Web Traffic Hijacking: When Your Nginx Configuration Turns Malicious

securitylabs.datadoghq.com

Web Traffic Hijacking: When Your Nginx Configuration Turns Malicious

securitylabs.datadoghq.com

digicatM to

blueteamsecEnglish · 1 month ago

Web Traffic Hijacking: When Your Nginx Configuration Turns Malicious | Datadog Security Labs

securitylabs.datadoghq.com

Datadog Security Research has identified an active web traffic hijacking campaign that targets NGINX installations and management panels like Baota (BT). In this post, we provide our analysis of the techniques this campaign uses and share indicators of compromise you can check for in your NGINX configurations.

You must log in or # to comment.

Chat

blueteamsec

Create a post

You are not logged in. However you can subscribe from another Fediverse account, for example Lemmy or Mastodon. To do this, paste the following into the search field of your instance: !blueteamsec@infosec.pub

For [Blue|Purple] Teams in Cyber Defence - covering discovery, detection, response, threat intelligence, malware, offensive tradecraft and tooling, deception, reverse engineering etc.

Visibility: Public

This community can be federated to other instances and be posted/commented in by their users.

30 users / day
84 users / week
338 users / month
948 users / 6 months
228 local subscribers
650 subscribers
2.63K Posts
209 Comments
Modlog

mods:
digicat