This is an example of why it can be risky to plug hvacs, ups, IoT devices, and other non standard devices directly onto your internal network. They’re on your network so if hackd they can recon and eventually do damage.
“...
Enumerate usernames on an internal network domain where you have no creds by using SMB Relay
...”
https://twitter.com/opexxx/status/986630264867696641?s=21
No comments:
Post a Comment