NAT Slipstream v2 is firewalls’ worst nightmare

An updated slipstream technique spells danger for vulnerable firewalls.

Security researchers at Armis enhanced the old 2020 attack by leveraging protocols that evade port blocks. Previously, the initial attack could have been triggered by a malicious JavaScript code that first found the victim’s computer’s IP address and then tried to initiate a SIP video-conference session. This way, every connected device on the target’s network got exposed to the internet.

On a positive note, researchers disclosed the vulnerability to browser vendors back in November 2020, and most major browsers have been patched.

A demonstration of the attack can be found in the video bellow.

Check the source.

Read More

• Massive $59M Facebook Phishing Campaign Steals Nearly 400M Credentials
  Threat actors have managed to net a staggering $59 million and steal hundreds of millions of credentials in a […]
• Human Error is a Top Security Risk in 2022, New Report Shows
  A new report from Verizon warns about the human error as being one of the most frequent causes of […]
• Paying The Ransom – An Open Invitation For A Second Attack, 2022 Report Warns
  Whether the unlucky victim of a ransomware attack ends up paying the ransom or not, they are still susceptible […]
• FBI: Business Email Compromise – a $43B Scam
  A new FBI report warns of a staggering spike in hacking activities using the Business Email Compromise technique (BEC), […]
• NVIDIA Confirms Employee Credentials And Proprietary Data Stolen During Cyberattack
  NVIDIA confirmed the Lapsus$ cyberattack and the data leak that followed, saying it first became aware of the security […]

Attribution:

Photo by Florian Olivo on Unsplash