attackify

NPM has removed the compromised version!

NPM package NX compromised! The nx package versions 20.11.0 and 21.7.0 appears to be compromised with code published that would attempt malicious actions including modifying the installers .bashrc/.zshrc. github.com/nrwl/nx/issues…

After successful compromise, sensitive data is uploaded to a new Git repo for the affected users: github.com/search?q=s1ngu…

👀 DPRK threat actors are now using deepfakes and fake Zoom links to socially engineer macOS users. Starts with a Telegram message. Ends with AppleScript. Targets crypto wallets. Macs don't get viruses? 📖 by @stuartjash & @birchb0y & Jonathan Semon huntress.com/blog/inside-bl…

🔥 NEW: Cobalt Strike BOF simulation modules are live! Introducing ATTACKIFY's new Cobalt Strike BOF simulation modules - so your blue team can finally test defenses against these post-exploitation techniques like: ✅ COFF loading patterns ✅ Direct syscall techniques ✅ Reflective loading ✅ TrustedSec BOF collections ✅ Memory injection workflows and more... No more guessing if your EDR catches Cobalt Strike BOFs 🎯 attackify.com/blog/now-your-… Sign-up for a FREE account at ATTACKIFY and start validating your security today! app.attackify.com/account-regist… #CyberSecurity #BOF #CobaltStrike #EDR #ThreatSimulation #blueteam #ATTACKIFY

👋 Meet L.U.K.E, our new AI Engineer at ATTACKIFY! After a simulation, Luke will write custom detection rules, explain findings in plain English, and suggest fixes that actually work. One beta tester: "Like having a senior analyst who never sleeps" 🤖☕️ To our PRO customers, Luke is waiting for you in the simulation results tab! Luke will be growing and learning new skills over the next year to bring you even more value throughout the ATTACKIFY platform #ATTACKIFY #AIforSecurity

Turns out, compliance reporting doesn't have to make you cry! 😅 Our new Compliance Dashboard maps your ATTACKIFY security tests and results directly to SOC2, NIST, CIS, PCI & more. The gap analysis shows exactly where you're vulnerable with actual test data backing it up. #ATTACKIFY #ComplianceAutomation

🚀 JUST LAUNCHED: ATTACKIFY 3.0 is live! ✅ New compliance dashboards ✅ Enhanced security testing ✅ Our own AI Engineer (we named him Luke!) The biggest update we've ever released that goes way more than skin deep. Stay tuned as we unveil more exciting features and updates! If you don't have an account already, get a free starter account at: app.attackify.com/login #Cybersecurity #ATTACKIFY

🚀 New Feature: TableTop Exercises! 🛡️ We're excited to announce the new TableTop Exercises feature in ATTACKIFY! This new addition to our platform is designed to help you & your team improve your cyber incident response skills through interactive, scenario-based learning. TableTop Exercises in ATTACKIFY: • Diverse selection of tabletop scenarios • Step-by-step guided exercise process • Timed challenges for real-world pressure • Hint system for guidance and learning • Progress saving for flexibility • Local browser storage for privacy and security Read more about it on our blog: attackify.com/blog/table_top… #tabletop #CyberSecurity

🚀New ATTACKIFY Module: APT41 Sandboxie DLL Side-Loading 🤖 @Threatlabz recently covered some of the new techniques & updated tools from #APT41. We started adding modules to accurately simulate the new Sandboxie DLL side-loading technique covered in their recent blog. 🔍 Test your defenses against sophisticated threats 🛡️ Improve detection of stealthy payload execution 🔬 Hands-on experience with real-world APT tactics Elevate your cyber defense game with our advanced APT emulations and malicious behaviour simulations! Sign up for FREE at attackify.com

🚀 Bridging MITRE ATT&CK with ATTACKIFY for Advanced Threat Actor Emulation! Exciting news! We've just released a new CLI tool in beta to compliment ATTACKIFY that will help you instantly run emulations based on any @MITREattack Threat Actor Group Profiles. 🎯 Map ATT&CK TTPs to ATTACKIFY Modules 🛡️ Automate Threat Actor Emulations 🔗 Run Custom APT Campaigns Instantly 🔐 Improve Security Controls as data is published! Learn more from our blog: attackify.com/blog/bridging_… #Cybersecurity #ThreatEmulation #ThreatIntel

