@crowdsec.bsky.social on Bluesky

JavaScript RequiredThis is a heavily interactive web application, and JavaScript is required. Simple HTML interfaces are possible, but that is not what this is. Learn more about Bluesky at bsky.social and atproto.com.

Post

CrowdSec

crowdsec.bsky.social

did:plc:pjwcnpqzk7uffjo2jnzfwat7

🔥Campaign Timeline: 1. 08/04: The attacker launches a small-scale reconnaissance campaign using ~100 rented machines from a small Indonesian-based company. The reconnaissance involves exploits such as CVE-2021-41773 and CVE-2021-42013 for Apache Server to find vulnerable web servers. https://app.crowdsec.net/cti?q=classifications.classifications.label%3A"Attacker+Group%3A+goofy+khaki+flamecrest"+AND+(reputation%3Amalicious+OR+reputation%3Asuspicious+OR+reputation%3Aknown)&page=1

2025-04-25T10:48:06.017Z