Discover and read the best of Twitter Threads about #TRITON

Most recents (3)

Der Vorwurf der #Pull-Effekte an NGOs wie ist zurück. Sebastian #Kurz wirft NGOs in der @welt vor, dass durch ihre Einsätze mehr Menschen fliehen und mehr Menschen sterben. Dieser Vorwurf ist historisch und empirisch nicht haltbar. Ein Thread #Seenotrettung #SeaWatch3
In dieser Studie des European University Institute Florenz wird deutlich: Lange bevor die Seenotrettungs-NGOs aktiv wurden stiegen die Zahlen über das zentrale Mittelmeer beträchtlich an, von knapp unter 50.000 im Jahr 2013 auf über 150.000 im Jahr 2014: cadmus.eui.eu/bitstream/hand…
🇮🇹 hatte seinerzeit das Seenotrettungsprogramm #MareNostrum aufgelegt. Es waren Politiker wie der 🇩🇪 Innenminister Thomas de Maizière die auf ein Ende der Mission gedrängt haben. Ausgerechnet die BILD-Zeitung hatte damals die Vorgänge valide rekonstruiert
bild.de/politik/auslan…
Read 19 tweets
My @FireEye friends @DavidPany and @deeemdee4 put out a badass blog on tunneled RDP. What is it? How is it used? What can you do to find it? Read more here: fireeye.com/blog/threat-re…
Tunneled RDP typically refers to an interactive RDP session that occurs over the same "channel" as another comms session. This is done in a variety of ways, but primarily established through either a backdoor implant or a utility with some sort of port forwarding setup.
On RDP tunneled over SSH with PLINK. We've seen the *standard* PLINK file used. We've also seen PLINK variants with hard-coded parameters and configs and whatnot.
Read 18 tweets
Today at #S4x19, @electricfork and I debated different sides of "if OT tools and talent are needed to detect attacks on ICS." Some thoughts on ICS attacks and #TRITON in a tweep thread.
For the debate, I'm not convinced either way because there are few *public* intrusion data sets for either side of the argument. I think peeps are over it now, maybe no point to sharing this, but to get the convo started let's dump/share some rando #TRITON #TRISIS TTPs.
.@FireEye blogged/presented about #TRITON and some of the incident response activities in depth by @voteblake and friends in late 2017, fireeye.com/blog/threat-re… and
Read 25 tweets

Related hashtags

Did Thread Reader help you today?

Support us! We are indie developers!


This site is made by just three indie developers on a laptop doing marketing, support and development! Read more about the story.

Become a Premium Member ($3.00/month or $30.00/year) and get exclusive features!

Become Premium

Too expensive? Make a small donation by buying us coffee ($5) or help with server cost ($10)

Donate via Paypal Become our Patreon

Thank you for your support!