**JΞSŦΞR ΔCŦUΔL** @[email protected] · Mar 29, 2023, 23:36

**JΞSŦΞR ΔCŦUΔL** @[email protected] · Mar 29, 2023, 23:36

JΞSŦΞR ΔCŦUΔL @[email protected]

Mar 29, 2023, 23:36

JΞSŦΞR ΔCŦUΔL @[email protected]

OOOF.
https://twitter.com/abuse_ch/status/1640604332323225600

**Silabus** @[email protected] · 2023-03-29T23:44:18Z

Silabus @[email protected]

@th3j35t3r am a layman when it comes to this. i can guess its allowing bots on their network. any other harm from there?

Mar 29, 2023, 23:44 · 1· 0· 0

**JΞSŦΞR ΔCŦUΔL** @[email protected] · Mar 29, 2023, 23:46

**JΞSŦΞR ΔCŦUΔL** @[email protected] · Mar 29, 2023, 23:46

Mar 29, 2023, 23:46

JΞSŦΞR ΔCŦUΔL @[email protected]

@Silabus That's a Mastodon instance dedicated to 'InfoSec' - lots of security pros on there, many with clearances.

It has been commandered by aggressors who have installed C2 software to control a botnet.

This is the second incident in 2 months, previously it had a vulnerability whereby you could snatch any user on its password via a simple XSS inject.

**Silabus** @[email protected] · Mar 29, 2023, 23:48

**Silabus** @[email protected] · Mar 29, 2023, 23:48

Mar 29, 2023, 23:48

Silabus @[email protected]

@th3j35t3r so in other terms "hey heres something that could dump a lot of folks info if some one wanted to. oh this is the second time in two months" kinda thing?

Resources

Developers

What is CounterSocial?

counter.social

More…