine-learning components of security solutions continue to enhance behavioral-based detection capabilities, at their core many still rely on signature-based detections. Cobalt Strike being a popular red team Command and Control (C2) framework used by both threat actors and red teams […]
The post Defining the Cobalt Strike Reflective Loader appeared first on Security Intelligence.
Continue reading Defining the Cobalt Strike Reflective Loader