#Uber got hacked. The hack was successful because of #socialengineering so be carefull when you receive #email or message check it out before clicking any link or giving away your login info etc.
Secondly change your Uber password, these are the two key takeway.
Now to the technical stuff, The hacker claim they Social Engineered an employee then found admin credentials in a powershell script on a network share. As the hacker says
"One of the powershell scripts contained the username and password for a admin user in Thycotic (PAM) Using this i was able to extract secrets for all services, DA, DUO, Onelogin, AWS, GSuite"
Attacker basically got access to almost everything (allegedly)
- Slack
- Google Workspace Admin
- AWS Accounts
- HackerOne Admin
- SentinelOne EDR
- vSphere
- Financial Dashboards
Don’t point and laugh. It could be you next time. Focus on your IT security and employee training on Social Engineering.
** Also another key point if you capable speand and invest in people early not after the breach as we seen so many cases
Good Luck.
#hacked #hacker #password #credentials #user #powershell #aws #share #uber #vsphere #slack #gsuite #sentinelone
0 comments:
Post a Comment