Web Traffic Hijacking: When Your Nginx Configuration Turns Malicious

securitylabs.datadoghq.com

Web Traffic Hijacking: When Your Nginx Configuration Turns Malicious

securitylabs.datadoghq.com

digicatM to

blueteamsecEnglish · 6 days ago

Web Traffic Hijacking: When Your Nginx Configuration Turns Malicious | Datadog Security Labs

securitylabs.datadoghq.com

Datadog Security Research has identified an active web traffic hijacking campaign that targets NGINX installations and management panels like Baota (BT). In this post, we provide our analysis of the techniques this campaign uses and share indicators of compromise you can check for in your NGINX configurations.

You must log in or # to comment.

Chat

blueteamsec

Create a post

You are not logged in. However you can subscribe from another Fediverse account, for example Lemmy or Mastodon. To do this, paste the following into the search field of your instance: !blueteamsec@infosec.pub

For [Blue|Purple] Teams in Cyber Defence - covering discovery, detection, response, threat intelligence, malware, offensive tradecraft and tooling, deception, reverse engineering etc.

Visibility: Public

This community can be federated to other instances and be posted/commented in by their users.

6 users / day
71 users / week
261 users / month
904 users / 6 months
223 local subscribers
619 subscribers
2.32K Posts
177 Comments
Modlog

mods:
digicat