🚀 New Module Alert! 🚀 We're excited to introduce our latest ATTACKIFY module targeting CVE-2024-26229, a vulnerability in the Windows CSC Service. 🔍 Key Features: - Test & Validate Security Controls: Focus on local privilege escalation detection & prevention. - Real-World Simulation: Attempts to safely exploit the vulnerability & runs whoami.exe to verify SYSTEM privileges. Enhance your security posture with ATTACKIFY today! Test your security controls against many of our privilege escalation modules and more💪 attackify.com #CyberSecurity

🚀 New ATTACKIFY Module: Network Discovery Mapper! 🌐 Discover hidden network paths and visualize your organization's topology from the ATTACKERS point of view 👀 Use some of the discovery modules in ATTACKIFY to emulate attacker reconnaissance, identify gaps, and strengthen your overall security posture. Sign up for a FREE account: attackify.com #cybersecurity #CyberThreat

💡 No budget for a big expensive BAS platform? Look no further! With ATTACKIFY, you get comprehensive cybersecurity solutions without breaking the bank: 🤖 Breach & Attack Simulations 🪝 Phishing Tests 🛡️ Endpoint Audit & Security Health Checks 🌐 Attack Surface Discovery & Vulnerability Scanning ⁉️ Cyber Security Readiness Self Assessments Secure your organization today with ATTACKIFY! 🚀 🔗 attackify.com #CyberSecurity

🚨 Attention Australian Businesses and Educational Institutes! 🚨 We're offering FREE Professional ATTACKIFY accounts for the rest of 2024 if you register for a FREE account in June. We want to help protect against the current surge in cyber attacks seen in Australia lately. Don't miss out on this opportunity to improve your overall security posture now! - Audit Endpoints - Test, Validate & Improve Security Controls - Perform Security Maturity Assessments - Perform External Asset Discover and Vulnerability Scanning attackify.com (Must be a registered business within Australia) #CyberSecurity #Australia #ATTACKIFY #JuneFreeOffer

🚨 New ATTACKIFY Module - AMSI Raid Write Bypass 🚨 We have implemented a new AMSI Bypass into ATTACKIFY, this time from @offsectraining / vixx Safely start testing this new AMSI bypass in your environment and implement early detection and prevention strategies. Take control and safely simulate real-world attacks with a free account at: attackify.com 🛡️ Elevate your defenses with ATTACKIFY today! #amsibypasses #BlueTeam #purpleteam #CyberSecurity #CyberAttack #redteam

🚀 Exciting News! @attackify is partnering with @TidalCyber to help organizations elevate their cybersecurity posture! Dive into our latest blog to discover how this collaboration enhances your defense against cyber threats with advanced, threat-informed solutions. 🛡️💡 Read more here: attackify.com/blog/tidal #CyberSecurity #Partnership #TidalCyber

Check out the schedule for the #HardlyStrictlySecurity conference coming later this week! Run down the sessions and check out the topics and speakers for our roundtables, happening throughout the day: buff.ly/449sOfg

🛡️ So, what is ATTACKIFY? A cybersecurity Swiss Army knife 🔍! A robust platform for organizations big & small, offering everything from: 🤖 Breach & Attack Simulations 🐟 Phishing Tests 🛡️ Endpoint Audit & Security Health Checks 🌐Attack Surface Discovery & Vulnerability Scanning ⁉️Cyber Security Readiness Self Assessments Affordable? Absolutely! Elevate your cyber defense game with us! Sign up for FREE at attackify.com #CyberSecurity #ATTACKIFY #DigitalDefense #CyberAttack #blueteam #redteam #purpleteam

🚀 Exciting Update: ATTACKIFY - Attack Surface Management! In our new blog we walk you through the new Attack Surface Management capabilities, including an advanced RECON module to discover and fingerprint Internet-facing assets and asset Vulnerability Scanner 🛡️ Perfect for any organization, big or small - and it's accessible with our STARTER accounts! Dive into our latest breakthroughs and elevate your cybersecurity strategy with us. Read more: attackify.com/blog/attack_su… #CyberSecurityAwareness #attacksurface #ITSecurity