@socprime.com on Bluesky

JavaScript RequiredThis is a heavily interactive web application, and JavaScript is required. Simple HTML interfaces are possible, but that is not what this is. Learn more about Bluesky at bsky.social and atproto.com.

Post

SOC Prime

socprime.com

did:plc:zwo4ojr44teugvmr37xqza7u

Attackers exploit CVE-2023-22527, a known critical Confluence Data Center and Server vulnerability, to enable RDP access, gain RCE, and deploy ELPACO-Team ransomware. Proactively detect intrusions with curated Sigma rules from SOC Prime Platform. buff.ly/W0kpXor https://socprime.com/blog/detect-cve-2023-22527-exploitation-to-drop-elpaco-team-ransomware/?utm_source=bluesky&utm_medium=social&utm_campaign=latest-threats&utm_content=blog-post

2025-05-21T09:06:58.446Z