Will Dormann on Nostr: Let's use Ivanti VPN CVE-2024-21887 CVE-2023-46805 as an example of magical thinking. ...
Let's use Ivanti VPN CVE-2024-21887 CVE-2023-46805 as an example of magical thinking.
If you think your web server was compromised, would you use a remote web browser to confirm whether this is true?
This is what the "external" ICT workflow does.
Thoughts and prayers to customers.
Published at
2024-01-11 14:06:35Event JSON
{
"id": "9d914fa8a6d427f544bfd2eea27a99cc86b133d124aa7005a46baea0f1b05e58",
"pubkey": "9c7b9756690880e06dd0ac4246c1d27e99c2f9d8beb819e2e3156dc3e2d8d3e6",
"created_at": 1704981995,
"kind": 1,
"tags": [
[
"proxy",
"https://infosec.exchange/users/wdormann/statuses/111737700027118661",
"activitypub"
]
],
"content": "Let's use Ivanti VPN CVE-2024-21887 CVE-2023-46805 as an example of magical thinking.\nIf you think your web server was compromised, would you use a remote web browser to confirm whether this is true?\nThis is what the \"external\" ICT workflow does.\nThoughts and prayers to customers.\n\nhttps://media.infosec.exchange/infosec.exchange/media_attachments/files/111/737/690/448/058/268/original/47481e4faa7cc892.png\n\nhttps://media.infosec.exchange/infosec.exchange/media_attachments/files/111/737/691/089/848/438/original/e4856b686057e7b1.png\n\nhttps://media.infosec.exchange/infosec.exchange/media_attachments/files/111/737/691/561/722/784/original/33b300cd0f4131bd.png\n\nhttps://media.infosec.exchange/infosec.exchange/media_attachments/files/111/737/692/052/581/535/original/e50f28d94e34adad.jpg",
"sig": "a57246f14ab3bf2c2e25548de4dd2edf57225a5e33701fdc4960b5d8c52b9d8fa074af8a7ba775572d07ca5d0d5e41b77f074b309509a44e59b2a8c6d060f2e8"
}
