Glenn
@ntkramer.bsky.social
Experienced InfoSec | Elder Millennial | 💼 @GreyNoiseIO | I ask 'why?' a lot | Pro Oxford Comma | Fix it! | He/Him | #BLM | Views are my own.
https://linktr.ee/glennthorpe
https://linktr.ee/glennthorpe
⚡ CVE-2024-20439 (Cisco Smart Licensing Utility) (9.8/10, KEV)
Hardcoded credentials have been known since late last year.
viz.greynoise.io/tag...
3/4
Hardcoded credentials have been known since late last year.
viz.greynoise.io/tag...
3/4
GreyNoise Visualizer | GreyNoise Visualizer
At GreyNoise, we collect and analyze untargeted, widespread, and opportunistic scan and attack activity that reaches every server directly connected to the Internet.
viz.greynoise.io
July 16, 2025 at 9:46 PM
⚡ CVE-2024-20439 (Cisco Smart Licensing Utility) (9.8/10, KEV)
Hardcoded credentials have been known since late last year.
viz.greynoise.io/tag...
3/4
Hardcoded credentials have been known since late last year.
viz.greynoise.io/tag...
3/4
🔥 CVE-2025-49132 (Pterodactyl Panel RCE) (10/10 RCE)
Active exploitation observed within days of disclosure.
viz.greynoise.io/tag...
2/4
Active exploitation observed within days of disclosure.
viz.greynoise.io/tag...
2/4
GreyNoise Visualizer | GreyNoise Visualizer
At GreyNoise, we collect and analyze untargeted, widespread, and opportunistic scan and attack activity that reaches every server directly connected to the Internet.
viz.greynoise.io
July 16, 2025 at 9:46 PM
🔥 CVE-2025-49132 (Pterodactyl Panel RCE) (10/10 RCE)
Active exploitation observed within days of disclosure.
viz.greynoise.io/tag...
2/4
Active exploitation observed within days of disclosure.
viz.greynoise.io/tag...
2/4
The main takeaway is we, first hand, observed exploitation almost two weeks before the POC was released, so ensure all retro threat hunting goes back at LEAST a month, but ideally further.
2/2
2/2
July 16, 2025 at 9:05 PM
The main takeaway is we, first hand, observed exploitation almost two weeks before the POC was released, so ensure all retro threat hunting goes back at LEAST a month, but ideally further.
2/2
2/2
...here: viz.greynoise.io/tag...
2/2
2/2
GreyNoise Visualizer | GreyNoise Visualizer
At GreyNoise, we collect and analyze untargeted, widespread, and opportunistic scan and attack activity that reaches every server directly connected to the Internet.
viz.greynoise.io
July 7, 2025 at 9:56 PM
...here: viz.greynoise.io/tag...
2/2
2/2
The number of times I've murmured, "This wouldn't have happened with a PM," is too damn high.
May 15, 2025 at 3:14 PM
The number of times I've murmured, "This wouldn't have happened with a PM," is too damn high.
Good news everyone! www.cisa.gov/news-events/...
"Update May 13: (...) As such, we have paused immediate changes while we re-assess the best approach to sharing with our stakeholders."
"Update May 13: (...) As such, we have paused immediate changes while we re-assess the best approach to sharing with our stakeholders."
Update to How CISA Shares Cyber-Related Alerts and Notifications | CISA
CISA is changing how we announce cybersecurity updates and the release of new guidance.
www.cisa.gov
May 13, 2025 at 9:10 PM
Good news everyone! www.cisa.gov/news-events/...
"Update May 13: (...) As such, we have paused immediate changes while we re-assess the best approach to sharing with our stakeholders."
"Update May 13: (...) As such, we have paused immediate changes while we re-assess the best approach to sharing with our stakeholders."