cliffjkilby@gmail.com
Date: Thu, 25 Apr 2024 08:27:22 -0400
Ars has provided a nice writeup on how seemingly unrelated exploits can be
chained together to provide lateral movement within a target network.
Of the noted exploits, the ASA CVE is new and severe.
Small quibble with the article, calling MOVEIt a security appliance is generous. Calling Confluence a security appliance is absurd. The TL:DR; would probably be better noted as an edge faced application can be a foothold for lateral infiltration if not adequately isolated from the rest of the network.
https://arstechnica.com/security/2024/04/cisco-firewall-0-days-under-attack-for-5-months-by-resourceful-nation-state-hackers/